Lucene search
MitreCVE-2015-2284HistoryMar 24, 2015 - 5:59 p.m.
CVE-2015-2284
2015-03-2417:59:11
CWE-264
mitre
web.nvd.nist.gov
32
cve-2015-2284
solarwinds
firewall security manager
fsm
remote attackers
privilege escalation
arbitrary code execution
client session handling
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
Low
EPSS
0.974
Percentile
99.9%
userlogin.jsp in SolarWinds Firewall Security Manager (FSM) before 6.6.5 HotFix1 allows remote attackers to gain privileges and execute arbitrary code via unspecified vectors, related to client session handling.
Affected configurations
Node
solarwindsfirewall_security_managerRange≤6.6.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| solarwinds | firewall_security_manager | * | cpe:2.3:a:solarwinds:firewall_security_manager:*:*:*:*:*:*:*:* |
Related
checkpoint_advisories
checkpoint_advisories
zdi
zdi
zdt
zdt
Solarwinds Firewall Security Manager 6.6.5 Client Session Handling Exploit
2015-04-06 00:00:00
prion
prion
Session fixation
2015-03-24 17:59:00
openvas
openvas
Solarwinds FSM RCE Vulnerability
2015-06-30 00:00:00
metasploit
metasploit
packetstorm
packetstorm
Solarwinds Firewall Security Manager 6.6.5 Client Session Handling
2015-04-06 00:00:00
cvelist
cvelist
CVE-2015-2284
2015-03-24 17:00:00
nvd
nvd
CVE-2015-2284
2015-03-24 17:59:11
exploitdb
exploitdb
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8
Confidence
Low
EPSS
0.974
Percentile
99.9%
Related for CVE-2015-2284