CVE-2015-4546

Directory traversal vulnerability in EMC RSA OneStep 6.9 before build 559, as used in RSA Certificate Manager and RSA Registration Manager through 6.9 build 558 and other products, allows remote attackers to read arbitrary files via a crafted KCSOSC_ERROR_PAGE parameter.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:N/A:N

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://packetstormsecurity.com/files/133784/RSA-OneStep-6.9-Path-Traversal.html	Third Party Advisory VDB Entry
http://seclists.org/bugtraq/2015/Sep/135	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1033671	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:emc:rsa_certificate_manager::::::::
	cpe:2.3:a:emc:rsa_onestep::::::::

History

No history.

Information

Published : 2015-10-02 02:59

Updated : 2024-02-28 15:21

NVD link : CVE-2015-4546

Mitre link : CVE-2015-4546

CVE.ORG link : CVE-2015-4546

JSON object : View

Products Affected

emc

rsa_certificate_manager
rsa_onestep

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2015-4546", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-10-02T02:59:03.523", "references": [{"url": "http://packetstormsecurity.com/files/133784/RSA-OneStep-6.9-Path-Traversal.html", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "http://seclists.org/bugtraq/2015/Sep/135", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}, {"url": "http://www.securitytracker.com/id/1033671", "tags": ["Third Party Advisory", "VDB Entry"], "source": "security_alert@emc.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in EMC RSA OneStep 6.9 before build 559, as used in RSA Certificate Manager and RSA Registration Manager through 6.9 build 558 and other products, allows remote attackers to read arbitrary files via a crafted KCSOSC_ERROR_PAGE parameter."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en EMC RSA OneStep 6.9 en versiones anteriores a build 559, tal como se utiliza en RSA Certificate Manager y RSA Registration Manager hasta la versi\u00f3n 6.9 build 558 y otros productos, permite a atacantes remotos leer archivos arbitrarios a trav\u00e9s de un par\u00e1metro KCSOSC_ERROR_PAGE manipulado."}], "lastModified": "2016-12-08T18:50:19.953", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:emc:rsa_certificate_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A8B4803-1C2C-495D-A491-5C1096710E2E", "versionEndIncluding": "6.9"}, {"criteria": "cpe:2.3:a:emc:rsa_onestep:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19999AF7-F542-47B3-B357-B84007175831", "versionEndIncluding": "6.9"}], "operator": "OR"}]}], "sourceIdentifier": "security_alert@emc.com"}