Lucene search

[email protected]CVE-2015-6555

HistoryNov 12, 2015 - 3:59 a.m.

CVE-2015-6555

2015-11-1203:59:04

CWE-94

[email protected]

web.nvd.nist.gov

symantec

sepm

cve-2015-6555

remote attackers

java code

security vulnerability

8.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.3%

JSON

Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 allows remote attackers to execute arbitrary Java code by connecting to the console Java port.

Affected configurations

NVD

Node

symantecendpoint_protection_managerRange≤12.1ru6mp2

CPENameOperatorVersion
symantec:endpoint_protection_managersymantec endpoint protection managerle12.1

CPE	Name	Operator	Version
symantec:endpoint_protection_manager	symantec endpoint protection manager	le	12.1

References

www.securityfocus.com/bid/77495

www.securitytracker.com/id/1034139

www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20151109_00

8.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.3%

JSON

Related for CVE-2015-6555

cvelist1 nvd1 prion1 openvas1 nessus1 symantec1 impervablog1