CVE-2014-3448
CRITICALBSS Continuity CMS Bss Continuty Cms - Unrestricted File Upload
Title source: ruleDescription
BSS Continuity CMS 4.2.22640.0 has a Remote Code Execution vulnerability due to unauthenticated file upload
References (2)
Core 2
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/126740/BSS-Continuity-CMS-4.2.22640.0-Code-Execution.html
Exploit, Mailing List, Third Party Advisory x_refsource_misc
http://seclists.org/fulldisclosure/2014/May/85
Scores
CVSS v3
9.8
EPSS
0.0414
EPSS Percentile
88.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-434
Status
published
Products (1)
bss_continuity_cms_project/bss_continuty_cms
4.2.22640.0
Published
Jan 09, 2020
Tracked Since
Feb 18, 2026