CVE-2014-2352

Cogent DataHub < 7.3.4 - Path Traversal and Denial of Service

Title source: llm
STIX 2.1

Description

The directory specifier can include designators that can be used to traverse the directory path. Exploiting this vulnerability may enable an attacker to access a limited number of hardcoded file types. Further exploitation of this vulnerability may allow an attacker to cause the web server component to enter a denial-of-service condition.

References (3)

Core 3

Scores

EPSS 0.0231
EPSS Percentile 81.3%

Details

CWE
CWE-22
Status published
Products (13)
Cogent/DataHub < 7.3.5
cogentdatahub/cogent_datahub 7.0
cogentdatahub/cogent_datahub 7.0.2
cogentdatahub/cogent_datahub 7.1.0
cogentdatahub/cogent_datahub 7.1.1
cogentdatahub/cogent_datahub 7.1.1.63
cogentdatahub/cogent_datahub 7.1.2
cogentdatahub/cogent_datahub 7.2.2
cogentdatahub/cogent_datahub 7.3.0
cogentdatahub/cogent_datahub 7.3.1
... and 3 more
Published May 30, 2014
Tracked Since Feb 18, 2026