cbcvebase.
CVE-2015-4282
published 2015-11-06

CVE-2015-4282: Cisco Mobility Services Engine (MSE) through 8.0.120.7 uses weak permissions for unspecified binary files, which allows local users to obtain root privileges…

PriorityP420medium6.9CVSS 2.0
AVLACMAuNCCICAC
EPSS
0.39%
30.8th percentile
Cisco Mobility Services Engine (MSE) through 8.0.120.7 uses weak permissions for unspecified binary files, which allows local users to obtain root privileges by writing to a file, aka Bug ID CSCuv40504.

Affected

15 ranges
VendorProductVersion rangeFixed in
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine
ciscomobility_services_engine

CVSS provenance

nvdv2.06.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
vendor_cisco6.8MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.