CVE-2015-7675 in MOVEit DMZinfo

Zusammenfassung

von MITRE

The "Send as attachment" feature in Ipswitch MOVEit DMZ before 8.2 and MOVEit Mobile before 1.2.2 allow remote authenticated users to bypass authorization and read uploaded files via a valid FileID in the (1) serverFileIds parameter to mobile/sendMsg or (2) arg01 parameter to human.aspx.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

02.10.2015

Veröffentlichung

10.02.2016

Moderieren

akzeptiert

Eintrag

VDB-80880

CPE

bereit

CWE

CWE-200 (bestätigt)

CVSS

6.5 (NVD)

EPSS

0.00008

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-7675
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-7675
CVE Details	https://www.cvedetails.com/cve/CVE-2015-7675/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!