CVE-2015-5463

AxiomSL's Axiom java applet module (used for editing uploaded Excel files and associated Java RMI services) 9.5.3 and earlier allows remote attackers to (1) access data of other basic users through arbitrary SQL commands, (2) perform a horizontal and vertical privilege escalation, (3) cause a Denial of Service on global application, or (4) write/read/delete arbitrary files on server hosting the application.

CVSS v3 9.8 CRITICAL
CVSS v2.0 7.5 HIGH

9.8^/10

CVSS v3 : CRITICAL

Vector : AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://www.excellium-services.com/cert-xlm-advisory/cve-2015-5463/	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:axiomsl:axiom:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-04-03 20:29

Updated : 2019-04-04 12:21

NVD link : CVE-2015-5463

Mitre link : CVE-2015-5463

CVE.ORG link : CVE-2015-5463

JSON object : View

Products Affected

axiomsl

axiom

CWE

CWE-285

Improper Authorization

{"id": "CVE-2015-5463", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2019-04-03T20:29:00.233", "references": [{"url": "https://www.excellium-services.com/cert-xlm-advisory/cve-2015-5463/", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-285"}]}], "descriptions": [{"lang": "en", "value": "AxiomSL's Axiom java applet module (used for editing uploaded Excel files and associated Java RMI services) 9.5.3 and earlier allows remote attackers to (1) access data of other basic users through arbitrary SQL commands, (2) perform a horizontal and vertical privilege escalation, (3) cause a Denial of Service on global application, or (4) write/read/delete arbitrary files on server hosting the application."}, {"lang": "es", "value": "El m\u00f3dulo del applet de Java de Axiom, de AxiomSL (utilizado para editar archivos de Excel subidos y los servicios Java RMI asociados), en su versi\u00f3n 9.5.3 y anteriores, permite a los atacantes remotos (1) acceder a datos de otros usuarios b\u00e1sicos a trav\u00e9s de comandos SQL arbitrarios, (2) realizar un escalado de privilegios horizontal y vertical, (3) provocar denegaciones de servicio (DoS) en la aplicaci\u00f3n en su conjunto o (4) escribir/leer/eliminar archivos arbitrarios en el servidor que aloja la aplicaci\u00f3n."}], "lastModified": "2019-04-04T12:21:45.520", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:axiomsl:axiom:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F368FE16-5F9A-4A18-9A5B-F3B86D76D46E", "versionEndIncluding": "9.5.3"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}