VYPR
Medium severity6.8NVD Advisory· Published Jan 5, 2016· Updated Jun 17, 2026

CVE-2014-5040

CVE-2014-5040

Description

HP Helion Eucalyptus 4.1.x before 4.1.2 and HPE Helion Eucalyptus 4.2.x before 4.2.1 allow remote authenticated users to bypass intended access restrictions and modify arbitrary (1) access key credentials by leveraging knowledge of a key ID or (2) signing certificates by leveraging knowledge of a certificate ID.

Affected products

3
  • cpe:2.3:a:eucalyptus:eucalyptus:4.1.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:eucalyptus:eucalyptus:4.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:eucalyptus:eucalyptus:4.2.0:*:*:*:*:*:*:*
  • Range: 4.1.x before 4.1.2, 4.2.x before 4.2.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.