CVE-2014-3914

EXPLOITED

Rocket ServerGraph 1.2 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2014-3914 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 2 public exploits from researchers including Metasploit, including a Metasploit module exploits/multi/http/rocket_servergraph_file_requestor_rce.

AI-analyzed exploit summary This Metasploit module exploits directory traversal flaws in Rocket Servergraph Admin Center's fileRequestor servlet to achieve remote code execution. It supports multiple targets (Linux/Windows) and payload types (native/CMD/VBScript), leveraging file writes and command execution via traversal sequences.

Description

Directory traversal vulnerability in the Admin Center for Tivoli Storage Manager (TSM) in Rocket ServerGraph 1.2 allows remote attackers to (1) create arbitrary files via a .. (dot dot) in the query parameter in a writeDataFile action to the fileRequestor servlet, execute arbitrary files via a .. (dot dot) in the query parameter in a (2) run or (3) runClear action to the fileRequestor servlet, (4) read arbitrary files via a readDataFile action to the fileRequestor servlet, (5) execute arbitrary code via a save_server_groups action to the userRequest servlet, or (6) delete arbitrary files via a del action in the fileRequestServlet servlet.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotemultiple
https://www.exploit-db.com/exploits/33807

This Metasploit module exploits directory traversal flaws in Rocket Servergraph Admin Center's fileRequestor servlet to achieve remote code execution. It supports multiple targets (Linux/Windows) and payload types (native/CMD/VBScript), leveraging file writes and command execution via traversal sequences.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Rocket Servergraph Admin Center for Tivoli Storage Manager (tested on 1.2)
No auth needed
Prerequisites: Network access to the target's fileRequestor servlet (port 8888 by default) · Target system must be vulnerable to the directory traversal flaw
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC GREAT
rubypoclinux
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/rocket_servergraph_file_requestor_rce.rb

This Metasploit module exploits directory traversal flaws in Rocket Servergraph Admin Center's fileRequestor servlet to achieve remote code execution. It supports multiple targets (Linux/Windows) and payload types (native, CMD, VBS).

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Rocket Servergraph Admin Center for Tivoli Storage Manager 1.2
No auth needed
Prerequisites: Network access to the target server · fileRequestor servlet exposed on port 8888
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-14-166/
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/33807
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-14-165/
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-14-163/
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-14-161/
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-14-162/

Scores

EPSS 0.7261
EPSS Percentile 99.4%

Details

VulnCheck KEV 2020-12-01
CWE
CWE-22
Status published
Products (1)
rocketsoftware/rocket_servergraph 1.2
Published Aug 07, 2014
Tracked Since Feb 18, 2026