CyberSec.Space Logo
CVEブラウザに戻る

CVE-2015-7675

MEDIUM
6.5
CVSS Severity Score
EPSS Score0.1830%
EPSS Percentile37.69th
Published2016年2月10日
Last Modified2026年5月6日

Vulnerability Description

The "Send as attachment" feature in Ipswitch MOVEit DMZ before 8.2 and MOVEit Mobile before 1.2.2 allow remote authenticated users to bypass authorization and read uploaded files via a valid FileID in the (1) serverFileIds parameter to mobile/sendMsg or (2) arg01 parameter to human.aspx.

Affected Platforms (CPE)

📦
Ipswitch

Moveit Dmz

<= 8.1
📦
Ipswitch

Moveit Mobile

<= 1.2.0.962

References & Advisories

🔗 http://docs.ipswitch.com/MOVEit/DMZ82/ReleaseNotes/MOVEitReleaseNotes82.pdf
🔗 http://packetstormsecurity.com/files/135457/Ipswitch-MOVEit-DMZ-8.1-Authorization-Bypass.html
🔗 http://seclists.org/fulldisclosure/2016/Jan/95
🔗 https://www.profundis-labs.com/advisories/CVE-2015-7675.txt
🔗 http://docs.ipswitch.com/MOVEit/DMZ82/ReleaseNotes/MOVEitReleaseNotes82.pdf
🔗 http://packetstormsecurity.com/files/135457/Ipswitch-MOVEit-DMZ-8.1-Authorization-Bypass.html
🔗 http://seclists.org/fulldisclosure/2016/Jan/95
🔗 https://www.profundis-labs.com/advisories/CVE-2015-7675.txt

関連する脆弱性情報

CVE-2017-61959.8

Ipswitch MOVEit Transfer (formerly DMZ) allows pre-authentication blind SQL injection. The fixed versions are MOVEit Transfer 2017...

CVE-2015-76765.4

Ipswitch MOVEit File Transfer (formerly DMZ) 8.1 and earlier, when configured to support file view on download, allows remote auth...

CVE-2015-76805.3

Ipswitch MOVEit DMZ before 8.2 provides different error messages for authentication attempts depending on whether the user account...

CVE-2015-76774.3

The MOVEitISAPI service in Ipswitch MOVEit DMZ before 8.2 provides different error messages depending on whether a FileID exists, ...