Lucene search

[email protected]NVD:CVE-2015-2950

HistoryJun 05, 2015 - 10:59 a.m.

CVE-2015-2950

2015-06-0510:59:04

CWE-22

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

70.8%

JSON

Directory traversal vulnerability in the Brandon Bowles Open Explorer application before 0.254 Beta for Android allows remote attackers to write to arbitrary files via a crafted filename.

Affected configurations

Nvd

Node

open_explorer_beta_projectopen_explorer_betaRange≤0.253android

VendorProductVersionCPE
open_explorer_beta_projectopen_explorer_beta*cpe:2.3:a:open_explorer_beta_project:open_explorer_beta:*:*:*:*:*:android:*:*

Vendor	Product	Version	CPE
open_explorer_beta_project	open_explorer_beta	*	cpe:2.3:a:open_explorer_beta_project:open_explorer_beta::::::android::*

References

jvn.jp/en/jp/JVN95246510/index.html

jvndb.jvn.jp/jvndb/JVNDB-2015-000072

www.securityfocus.com/bid/75022

play.google.com/store/apps/details?id=org.brandroid.openmanager

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

70.8%

JSON

Related for NVD:CVE-2015-2950

cve1 cvelist1 prion1 jvn1