CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-7818

The administration-panel web service in IBM System Networking Switch Center (SNSC) before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM privileges by using the Apache Axis AdminService deployment method to install a .jsp file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.7%

CVSS Severity

CVSS v2 Score 7.2

References

http://www.zerodayinitiative.com/advisories/ZDI-15-551/
https://support.lenovo.com/us/en/product_security/len_2015_074
http://www.zerodayinitiative.com/advisories/ZDI-15-551/
https://support.lenovo.com/us/en/product_security/len_2015_074

Products affected by CVE-2015-7818

Ibm » System Networking Switch Center » Version: Any

cpe:2.3:a:ibm:system_networking_switch_center:*
Lenovo » Switch Center » Version: Any

cpe:2.3:a:lenovo:switch_center:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-7818

Products

Pricing

Contact Us