CA Spectrum 9.2.x and 9.3.x before 9.3 H02 does not properly validate serialized Java objects, which allows remote authenticated users to obtain administrative privileges via crafted object data.
References
Configurations
Configuration 1 (hide)
|
History
12 Apr 2021, 14:17
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:ca:spectrum:9.3:*:*:*:*:*:*:* |
cpe:2.3:a:broadcom:spectrum:9.3:*:*:*:*:*:*:* cpe:2.3:a:broadcom:spectrum:9.2:*:*:*:*:*:*:* |
Information
Published : 2015-04-08 01:59
Updated : 2023-12-10 11:31
NVD link : CVE-2015-2828
Mitre link : CVE-2015-2828
CVE.ORG link : CVE-2015-2828
JSON object : View
Products Affected
broadcom
- spectrum
CWE
CWE-264
Permissions, Privileges, and Access Controls