cvelistv5 - cve-2015-6459

CVE-2015-6459 (GCVE-0-2015-6459)

Vulnerability from cvelistv5 – Published: 2015-09-18 22:00 – Updated: 2024-08-06 07:22

Summary

Severity ?

No CVSS data available.

CWE

Assigner

icscert

References

URL

ICSA-15-258-03

Vulnerability from csaf_cisa - Published: 2015-06-18 06:00 - Updated: 2025-06-05 21:54

Summary

GE MDS PulseNET Vulnerabilities

Notes

Legal Notice

All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.

CISA Disclaimer

This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov

Recommended Practices

CISA recommends users take defensive measures to minimize the risk of exploitation.

Recommended Practices

Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the internet.

Recommended Practices

Locate control system networks and remote devices behind firewalls and isolating them from business networks.

Recommended Practices

When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs). Recognize VPNs may have vulnerabilities, should be updated to the most recent version available, and are only as secure as the connected devices.

Recommended Practices

CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.

Recommended Practices

CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

Recommended Practices

CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.

Recommended Practices

Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.

Recommended Practices

Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.

Recommended Practices

CISA also recommends users take the following measures to protect themselves from social engineering attacks: Do not click web links or open attachments in unsolicited email messages. Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams. Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited",
      "tlp": {
        "label": "WHITE",
        "url": "https://us-cert.cisa.gov/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
        "title": "Legal Notice"
      },
      {
        "category": "general",
        "text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
        "title": "CISA Disclaimer"
      },
      {
        "category": "general",
        "text": "CISA recommends users take defensive measures to minimize the risk of exploitation.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the internet.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Locate control system networks and remote devices behind firewalls and isolating them from business networks.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs). Recognize VPNs may have vulnerabilities, should be updated to the most recent version available, and are only as secure as the connected devices.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA also recommends users take the following measures to protect themselves from social engineering attacks: Do not click web links or open attachments in unsolicited email messages. Refer to Recognizing and Avoiding Email Scams for more information on avoiding email scams. Refer to Avoiding Social Engineering and Phishing Attacks for more information on social engineering attacks.",
        "title": "Recommended Practices"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "central@cisa.dhs.gov",
      "name": "CISA",
      "namespace": "https://www.cisa.gov/"
    },
    "references": [
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-15-258-03 JSON",
        "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2015/icsa-15-258-03.json"
      },
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-15-258-03 - Web Version",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-15-258-03"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/topics/industrial-control-systems"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/sites/default/files/publications/emailscams0905.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/uscert/ncas/tips/ST04-014"
      }
    ],
    "title": "GE MDS PulseNET Vulnerabilities",
    "tracking": {
      "current_release_date": "2025-06-05T21:54:12.344535Z",
      "generator": {
        "date": "2025-06-05T21:54:12.344446Z",
        "engine": {
          "name": "CISA CSAF Generator",
          "version": "1.0.0"
        }
      },
      "id": "ICSA-15-258-03",
      "initial_release_date": "2015-06-18T06:00:00.000000Z",
      "revision_history": [
        {
          "date": "2015-06-18T06:00:00.000000Z",
          "legacy_version": "Initial",
          "number": "1",
          "summary": "Initial Publication"
        },
        {
          "date": "2025-06-05T21:54:12.344535Z",
          "legacy_version": "CSAF Conversion",
          "number": "2",
          "summary": "Advisory converted into a CSAF"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c=3.1.3",
                "product": {
                  "name": "GE MDS PulseNET Enterprise: \u003c=3.1.3",
                  "product_id": "CSAFPID-0001"
                }
              }
            ],
            "category": "product_name",
            "name": "MDS PulseNET Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c=3.1.3",
