CVE-2014-2962
CVE-2014-2962
Vexday Risk Score
50Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 47.1%KEV nãoPoC públicaNuclei simMetasploit —Patch —
Lifecycle
19 Jun 2014Published on NVD
19 Oct 2015Public PoC
Weaponization speed
487 daysto first PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
Absolute path traversal vulnerability in the webproc cgi module on the Belkin N150 F9K1009 v1 router with firmware before 1.00.08 allows remote attackers to read arbitrary files via a full pathname in the getpage parameter.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/38488/unverifiedexploitdbwww.exploit-db.com/exploits/38488unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.