CVE-2015-3435

Published: May 1, 2015Modified: May 6, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Samsung Security Manager (SSM) before 1.31 allows remote attackers to execute arbitrary code by uploading a file with an HTTP (1) PUT or (2) MOVE request.

Affected (1)

Products: Samsung: Samsung Security Manager

Samsung

1 product

Samsung Security Manager

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Samsung Samsung Security Manager	Up to 1.30

Related CWEs

CWE-264

References (6)

http://www.securityfocus.com/bid/74400

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-15-156/

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-15-157/

Source: cve@mitre.org

http://www.securityfocus.com/bid/74400

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.zerodayinitiative.com/advisories/ZDI-15-156/

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.zerodayinitiative.com/advisories/ZDI-15-157/

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.