NVD

Id
28849  
Name
CVE-2015-8799  
Description
Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection (SCSP) before 5.2.9 MP6, Data Center Security: Server Advanced Server (DCS:SA) 6.x before 6.5 MP1 and 6.6 before MP1, and Data Center Security: Server Advanced Server and Agents (DCS:SA) through 6.6 MP1 allows remote authenticated users to write update-package data to arbitrary agent locations via unspecified vectors.  
Reject
 
CVSS Version
2  
CVSS Score
7.1  
Severity
High  
CVSS Base Score
7.1  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:N/AC:H/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2016-06-08  
Modified Date
2016-06-10  
Seq
2015-8799  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
151953 28849 CVE-2015-8799 90885  View
151954 28849 CVE-2015-8799 http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20160607_00  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
2302 JVNDB-2016-003075 複数の Symantec 製品の Management Server におけるディレクトリトラバーサルの脆弱性 複数の Symantec 製品の Management Server には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2015-8799 86024 CVE-2015-8799 28849 7.1 7.6 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-003075.html 2016-06-07 2016-06-13 View