Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveIbmCVE-2015-5042
HistoryFeb 15, 2016 - 2:59 a.m.

CVE-2015-5042

2016-02-1502:59:07
CWE-20
ibm
web.nvd.nist.gov
24
ibm
emptoris
contract management
remote code execution
flash file
cve-2015-5042
nvd

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

8.2

Confidence

High

EPSS

0.002

Percentile

61.1%

JSON

IBM Emptoris Contract Management 9.5.0.x before 9.5.0.6 iFix15, 10.0.0.x and 10.0.1.x before 10.0.1.5 iFix5, 10.0.2.x before 10.0.2.7 iFix4, and 10.0.4.x before 10.0.4.0 iFix3 allows remote attackers to execute arbitrary code by including a crafted Flash file.

Affected configurations

Nvd
Node
ibmemptoris_contract_managementMatch9.5.0.0
OR
ibmemptoris_contract_managementMatch9.5.0.1
OR
ibmemptoris_contract_managementMatch9.5.0.2
OR
ibmemptoris_contract_managementMatch9.5.0.3
OR
ibmemptoris_contract_managementMatch9.5.0.4
OR
ibmemptoris_contract_managementMatch9.5.0.5
OR
ibmemptoris_contract_managementMatch9.5.0.6
OR
ibmemptoris_contract_managementMatch10.0.0.0
OR
ibmemptoris_contract_managementMatch10.0.0.1
OR
ibmemptoris_contract_managementMatch10.0.1.0
OR
ibmemptoris_contract_managementMatch10.0.1.1
OR
ibmemptoris_contract_managementMatch10.0.1.2
OR
ibmemptoris_contract_managementMatch10.0.1.3
OR
ibmemptoris_contract_managementMatch10.0.1.4
OR
ibmemptoris_contract_managementMatch10.0.1.5
OR
ibmemptoris_contract_managementMatch10.0.2.0
OR
ibmemptoris_contract_managementMatch10.0.2.1
OR
ibmemptoris_contract_managementMatch10.0.2.2
OR
ibmemptoris_contract_managementMatch10.0.2.3
OR
ibmemptoris_contract_managementMatch10.0.2.4
OR
ibmemptoris_contract_managementMatch10.0.2.5
OR
ibmemptoris_contract_managementMatch10.0.2.6
OR
ibmemptoris_contract_managementMatch10.0.2.7
OR
ibmemptoris_contract_managementMatch10.0.4.0
VendorProductVersionCPE
ibmemptoris_contract_management9.5.0.0cpe:2.3:a:ibm:emptoris_contract_management:9.5.0.0:*:*:*:*:*:*:*
ibmemptoris_contract_management9.5.0.1cpe:2.3:a:ibm:emptoris_contract_management:9.5.0.1:*:*:*:*:*:*:*
ibmemptoris_contract_management9.5.0.2cpe:2.3:a:ibm:emptoris_contract_management:9.5.0.2:*:*:*:*:*:*:*
ibmemptoris_contract_management9.5.0.3cpe:2.3:a:ibm:emptoris_contract_management:9.5.0.3:*:*:*:*:*:*:*
ibmemptoris_contract_management9.5.0.4cpe:2.3:a:ibm:emptoris_contract_management:9.5.0.4:*:*:*:*:*:*:*
ibmemptoris_contract_management9.5.0.5cpe:2.3:a:ibm:emptoris_contract_management:9.5.0.5:*:*:*:*:*:*:*
ibmemptoris_contract_management9.5.0.6cpe:2.3:a:ibm:emptoris_contract_management:9.5.0.6:*:*:*:*:*:*:*
ibmemptoris_contract_management10.0.0.0cpe:2.3:a:ibm:emptoris_contract_management:10.0.0.0:*:*:*:*:*:*:*
ibmemptoris_contract_management10.0.0.1cpe:2.3:a:ibm:emptoris_contract_management:10.0.0.1:*:*:*:*:*:*:*
ibmemptoris_contract_management10.0.1.0cpe:2.3:a:ibm:emptoris_contract_management:10.0.1.0:*:*:*:*:*:*:*
Rows per page:
1-10 of 241

Related

prion 1
cvelist 1
nvd 1
ibm 1
prion
prion
Arbitrary file deletion
2016-02-15 02:59:00
cvelist
cvelist
CVE-2015-5042
2016-02-15 02:00:00
nvd
nvd
CVE-2015-5042
2016-02-15 02:59:07
ibm
ibm
Security Bulletins for Emptoris Contract Management
2018-12-08 16:15:01

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

8.2

Confidence

High

EPSS

0.002

Percentile

61.1%

JSON
Related for CVE-2015-5042
prion1cvelist1nvd1ibm1