CVE-2015-2284

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0920%

EPSS Percentile7.30th

Published2015年3月24日

Last Modified2026年5月6日

Vulnerability Description

userlogin.jsp in SolarWinds Firewall Security Manager (FSM) before 6.6.5 HotFix1 allows remote attackers to gain privileges and execute arbitrary code via unspecified vectors, related to client session handling.

Affected Platforms (CPE)

📦

Solarwinds

Firewall Security Manager

<= 6.6.5

References & Advisories

🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-107/

関連する脆弱性情報

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...

CVE-2017-122778.8

A vulnerability in the Smart Licensing Manager service of the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Fire...

CVE-2017-38838.6

A vulnerability in the authentication, authorization, and accounting (AAA) implementation of Cisco Firepower Extensible Operating ...

CVE-2017-23378.4

A persistent cross site scripting vulnerability in NetScreen WebUI of Juniper Networks Juniper NetScreen Firewall+VPN running Scre...