Vulnerability CVE-2014-6158 - CERT Civis.Net

Vulnerability Name:

CVE-2014-6158 (CCN-97707)

Assigned:

2014-09-02

Published:

2015-01-05

Updated:

2017-09-08

Summary:

Multiple directory traversal vulnerabilities in the file-upload feature in IBM PureApplication System 1.0 before 1.0.0.4 iFix 10, 1.1 before 1.1.0.5, and 2.0 before 2.0.0.1 and Workload Deployer 3.1.0.7 before IF5 allow remote authenticated users to execute arbitrary code via a (1) Script Package, (2) Add-On, or (3) Emergency Fixes component.

CVSS v3 Severity:

9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

9.0 High (CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
6.7 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
6.7 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2014-6158

Source: SECUNIA
Type: UNKNOWN
61956

Source: SECUNIA
Type: UNKNOWN
62032

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21693292

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21693440

Source: CCN
Type: IBM Security Bulletin 1693292
File path traversal vulnerabilities affect IBM Workload Deployer (CVE-2014-6158)

Source: CCN
Type: IBM Security Bulletin 1693440
File path traversal vulnerabilities affect IBM PureApplication System (CVE-2014-6158)

Source: CCN
Type: BID-72024
Multiple IBM Products CVE-2014-6158 Multiple Directory Traversal Vulnerabilities

Source: XF
Type: UNKNOWN
ibm-pure-cve20146158-file-upload(97707)

Source: XF
Type: UNKNOWN
ibm-pas-cve20146158-traversal(97707)

Vulnerable Configuration:

Configuration 1:

cpe:/a:ibm:pureapplication_system:1.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.0.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.0.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:2.0.0.0:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:ibm:workload_deployer:3.1.0.7:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:ibm:workload_deployer:3.1.0.7:*:*:*:*:*:*:*

AND

cpe:/a:ibm:pureapplication_system:1.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.0.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.0.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.0.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:1.1.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:pureapplication_system:2.0.0.0:*:*:*:*:*:*:*

Denotes that component is vulnerable