CVE-2015-0739
Severity Score
4.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The Lights-Out Management (LOM) implementation in Cisco FireSIGHT System Software 5.3.0 on Sourcefire 3D Sensor devices allows remote authenticated users to perform arbitrary Baseboard Management Controller (BMC) file uploads via unspecified vectors, aka Bug ID CSCus87938.
La implementación Lights-Out Management (LOM) en Cisco FireSIGHT System Software 5.3.0 en los dispositivos Sourcefire 3D Sensor permite a usuarios remotos autenticados realizar subidas arbitrarias de ficheros de Baseboard Management Controller (BMC) a través de vectores no especificados, también conocido como Bug ID CSCus87938.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2015-01-07 CVE Reserved
- 2015-05-19 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/74709 | Third Party Advisory | |
| http://www.securitytracker.com/id/1032359 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://tools.cisco.com/security/center/viewAlert.x?alertId=38905 | 2017-01-06 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Firesight System Software Search vendor "Cisco" for product "Firesight System Software" | 5.3.0 Search vendor "Cisco" for product "Firesight System Software" and version "5.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Sourcefire 3d1000 Sensor Search vendor "Cisco" for product "Sourcefire 3d1000 Sensor" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firesight System Software Search vendor "Cisco" for product "Firesight System Software" | 5.3.0 Search vendor "Cisco" for product "Firesight System Software" and version "5.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Sourcefire 3d2000 Sensor Search vendor "Cisco" for product "Sourcefire 3d2000 Sensor" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firesight System Software Search vendor "Cisco" for product "Firesight System Software" | 5.3.0 Search vendor "Cisco" for product "Firesight System Software" and version "5.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Sourcefire 3d2100 Sensor Search vendor "Cisco" for product "Sourcefire 3d2100 Sensor" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firesight System Software Search vendor "Cisco" for product "Firesight System Software" | 5.3.0 Search vendor "Cisco" for product "Firesight System Software" and version "5.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Sourcefire 3d2500 Sensor Search vendor "Cisco" for product "Sourcefire 3d2500 Sensor" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firesight System Software Search vendor "Cisco" for product "Firesight System Software" | 5.3.0 Search vendor "Cisco" for product "Firesight System Software" and version "5.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Sourcefire 3d3500 Sensor Search vendor "Cisco" for product "Sourcefire 3d3500 Sensor" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firesight System Software Search vendor "Cisco" for product "Firesight System Software" | 5.3.0 Search vendor "Cisco" for product "Firesight System Software" and version "5.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Sourcefire 3d4500 Sensor Search vendor "Cisco" for product "Sourcefire 3d4500 Sensor" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firesight System Software Search vendor "Cisco" for product "Firesight System Software" | 5.3.0 Search vendor "Cisco" for product "Firesight System Software" and version "5.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Sourcefire 3d500 Sensor Search vendor "Cisco" for product "Sourcefire 3d500 Sensor" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firesight System Software Search vendor "Cisco" for product "Firesight System Software" | 5.3.0 Search vendor "Cisco" for product "Firesight System Software" and version "5.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Sourcefire 3d6500 Sensor Search vendor "Cisco" for product "Sourcefire 3d6500 Sensor" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Firesight System Software Search vendor "Cisco" for product "Firesight System Software" | 5.3.0 Search vendor "Cisco" for product "Firesight System Software" and version "5.3.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Sourcefire 3d9900 Sensor Search vendor "Cisco" for product "Sourcefire 3d9900 Sensor" | - | - |
Safe
|