CVE-2015-8283
medium
CVSS v3
6.5
CVSS v2
6.8
VIR risk
6.5
Description
Directory traversal vulnerability in configure_manage.php in SeaWell Networks Spectrum SDC 02.05.00.
Predictions
Exploit likelihood
75%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| seawell_networks | spectrum_sdc | 02.05.00 | |
References
- http://packetstormsecurity.com/files/135311/SeaWell-Networks-Spectrum-SDC-02.05.00-Traversal-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2016/Jan/58
- https://www.exploit-db.com/exploits/39266/
- http://packetstormsecurity.com/files/135311/SeaWell-Networks-Spectrum-SDC-02.05.00-Traversal-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2016/Jan/58
- https://www.exploit-db.com/exploits/39266/
CWEs
CWE-22
Verify integrity in audit chain (admin only). AS-IS.