CVE-2014-2565

The commandline interface in Blue Coat Content Analysis System (CAS) 1.1 before 1.1.4.2 allows remote administrators to execute arbitrary commands via unspecified vectors, related to "command injection."

Published: Apr 30, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-2565
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.5
AV:A/AC:H/Au:S/C:C/I:C/A:C

CWEs:

CWE-78

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
bluecoat / content_analysis_system_software	-	1.1.2.1.x
bluecoat / content_analysis_system_software	1.1	1.1.x
bluecoat / content_analysis_system_software	1.1.1.1	1.1.1.1.x

https://kb.bluecoat.com/index?page=content&id=SA78&actp=LIST

Vulnerability Database

289,782

CVE-2014-2565