Lucene search
MitreCVE-2015-1173HistorySep 16, 2015 - 6:59 p.m.
CVE-2015-1173
2015-09-1618:59:01
CWE-284
mitre
web.nvd.nist.gov
25
unit4
polska
teta
web
privilege escalation
cve-2015-1173
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.006
Percentile
78.0%
Unit4 Polska TETA Web (formerly TETA Galactica) 22.62.3.4 does not properly restrict access to the (1) Design Mode and (2) Debug Logger mode modules, which allows remote attackers to gain privileges via crafted “received parameters.”
Affected configurations
Node
unit4teta_webRange≤22.62.3.4
Related
cvelist
cvelist
CVE-2015-1173
2015-09-16 18:00:00
nvd
nvd
CVE-2015-1173
2015-09-16 18:59:01
zdt
zdt
UNIT4TETA TETA WEB - Authorization Bypass vulnerability
2015-08-20 00:00:00
prion
prion
Code injection
2015-09-16 18:59:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.006
Percentile
78.0%
Related for CVE-2015-1173