CVE-2014-4650

Advisory lineage Upstream: 0 Downstream: 23

Downstream

DEBIAN-CVE-2014-4650 MGASA-2014-0285 OPENSUSE-SU-2020:0086-1 OPENSUSE-SU-2024:10100-1 OPENSUSE-SU-2024:10536-1 OPENSUSE-SU-2024:11202-1

Modified

Published: 20 Feb 2020, 16:01

Last modified:06 Aug 2024, 11:20

Vulnerability Summary

Overall Risk (default)

high

70/100

CVSS Score

9.8 CRITICAL

v3.1 (nvd)

EPSS Score

7.23% LOW

7% probability +1.21%

KEV

Not listed

Ransomware

No reports

Public exploits

2 found

Dark Web

Not detected

Timeline

20 Feb 2020, 16:01

Published

Vulnerability first disclosed

06 Aug 2024, 11:20

Last Modified

Vulnerability information updated

Description

The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path separators, which allows remote attackers to read script source code or conduct directory traversal attacks and execute unintended code via a crafted character sequence, as demonstrated by a %2f separator.

CVSS Metrics

v3.1•CRITICAL•Score: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
v2.0•HIGH•Score: 7.5AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 7.23%• Percentile: 92%

Techniques & Countermeasures

CWE-22•Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Affected Systems

python•python
≥ 2.7.0, < 2.7.8 | ≥ 3.2.0, < 3.2.6 | ≥ 3.3.0, < 3.3.6 | ≥ 3.4.0, < 3.4.2
redhat•enterprise_linux
5.0 | 6.0 | 7.0
redhat•software_collections
na