VAR-201702-0858
Vulnerability from variot - Updated: 2023-12-18 13:14An issue was discovered in certain legacy Eaton ePDUs -- the affected products are past end-of-life (EoL) and no longer supported: EAMxxx prior to June 30, 2015, EMAxxx prior to January 31, 2014, EAMAxx prior to January 31, 2014, EMAAxx prior to January 31, 2014, and ESWAxx prior to January 31, 2014. An unauthenticated attacker may be able to access configuration files with a specially crafted URL (Path Traversal). Eaton ePDUs EAMxxx is a rack power distribution unit module from Eaton Corporation of the United States. Multiple Eaton ePDU products are prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. Remote attackers may use a specially crafted request with directory-traversal sequences ('../') to retrieve sensitive information. This may aid in further attacks. A path traversal vulnerability exists in several Eaton ePDUs
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201702-0858",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "eamaxx series epdu",
"scope": "lte",
"trust": 1.0,
"vendor": "eaton",
"version": "01-31-2014"
},
{
"model": "eswaxx series epdu",
"scope": "lte",
"trust": 1.0,
"vendor": "eaton",
"version": "01-31-2014"
},
{
"model": "eamxxx series epdu",
"scope": "lte",
"trust": 1.0,
"vendor": "eaton",
"version": "06-30-2015"
},
{
"model": "emaaxx series epdu",
"scope": "lte",
"trust": 1.0,
"vendor": "eaton",
"version": "01-31-2014"
},
{
"model": "emaxxx series epdu",
"scope": "lte",
"trust": 1.0,
"vendor": "eaton",
"version": "01-31-2014"
},
{
"model": "epdu eamaxx series",
"scope": "eq",
"trust": 0.8,
"vendor": "eaton",
"version": "2014/01/31"
},
{
"model": "epdu eamxxx series",
"scope": "eq",
"trust": 0.8,
"vendor": "eaton",
"version": "2015/06/30"
},
{
"model": "epdu emaaxx series",
"scope": "eq",
"trust": 0.8,
"vendor": "eaton",
"version": "2014/01/31"
},
{
"model": "epdu emaxxx series",
"scope": "eq",
"trust": 0.8,
"vendor": "eaton",
"version": "2014/01/31"
},
{
"model": "epdu eswaxx series",
"scope": "eq",
"trust": 0.8,
"vendor": "eaton",
"version": "2014/01/31"
},
{
"model": "epdu",
"scope": null,
"trust": 0.6,
"vendor": "eaton",
"version": null
},
{
"model": "eswaxx series epdu",
"scope": "eq",
"trust": 0.6,
"vendor": "eaton",
"version": "01-31-2014"
},
{
"model": "eamxxx series epdu",
"scope": "eq",
"trust": 0.6,
"vendor": "eaton",
"version": "06-30-2015"
},
{
"model": "emaaxx series epdu",
"scope": "eq",
"trust": 0.6,
"vendor": "eaton",
"version": "01-31-2014"
},
{
"model": "eamaxx series epdu",
"scope": "eq",
"trust": 0.6,
"vendor": "eaton",
"version": "01-31-2014"
},
{
"model": "emaxxx series epdu",
"scope": "eq",
"trust": 0.6,
"vendor": "eaton",
"version": "01-31-2014"
},
{
"model": "epdu eswaxx",
"scope": "eq",
"trust": 0.3,
"vendor": "eaton",
"version": "0"
},
{
"model": "epdu emaxxx",
"scope": "eq",
"trust": 0.3,
"vendor": "eaton",
"version": "0"
},
{
"model": "epdu emaaxx",
"scope": "eq",
"trust": 0.3,
"vendor": "eaton",
"version": "0"
},
{
"model": "epdu eamxxx",
"scope": "eq",
"trust": 0.3,
"vendor": "eaton",
"version": "0"
},
{
"model": "epdu eamaxx",
"scope": "eq",
"trust": 0.3,
"vendor": "eaton",
"version": "0"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "eamxxx series epdu",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "emaxxx series epdu",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "eamaxx series epdu",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "emaaxx series epdu",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "eswaxx series epdu",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3"
},
{
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"db": "BID",
"id": "95817"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-008007"
},
{
"db": "NVD",
"id": "CVE-2016-9357"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-462"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:eaton:eamxxx_series_epdu_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "06-30-2015",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:eaton:eamxxx_series_epdu:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:eaton:emaxxx_series_epdu_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "01-31-2014",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:eaton:emaxxx_series_epdu:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:eaton:eamaxx_series_epdu_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "01-31-2014",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:eaton:eamaxx_series_epdu:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:eaton:emaaxx_series_epdu_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "01-31-2014",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:eaton:emaaxx_series_epdu:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:eaton:eswaxx_series_epdu_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "01-31-2014",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:eaton:eswaxx_series_epdu:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2016-9357"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Maxim Rupp",
"sources": [
{
"db": "BID",
"id": "95817"
}
],
"trust": 0.3
},
"cve": "CVE-2016-9357",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "None",
"baseScore": 5.0,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2016-9357",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2017-02222",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "VHN-98177",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:N",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "NVD",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"exploitabilityScore": 3.9,
"impactScore": 1.4,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "None",
"baseScore": 5.3,
"baseSeverity": "Medium",
"confidentialityImpact": "Low",
"exploitabilityScore": null,
"id": "CVE-2016-9357",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2016-9357",
"trust": 1.8,
"value": "MEDIUM"
},
{
"author": "CNVD",
