Lucene search

[email protected]NVD:CVE-2015-2958

HistoryJun 13, 2015 - 3:59 p.m.

CVE-2015-2958

2015-06-1315:59:04

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

6.5

Confidence

Low

EPSS

0.005

Percentile

76.9%

JSON

Igreks MilkyStep Light 0.94 and earlier and Professional 1.82 and earlier allows remote attackers to bypass intended access restrictions and modify settings via unspecified vectors, a different vulnerability than CVE-2015-2952 and CVE-2015-2953.

Affected configurations

Nvd

Node

igreksmilkystep_lightRange≤0.94

igreksmilkystep_professionalRange≤1.82

igreksmilkystep_professional_oemRange≤1.82

VendorProductVersionCPE
igreksmilkystep_light*cpe:2.3:a:igreks:milkystep_light:*:*:*:*:*:*:*:*
igreksmilkystep_professional*cpe:2.3:a:igreks:milkystep_professional:*:*:*:*:*:*:*:*
igreksmilkystep_professional_oem*cpe:2.3:a:igreks:milkystep_professional_oem:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
igreks	milkystep_light	*	cpe:2.3:a:igreks:milkystep_light::::::::
igreks	milkystep_professional	*	cpe:2.3:a:igreks:milkystep_professional::::::::
igreks	milkystep_professional_oem	*	cpe:2.3:a:igreks:milkystep_professional_oem::::::::

References

jvn.jp/en/jp/JVN74280258/995646/index.html

jvn.jp/en/jp/JVN74280258/index.html

jvndb.jvn.jp/jvndb/JVNDB-2015-000083

www.securityfocus.com/bid/75078

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

6.5

Confidence

Low

EPSS

0.005

Percentile

76.9%

JSON

Related for NVD:CVE-2015-2958

cvelist3 nvd2 cve3 prion3 jvn3