CVE-2014-9699

{"id": "CVE-2014-9699", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2019-06-24T21:15:11.270", "references": [{"url": "https://secur3.us/index.php/vulnerabilities/", "tags": ["Broken Link"], "source": "cve@mitre.org"}, {"url": "https://support.makerbot.com/learn/makerbot-desktop-software/release-notes/makerbot-desktop-release-notes_13520", "tags": ["Release Notes", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "The MakerBot Replicator 5G printer runs an Apache HTTP Server with directory indexing enabled. Apache logs, system logs, design files (i.e., a history of print files), and more are exposed to unauthenticated attackers through this HTTP server."}, {"lang": "es", "value": "La impresora MakerBot Replicator 5G ejecuta un servidor HTTP de Apache con una indexaci\u00f3n de directorios habilitada. Los registros Apache, los registros de sistema, los archivos de dise\u00f1o (es decir, un historial de archivos de impresi\u00f3n) y m\u00e1s est\u00e1n expuestos a atacantes no autenticados por medio de este servidor HTTP."}], "lastModified": "2019-07-03T13:59:42.127", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:makerbot:replicator_5th_generation_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EC81408-30B4-4237-AD90-9B52FEB418F9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:makerbot:replicator_5th_generation:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9128126D-0E39-4141-BEA0-3DD2053BE02C"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}