Lucene search
HistoryOct 21, 2015 - 6:59 p.m.
CVE-2015-7698
cve-2015-7698
smb
remote execution
authentication
shell metacharacters
server.php
share.php
nvd
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.3 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.1%
icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via shell metacharacters in the user argument in the (1) listShares function in Server.php or the (2) connect or (3) read function in Share.php.
Affected configurations
Node
owncloudsmbRange≤1.0.2
Node
owncloudowncloudRange≤8.1.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| owncloud:smb | owncloud smb | le | 1.0.2 |
Related
owncloud
owncloud
Command injection when using external SMB storage - ownCloud
2015-09-30 18:53:46
Server: Command injection when using external SMB storage
2015-09-30 16:53:51
ubuntucve
ubuntucve
CVE-2015-7698
2015-10-21 00:00:00
openvas
openvas
ownCloud <= 8.1.1 RCE Vulnerability (oC-SA-2015-017)
2021-09-21 00:00:00
prion
prion
Command injection
2015-10-21 18:59:00
cvelist
cvelist
CVE-2015-7698
2015-10-21 18:00:00
nvd
nvd
CVE-2015-7698
2015-10-21 18:59:06
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.3 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.1%
Related for CVE-2015-7698