4.9
CVE-2016-7815
- EPSS 0.45%
- Veröffentlicht 28.04.2017 16:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
- Quelle vultures@jpcert.or.jp
- CVE-Watchlists
- Unerledigt
LoginRemote Service Manager 3.0.0 to 3.1.4 fails to verify client certificates, which may allow remote attackers to gain access to systems on the network.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Cybozu ≫ Remote Service Manager Version3.0.0
Cybozu ≫ Remote Service Manager Version3.0.1
Cybozu ≫ Remote Service Manager Version3.1.0
Cybozu ≫ Remote Service Manager Version3.1.1
Cybozu ≫ Remote Service Manager Version3.1.2
Cybozu ≫ Remote Service Manager Version3.1.3
Cybozu ≫ Remote Service Manager Version3.1.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.45% | 0.357 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.2 | 1.6 | 2.5 |
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
|
| nvd@nist.gov | 4.9 | 6.8 | 4.9 |
AV:N/AC:M/Au:S/C:P/I:P/A:N
|
CWE-295 Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.
http://jvn.jp/en/jp/JVN19241292/index.html
http://www.securityfocus.com/bid/95379
https://support.cybozu.com/ja-jp/article/9689