CVE-2014-2626
Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to create files, and consequently execute arbitrary code, via crafted input, aka ZDI-CAN-2024.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.4045 (40.4%)
Percentile: 97.4%
EPSS: 2026-05-06
Affects
hp:network_virtualizationTechnical description
Directory traversal vulnerability in the toServerObject function in HP Network Virtualization 8.6 (aka Shunra Network Virtualization) allows remote attackers to create files, and consequently execute arbitrary code, via crafted input, aka ZDI-CAN-2024.
Published: 7/26/2014, 3:55:03 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://secunia.com/advisories/60418
- http://www.securitytracker.com/id/1030624
- http://zerodayinitiative.com/advisories/ZDI-14-268/
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04374202
- http://secunia.com/advisories/60418
- http://www.securitytracker.com/id/1030624
- http://zerodayinitiative.com/advisories/ZDI-14-268/
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04374202