CyberSec.Space Logo
Back to CVE Browser

CVE-2015-7675

MEDIUM
6.5
CVSS Severity Score
EPSS Score0.1830%
EPSS Percentile37.69th
PublishedFeb 10, 2016
Last ModifiedMay 6, 2026

Vulnerability Description

The "Send as attachment" feature in Ipswitch MOVEit DMZ before 8.2 and MOVEit Mobile before 1.2.2 allow remote authenticated users to bypass authorization and read uploaded files via a valid FileID in the (1) serverFileIds parameter to mobile/sendMsg or (2) arg01 parameter to human.aspx.

Affected Platforms (CPE)

πŸ“¦
Ipswitch

Moveit Dmz

<= 8.1
πŸ“¦
Ipswitch

Moveit Mobile

<= 1.2.0.962

References & Advisories

πŸ”— http://docs.ipswitch.com/MOVEit/DMZ82/ReleaseNotes/MOVEitReleaseNotes82.pdf
πŸ”— http://packetstormsecurity.com/files/135457/Ipswitch-MOVEit-DMZ-8.1-Authorization-Bypass.html
πŸ”— http://seclists.org/fulldisclosure/2016/Jan/95
πŸ”— https://www.profundis-labs.com/advisories/CVE-2015-7675.txt
πŸ”— http://docs.ipswitch.com/MOVEit/DMZ82/ReleaseNotes/MOVEitReleaseNotes82.pdf
πŸ”— http://packetstormsecurity.com/files/135457/Ipswitch-MOVEit-DMZ-8.1-Authorization-Bypass.html
πŸ”— http://seclists.org/fulldisclosure/2016/Jan/95
πŸ”— https://www.profundis-labs.com/advisories/CVE-2015-7675.txt

Related Vulnerabilities

CVE-2017-61959.8

Ipswitch MOVEit Transfer (formerly DMZ) allows pre-authentication blind SQL injection. The fixed versions are MOVEit Transfer 2017...

CVE-2015-76765.4

Ipswitch MOVEit File Transfer (formerly DMZ) 8.1 and earlier, when configured to support file view on download, allows remote auth...

CVE-2015-76805.3

Ipswitch MOVEit DMZ before 8.2 provides different error messages for authentication attempts depending on whether the user account...

CVE-2015-76774.3

The MOVEitISAPI service in Ipswitch MOVEit DMZ before 8.2 provides different error messages depending on whether a FileID exists, ...