CVE-2014-0632

critical

Published 2014-04-01 · Modified 2026-05-06

CVSS v3

—

VIR risk

9.0

Description

Directory traversal vulnerability in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 allows remote authenticated users to execute arbitrary code via unspecified vectors.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact

Vendor	Product	Versions
emc	vplex_geosynchrony	`4.0`
emc	vplex_geosynchrony	`5.0`
emc	vplex_geosynchrony	`5.1`
emc	vplex_geosynchrony	`5.2`
emc	vplex_geosynchrony	`5.2.1`

References

http://archives.neohapsis.com/archives/bugtraq/2014-03/0157.html
http://www.securityfocus.com/bid/66513
http://archives.neohapsis.com/archives/bugtraq/2014-03/0157.html
http://www.securityfocus.com/bid/66513

CWEs

CWE-22

💬 Discuss CVE-2014-0632 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.