Sign-up

ID

VAR-201408-0283


CVE

CVE-2014-3085


TITLE

IBM GCM16 and GCM32 Global Console Manager Switch firmware systest.php Vulnerable to arbitrary command execution

Trust: 0.8

sources: JVNDB: JVNDB-2014-003833

DESCRIPTION

systest.php on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20.23447 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the lpres parameter. IBM 1754 GCM16 and GCM32 Global Console Managers are prone to an unspecified remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause denial-of-service conditions. The following versions are vulnerable: IBM 1754 GCM16 Global Console Manager running firmware 1.20.0.22575 and prior IBM 1754 GCM32 Global Console Manager running firmware 1.20.0.22575 and prior. The product supports AES encryption, LDAP and smart card/common access card (CAC) readers and more, enabling centralized authentication and local or remote system access

Trust: 2.07

sources: NVD: CVE-2014-3085 // JVNDB: JVNDB-2014-003833 // BID: 68939 // VULHUB: VHN-71024 // VULMON: CVE-2014-3085

AFFECTED PRODUCTS

vendor:ibmmodel:global console manager 32scope:lteversion:1.20.0.22575

Trust: 1.0

vendor:ibmmodel:global console manager 16scope:lteversion:1.20.0.22575

Trust: 1.0

vendor:ibmmodel:1754 gcm16 global console managerscope:ltversion:1.20.20.23447

Trust: 0.8

vendor:ibmmodel:1754 gcm32 global console managerscope:ltversion:1.20.20.23447

Trust: 0.8

vendor:ibmmodel:global console manager 16scope:eqversion:1.20.0.22575

Trust: 0.6

vendor:ibmmodel:global console manager 32scope:eqversion:1.20.0.22575

Trust: 0.6

vendor:ibmmodel:gcm32 global console managerscope:eqversion:17541.20.0.22575

Trust: 0.3

vendor:ibmmodel:gcm32 global console managerscope:eqversion:17541.18.0.22011

Trust: 0.3

vendor:ibmmodel:gcm16 global console managerscope:eqversion:17541.20.0.22575

Trust: 0.3

vendor:ibmmodel:gcm16 global console managerscope:eqversion:17541.18.0.22011

Trust: 0.3

vendor:ibmmodel:gcm32 global console managerscope:neversion:17541.20.20.23447

Trust: 0.3

vendor:ibmmodel:gcm16 global console managerscope:neversion:17541.20.20.23447

Trust: 0.3

sources: BID: 68939 // JVNDB: JVNDB-2014-003833 // CNNVD: CNNVD-201408-046 // NVD: CVE-2014-3085

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2014-3085
value: HIGH

Trust: 1.0

NVD: CVE-2014-3085
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201408-046
value: HIGH

Trust: 0.6

VULHUB: VHN-71024
value: HIGH

Trust: 0.1

VULMON: CVE-2014-3085
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2014-3085
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:H/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: HIGH
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-71024
severity: HIGH
baseScore: 7.1
vectorString: AV:N/AC:H/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: HIGH
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-71024 // VULMON: CVE-2014-3085 // JVNDB: JVNDB-2014-003833 // CNNVD: CNNVD-201408-046 // NVD: CVE-2014-3085

PROBLEMTYPE DATA

problemtype:CWE-78

Trust: 1.9

sources: VULHUB: VHN-71024 // JVNDB: JVNDB-2014-003833 // NVD: CVE-2014-3085

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201408-046

TYPE

operating system commend injection

Trust: 0.6

sources: CNNVD: CNNVD-201408-046

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2014-003833

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-71024 // 
            
            
            
            VULMON: CVE-2014-3085

PATCH
title:MIGR-5095983url:http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2014-003833

EXTERNAL IDS
db:NVDid:CVE-2014-3085
Trust: 2.9
db:EXPLOIT-DBid:34132
Trust: 1.8
db:PACKETSTORMid:127543
Trust: 1.2
db:BIDid:68939
Trust: 1.1
db:JVNDBid:JVNDB-2014-003833
Trust: 0.8
db:CNNVDid:CNNVD-201408-046
Trust: 0.7
db:SECUNIAid:60260
Trust: 0.6
db:XFid:94091
Trust: 0.6
db:VULHUBid:VHN-71024
Trust: 0.1
db:VULMONid:CVE-2014-3085
Trust: 0.1
sources:
            
            
            VULHUB: VHN-71024 // 
            
            
            
            VULMON: CVE-2014-3085 // 
            
            
            
            BID: 68939 // 
            
            
            
            JVNDB: JVNDB-2014-003833 // 
            
            
            
            CNNVD: CNNVD-201408-046 // 
            
            
            
            NVD: CVE-2014-3085

REFERENCES
url:http://www.exploit-db.com/exploits/34132/
Trust: 1.9
url:http://www.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983
Trust: 1.8
url:http://packetstormsecurity.com/files/127543/ibm-1754-gcm-kvm-code-execution-file-read-xss.html
Trust: 1.2
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/94091
Trust: 1.2
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3085
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-3085
Trust: 0.8
url:http://www.securityfocus.com/bid/68939
Trust: 0.7
url:http://xforce.iss.net/xforce/xfdb/94091
Trust: 0.6
url:http://secunia.com/advisories/60260
Trust: 0.6
url:http://www.redbooks.ibm.com/abstracts/tips0772.html
Trust: 0.3
url:http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095983
Trust: 0.3
url:https://cwe.mitre.org/data/definitions/78.html
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
sources:
            
            
            VULHUB: VHN-71024 // 
            
            
            
            VULMON: CVE-2014-3085 // 
            
            
            
            BID: 68939 // 
            
            
            
            JVNDB: JVNDB-2014-003833 // 
            
            
            
            CNNVD: CNNVD-201408-046 // 
            
            
            
            NVD: CVE-2014-3085

CREDITS
Alejandro Alvarez Bravo
Trust: 0.9
sources:
            
            
            BID: 68939 // 
            
            
            
            CNNVD: CNNVD-201408-046

SOURCES
db:VULHUBid:VHN-71024
db:VULMONid:CVE-2014-3085
db:BIDid:68939
db:JVNDBid:JVNDB-2014-003833
db:CNNVDid:CNNVD-201408-046
db:NVDid:CVE-2014-3085

LAST UPDATE DATE
2025-04-13T23:05:08.370000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-71024date:2017-08-29T00:00:00
db:VULMONid:CVE-2014-3085date:2017-08-29T00:00:00
db:BIDid:68939date:2014-07-22T00:00:00
db:JVNDBid:JVNDB-2014-003833date:2014-08-26T00:00:00
db:CNNVDid:CNNVD-201408-046date:2014-08-18T00:00:00
db:NVDid:CVE-2014-3085date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:VULHUBid:VHN-71024date:2014-08-17T00:00:00
db:VULMONid:CVE-2014-3085date:2014-08-17T00:00:00
db:BIDid:68939date:2014-07-22T00:00:00
db:JVNDBid:JVNDB-2014-003833date:2014-08-19T00:00:00
db:CNNVDid:CNNVD-201408-046date:2014-07-22T00:00:00
db:NVDid:CVE-2014-3085date:2014-08-17T23:55:06.947