CVE-2015-5672

2015-11-0611:59:01

CWE-78

[email protected]

web.nvd.nist.gov

cve-2015-5672

remote execution

type-moon

fate/stay night

fate/hollow ataraxia

witch on the holy night

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.3%

JSON

TYPE-MOON Fate/stay night, Fate/hollow ataraxia, Witch on the Holy Night, and Fate/stay night + hollow ataraxia set allow remote attackers to execute arbitrary OS commands via crafted saved data.

Affected configurations

NVD

Node

typemoonfate\/hollow_ataraxiaMatch-

typemoonfate\/stay_nightMatch-

typemoonfate\/stay_night_\+_hollow_ataraxia_setMatch-

typemoonwitch_on_the_holy_nightMatch-

CPENameOperatorVersion
typemoon:fate\/hollow_ataraxiatypemoon fate/hollow ataraxiaeq-
typemoon:fate\/stay_nighttypemoon fate/stay nighteq-
typemoon:fate\/stay_night_\+_hollow_ataraxia_settypemoon fate/stay night + hollow ataraxia seteq-
typemoon:witch_on_the_holy_nighttypemoon witch on the holy nighteq-

CPE	Name	Operator	Version
typemoon:fate\/hollow_ataraxia	typemoon fate/hollow ataraxia	eq	-
typemoon:fate\/stay_night	typemoon fate/stay night	eq	-
typemoon:fate\/stay_night_\+_hollow_ataraxia_set	typemoon fate/stay night + hollow ataraxia set	eq	-
typemoon:witch_on_the_holy_night	typemoon witch on the holy night	eq	-