Unrated severityNVD Advisory· Published Jun 2, 2014· Updated May 6, 2026

CVE-2014-2959

Description

logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote attackers to execute arbitrary commands via shell metacharacters in a pathname parameter.

Affected products

Dell/Powervault Ml60002 versions
cpe:2.3:h:dell:powervault_ml6000:32u:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:dell:powervault_ml6000:32u:*:*:*:*:*:*:*
- cpe:2.3:h:dell:powervault_ml6000:41u:*:*:*:*:*:*:*
Quantum/Scalar I5003 versions
cpe:2.3:h:quantum:scalar_i500:14u:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:h:quantum:scalar_i500:14u:*:*:*:*:*:*:*
- cpe:2.3:h:quantum:scalar_i500:23u:*:*:*:*:*:*:*
- cpe:2.3:h:quantum:scalar_i500:5u:*:*:*:*:*:*:*
Dell/Powervault Ml6000 Firmware
cpe:2.3:o:dell:powervault_ml6000_firmware:*:*:*:*:*:*:*:*
Range: <=i8.2.0.1_\(641g.gs003\)
Quantum/Scalar I500 Firmware
cpe:2.3:o:quantum:scalar_i500_firmware:*:*:*:*:*:*:*:*
Range: <=i8.2.2.1_\(646g.gs002\)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/124908nvdUS Government Resource
secunia.com/advisories/59019nvd
www.securityfocus.com/bid/67751nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000