CVE-2015-2896

Published: Dec 31, 2015Modified: May 6, 2026

5.3

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

The up.time client in Idera Uptime Infrastructure Monitor through 7.6 allows remote attackers to obtain potentially sensitive version, OS, process, and event-log information via a command.

Affected (1)

Products: Idera: Uptime Infrastructure Monitor

Idera

1 product

Uptime Infrastructure Monitor

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Idera Uptime Infrastructure Monitor	Up to 7.6

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (2)

https://www.kb.cert.org/vuls/id/377260

Source: cret@cert.org

US Government Resource

https://www.kb.cert.org/vuls/id/377260

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

Timeline

No history available yet.