Code injection

2010-02-1117:30:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.003 Low

EPSS

Percentile

67.6%

JSON

Unspecified vulnerability in the WebSafe DistributorServlet in the embedded HTTPS server on the Cisco IronPort Encryption Appliance 6.2.x before 6.2.9.1 and 6.5.x before 6.5.2, and the IronPort PostX MAP before 6.2.9.1, allows remote attackers to read arbitrary files via unknown vectors, aka IronPort Bug 65922.

CPENameOperatorVersion
ironport_encryption_applianceeq6.2.7.5
ironport_encryption_applianceeq6.2.4
ironport_encryption_applianceeq6.2.7.3
ironport_encryption_applianceeq6.2.4.1
ironport_encryption_applianceeq6.2.7
ironport_encryption_applianceeq6.2.7.2
ironport_encryption_applianceeq6.5
ironport_encryption_applianceeq6.2.7.4
ironport_encryption_applianceeq6.2.7.1
ironport_encryption_applianceeq6.5.0.1

Name	Operator	Version
ironport_encryption_appliance	eq	6.2.7.5
ironport_encryption_appliance	eq	6.2.4
ironport_encryption_appliance	eq	6.2.7.3
ironport_encryption_appliance	eq	6.2.4.1
ironport_encryption_appliance	eq	6.2.7
ironport_encryption_appliance	eq	6.2.7.2
ironport_encryption_appliance	eq	6.5
ironport_encryption_appliance	eq	6.2.7.4
ironport_encryption_appliance	eq	6.2.7.1
ironport_encryption_appliance	eq	6.5.0.1