                "product": {
                  "name": "GE MDS PulseNET: \u003c=3.1.3",
                  "product_id": "CSAFPID-0002"
                }
              }
            ],
            "category": "product_name",
            "name": "MDS PulseNET"
          }
        ],
        "category": "vendor",
        "name": "GE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2015-6459",
      "cwe": {
        "id": "CWE-23",
        "name": "Relative Path Traversal"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 allows remote attackers to read or delete arbitrary files via a full pathname.",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "GE has produced a new version for the MDS PulseNET and MDS PulseNET Enterprise Network Management Software, Version 3.1.5, to resolve the identified vulnerabilities. GE recommends installing the new version as soon as possible.",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        },
        {
          "category": "mitigation",
          "details": "GE\u2019s new version of MDS PulseNET is available at the following location: (http://www.gedigitalenergy.com/Communications/MDS/PulseNET_Download.aspx)",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "http://www.gedigitalenergy.com/Communications/MDS/PulseNET_Download.aspx"
        },
        {
          "category": "mitigation",
          "details": "GE\u2019s new version of MDS PulseNET Enterprise is available at the following location: (http://www.gedigitalenergy.com/Communications/MDS/PulseNETEnt_Download.aspx)",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "http://www.gedigitalenergy.com/Communications/MDS/PulseNETEnt_Download.aspx"
        },
        {
          "category": "mitigation",
          "details": "GE has released a security bulletin that contains additional information, which is available at the following location: (http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9)",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9"
        },
        {
          "category": "mitigation",
          "details": "For additional information about the vulnerability or the new version of MDS PulseNET and MDS PulseNET Enterprise Network Management Systems, contact GE MDS technical support at + 1-800-547-8629 or (mailto:ge4service@ge.com).",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "mailto:ge4service@ge.com"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "baseScore": 9.4,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:C",
            "version": "2.0"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ]
    },
    {
      "cve": "CVE-2015-6456",
      "cwe": {
        "id": "CWE-798",
        "name": "Use of Hard-coded Credentials"
      },
      "notes": [
        {
          "category": "summary",
          "text": "GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 have hardcoded credentials for a support account, which allows remote attackers to obtain administrative access, and consequently execute arbitrary code, by leveraging knowledge of the password.",
          "title": "Vulnerability Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "GE has produced a new version for the MDS PulseNET and MDS PulseNET Enterprise Network Management Software, Version 3.1.5, to resolve the identified vulnerabilities. GE recommends installing the new version as soon as possible.",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        },
        {
          "category": "mitigation",
          "details": "GE\u2019s new version of MDS PulseNET is available at the following location: (http://www.gedigitalenergy.com/Communications/MDS/PulseNET_Download.aspx)",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "http://www.gedigitalenergy.com/Communications/MDS/PulseNET_Download.aspx"
        },
        {
          "category": "mitigation",
          "details": "GE\u2019s new version of MDS PulseNET Enterprise is available at the following location: (http://www.gedigitalenergy.com/Communications/MDS/PulseNETEnt_Download.aspx)",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "http://www.gedigitalenergy.com/Communications/MDS/PulseNETEnt_Download.aspx"
        },
        {
          "category": "mitigation",
          "details": "GE has released a security bulletin that contains additional information, which is available at the following location: (http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9)",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9"
        },
        {
          "category": "mitigation",
          "details": "For additional information about the vulnerability or the new version of MDS PulseNET and MDS PulseNET Enterprise Network Management Systems, contact GE MDS technical support at + 1-800-547-8629 or (mailto:ge4service@ge.com).",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ],
          "url": "mailto:ge4service@ge.com"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "baseScore": 9.0,
            "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
            "version": "2.0"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002"
          ]
        }
      ]
    }
  ]
}

