Unrated severityNVD Advisory· Published Jul 15, 2014· Updated May 6, 2026
CVE-2014-3418
CVE-2014-3418
Description
config/userAdmin/login.tdf in Infoblox NetMRI before 6.8.5 allows remote attackers to execute arbitrary commands via shell metacharacters in the skipjackUsername parameter.
Affected products
6cpe:2.3:a:infoblox:netmri:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:infoblox:netmri:*:*:*:*:*:*:*:*range: <=6.8.4
- cpe:2.3:a:infoblox:netmri:6.0.2.42:*:*:*:*:*:*:*
- cpe:2.3:a:infoblox:netmri:6.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:infoblox:netmri:6.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:infoblox:netmri:6.2.1.48:*:*:*:*:*:*:*
- cpe:2.3:a:infoblox:netmri:6.8.2.11:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- blog.depthsecurity.com/2014/07/os-command-injection-in-infoblox-netmri.htmlnvdExploit
- seclists.org/fulldisclosure/2014/Jul/35nvdExploit
- www.exploit-db.com/exploits/34030nvdExploit
- www.securityfocus.com/archive/1/532709/100/0/threadednvd
- www.securityfocus.com/bid/68471nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/94449nvd
News mentions
0No linked articles in our index yet.