admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2015/CVE-2015-64xx/CVE-2015-6479.json
René Helmke 7791f18b51 bootstrap
2023-05-16 16:09:41 +02:00

144 lines
4.6 KiB
JSON
Raw Blame History

{
"id": "CVE-2015-6479",
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"published": "2016-04-21T10:59:01.537",
"lastModified": "2021-06-17T17:42:09.983",
"vulnStatus": "Analyzed",
"evaluatorComment": "CWE-538: File and Directory Information Exposure",
"descriptions": [
{
"lang": "en",
"value": "ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300 devices allows remote attackers to read the filteredlogs.txt file, and consequently discover potentially sensitive boot-sequence information, via unspecified vectors."
},
{
"lang": "es",
"value": "ACEmanager en Sierra Wireless ALEOS 4.4.2 y versiones anteriores en dispositivos ES440, ES450, GX400, GX440, GX450 y LS300 permite a atacantes remotos leer el archivo filteredlogs.txt, y consecuentemente descubrir informaci\u00f3n potencialmente sensible sobre la secuencia de arranque, a trav\u00e9s de vectores no especificados."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": true
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sierrawireless:aleos:*:*:*:*:*:*:*:*",
"versionEndIncluding": "4.4.2",
"matchCriteriaId": "30FB5223-A3DD-4914-8BEC-D2486E3B31E5"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sierrawireless:es440:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E2098BAB-AF80-4C32-A5B8-FD6296C74110"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sierrawireless:es450:-:*:*:*:*:*:*:*",
"matchCriteriaId": "524DF1AE-21F2-4AA6-99E7-6F98304FF845"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sierrawireless:gx400:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5CBA7B93-E1C2-41C6-B21E-6DA8B568D751"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sierrawireless:gx440:-:*:*:*:*:*:*:*",
"matchCriteriaId": "15DD2CF2-3A83-4ED7-BCD8-05F60782AE17"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sierrawireless:gx450:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2C12CF71-FE0E-44EA-9F2E-7CFB42E7C216"
},
{
"vulnerable": false,
"criteria": "cpe:2.3:h:sierrawireless:ls300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5F4A4F52-F99E-4F72-8A2C-8D2CC21461BD"
}
]
}
]
}
],
"references": [
{
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-105-01",
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"US Government Resource"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink