What is the severity of CVE-2015-8799?

CVE-2015-8799 has been classified as a critical severity vulnerability.

How do I fix CVE-2015-8799?

To mitigate CVE-2015-8799, upgrade to the latest version of Symantec Critical System Protection or the affected management servers.

What products are affected by CVE-2015-8799?

CVE-2015-8799 affects various versions of Broadcom Symantec Critical System Protection and Symantec Data Center Security Server.

What type of vulnerability is CVE-2015-8799?

CVE-2015-8799 is a directory traversal vulnerability.

When was CVE-2015-8799 disclosed?

CVE-2015-8799 was disclosed in 2015.

Vulnerability/
CVE-2015-8799

high

7.6

CWE

8/6/2016

6/8/2024

CVE-2015-8799: Path Traversal

First published: Wed Jun 08 2016(Updated: )

Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection (SCSP) before 5.2.9 MP6, Data Center Security: Server Advanced Server (DCS:SA) 6.x before 6.5 MP1 and 6.6 before MP1, and Data Center Security: Server Advanced Server and Agents (DCS:SA) through 6.6 MP1 allows remote authenticated users to write update-package data to arbitrary agent locations via unspecified vectors.

Credit: secure@symantec.com

Affected Software	Affected Version	How to fix
Broadcom Symantec Critical System Protection	<=5.2.9
Broadcom Symantec Data Center Security	>=6.0.0<6.5.0
Broadcom Symantec Data Center Security	=6.5.0
Broadcom Symantec Data Center Security	=6.6.0
Broadcom Symantec Data Center Security	=6.6.0
Broadcom Symantec Critical System Protection	<=1.0
Broadcom Symantec Embedded Security Critical System Protection	=6.5.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-8799?
CVE-2015-8799 has been classified as a critical severity vulnerability.
How do I fix CVE-2015-8799?
To mitigate CVE-2015-8799, upgrade to the latest version of Symantec Critical System Protection or the affected management servers.
What products are affected by CVE-2015-8799?
CVE-2015-8799 affects various versions of Broadcom Symantec Critical System Protection and Symantec Data Center Security Server.
What type of vulnerability is CVE-2015-8799?
CVE-2015-8799 is a directory traversal vulnerability.
When was CVE-2015-8799 disclosed?
CVE-2015-8799 was disclosed in 2015.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/last-modified-date
agent/weakness
agent/event
agent/description
agent/first-publish-date
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/broadcom
canonical/broadcom symantec critical system protection
version/broadcom symantec critical system protection/5.2.9
canonical/broadcom symantec data center security
version/broadcom symantec data center security/6.0.0
version/broadcom symantec data center security/6.5.0
version/broadcom symantec data center security/6.6.0
version/broadcom symantec critical system protection/1.0
canonical/broadcom symantec embedded security critical system protection
version/broadcom symantec embedded security critical system protection/6.5.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.