Vulnerability Data

GET https://vulnerabilitydata.com/api/details/CVE-2014-4115

{
	"id": "CVE-2014-4115",
	"published_date": "2014-10-15T10:55Z",
	"last_modified_date": "2019-02-26T14:04Z",
	"assigner": "secure@microsoft.com",
	"description": "fastfat.sys (aka the FASTFAT driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Vista SP2, and Server 2008 SP2 does not properly allocate memory, which allows physically proximate attackers to execute arbitrary code or cause a denial of service (reserved-memory write) by connecting a crafted USB device, aka \"Microsoft Windows Disk Partition Driver Elevation of Privilege Vulnerability.\"",
	"references": [
		{
			"url": "http://blogs.technet.com/b/srd/archive/2014/10/14/accessing-risk-for-the-october-2014-security-updates.aspx",
			"name": "http://blogs.technet.com/b/srd/archive/2014/10/14/accessing-risk-for-the-october-2014-security-updates.aspx",
			"refsource": "CONFIRM",
			"tags": [
				"Vendor Advisory"
			]
		},
		{
			"url": "http://secunia.com/advisories/60975",
			"name": "60975",
			"refsource": "SECUNIA",
			"tags": []
		},
		{
			"url": "http://www.securityfocus.com/bid/70343",
			"name": "70343",
			"refsource": "BID",
			"tags": []
		},
		{
			"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-063",
			"name": "MS14-063",
			"refsource": "MS",
			"tags": []
		}
	],
	"impact": {
		"baseMetricV2": {
			"cvssV2": {
				"version": "2.0",
				"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
				"accessVector": "LOCAL",
				"accessComplexity": "LOW",
				"authentication": "NONE",
				"confidentialityImpact": "COMPLETE",
				"integrityImpact": "COMPLETE",
				"availabilityImpact": "COMPLETE",
				"baseScore": 7.2
			},
			"severity": "HIGH",
			"exploitabilityScore": 3.9,
			"impactScore": 10,
			"obtainAllPrivilege": false,
			"obtainUserPrivilege": false,
			"obtainOtherPrivilege": false,
			"userInteractionRequired": false
		}
	},
	"problem_type": "CWE-399"
}