Lucene search
MitreCVE-2015-5371HistoryJul 06, 2015 - 2:59 p.m.
CVE-2015-5371
2015-07-0614:59:06
mitre
web.nvd.nist.gov
32
solarwinds
storage manager
authenticationfilter
cve-2015-5371
remote attackers
arbitrary scripts
unspecified vectors
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
Low
EPSS
0.972
Percentile
99.8%
The AuthenticationFilter class in SolarWinds Storage Manager allows remote attackers to upload and execute arbitrary scripts via unspecified vectors.
Affected configurations
Node
solarwindsstorage_managerMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| solarwinds | storage_manager | - | cpe:2.3:a:solarwinds:storage_manager:-:*:*:*:*:*:*:* |
Related
nessus
nessus
SolarWinds Storage Manager AuthenticationFilter Script Upload RCE
2015-12-22 00:00:00
cvelist
cvelist
CVE-2015-5371
2015-07-06 14:00:00
nvd
nvd
CVE-2015-5371
2015-07-06 14:59:06
zdi
zdi
prion
prion
Authentication flaw
2015-07-06 14:59:00
metasploit
metasploit
SolarWinds Storage Manager Authentication Bypass
2014-08-31 06:11:46
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
Low
EPSS
0.972
Percentile
99.8%
Related for CVE-2015-5371