Vulnerability Details CVE-2015-4548
EMC RSA Web Threat Detection before 5.1 SP1 allows local users to obtain root privileges by leveraging access to a service account and writing commands to a service configuration file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.8%
CVSS Severity
CVSS v2 Score 7.2
References
- http://packetstormsecurity.com/files/133779/RSA-Web-Threat-Detection-Privilege-Escalation-Information-Disclosure.html
- http://seclists.org/bugtraq/2015/Sep/134
- http://www.securitytracker.com/id/1033672
- http://packetstormsecurity.com/files/133779/RSA-Web-Threat-Detection-Privilege-Escalation-Information-Disclosure.html
- http://seclists.org/bugtraq/2015/Sep/134
- http://www.securitytracker.com/id/1033672
Products affected by CVE-2015-4548
-
cpe:2.3:a:rsa:web_threat_detection:4.0
-
cpe:2.3:a:rsa:web_threat_detection:4.1
-
cpe:2.3:a:rsa:web_threat_detection:4.6
-
cpe:2.3:a:rsa:web_threat_detection:4.6.1.0
-
cpe:2.3:a:rsa:web_threat_detection:4.6.1.1
-
cpe:2.3:a:rsa:web_threat_detection:5.0
-
cpe:2.3:a:rsa:web_threat_detection:5.1