Vulnerability Details CVE-2015-9255
Datto ALTO and SIRIS devices allow remote attackers to obtain sensitive information about data, software versions, configuration, and virtual machines via a request to a Web Virtual Directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.2%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
Products affected by CVE-2015-9255
-
cpe:2.3:h:datto:alto_2:-
-
cpe:2.3:h:datto:alto_3:-
-
cpe:2.3:h:datto:alto_imaged:-
-
cpe:2.3:h:datto:alto_xl:-
-
cpe:2.3:h:datto:siris_2:-
-
cpe:2.3:h:datto:siris_3:-
-
cpe:2.3:h:datto:siris_3_x_all-flash:-
-
cpe:2.3:h:datto:siris_virtual:-
-
cpe:2.3:o:datto:alto_2_firmware:-
-
cpe:2.3:o:datto:alto_3_firmware:-
-
cpe:2.3:o:datto:alto_imaged_firmware:-
-
cpe:2.3:o:datto:alto_xl_firmware:-
-
cpe:2.3:o:datto:siris_2_firmware:-
-
cpe:2.3:o:datto:siris_3_firmware:-
-
cpe:2.3:o:datto:siris_3_x_all-flash_firmware:-
-
cpe:2.3:o:datto:siris_virtual_firmware:-