Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.1
CVSSv2

CVE-2014-3085

Published: 17/08/2014 Updated: 29/08/2017
CVSS v2 Base Score: 7.1 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 715
Vector: AV:N/AC:H/Au:S/C:C/I:C/A:C
Subscribe to Ibm

Vulnerability Summary

systest.php on IBM GCM16 and GCM32 Global Console Manager switches with firmware prior to 1.20.20.23447 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the lpres parameter.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ibm global console manager 16 firmware

ibm global console manager 32 firmware

Exploits

Exploit DB: IBM GCM16/32 1.20.0.22575 - Multiple Vulnerabilities
*Product description* The IBM 1754 GCM family provides KVM over IP and serial console management technology in a single appliance Versions v120022575 and prior are vulnerables Note that this vulnerability is also present in some DELL and probably other vendors of this rebranded KVM I contacted Dell but no response has been received *1 ...

References

CWE-78http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983http://www.exploit-db.com/exploits/34132/http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/94091https://nvd.nist.govhttps://www.exploit-db.com/exploits/34132/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook