CVE-2015-4548

Published: Oct 12, 2015Modified: May 6, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

EMC RSA Web Threat Detection before 5.1 SP1 allows local users to obtain root privileges by leveraging access to a service account and writing commands to a service configuration file.

Affected (1)

Products: Rsa: Web Threat Detection

Rsa

1 product

Web Threat Detection

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Rsa Web Threat Detection	Up to 5.1

Related CWEs

CWE-264

References (6)

http://packetstormsecurity.com/files/133779/RSA-Web-Threat-Detection-Privilege-Escalation-Information-Disclosure.html

Source: security_alert@emc.com

Third Party AdvisoryVDB Entry

http://seclists.org/bugtraq/2015/Sep/134

Source: security_alert@emc.com

Third Party Advisory

http://www.securitytracker.com/id/1033672

Source: security_alert@emc.com

Third Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/133779/RSA-Web-Threat-Detection-Privilege-Escalation-Information-Disclosure.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://seclists.org/bugtraq/2015/Sep/134

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.securitytracker.com/id/1033672

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.