Vulnerability Details CVE-2015-7862
Persistent Accelerite Radia Client Automation (formerly HP Client Automation) 7.9 through 9.1 before 2015-02-19 improperly implements the Role Based Access Control feature, which might allow remote attackers to modify an account's role assignments via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.securitytracker.com/id/1033862
- https://support.accelerite.com/hc/en-us/articles/203659814-Accelerite-releases-solutions-and-best-practices-to-enhance-the-security-for-RBAC-and-Remote-Notify-features
- http://www.securitytracker.com/id/1033862
- https://support.accelerite.com/hc/en-us/articles/203659814-Accelerite-releases-solutions-and-best-practices-to-enhance-the-security-for-RBAC-and-Remote-Notify-features
Products affected by CVE-2015-7862
-
cpe:2.3:a:accelerite:radia_client_automation:7.9
-
cpe:2.3:a:accelerite:radia_client_automation:8.1
-
cpe:2.3:a:accelerite:radia_client_automation:9.0
-
cpe:2.3:a:accelerite:radia_client_automation:9.1