CyberSec.Space Logo
CVEブラウザに戻る

CVE-2015-3435

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0680%
EPSS Percentile35.60th
Published2015年5月1日
Last Modified2026年5月6日

Vulnerability Description

Samsung Security Manager (SSM) before 1.31 allows remote attackers to execute arbitrary code by uploading a file with an HTTP (1) PUT or (2) MOVE request.

Affected Platforms (CPE)

📦
Samsung

Samsung Security Manager

<= 1.30

References & Advisories

🔗 http://www.securityfocus.com/bid/74400
🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-156/
🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-157/
🔗 http://www.securityfocus.com/bid/74400
🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-156/
🔗 http://www.zerodayinitiative.com/advisories/ZDI-15-157/

関連する脆弱性情報

CVE-2018-162628.8

The pkgmgr system service in Tizen allows an unprivileged process to perform package management actions, due to improper D-Bus sec...

CVE-2015-14998.5

The ActiveMQ Broker in Samsung Security Manager (SSM) before 1.31 allows remote attackers to delete arbitrary files, and consequen...

CVE-2015-098710.0

Omron CX-One CX-Programmer before 9.6, CJ2M PLC devices before 2.1, and CJ2H PLC devices before 1.5 rely on cleartext password tra...

CVE-2015-054610.0

EMC Unified Infrastructure Manager/Provisioning (UIM/P) 4.1 allows remote attackers to bypass LDAP authentication by providing a v...