QwikSec

Security Database

CVE

CWE

Training

CVE-2014-2352

Published: May 30, 2014

Modified: Oct 3, 2025

PUBLISHED

Description

The directory specifier can include designators that can be used to traverse the directory path. Exploiting this vulnerability may enable an attacker to access a limited number of hardcoded file types. Further exploitation of this vulnerability may allow an attacker to cause the web server component to enter a denial-of-service condition.

Vendor	Product	Versions
Cogent	DataHub	affected `0 - < 7.3.5`

Weaknesses (CWE)

References

https://www.cisa.gov/news-events/ics-advisories/icsa-14-149-02

http://cogentdatahub.com/Download_Software.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.