CVE-2014-8119 — Vulnetix

Try Vulnetix Request Demo

CVE-2014-8119 PUBLISHED CVSS 5 MEDIUM

The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions.

EPSS 2.41% · 84.9th percentile

Risk Scores

CVSS v2.0

5

EPSS Score

2.41%

84.9th percentile

Affected Products

Vendor	Product	Versions
redhat	enterprise_linux	6.0, 7.0
netcf_project	netcf	0
n/a	n/a	n/a
fedoraproject	fedora	22, 20, 21

Timeline

Dec 29, 2017 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score

References

FEDORA-2015-5910 vendor-advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1172176 url
https://pagure.io/netcf/blob/050b05c880a6b343baf86780d94764b1aafece37/f/NEWS url
FEDORA-2015-5885 vendor-advisory
FEDORA-2015-5872 vendor-advisory
RHSA-2015:2248 vendor-advisory
78046 vdb
https://nvd.nist.gov/vuln/detail/CVE-2014-8119 advisory

Open in Interactive Console →