VAR-201509-0299

Vulnerability from variot - Updated: 2023-12-18 12:20

Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 allows remote attackers to read or delete arbitrary files via a full pathname. Authentication is not required to exploit this vulnerability.The specific flaw exists within the FileDownloadServlet. By specifying a filename including directory traversal, an attacker can read and then delete an arbitrary file on the system. The read and subsequent deletion will be performed under the context of SYSTEM. GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise are products of General Electric (GE). GE Digital Energy MDS PulseNET is a software application for monitoring industrial communications network equipment. MDS PulseNET Enterprise is one of the enterprise editions. This may aid in further attacks

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201509-0299",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "mds pulsenet",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "ge",
        "version": "3.1.3"
      },
      {
        "model": "mds pulsenet",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "general electric",
        "version": "3.1.5"
      },
      {
        "model": "mds pulsenet",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "general electric",
        "version": "enterprise 3.1.5"
      },
      {
        "model": "mds pulsenet",
        "scope": null,
        "trust": 0.7,
        "vendor": "ge",
        "version": null
      },
      {
        "model": "mds pulsenet",
        "scope": null,
        "trust": 0.6,
        "vendor": "general electric",
        "version": null
      },
      {
        "model": "mds pulsenet",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ge",
        "version": "3.1.3"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-15-439"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-6459"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:ge:mds_pulsenet:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.1.3",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ge:mds_pulsenet:*:*:*:*:enterprise:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.1.3",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2015-6459"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Andrea Micalizzi (rgod)",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-15-439"
      }
    ],
    "trust": 0.7
  },
  "cve": "CVE-2015-6459",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 10.0,
            "confidentialityImpact": "Complete",
            "exploitabilityScore": null,
            "id": "CVE-2015-6459",
            "impactScore": null,
            "integrityImpact": "Complete",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "ZDI",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.4,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2015-6459",
            "impactScore": 9.2,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "HIGH",
            "trust": 0.7,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.4,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2015-06254",
            "impactScore": 9.2,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:N/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2015-6459",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "ZDI",
            "id": "CVE-2015-6459",
            "trust": 0.7,
            "value": "HIGH"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2015-06254",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201509-379",
            "trust": 0.6,
            "value": "CRITICAL"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-15-439"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-6459"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 allows remote attackers to read or delete arbitrary files via a full pathname. Authentication is not required to exploit this vulnerability.The specific flaw exists within the FileDownloadServlet. By specifying a filename including directory traversal, an attacker can read and then delete an arbitrary file on the system. The read and subsequent deletion will be performed under the context of SYSTEM. GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise are products of General Electric (GE). GE Digital Energy MDS PulseNET is a software application for monitoring industrial communications network equipment. MDS PulseNET Enterprise is one of the enterprise editions. This may aid in further  attacks",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2015-6459"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      },
      {
        "db": "ZDI",
        "id": "ZDI-15-439"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "db": "BID",
        "id": "76756"
      }
    ],
    "trust": 3.06
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2015-6459",
        "trust": 4.0
      },
      {
        "db": "ICS CERT",
        "id": "ICSA-15-258-03",
        "trust": 3.0
      },
      {
        "db": "ZDI",
        "id": "ZDI-15-439",
        "trust": 2.9
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-004925",
        "trust": 0.8
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-2906",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201509-379",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "76756",
        "trust": 0.3
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-15-439"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "db": "BID",
        "id": "76756"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-6459"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ]
  },
  "id": "VAR-201509-0299",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      }
    ],
    "trust": 1.1714286
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "ICS"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      }
    ]
  },
  "last_update_date": "2023-12-18T12:20:46.625000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "MDS PulseNet Support Documents",
        "trust": 0.8,
        "url": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9"
      },
      {
        "title": "GE has issued an update to correct this vulnerability.",
        "trust": 0.7,
        "url": "https://ics-cert.us-cert.gov/advisories/icsa-15-258-03"
      },
      {
        "title": "Patch for GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise Absolute Path Traversal Vulnerability",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/64557"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-15-439"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-22",
        "trust": 1.8
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-6459"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 3.7,
        "url": "https://ics-cert.us-cert.gov/advisories/icsa-15-258-03"
      },
      {
        "trust": 2.2,
        "url": "http://zerodayinitiative.com/advisories/zdi-15-439/"
      },
      {
        "trust": 1.6,
        "url": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-6459"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-6459"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-15-439"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-6459"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "ZDI",
        "id": "ZDI-15-439"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "db": "BID",
        "id": "76756"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-6459"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2015-09-16T00:00:00",
        "db": "ZDI",
        "id": "ZDI-15-439"
      },
      {
        "date": "2015-09-29T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "date": "2015-09-15T00:00:00",
        "db": "BID",
        "id": "76756"
      },
      {
        "date": "2015-09-29T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      },
      {
        "date": "2015-09-18T22:59:07.013000",
        "db": "NVD",
        "id": "CVE-2015-6459"
      },
      {
        "date": "2015-09-21T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2015-09-16T00:00:00",
        "db": "ZDI",
        "id": "ZDI-15-439"
      },
      {
        "date": "2015-09-29T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "date": "2015-11-03T19:14:00",
        "db": "BID",
        "id": "76756"
      },
      {
        "date": "2015-09-29T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-004925"
      },
      {
        "date": "2015-09-23T18:53:12.897000",
        "db": "NVD",
        "id": "CVE-2015-6459"
      },
      {
        "date": "2015-09-21T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise Absolute Path Traversal Vulnerability",
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-06254"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ],
    "trust": 1.2
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "path traversal",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201509-379"
      }
    ],
    "trust": 0.6
  }
}

