Executive Summary

Informations
NameCVE-2015-2903First vendor Publication2015-11-03
VendorCveLast vendor Modification2016-12-07

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score6.9Attack RangeLocal
Cvss Impact Score10Attack ComplexityMedium
Cvss Expoit Score3.4AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The CWSAPI SOAP service in HP ArcSight SmartConnectors before 7.1.6 has a hardcoded password, which makes it easier for remote attackers to obtain administrative access by leveraging knowledge of this password.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2903

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

Sources (Detail)

SourceUrl
CERT-VN http://www.kb.cert.org/vuls/id/350508
HP https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04850932
SECTRACK http://www.securitytracker.com/id/1034078

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
DateInformations
2016-12-07 21:24:36
  • Multiple Updates
2015-11-20 00:26:18
  • Multiple Updates
2015-11-05 09:22:44
  • Multiple Updates
2015-11-04 21:19:56
  • Multiple Updates
2015-11-04 09:23:31
  • First insertion