ID CVE-2015-0515
Summary Unrestricted file upload vulnerability in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allows remote authenticated users to execute arbitrary code by uploading and then accessing an executable file.
References
Vulnerable Configurations
  • EMC Watch4Net 6.5
    cpe:2.3:a:emc:watch4net:6.5
  • EMC ViPR SRM 3.6.0
    cpe:2.3:a:emc:vipr_srm:3.6.0
CVSS
Base: 6.5 (as of 06-09-2016 - 07:53)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE_INSTANCE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
refmap via4
bid 72256
bugtraq 20150120 ESA-2015-004: EMC M&R (Watch4Net) Multiple Vulnerabilities
sectrack 1031567
Last major update 02-01-2017 - 21:59
Published 21-01-2015 - 10:17
Back to Top