CVE-2015-2284

Published: Mar 24, 2015Modified: May 6, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

userlogin.jsp in SolarWinds Firewall Security Manager (FSM) before 6.6.5 HotFix1 allows remote attackers to gain privileges and execute arbitrary code via unspecified vectors, related to client session handling.

Affected (1)

Products: Solarwinds: Firewall Security Manager

Solarwinds

1 product

Firewall Security Manager

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Solarwinds Firewall Security Manager	Up to 6.6.5

Related CWEs

CWE-264

References (2)

http://www.zerodayinitiative.com/advisories/ZDI-15-107/

Source: cve@mitre.org

Patch

http://www.zerodayinitiative.com/advisories/ZDI-15-107/

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.