CVE-2015-2857
critical
CVSS v3
9.8
CVSS v2
7.5
VIR risk
9.8
Description
Accellion File Transfer Appliance before FTA_9_11_210 allows remote attackers to execute arbitrary code via shell metacharacters in the oauth_token parameter.
Predictions
Exploit likelihood
97%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| accellion | file_transfer_appliance | {"endIncluding":"9_11_200"} | |
References
- http://packetstormsecurity.com/files/132665/Accellion-FTA-getStatus-verify_oauth_token-Command-Execution.html
- http://www.rapid7.com/db/modules/exploit/linux/http/accellion_fta_getstatus_oauth
- https://community.rapid7.com/community/metasploit/blog/2015/07/10/r7-2015-08-accellion-file-transfer-appliance-vulnerabilities-cve-2015-2856-cve-2015-2857
- https://www.exploit-db.com/exploits/37597/
- http://packetstormsecurity.com/files/132665/Accellion-FTA-getStatus-verify_oauth_token-Command-Execution.html
- http://www.rapid7.com/db/modules/exploit/linux/http/accellion_fta_getstatus_oauth
- https://community.rapid7.com/community/metasploit/blog/2015/07/10/r7-2015-08-accellion-file-transfer-appliance-vulnerabilities-cve-2015-2856-cve-2015-2857
- https://www.exploit-db.com/exploits/37597/
CWEs
CWE-77
Verify integrity in audit chain (admin only). AS-IS.