GSD-2015-6459

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2015-6459

Aliases

CVE-2015-6459

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2015-6459",
    "description": "Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 allows remote attackers to read or delete arbitrary files via a full pathname.",
    "id": "GSD-2015-6459"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2015-6459"
      ],
      "details": "Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 allows remote attackers to read or delete arbitrary files via a full pathname.",
      "id": "GSD-2015-6459",
      "modified": "2023-12-13T01:20:04.124197Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "ics-cert@hq.dhs.gov",
        "ID": "CVE-2015-6459",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 allows remote attackers to read or delete arbitrary files via a full pathname."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9",
            "refsource": "CONFIRM",
            "url": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9"
          },
          {
            "name": "http://zerodayinitiative.com/advisories/ZDI-15-439/",
            "refsource": "MISC",
            "url": "http://zerodayinitiative.com/advisories/ZDI-15-439/"
          },
          {
            "name": "https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03",
            "refsource": "MISC",
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:ge:mds_pulsenet:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.1.3",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ge:mds_pulsenet:*:*:*:*:enterprise:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.1.3",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "ics-cert@hq.dhs.gov",
          "ID": "CVE-2015-6459"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 allows remote attackers to read or delete arbitrary files via a full pathname."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-22"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03",
              "refsource": "MISC",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03"
            },
            {
              "name": "http://zerodayinitiative.com/advisories/ZDI-15-439/",
              "refsource": "MISC",
              "tags": [],
              "url": "http://zerodayinitiative.com/advisories/ZDI-15-439/"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2015-09-23T18:53Z",
      "publishedDate": "2015-09-18T22:59Z"
    }
  }
}

FKIE_CVE-2015-6459

Vulnerability from fkie_nvd - Published: 2015-09-18 22:59 - Updated: 2025-04-12 10:46

Severity ?

Summary

References

URL	Tags
ics-cert@hq.dhs.gov	http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet&type=9	Vendor Advisory
ics-cert@hq.dhs.gov	http://zerodayinitiative.com/advisories/ZDI-15-439/
ics-cert@hq.dhs.gov	https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet&type=9	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://zerodayinitiative.com/advisories/ZDI-15-439/
af854a3a-2127-422b-91ae-364da2661108	https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03	Third Party Advisory, US Government Resource

Impacted products

	Vendor	Product	Version
	ge	mds_pulsenet	*
	ge	mds_pulsenet	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:ge:mds_pulsenet:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1538CC5-82FE-4847-A9E1-AA90E85D5057",
              "versionEndIncluding": "3.1.3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ge:mds_pulsenet:*:*:*:*:enterprise:*:*:*",
              "matchCriteriaId": "3A730B4B-9A48-4F92-8730-ECF75F8F5DE1",
              "versionEndIncluding": "3.1.3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 allows remote attackers to read or delete arbitrary files via a full pathname."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de salto de ruta absoluta en la funcionalidad de descarga en FileDownloadServlet en GE Digital Energy MDS PulseNET y MDS PulseNET Enterprise en versiones anteriores a 3.1.5, permite a atacantes remotos leer o eliminar archivos arbitrarios a trav\u00e9s de un nombre de ruta completo."
    }
  ],
  "id": "CVE-2015-6459",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2015-09-18T22:59:07.013",
  "references": [
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9"
    },
    {
      "source": "ics-cert@hq.dhs.gov",
      "url": "http://zerodayinitiative.com/advisories/ZDI-15-439/"
    },
    {
      "source": "ics-cert@hq.dhs.gov",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://zerodayinitiative.com/advisories/ZDI-15-439/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03"
    }
  ],
  "sourceIdentifier": "ics-cert@hq.dhs.gov",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-22"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CNVD-2015-06254

Vulnerability from cnvd - Published: 2015-09-29

Title

GE Digital Energy MDS PulseNET和MDS PulseNET Enterprise绝对路径遍历漏洞

Description

GE Digital Energy MDS PulseNET和MDS PulseNET Enterprise都是美国通用电气（GE）公司的产品。GE Digital Energy MDS PulseNET是一套监控工业通讯网络设备的软件应用程序。MDS PulseNET Enterprise是其中的一个企业版。 GE Digital Energy MDS PulseNET和MDS PulseNET Enterprise 3.1.5之前版本的FileDownloadServlet中的下载功能存在绝对路径遍历漏洞。远程攻击者可通过完整的路径名利用该漏洞读取或删除任意文件。

Severity

高

Patch Name

GE Digital Energy MDS PulseNET和MDS PulseNET Enterprise绝对路径遍历漏洞的补丁

Patch Description

Formal description

用户可参考如下供应商提供的安全公告获得补丁信息： https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03

Reference

https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03 http://zerodayinitiative.com/advisories/ZDI-15-439/

