CVE-2014-9436

EPSS 14.54% · P95 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2014-9436

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Absolute path traversal vulnerability in SysAid On-Premise before 14.4.2 allows remote attackers to read arbitrary files via a \\\\ (four backslashes) in the fileName parameter to getRdsLogFile.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

SysAid On-Premise 绝对路径遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

SysAid是美国SysAid公司的一套基于Web的IT服务管理解决方案。该方案提供故障管理、在线聊天、资产管理和设备性能监视等功能。SysAid On-Premise是其中的一个支持将企业数据进行内部存储的数据交付软件。 SysAid On-Premise 14.4.2之前版本中存在绝对路径遍历漏洞。远程攻击者可借助‘fileName’参数中的‘\\\\’利用该漏洞读取任意文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2014-9436

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2014-9436

请登录查看更多情报信息。

http://packetstormsecurity.com/files/129705/SysAid-Server-Arbitrary-File-Disclosure.htmlx_refsource_MISC
http://www.exploit-db.com/exploits/35593exploitx_refsource_EXPLOIT-DB
https://exchange.xforce.ibmcloud.com/vulnerabilities/99456vdb-entryx_refsource_XF
http://seclists.org/fulldisclosure/2014/Dec/99mailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2014-9436

Same Patch Batch · n/a · 2015-01-02 · 33 CVEs total

CVE-2014-9455		CTS Projects & Software ClassAd SQL注入漏洞
CVE-2014-9443		WordPress Relevanssi插件跨站脚本漏洞
CVE-2014-9442		WordPress Cart66 Lite插件SQL注入漏洞
CVE-2014-9441		WordPress Lightbox Photo Gallery插件跨站请求伪造漏洞
CVE-2014-9440		phpMyRecipes SQL注入漏洞
CVE-2014-9439		EFS Software File Sharing Web Server 跨站脚本漏洞
CVE-2014-9438		vBulletin Moderator Control Panel 跨站请求伪造漏洞
CVE-2014-9437		WordPress Sliding Social Icons插件跨站请求伪造漏洞
CVE-2014-9435		Absolut Engine SQL注入漏洞
CVE-2014-9434		Absolut Engine 跨站脚本漏洞
CVE-2013-7417		IPCop 跨站脚本漏洞
CVE-2014-9460		WordPress WP-ViperGB插件跨站请求伪造漏洞
CVE-2014-9459		E107 跨站请求伪造漏洞
CVE-2014-9458		Hex-Rays IDA Pro GDB debugger模块基于堆的缓冲区溢出漏洞
CVE-2014-9457		PMB Services PMB SQL注入漏洞
CVE-2014-9456		NotePad++ 缓冲区溢出漏洞
CVE-2013-7418		IPCop 代码注入漏洞
CVE-2014-9454		WordPress Simple Sticky Footer插件跨站请求伪造漏洞
CVE-2014-9453		WordPress Simple visitor stat插件跨站脚本漏洞
CVE-2014-9452		VDG Security SENSE 目录遍历漏洞

Showing top 20 of 33 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2014-9436

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2014-9436

I. Basic Information for CVE-2014-9436

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2014-9436

III. Intelligence Information for CVE-2014-9436

Same Patch Batch · n/a · 2015-01-02 · 33 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2014-9436

Leave a comment