Vulnerability Description
The Gateway Provisioning service in EMC Secure Remote Services Virtual Edition (ESRS VE) 3.02 and 3.03 allows remote attackers to execute arbitrary OS commands via unspecified vectors.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Emc | Secure Remote Services | 3.02 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQLThird Party AdvisoryVDB Entry
- http://seclists.org/bugtraq/2015/Mar/40Mailing ListThird Party Advisory
- http://seclists.org/fulldisclosure/2015/Mar/118Mailing ListThird Party Advisory
- http://www.securityfocus.com/archive/1/534928/100/0/threadedThird Party AdvisoryVDB Entry
- https://www.securify.nl/advisory/SFY20141112/command_injection_vulnerability_in_Exploit
- http://packetstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQLThird Party AdvisoryVDB Entry
- http://seclists.org/bugtraq/2015/Mar/40Mailing ListThird Party Advisory
- http://seclists.org/fulldisclosure/2015/Mar/118Mailing ListThird Party Advisory
- http://www.securityfocus.com/archive/1/534928/100/0/threadedThird Party AdvisoryVDB Entry
- https://www.securify.nl/advisory/SFY20141112/command_injection_vulnerability_in_Exploit
FAQ
What is CVE-2015-0525?
CVE-2015-0525 is a vulnerability with a CVSS score of 7.5 (HIGH). The Gateway Provisioning service in EMC Secure Remote Services Virtual Edition (ESRS VE) 3.02 and 3.03 allows remote attackers to execute arbitrary OS commands via unspecified vectors.
How severe is CVE-2015-0525?
CVE-2015-0525 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0525?
Check the references section above for vendor advisories and patch information. Affected products include: Emc Secure Remote Services.