Remote Command Execution Vulnerability in IBM Security SiteProtector
CVE-2015-0172

7.5HIGH

Key Information:

Vendor: IBM
Status: Security Siteprotector System
Vendor: CVE Published:; 10 April 2018

What is CVE-2015-0172?

A security flaw in IBM Security SiteProtector System versions 3.0, 3.1.0, and 3.1.1 enables remote attackers to bypass established security measures. This vulnerability allows unauthorized individuals to execute commands and access sensitive data through unspecified attack vectors, posing a significant risk to organizations utilizing this product. For detailed information, please refer to IBM Support.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21699472

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 10, 2018
Vulnerability Reserved
Nov 18, 2014