CyberSec.Space Logo
Back to CVE Browser

CVE-2015-2284

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0920%
EPSS Percentile7.30th
PublishedMar 24, 2015
Last ModifiedMay 6, 2026

Vulnerability Description

userlogin.jsp in SolarWinds Firewall Security Manager (FSM) before 6.6.5 HotFix1 allows remote attackers to gain privileges and execute arbitrary code via unspecified vectors, related to client session handling.

Affected Platforms (CPE)

📦
Solarwinds

Firewall Security Manager

<= 6.6.5

References & Advisories

🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-107/
🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-107/

Related Vulnerabilities

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...

CVE-2017-122778.8

A vulnerability in the Smart Licensing Manager service of the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Fire...

CVE-2017-38838.6

A vulnerability in the authentication, authorization, and accounting (AAA) implementation of Cisco Firepower Extensible Operating ...

CVE-2017-23378.4

A persistent cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running Scre...