CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-7912

The Ice Faces servlet in ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.5%

CVSS Severity

CVSS v2 Score 10.0

References

http://zerodayinitiative.com/advisories/ZDI-15-571/
https://ics-cert.us-cert.gov/advisories/ICSA-15-323-01
http://zerodayinitiative.com/advisories/ZDI-15-571/
https://ics-cert.us-cert.gov/advisories/ICSA-15-323-01

Products affected by CVE-2015-7912

Tibbo » Aggregate » Version: 5.21.02

cpe:2.3:a:tibbo:aggregate:5.21.02

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-7912

Products

Pricing

Contact Us