CVE-2014-4651 — Vulnetix

CVE-2014-4651 PUBLISHED CVSS 9.800000190734863 CRITICAL

It was found that the jclouds scriptbuilder Statements class wrote a temporary file to a predictable location. An attacker could use this flaw to access sensitive data, cause a denial of service, or perform other attacks.

EPSS 1.55% · 81.8th percentile

Risk Scores

CVSS 3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

1.55%

81.8th percentile

Affected Products

Vendor	Product	Versions
Apache	Apache jclouds	Apache jclouds before 1.8.0
apache	jclouds	1.7.3

Exploit Intelligence

http://seclists.org/oss-sec/2014/q2/579 (circl)
https://issues.apache.org/jira/browse/JCLOUDS-612 (circl)

Timeline

Feb 18, 2020 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 2, 2023 EPSS Score
Jul 16, 2023 EPSS Score
Sep 7, 2023 EPSS Score

References

http://seclists.org/oss-sec/2014/q2/579 url
https://issues.apache.org/jira/browse/JCLOUDS-612 url
https://nvd.nist.gov/vuln/detail/CVE-2014-4651 advisory

Open in Interactive Console →