CVE-2015-6859

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2015-6859
HPE Network Switches with software 15.16.x and 15.17.x allow local users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2015-6860.

7.8 /10

CVSS v3.0 : HIGH

V3 Legend

Vector : AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

4.6 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04920918 Patch Vendor Advisory
http://www.securitytracker.com/id/1034410
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:hp:network_switch_software:*:*:*:*:*:*:*:*
OR cpe:2.3:h:hp:j9823a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9822a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9575a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9574a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9640a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9825a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9824a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9584a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9576a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j8715b:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j8715a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9642a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9310a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9851a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9452a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9447a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9532a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9475a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9264a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j8699a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9868a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9540a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j8992a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9641a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9638a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9573a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9263a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9471a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9821a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j8693a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9588a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9866a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9472a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9585a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9311a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9091a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9586a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9265a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j8697a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9539a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9470a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9643a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j8692a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9448a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j8698a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9451a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j8700a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9587a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9850a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9473a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9639a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9826a:*:*:*:*:*:*:*:*
cpe:2.3:h:hp:j9533a:*:*:*:*:*:*:*:*
Information

Published : 2016-01-05 03:59

Updated : 2016-12-07 10:22

NVD link : CVE-2015-6859

Mitre link : CVE-2015-6859

JSON object : View

CWE
CWE-264

Permissions, Privileges, and Access Controls

Advertisement

dedicated server usa
Products Affected

hp

  • j9448a
  • j9540a
  • j9452a
  • j8992a
  • j9265a
  • j8699a
  • j9573a
  • j8693a
  • j9642a
  • j8700a
  • j9585a
  • j9825a
  • j9470a
  • j9586a
  • j9310a
  • j9588a
  • j9091a
  • j9822a
  • j9587a
  • j9851a
  • j9575a
  • j9866a
  • j8715a
  • j9850a
  • j9574a
  • network_switch_software
  • j9264a
  • j9576a
  • j9539a
  • j9532a
  • j9643a
  • j9639a
  • j9472a
  • j8697a
  • j8698a
  • j9826a
  • j9451a
  • j9640a
  • j9821a
  • j9311a
  • j9473a
  • j9823a
  • j9263a
  • j9868a
  • j9471a
  • j9447a
  • j9641a
  • j8692a
  • j9533a
  • j9638a
  • j9584a
  • j8715b
  • j9824a
  • j9475a