CVE-2014-2629
Severity CVSS v4.0:
Pending analysis
Type:
CWE-264
Permissions, Privileges, and Access Control
Publication date:
12/08/2014
Last modified:
12/04/2025
Description
HP NonStop Safeguard Security Software G, H06.03 through H06.28.01, and J06.03 through J06.17.01 does not properly evaluate the DISKFILE-PATTERN ACL of a program object file, which allows remote authenticated users to bypass intended restrictions on program access via vectors related to process-creation time.
Impact
Base Score 2.0
4.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:hp:nonstop_safeguard_security:*:*:*:*:*:*:*:* | g06.29 (including) | |
| cpe:2.3:a:hp:nonstop_safeguard_security:*:*:*:*:*:*:*:* | h06.28.01 (including) | |
| cpe:2.3:a:hp:nonstop_safeguard_security:*:*:*:*:*:*:*:* | j06.17.01 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://secunia.com/advisories/59981
- http://www.securityfocus.com/bid/69147
- http://www.securitytracker.com/id/1030697
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=c04391893
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=c04391893
- http://secunia.com/advisories/59981
- http://www.securityfocus.com/bid/69147
- http://www.securitytracker.com/id/1030697
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=c04391893
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=c04391893