CVE-2015-2284
60Vexday Risk Score
Patch soon. It has a working public exploit.
ssvc Attendepss 74%
from disclosure to weapon15 days
Published on NVDMar 24
1st PoC+15d
metasploitMar 13
exploitation probability
74%top 1% of all CVEs
observed exploitation
nono source reports it
1 public exploit(s)
userlogin.jsp in SolarWinds Firewall Security Manager (FSM) before 6.6.5 HotFix1 allows remote attackers to gain privileges and execute arbitrary code via unspecified vectors, related to client session handling.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/36679unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.