CVE-2014-2084

Skybox View Appliances - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-2084. PoCs published by Luigi Vezzoso.

AI-analyzed exploit summary This is a technical writeup describing an authentication bypass vulnerability in Skybox View Appliances, allowing unauthenticated reboot/shutdown via specific URLs. No functional exploit code is provided, but detailed vulnerability information is included.

Description

Skybox View Appliances with ISO 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, and 6.4.46-2.57 does not properly restrict access to the Admin interface, which allows remote attackers to obtain sensitive information via a request to (1) scripts/commands/getSystemInformation or (2) scripts/commands/getNetworkConfigurationInfo, cause a denial of service (reboot) via a request to scripts/commands/reboot, or cause a denial of service (shutdown) via a request to scripts/commands/shutdown.

Exploits (2)

exploitdb WRITEUP
by Luigi Vezzoso · textdoshardware
https://www.exploit-db.com/exploits/33328

This is a technical writeup describing an authentication bypass vulnerability in Skybox View Appliances, allowing unauthenticated reboot/shutdown via specific URLs. No functional exploit code is provided, but detailed vulnerability information is included.

Classification
Writeup 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Skybox View Appliances (versions 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, 6.4.46-2.57)
No auth needed
Prerequisites: Network access to the admin interface
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WRITEUP
by Luigi Vezzoso · textwebappshardware
https://www.exploit-db.com/exploits/33327

This is a writeup describing an authentication bypass vulnerability in Skybox View Appliances, allowing unauthenticated access to system and network information via specific URLs. No exploit code is provided, only documentation of the vulnerability.

Classification
Writeup 100%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Skybox View Appliances with ISO versions: 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, 6.4.46-2.57
No auth needed
Prerequisites: Network access to the target appliance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/33327
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/106842
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/33328
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/67352

Scores

EPSS 0.0445
EPSS Percentile 90.2%

Details

CWE
CWE-264
Status published
Products (6)
skyboxsecurity/skybox_view_appliance
skyboxsecurity/skybox_view_appliance_iso 6.3.31-2.14
skyboxsecurity/skybox_view_appliance_iso 6.3.33-2.14
skyboxsecurity/skybox_view_appliance_iso 6.4.42-2.54
skyboxsecurity/skybox_view_appliance_iso 6.4.45-2.56
skyboxsecurity/skybox_view_appliance_iso 6.4.46-2.57
Published May 17, 2014
Tracked Since Feb 18, 2026