| Vulnerability Name: | CVE-2014-2600 (CCN-92297) | ||||||||
| Assigned: | 2014-04-03 | ||||||||
| Published: | 2014-04-03 | ||||||||
| Updated: | 2019-10-09 | ||||||||
| Summary: | Unspecified vulnerability in HP IceWall Identity Manager 4.0 through SP1 and 5.0 and IceWall SSO 10.0 Password Reset Option, when Apache Commons FileUpload is used, allows remote authenticated users to cause a denial of service via unknown vectors. | ||||||||
| CVSS v3 Severity: | 3.5 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P) 3.0 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P/E:U/RL:OF/RC:C)
3.0 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: MITRE Type: CNA CVE-2014-2600 Source: HP Type: Vendor Advisory SSRT101450 Source: CCN Type: SA57693 HP IceWall Identity Manager / SSO Apache Commons FileUpload Password Reset Denial of Service Vulnerability Source: CCN Type: BID-66671 Multiple HP IceWall Products CVE-2014-2600 Denial of Service Vulnerability Source: XF Type: UNKNOWN hp-icewall-cve20142600-dos(92297) Source: CCN Type: HP Security Bulletin HPSBGN02986 HP IceWall Identity Manager and HP IceWall SSO Password Reset Option Running Apache Commons FileUpload, Remote Denial of Service (DoS) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||