CVE-2014-1813
 
Severity Score
8.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Microsoft Web Applications 2010 SP1 and SP2 allows remote authenticated users to execute arbitrary code via crafted page content, aka "Web Applications Page Content Vulnerability."
Microsoft Web Applications 2010 SP1 y SP2 permite a usuarios remotos autenticados ejecutar código arbitrario a través de contenido de página manipulado, también conocido como 'vulnerabilidad de contenido de página de aplicaciones web.'
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2014-01-29 CVE Reserved
- 2014-05-14 CVE Published
- 2024-08-06 CVE Updated
- 2024-10-06 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
References (2)
URL | Tag | Source |
---|---|---|
http://www.securitytracker.com/id/1030227 | Vdb Entry |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-022 | 2018-10-12 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Microsoft Search vendor "Microsoft" | Web Applications Search vendor "Microsoft" for product "Web Applications" | 2010 Search vendor "Microsoft" for product "Web Applications" and version "2010" | sp1 |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Web Applications Search vendor "Microsoft" for product "Web Applications" | 2010 Search vendor "Microsoft" for product "Web Applications" and version "2010" | sp2 |
Affected
|