Vulnerability Details CVE-2015-9245
Insecure default configuration in Progress Software OpenEdge 10.2x and 11.x allows unauthenticated remote attackers to specify arbitrary URLs from which to load and execute malicious Java classes via port 20931.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2015-9245
-
cpe:2.3:a:progress:openedge:10.2a
-
cpe:2.3:a:progress:openedge:10.2b
-
cpe:2.3:a:progress:openedge:10.2b07
-
cpe:2.3:a:progress:openedge:10.2b08
-
cpe:2.3:a:progress:openedge:11.0
-
cpe:2.3:a:progress:openedge:11.1
-
cpe:2.3:a:progress:openedge:11.2
-
cpe:2.3:a:progress:openedge:11.3
-
cpe:2.3:a:progress:openedge:11.4
-
cpe:2.3:a:progress:openedge:11.5