Lucene search

[email protected]CVE-2015-6554

HistoryNov 12, 2015 - 3:59 a.m.

CVE-2015-6554

2015-11-1203:59:02

CWE-78

[email protected]

web.nvd.nist.gov

cve-2015-6554

symantec

endpoint protection manager

sepm

remote attackers

arbitrary os commands

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.6%

JSON

Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 allows remote attackers to execute arbitrary OS commands via crafted data.

Affected configurations

NVD

Node

symantecendpoint_protection_managerRange≤12.1ru6mp2

CPENameOperatorVersion
symantec:endpoint_protection_managersymantec endpoint protection managerle12.1

CPE	Name	Operator	Version
symantec:endpoint_protection_manager	symantec endpoint protection manager	le	12.1

References

www.securityfocus.com/bid/77494

www.securitytracker.com/id/1034139

www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20151109_00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.6%

JSON

Related for CVE-2015-6554

nessus2 cvelist1 nvd1 prion1 openvas1 symantec1