CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-9256

Datto ALTO and SIRIS devices allow remote attackers to obtain sensitive information via access to device/VM restore mount points, because they do not have ACLs by default.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.7%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

Products affected by CVE-2015-9256

Datto » Alto 2 » Version: N/A

cpe:2.3:h:datto:alto_2:-
Datto » Alto 3 » Version: N/A

cpe:2.3:h:datto:alto_3:-
Datto » Alto Imaged » Version: N/A

cpe:2.3:h:datto:alto_imaged:-
Datto » Alto Xl » Version: N/A

cpe:2.3:h:datto:alto_xl:-
Datto » Siris 2 » Version: N/A

cpe:2.3:h:datto:siris_2:-
Datto » Siris 3 » Version: N/A

cpe:2.3:h:datto:siris_3:-
Datto » Siris 3 X All-Flash » Version: N/A

cpe:2.3:h:datto:siris_3_x_all-flash:-
Datto » Siris Virtual » Version: N/A

cpe:2.3:h:datto:siris_virtual:-
Datto » Alto 2 Firmware » Version: N/A

cpe:2.3:o:datto:alto_2_firmware:-
Datto » Alto 3 Firmware » Version: N/A

cpe:2.3:o:datto:alto_3_firmware:-
Datto » Alto Imaged Firmware » Version: N/A

cpe:2.3:o:datto:alto_imaged_firmware:-
Datto » Alto Xl Firmware » Version: N/A

cpe:2.3:o:datto:alto_xl_firmware:-
Datto » Siris 2 Firmware » Version: N/A

cpe:2.3:o:datto:siris_2_firmware:-
Datto » Siris 3 Firmware » Version: N/A

cpe:2.3:o:datto:siris_3_firmware:-
Datto » Siris 3 X All-Flash Firmware » Version: N/A

cpe:2.3:o:datto:siris_3_x_all-flash_firmware:-
Datto » Siris Virtual Firmware » Version: N/A

cpe:2.3:o:datto:siris_virtual_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-9256

Products

Pricing

Contact Us