CVE-2014-9708
CVE-2014-9708 is a medium-severity vulnerability in Oracle Enterprise Communications Broker with a CVSS 2.0 base score of 5.0. Its EPSS exploit-prediction score of 56% places it in the 99th percentile, indicating an elevated likelihood of exploitation. The underlying weakness is classified as CWE-476.
Key facts
- Severity: Medium (CVSS 2.0 base score 5.0)
- EPSS exploit prediction: 56% (99th percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-476
- Affected product: Oracle Enterprise Communications Broker
- Published:
- Last modified:
Description
Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x=,".
Frequently asked questions
- What is CVE-2014-9708?
- Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x=,".
- How severe is CVE-2014-9708?
- CVE-2014-9708 has a CVSS 2.0 base score of 5.0, rated medium severity.
- Is CVE-2014-9708 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 56% (99th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2014-9708?
- CVE-2014-9708 primarily affects Oracle Enterprise Communications Broker. In total, 301 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2014-9708?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2014-9708 published?
- CVE-2014-9708 was published on 2015-03-31 and last updated on 2026-06-17.
References
- http://packetstormsecurity.com/files/131157/Appweb-Web-Server-Denial-Of-Service.html
- http://seclists.org/fulldisclosure/2015/Apr/19
- http://seclists.org/fulldisclosure/2015/Mar/158
- http://www.openwall.com/lists/oss-security/2015/03/28/2
- http://www.openwall.com/lists/oss-security/2015/04/06/2
- http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
- http://www.securityfocus.com/archive/1/535028/100/0/threaded
- http://www.securityfocus.com/archive/1/archive/1/535028/100/1400/threaded
- http://www.securityfocus.com/bid/73407
- http://www.securitytracker.com/id/1037007
- https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348
- https://github.com/embedthis/appweb/issues/413
- https://security.paloaltonetworks.com/CVE-2014-9708
- https://supportportal.juniper.net/s/article/2021-07-Security-Bulletin-Junos-OS-Multiple-J-Web-vulnerabilities-resolved?language=en_US
Affected products (301)
- cpe:2.3:a:oracle:enterprise_communications_broker:*:*:*:*:*:*:*:*
- cpe:2.3:a:embedthis:appweb:*:*:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:-:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d35:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d40:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d45:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d50:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d55:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d60:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d65:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d66:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d67:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d70:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d71:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d72:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d73:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d76:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.1x46:d77:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:-:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d30:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d35:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d40:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d45:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d50:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d51:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d55:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d60:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d65:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d66:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d70:*:*:*:*:*:*
- cpe:2.3:o:juniper:junos:12.3x48:d75:*:*:*:*:*:*
More vulnerabilities in Oracle Enterprise Communications Broker
- CVE-2021-3711 — Critical (CVSS 9.8): In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt().…
- CVE-2018-11236 — Critical (CVSS 9.8): stdlib/canonicalize.c in the GNU C Library (aka glibc or libc6) 2.27 and earlier, when processing very long pathname…
- CVE-2018-6485 — Critical (CVSS 9.8): An integer overflow in the implementation of the posix_memalign in memalign functions in the GNU C Library (aka glibc…
- CVE-2018-16865 — High (CVSS 7.8): An allocation of memory without limits, that could result in the stack clashing with another memory region, was…
- CVE-2018-16864 — High (CVSS 7.8): An allocation of memory without limits, that could result in the stack clashing with another memory region, was…
- CVE-2018-11237 — High (CVSS 7.8): An AVX-512-optimized implementation of the mempcpy function in the GNU C Library (aka glibc or libc6) 2.27 and earlier…
All CVEs affecting Oracle Enterprise Communications Broker →
Other CWE-476 (NULL Pointer Dereference) vulnerabilities
- CVE-2022-36648 — Critical (CVSS 10.0): The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU, as used in 7.0.0 and earlier,…
- CVE-2020-14500 — Critical (CVSS 10.0): Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data.
- CVE-2010-2495 — Critical (CVSS 10.0): The pppol2tp_xmit function in drivers/net/pppol2tp.c in the L2TP implementation in the Linux kernel before 2.6.34 does…
- CVE-2026-46195 — Critical (CVSS 9.8): In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building…
- CVE-2026-31657 — Critical (CVSS 9.8): In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by…
- CVE-2026-31436 — Critical (CVSS 9.8): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descriptor…
Browse all CWE-476 (NULL Pointer Dereference) vulnerabilities →