CVE-2014-2565

EUVD-2014-2600
The commandline interface in Blue Coat Content Analysis System (CAS) 1.1 before 1.1.4.2 allows remote administrators to execute arbitrary commands via unspecified vectors, related to "command injection."
OS Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 UNKNOWN
ADJACENT_NETWORK
HIGH
AV:A/AC:H/Au:S/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
bluecoatcontent_analysis_system_software
𝑥
≤ 1.1.2.1
bluecoatcontent_analysis_system_software
1.1
bluecoatcontent_analysis_system_software
1.1.1.1
bluecoatcontent_analysis_system
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://kb.bluecoat.com/index?page=content&id=SA78&actp=LIST
https://kb.bluecoat.com/index?page=content&id=SA78&actp=LIST