Impacted products

Name
General Electric Company MDS PulseNET

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-6459"
    }
  },
  "description": "GE Digital Energy MDS PulseNET\u548cMDS PulseNET Enterprise\u90fd\u662f\u7f8e\u56fd\u901a\u7528\u7535\u6c14\uff08GE\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002GE Digital Energy MDS PulseNET\u662f\u4e00\u5957\u76d1\u63a7\u5de5\u4e1a\u901a\u8baf\u7f51\u7edc\u8bbe\u5907\u7684\u8f6f\u4ef6\u5e94\u7528\u7a0b\u5e8f\u3002MDS PulseNET Enterprise\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u4f01\u4e1a\u7248\u3002\r\n\r\nGE Digital Energy MDS PulseNET\u548cMDS PulseNET Enterprise 3.1.5\u4e4b\u524d\u7248\u672c\u7684FileDownloadServlet\u4e2d\u7684\u4e0b\u8f7d\u529f\u80fd\u5b58\u5728\u7edd\u5bf9\u8def\u5f84\u904d\u5386\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5b8c\u6574\u7684\u8def\u5f84\u540d\u5229\u7528\u8be5\u6f0f\u6d1e\u8bfb\u53d6\u6216\u5220\u9664\u4efb\u610f\u6587\u4ef6\u3002",
  "discovererName": "Andrea Micalizzi (rgod)",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://ics-cert.us-cert.gov/advisories/ICSA-15-258-03",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-06254",
  "openTime": "2015-09-29",
  "patchDescription": "GE Digital Energy MDS PulseNET\u548cMDS PulseNET Enterprise\u90fd\u662f\u7f8e\u56fd\u901a\u7528\u7535\u6c14\uff08GE\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002GE Digital Energy MDS PulseNET\u662f\u4e00\u5957\u76d1\u63a7\u5de5\u4e1a\u901a\u8baf\u7f51\u7edc\u8bbe\u5907\u7684\u8f6f\u4ef6\u5e94\u7528\u7a0b\u5e8f\u3002MDS PulseNET Enterprise\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u4f01\u4e1a\u7248\u3002 \r\n\r\nGE Digital Energy MDS PulseNET\u548cMDS PulseNET Enterprise 3.1.5\u4e4b\u524d\u7248\u672c\u7684FileDownloadServlet\u4e2d\u7684\u4e0b\u8f7d\u529f\u80fd\u5b58\u5728\u7edd\u5bf9\u8def\u5f84\u904d\u5386\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u5b8c\u6574\u7684\u8def\u5f84\u540d\u5229\u7528\u8be5\u6f0f\u6d1e\u8bfb\u53d6\u6216\u5220\u9664\u4efb\u610f\u6587\u4ef6\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "GE Digital Energy MDS PulseNET\u548cMDS PulseNET Enterprise\u7edd\u5bf9\u8def\u5f84\u904d\u5386\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "General Electric Company MDS PulseNET"
  },
  "referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03\r\nhttp://zerodayinitiative.com/advisories/ZDI-15-439/",
  "serverity": "\u9ad8",
  "submitTime": "2015-09-23",
  "title": "GE Digital Energy MDS PulseNET\u548cMDS PulseNET Enterprise\u7edd\u5bf9\u8def\u5f84\u904d\u5386\u6f0f\u6d1e"
}

GHSA-7RJ6-GXVX-C3VJ

Vulnerability from github – Published: 2022-05-17 04:06 – Updated: 2025-04-12 12:52

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2015-6459"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-22"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2015-09-18T22:59:00Z",
    "severity": "HIGH"
  },
  "details": "Absolute path traversal vulnerability in the download feature in FileDownloadServlet in GE Digital Energy MDS PulseNET and MDS PulseNET Enterprise before 3.1.5 allows remote attackers to read or delete arbitrary files via a full pathname.",
  "id": "GHSA-7rj6-gxvx-c3vj",
  "modified": "2025-04-12T12:52:07Z",
  "published": "2022-05-17T04:06:51Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-6459"
    },
    {
      "type": "WEB",
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-15-258-03"
    },
    {
      "type": "WEB",
      "url": "http://www.gedigitalenergy.com/app/resources.aspx?prod=pulsenet\u0026type=9"
    },
    {
      "type": "WEB",
      "url": "http://zerodayinitiative.com/advisories/ZDI-15-439"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2015-6459 (GCVE-0-2015-6459)

ICSA-15-258-03

VAR-201509-0299

GSD-2015-6459

FKIE_CVE-2015-6459

CNVD-2015-06254

GHSA-7RJ6-GXVX-C3VJ

Tags

Sightings

Nomenclature