Lucene search
HistoryJun 13, 2015 - 2:59 p.m.
CVE-2015-2962
cve-2015-2962
cgi rescue blobee
remote code execution
security vulnerability
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
Low
0.031 Low
EPSS
Percentile
91.2%
CGI RESCUE BloBee 1.20 and earlier allows remote attackers to write to arbitrary files, and consequently execute arbitrary code, via unspecified vectors.
Affected configurations
Node
cgi_rescueblobeeRange≤1.12
ORcgi_rescueblobeeMatch0.20
ORcgi_rescueblobeeMatch0.21
ORcgi_rescueblobeeMatch1.00
ORcgi_rescueblobeeMatch1.01
ORcgi_rescueblobeeMatch1.02
ORcgi_rescueblobeeMatch1.03
ORcgi_rescueblobeeMatch1.04
ORcgi_rescueblobeeMatch1.05
ORcgi_rescueblobeeMatch1.10
ORcgi_rescueblobeeMatch1.11
Related
prion
prion
Code injection
2015-06-13 14:59:00
jvn
jvn
JVN#24336273: BloBee vulnerable to arbitrary file creation
2015-06-12 00:00:00
cvelist
cvelist
CVE-2015-2962
2015-06-13 14:00:00
nvd
nvd
CVE-2015-2962
2015-06-13 14:59:09
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
Low
0.031 Low
EPSS
Percentile
91.2%
Related for CVE-2015-2962