CVE Vulnerabilities

CVE-2014-7999

Published: Dec 24, 2014 | Modified: Dec 24, 2014

CVSS 3.x

N/A

Source:

NVD

CVSS 2.x

7.7 HIGH

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-7999
CWE	https://cwe.mitre.org/data/definitions/264.html

Cisco-Meraki MS, MR, and MX devices with firmware before 2014-09-24 allow remote authenticated users to install arbitrary firmware by leveraging unspecified HTTP handler access on the local network, aka Cisco-Meraki defect ID 00478565.

Affected Software

Name	Vendor	Start Version	End Version
Meraki_mr_firmware	Cisco	*	2014-09-24 (including)

References

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.