Lucene search
HistoryDec 17, 2015 - 7:59 p.m.
CVE-2015-8368
CVSS2
6
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
AI Score
6.3
Confidence
Low
EPSS
0.041
Percentile
92.2%
ntopng (aka ntop) before 2.2 allows remote authenticated users to change the login context and gain privileges via the user cookie and username parameter to admin/password_reset.lua.
Affected configurations
Node
ntopntopngRange≤2.0.151021
Related
ubuntucve
ubuntucve
CVE-2015-8368
2015-12-17 00:00:00
zdt
zdt
ntop-ng 2.0.151021 - Privilege Escalation Vulnerability
2015-12-01 00:00:00
cve
cve
CVE-2015-8368
2015-12-17 19:59:10
packetstorm
packetstorm
ntop-ng 2.0.15102 Privilege Escalation
2015-12-02 00:00:00
cvelist
cvelist
CVE-2015-8368
2015-12-17 19:00:00
openvas
openvas
ntopng < 2.2 Privilege Escalation Vulnerability
2016-12-20 00:00:00
exploitpack
exploitpack
ntop-ng 2.0.151021 - Privilege Escalation
2015-12-01 00:00:00
debiancve
debiancve
CVE-2015-8368
2015-12-17 19:59:10
prion
prion
Code injection
2015-12-17 19:59:00
exploitdb
exploitdb
ntop-ng 2.0.151021 - Privilege Escalation
2015-12-01 00:00:00
CVSS2
6
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
AI Score
6.3
Confidence
Low
EPSS
0.041
Percentile
92.2%
Related for NVD:CVE-2015-8368