Back to CVE Browser

CVE-2015-3435

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0680%

EPSS Percentile35.60th

PublishedMay 1, 2015

Last ModifiedMay 6, 2026

Vulnerability Description

Samsung Security Manager (SSM) before 1.31 allows remote attackers to execute arbitrary code by uploading a file with an HTTP (1) PUT or (2) MOVE request.

Affected Platforms (CPE)

📦

Samsung

Samsung Security Manager

<= 1.30

References & Advisories

🔗 http://www.securityfocus.com/bid/74400

🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-156/

🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-157/

🔗 http://www.securityfocus.com/bid/74400

🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-156/

🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-157/

Related Vulnerabilities

CVE-2018-162628.8

The pkgmgr system service in Tizen allows an unprivileged process to perform package management actions, due to improper D-Bus sec...

CVE-2015-14998.5

The ActiveMQ Broker in Samsung Security Manager (SSM) before 1.31 allows remote attackers to delete arbitrary files, and consequen...

CVE-2015-304810.0

Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to ex...

CVE-2015-033310.0

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux ...