Lucene search
HistoryOct 28, 2015 - 10:59 a.m.
CVE-2015-7900
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.003
Percentile
70.0%
Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote attackers to obtain sensitive debugging information by entering a crafted URL to trigger an exception, and then visiting a certain status page.
Affected configurations
Node
infinite_automation_systemsmango_automationMatch2.5.0
ORinfinite_automation_systemsmango_automationMatch2.5.5
ORinfinite_automation_systemsmango_automationMatch2.6.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| infinite_automation_systems | mango_automation | 2.5.0 | cpe:2.3:a:infinite_automation_systems:mango_automation:2.5.0:*:*:*:*:*:*:* |
| infinite_automation_systems | mango_automation | 2.5.5 | cpe:2.3:a:infinite_automation_systems:mango_automation:2.5.5:*:*:*:*:*:*:* |
| infinite_automation_systems | mango_automation | 2.6.0 | cpe:2.3:a:infinite_automation_systems:mango_automation:2.6.0:*:*:*:*:*:*:* |
Related
zeroscience
zeroscience
Mango Automation 2.6.0 Unprotected Debug Log View Vulnerability
2015-09-26 00:00:00
cvelist
cvelist
CVE-2015-7900
2015-10-28 10:00:00
prion
prion
Code injection
2015-10-28 10:59:00
cve
cve
CVE-2015-7900
2015-10-28 10:59:20
ics
ics
Infinite Automation Systems Mango Automation Vulnerabilities (Update A)
2018-08-27 12:00:00
exploitdb
exploitdb
Mango Automation 2.6.0 - Multiple Vulnerabilities
2015-09-28 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.003
Percentile
70.0%
Related for NVD:CVE-2015-7900