Lucene search
HistoryJun 23, 2015 - 4:59 p.m.
CVE-2015-2860
cve-2015-2860
directory traversal
avigilon control center
remote attack
arbitrary file read
security vulnerability
nvd
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
6.8 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
65.5%
Directory traversal vulnerability in Avigilon Control Center (ACC) 4 before 4.12.0.54 and 5 before 5.4.2.22 allows remote attackers to read arbitrary files via a crafted help/ URL.
Affected configurations
Node
avigilonavigilon_control_centerRange≤5.4.2.21
Node
avigilonavigilon_control_centerRange≤4.12.0.53
| CPE | Name | Operator | Version |
|---|---|---|---|
| avigilon:avigilon_control_center | avigilon avigilon control center | le | 5.4.2.21 |
Related
cvelist
cvelist
CVE-2015-2860
2015-06-23 16:00:00
nvd
nvd
CVE-2015-2860
2015-06-23 16:59:02
prion
prion
Directory traversal
2015-06-23 16:59:00
cert
cert
Avigilon Control Center is vulnerable to path traversal
2015-06-10 00:00:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
6.8 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
65.5%
Related for CVE-2015-2860