Vulnerability Description
Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors.
CVSS Score
9.8
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lexmark | Markvision Enterprise | < 2.1 |
Related Weaknesses (CWE)
References
- http://support.lexmark.com/index?page=content&id=TE666Vendor Advisory
- http://www.zerodayinitiative.com/advisories/ZDI-14-410/Third Party AdvisoryVDB Entry
- http://support.lexmark.com/index?page=content&id=TE666Vendor Advisory
- http://www.zerodayinitiative.com/advisories/ZDI-14-410/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2014-8741?
CVE-2014-8741 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors.
How severe is CVE-2014-8741?
CVE-2014-8741 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2014-8741?
Check the references section above for vendor advisories and patch information. Affected products include: Lexmark Markvision Enterprise.