CVE-2014-4840

CWE-20Improper Input Validation3 documents3 sources
Severity
7.5HIGH
EPSS
2.2%
top 15.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Tririga Application Platform
Timeline
PublishedOct 19
Latest updateMay 17

Description

IBM TRIRIGA Application Platform 3.2 and 3.3 before 3.3.0.2, 3.3.1 before 3.3.1.3, 3.3.2 before 3.3.2.2, and 3.4 before 3.4.0.1 allows remote attackers to execute arbitrary code via a crafted URL.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-9jjx-v6g4-vg3h: IBM TRIRIGA Application Platform 32022-05-17
CVEList
CVE-2014-4840: IBM TRIRIGA Application Platform 32014-10-19
CVE-2014-4840 (HIGH CVSS 7.5) | IBM TRIRIGA Application Platform 3. | cvebase.io