CVE-2015-2978

N/A

Descricao

Webservice-DIC yoyaku_v41 allows remote attackers to bypass authentication and complete a conference-room reservation via unspecified vectors, as demonstrated by an "unintentional reservation."

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado7/29/2015

Ultima modificacao4/12/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

webservice-dic:yoyaku

Fraquezas (CWE)

CWE-287

Referencias

http://jvn.jp/en/jp/JVN52248864/index.html(vultures@jpcert.or.jp)

http://jvndb.jvn.jp/jvndb/JVNDB-2015-000108(vultures@jpcert.or.jp)

http://jvn.jp/en/jp/JVN52248864/index.html(af854a3a-2127-422b-91ae-364da2661108)

http://jvndb.jvn.jp/jvndb/JVNDB-2015-000108(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.