← Back

CVE-2015-0739

nvd nist
Published: May 19, 2015Modified: May 6, 2026

JSON object

Loading...
4.0
Vector
AV:N/AC:L/Au:S/C:N/I:P/A:N
Exploitability: 8.0 / Impact: 2.9
Source: NVD

Description

The Lights-Out Management (LOM) implementation in Cisco FireSIGHT System Software 5.3.0 on Sourcefire 3D Sensor devices allows remote authenticated users to perform arbitrary Baseboard Management Controller (BMC) file uploads via unspecified vectors, aka Bug ID CSCus87938.

Affected (1)

Cisco
1 product
Firesight System Software
Configuration A
1 vulnerable · 9 platform
Vulnerable SoftwareAffected Versions
Firesight System Software
Version 5.3.0
Running on/withPlatform Versions
Cisco
Sourcefire 3d1000 Sensor
All versions
Cisco
Sourcefire 3d2000 Sensor
All versions
Cisco
Sourcefire 3d2100 Sensor
All versions
Cisco
Sourcefire 3d2500 Sensor
All versions
Cisco
Sourcefire 3d3500 Sensor
All versions
Cisco
Sourcefire 3d4500 Sensor
All versions
Cisco
Sourcefire 3d500 Sensor
All versions
Cisco
Sourcefire 3d6500 Sensor
All versions
Cisco
Sourcefire 3d9900 Sensor
All versions

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (6)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.