exploitDog

CVE-2015-2100

Опубликовано: 22 июл. 2021

Источник: nvd

CVSS3: 8.8

CVSS2: 6.8

EPSS Низкий

Описание

Multiple stack-based buffer overflows in WebGate eDVR Manager and Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the (1) TCPDiscover or (2) TCPDiscover2 function in the WESPDiscovery.WESPDiscoveryCtrl.1 control.

Ссылки

http://www.zerodayinitiative.com/advisories/ZDI-15-057/
Third Party Advisory
VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-067/
Third Party Advisory
VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-057/
Third Party Advisory
VDB Entry
http://www.zerodayinitiative.com/advisories/ZDI-15-067/
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:webgate:control_center:-:*:*:*:*:*:*:*

cpe:2.3:a:webgate:edvr_manager:-:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03201

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-hpxh-43r8-85ph

github

больше 3 лет назад

Multiple stack-based buffer overflows in WebGate eDVR Manager and Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the (1) TCPDiscover or (2) TCPDiscover2 function in the WESPDiscovery.WESPDiscoveryCtrl.1 control.

EPSS

Процентиль: 87%

0.03201

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787