Lucene search
HistoryMar 24, 2015 - 5:59 p.m.
CVE-2015-2284
cve-2015-2284
solarwinds
firewall security manager
fsm
remote attackers
privilege escalation
arbitrary code execution
client session handling
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.974 High
EPSS
Percentile
99.9%
userlogin.jsp in SolarWinds Firewall Security Manager (FSM) before 6.6.5 HotFix1 allows remote attackers to gain privileges and execute arbitrary code via unspecified vectors, related to client session handling.
Affected configurations
Node
solarwindsfirewall_security_managerRange≤6.6.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| solarwinds:firewall_security_manager | solarwinds firewall security manager | le | 6.6.5 |
Related
checkpoint_advisories
checkpoint_advisories
zdt
zdt
Solarwinds Firewall Security Manager 6.6.5 Client Session Handling Exploit
2015-04-06 00:00:00
zdi
zdi
openvas
openvas
Solarwinds FSM RCE Vulnerability
2015-06-30 00:00:00
prion
prion
Session fixation
2015-03-24 17:59:00
packetstorm
packetstorm
Solarwinds Firewall Security Manager 6.6.5 Client Session Handling
2015-04-06 00:00:00
cvelist
cvelist
CVE-2015-2284
2015-03-24 17:00:00
nvd
nvd
CVE-2015-2284
2015-03-24 17:59:11
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.974 High
EPSS
Percentile
99.9%
Related for CVE-2015-2284