"id": "CNVD-2017-02222",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201702-462",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3",
"trust": 0.2,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-98177",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3"
},
{
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"db": "VULHUB",
"id": "VHN-98177"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-008007"
},
{
"db": "NVD",
"id": "CVE-2016-9357"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-462"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "An issue was discovered in certain legacy Eaton ePDUs -- the affected products are past end-of-life (EoL) and no longer supported: EAMxxx prior to June 30, 2015, EMAxxx prior to January 31, 2014, EAMAxx prior to January 31, 2014, EMAAxx prior to January 31, 2014, and ESWAxx prior to January 31, 2014. An unauthenticated attacker may be able to access configuration files with a specially crafted URL (Path Traversal). Eaton ePDUs EAMxxx is a rack power distribution unit module from Eaton Corporation of the United States. Multiple Eaton ePDU products are prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. \nRemote attackers may use a specially crafted request with directory-traversal sequences (\u0027../\u0027) to retrieve sensitive information. This may aid in further attacks. A path traversal vulnerability exists in several Eaton ePDUs",
"sources": [
{
"db": "NVD",
"id": "CVE-2016-9357"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-008007"
},
{
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"db": "BID",
"id": "95817"
},
{
"db": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3"
},
{
"db": "VULHUB",
"id": "VHN-98177"
}
],
"trust": 2.7
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2016-9357",
"trust": 3.6
},
{
"db": "ICS CERT",
"id": "ICSA-17-026-01",
"trust": 3.4
},
{
"db": "BID",
"id": "95817",
"trust": 1.4
},
{
"db": "CNNVD",
"id": "CNNVD-201702-462",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2017-02222",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2016-008007",
"trust": 0.8
},
{
"db": "IVD",
"id": "3AB40FC1-7E1A-4CD3-9854-EB10E1836BE3",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-98177",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3"
},
{
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"db": "VULHUB",
"id": "VHN-98177"
},
{
"db": "BID",
"id": "95817"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-008007"
},
{
"db": "NVD",
"id": "CVE-2016-9357"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-462"
}
]
},
"id": "VAR-201702-0858",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3"
},
{
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"db": "VULHUB",
"id": "VHN-98177"
}
],
"trust": 1.9
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3"
},
{
"db": "CNVD",
"id": "CNVD-2017-02222"
}
]
},
"last_update_date": "2023-12-18T13:14:25.377000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.eaton.com/eaton/index.htm"
},
{
"title": "Patches for multiple Eaton ePDUs path traversal vulnerabilities",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/89870"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-008007"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-22",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-98177"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-008007"
},
{
"db": "NVD",
"id": "CVE-2016-9357"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.4,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-026-01"
},
{
"trust": 1.1,
"url": "http://www.securityfocus.com/bid/95817"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-9357"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2016-9357"
},
{
"trust": 0.3,
"url": "http://www.eaton.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"db": "VULHUB",
"id": "VHN-98177"
},
{
"db": "BID",
"id": "95817"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-008007"
},
{
"db": "NVD",
"id": "CVE-2016-9357"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-462"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3"
},
{
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"db": "VULHUB",
"id": "VHN-98177"
},
{
"db": "BID",
"id": "95817"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-008007"
},
{
"db": "NVD",
"id": "CVE-2016-9357"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-462"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-03-01T00:00:00",
"db": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3"
},
{
"date": "2017-03-01T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"date": "2017-02-13T00:00:00",
"db": "VULHUB",
"id": "VHN-98177"
},
{
"date": "2017-01-26T00:00:00",
"db": "BID",
"id": "95817"
},
{
"date": "2017-04-06T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-008007"
},
{
"date": "2017-02-13T21:59:02.017000",
"db": "NVD",
"id": "CVE-2016-9357"
},
{
"date": "2017-02-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201702-462"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-03-01T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-02222"
},
{
"date": "2017-03-16T00:00:00",
"db": "VULHUB",
"id": "VHN-98177"
},
{
"date": "2017-02-02T00:05:00",
"db": "BID",
"id": "95817"
},
{
"date": "2017-04-06T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-008007"
},
{
"date": "2017-03-16T17:54:11.740000",
"db": "NVD",
"id": "CVE-2016-9357"
},
{
"date": "2017-02-20T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201702-462"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201702-462"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "specific Eaton ePDUs Legacy products vulnerable to path traversal",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-008007"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Path traversal",
"sources": [
{
"db": "IVD",
"id": "3ab40fc1-7e1a-4cd3-9854-eb10e1836be3"
},
{
"db": "CNNVD",
"id": "CNNVD-201702-462"
}
],
"trust": 0.8
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…