CVE-2015-0525

Опубликовано: 12 мар. 2015

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The Gateway Provisioning service in EMC Secure Remote Services Virtual Edition (ESRS VE) 3.02 and 3.03 allows remote attackers to execute arbitrary OS commands via unspecified vectors.

Ссылки

http://packetstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.html
Third Party Advisory
VDB Entry
http://seclists.org/bugtraq/2015/Mar/40
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2015/Mar/118
Mailing List
Third Party Advisory
http://www.securityfocus.com/archive/1/534928/100/0/threaded
Third Party Advisory
VDB Entry
https://www.securify.nl/advisory/SFY20141112/command_injection_vulnerability_in_emc_secure_remote_services_virtual_edition.html
Exploit
http://packetstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.html
Third Party Advisory
VDB Entry
http://seclists.org/bugtraq/2015/Mar/40
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2015/Mar/118
Mailing List
Third Party Advisory
http://www.securityfocus.com/archive/1/534928/100/0/threaded
Third Party Advisory
VDB Entry
https://www.securify.nl/advisory/SFY20141112/command_injection_vulnerability_in_emc_secure_remote_services_virtual_edition.html
Exploit

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:emc:secure_remote_services:3.02:*:*:*:virtual:*:*:*

cpe:2.3:a:emc:secure_remote_services:3.03:*:*:*:virtual:*:*:*

EPSS

Процентиль: 83%

0.01832

Низкий

7.5 High

CVSS2

Дефекты

CWE-78

Связанные уязвимости

GHSA-x46m-4cfq-6frf

github

больше 3 лет назад