CVE-2015-8279
CVE-2015-8279
Vexday Risk Score
30Low
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 51.4%KEV nãoPoC —Nuclei —Metasploit simPatch —
Lifecycle
15 Jan 2016Published on NVD
14 Mar 2017Metasploit module available
Weaponization speed
424 daysto Metasploit module
Recommendation: Plan a near-term fix — a public PoC already exists.
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script.
Affected products
n/a · n/aReferences
https://www.kb.cert.org/vuls/id/913000