CyberSec.Space Logo
返回 CVE 浏览器

CVE-2014-2935

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0640%
EPSS Percentile4.59th
Published2014年5月8日
Last Modified2026年5月6日

Vulnerability Description

costview3/xmlrpc_server/xmlrpc.php in CostView in Caldera 9.20 allows remote attackers to execute arbitrary commands via shell metacharacters in a methodCall element in a PHP XMLRPC request.

Affected Platforms (CPE)

📦
Caldera

Caldera

= 9.20

References & Advisories

🔗 http://www.kb.cert.org/vuls/id/693092
🔗 http://www.securityfocus.com/bid/67252
🔗 http://www.kb.cert.org/vuls/id/693092
🔗 http://www.securityfocus.com/bid/67252

相关漏洞威胁

CVE-2000-037410.0

The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from an...

CVE-2001-018110.0

Format string vulnerability in the error logging code of DHCP server and client in Caldera Linux allows remote attackers to execut...

CVE-2000-037010.0

The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for ...

CVE-2020-199078.8

A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and earlier allows authenticated attackers to execute any...