CVE-2014-0838 - Vulnerability Details - OpenCVE

The AutoUpdate package before 6.4 for IBM Security QRadar SIEM 7.2 MR1 and earlier allows remote attackers to execute arbitrary console commands by leveraging control of the server.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	Qradar Security Information And Event Manager

Configuration 1 [-]

cpe:2.3:a:ibm:qradar_security_information_and_event_manager:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/102553
http://www-01.ibm.com/support/docview.wss?uid=swg21663066
http://www.securityfocus.com/bid/65127
https://exchange.xforce.ibmcloud.com/vulnerabilities/90681

History

No history.

MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2014-01-30T02:00:00

Updated: 2024-08-06T09:27:20.223Z

Reserved: 2014-01-06T00:00:00

Link: CVE-2014-0838

Vulnrichment

No data.

NVD

Status : Modified

Published: 2014-01-30T05:17:46.377

Modified: 2024-11-21T02:02:53.310

Link: CVE-2014-0838

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-01-29T00:00:00", "descriptions": [{"lang": "en", "value": "The AutoUpdate package before 6.4 for IBM Security QRadar SIEM 7.2 MR1 and earlier allows remote attackers to execute arbitrary console commands by leveraging control of the server."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"name": "102553", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/102553"}, {"name": "65127", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/65127"}, {"name": "ibm-qradar-cve20140838-command-exec(90681)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90681"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21663066"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "ID": "CVE-2014-0838", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The AutoUpdate package before 6.4 for IBM Security QRadar SIEM 7.2 MR1 and earlier allows remote attackers to execute arbitrary console commands by leveraging control of the server."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "102553", "refsource": "OSVDB", "url": "http://osvdb.org/102553"}, {"name": "65127", "refsource": "BID", "url": "http://www.securityfocus.com/bid/65127"}, {"name": "ibm-qradar-cve20140838-command-exec(90681)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90681"}, {"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21663066", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21663066"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T09:27:20.223Z"}, "title": "CVE Program Container", "references": [{"name": "102553", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/102553"}, {"name": "65127", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/65127"}, {"name": "ibm-qradar-cve20140838-command-exec(90681)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90681"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21663066"}]}]}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2014-0838", "datePublished": "2014-01-30T02:00:00", "dateReserved": "2014-01-06T00:00:00", "dateUpdated": "2024-08-06T09:27:20.223Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:qradar_security_information_and_event_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "E02AEE53-2DD0-4BC3-A7F1-750FB8635362", "versionEndIncluding": "7.2.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The AutoUpdate package before 6.4 for IBM Security QRadar SIEM 7.2 MR1 and earlier allows remote attackers to execute arbitrary console commands by leveraging control of the server."}, {"lang": "es", "value": "El paquete de actualizaci\u00f3n autom\u00e1tica anterior a 6.4 para IBM Security QRadar SIEM 7.2 MR1 y anteriores permite a atacantes remotos ejecutar comandos arbitrarios mediante el aprovechamiento de la consola de control del servidor."}], "id": "CVE-2014-0838", "lastModified": "2024-11-21T02:02:53.310", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-01-30T05:17:46.377", "references": [{"source": "psirt@us.ibm.com", "url": "http://osvdb.org/102553"}, {"source": "psirt@us.ibm.com", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21663066"}, {"source": "psirt@us.ibm.com", "url": "http://www.securityfocus.com/bid/65127"}, {"source": "psirt@us.ibm.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90681"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/102553"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21663066"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/65127"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90681"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}