CVE-2014-3883 : Detail

CVE-2014-3883

OS Command Injection
A03-Injection
0.59%V3
Network
2014-06-21
13h00 +00:00
2014-06-21
13h57 +00:00
CVE.org
NVD
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

Usermin before 1.600 allows remote attackers to execute arbitrary operating-system commands via unspecified vectors related to a user action.

CVE Informations

Related Weaknesses

CWE-ID Weakness Name Source
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

Metrics

Metrics Score Severity CVSS Vector Source
V2 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P [email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
EPSS First.org

Products Mentioned

Configuraton 0

Webmin>>Usermin >> Version To (including) 1.590

Webmin>>Usermin >> Version 0.4

Webmin>>Usermin >> Version 0.5

Webmin>>Usermin >> Version 0.6

Webmin>>Usermin >> Version 0.7

Webmin>>Usermin >> Version 0.80

Webmin>>Usermin >> Version 0.90

Webmin>>Usermin >> Version 0.910

Webmin>>Usermin >> Version 0.929

Webmin>>Usermin >> Version 0.930

Webmin>>Usermin >> Version 0.940

Webmin>>Usermin >> Version 0.950

Webmin>>Usermin >> Version 0.960

Webmin>>Usermin >> Version 0.970

Webmin>>Usermin >> Version 0.980

Webmin>>Usermin >> Version 0.990

Webmin>>Usermin >> Version 1.000

Webmin>>Usermin >> Version 1.010

Webmin>>Usermin >> Version 1.020

Webmin>>Usermin >> Version 1.030

Webmin>>Usermin >> Version 1.040

Webmin>>Usermin >> Version 1.050

Webmin>>Usermin >> Version 1.051

Webmin>>Usermin >> Version 1.060

Webmin>>Usermin >> Version 1.070

Webmin>>Usermin >> Version 1.080

Webmin>>Usermin >> Version 1.090

Webmin>>Usermin >> Version 1.100

Webmin>>Usermin >> Version 1.110

Webmin>>Usermin >> Version 1.120

Webmin>>Usermin >> Version 1.130

Webmin>>Usermin >> Version 1.140

Webmin>>Usermin >> Version 1.150

Webmin>>Usermin >> Version 1.160

Webmin>>Usermin >> Version 1.170

Webmin>>Usermin >> Version 1.180

Webmin>>Usermin >> Version 1.190

Webmin>>Usermin >> Version 1.200

Webmin>>Usermin >> Version 1.210

Webmin>>Usermin >> Version 1.220

Webmin>>Usermin >> Version 1.230

Webmin>>Usermin >> Version 1.240

Webmin>>Usermin >> Version 1.250

Webmin>>Usermin >> Version 1.260

Webmin>>Usermin >> Version 1.270

Webmin>>Usermin >> Version 1.280

Webmin>>Usermin >> Version 1.290

Webmin>>Usermin >> Version 1.300

Webmin>>Usermin >> Version 1.310

Webmin>>Usermin >> Version 1.320

Webmin>>Usermin >> Version 1.330

Webmin>>Usermin >> Version 1.340

Webmin>>Usermin >> Version 1.350

Webmin>>Usermin >> Version 1.360

Webmin>>Usermin >> Version 1.370

Webmin>>Usermin >> Version 1.380

Webmin>>Usermin >> Version 1.390

Webmin>>Usermin >> Version 1.400

Webmin>>Usermin >> Version 1.410

Webmin>>Usermin >> Version 1.420

Webmin>>Usermin >> Version 1.430

Webmin>>Usermin >> Version 1.440

Webmin>>Usermin >> Version 1.450

Webmin>>Usermin >> Version 1.460

Webmin>>Usermin >> Version 1.470

Webmin>>Usermin >> Version 1.480

Webmin>>Usermin >> Version 1.490

Webmin>>Usermin >> Version 1.500

Webmin>>Usermin >> Version 1.510

Webmin>>Usermin >> Version 1.520

Webmin>>Usermin >> Version 1.530

Webmin>>Usermin >> Version 1.540

Webmin>>Usermin >> Version 1.550

Webmin>>Usermin >> Version 1.560

Webmin>>Usermin >> Version 1.570

Webmin>>Usermin >> Version 1.580

References

http://jvn.jp/en/jp/JVN48805624/index.html
Tags : third-party-advisory, x_refsource_JVN
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000057
Tags : third-party-advisory, x_refsource_JVNDB