{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2014-0468","assignerOrgId":"79363d38-fa19-49d1-9214-5f28da3f3ac5","state":"PUBLISHED","assignerShortName":"debian","dateReserved":"2013-12-19T00:00:00.000Z","datePublished":"2025-06-26T20:39:24.065Z","dateUpdated":"2025-06-27T14:39:39.531Z"},"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"fusionforge","vendor":"fusionforge","versions":[{"lessThan":"5.3+20140506","status":"affected","version":"0","versionType":"custom"}]}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"Vulnerability in fusionforge in the shipped Apache configuration, where the web server may execute scripts that \nthe users would have uploaded in their raw SCM repositories (SVN, Git, \nBzr...). This issue affects fusionforge: before 5.3+20140506."}],"value":"Vulnerability in fusionforge in the shipped Apache configuration, where the web server may execute scripts that \nthe users would have uploaded in their raw SCM repositories (SVN, Git, \nBzr...). This issue affects fusionforge: before 5.3+20140506."}],"providerMetadata":{"orgId":"79363d38-fa19-49d1-9214-5f28da3f3ac5","shortName":"debian","dateUpdated":"2025-06-26T20:39:24.065Z"},"references":[{"url":"http://lists.fusionforge.org/pipermail/fusionforge-general/2014-March/002645.html"},{"url":"https://web.archive.org/web/20151019035734/http://lists.fusionforge.org/pipermail/fusionforge-general/2014-March/002645.html"}],"source":{"discovery":"UNKNOWN"},"x_generator":{"engine":"Vulnogram 0.2.0"}},"adp":[{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-434","lang":"en","description":"CWE-434 Unrestricted Upload of File with Dangerous Type"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":9.8,"attackVector":"NETWORK","baseSeverity":"CRITICAL","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","integrityImpact":"HIGH","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"HIGH","privilegesRequired":"NONE","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"timestamp":"2025-06-27T14:34:41.152990Z","id":"CVE-2014-0468","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-06-27T14:39:39.531Z"}}]}}