CVE-2014-2950

HIGH

7.8

CVSS Severity Score

EPSS Score0.0940%

EPSS Percentile36.34th

Published2014年7月14日

Last Modified2026年5月6日

Vulnerability Description

Datum Systems SnIP on PSM-500 and PSM-4500 devices does not require authentication for FTP sessions, which allows remote attackers to obtain sensitive information via RETR commands.

Affected Platforms (CPE)

💻

Datumsystems

Snip

All versions

💻

Datumsystems

Snip

All versions

References & Advisories

🔗 http://www.kb.cert.org/vuls/id/917348

相关漏洞威胁

CVE-2014-295110.0

Datum Systems SnIP on PSM-500 and PSM-4500 devices has a hardcoded password of admin for the admin account, which makes it easier ...

CVE-2021-301179.8

The API call /InstallTab/exportFldr.asp is vulnerable to a semi-authenticated boolean-based blind SQL injection in the parameter f...

CVE-2021-229567.5

An uncontrolled resource consumption vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22 and 11.1-65.23 that could allow a...

CVE-2014-052810.0

Double free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attac...