Vulnerability Details CVE-2015-3188
The UI daemon in Apache Storm 0.10.0 before 0.10.0-beta1 allows remote attackers to execute arbitrary code via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.113
EPSS Ranking 93.1%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://packetstormsecurity.com/files/132417/Apache-Storm-0.10.0-beta-Code-Execution.html
- http://www.securityfocus.com/archive/1/535804/100/0/threaded
- http://www.securitytracker.com/id/1032695
- http://packetstormsecurity.com/files/132417/Apache-Storm-0.10.0-beta-Code-Execution.html
- http://www.securityfocus.com/archive/1/535804/100/0/threaded
- http://www.securitytracker.com/id/1032695