VAR-201512-0224
Vulnerability from variot - Updated: 2023-12-18 12:51The F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted integer value to the (1) AttachToSS, (2) CopyAll, (3) CopyRange, (4) CopyRangeEx, or (5) SwapTable method, a different vulnerability than CVE-2015-7918. (1) AttachToSS The method (2) CopyAll The method (3) CopyRange The method (4) CopyRangeEx The method (5) SwapTable The method. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the implementation of the CopyAll method of the F1BookView ActiveX control. The method accepts an integer value and interprets it as the address of a structure in memory. An attacker can leverage this vulnerability to achieve code execution under the context of the process. Schneider Electric ProClima is the thermal calculation software of Schneider Electric, France. Failed exploit attempts will likely result in denial-of-service conditions
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201512-0224",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "proclima",
"scope": null,
"trust": 2.8,
"vendor": "schneider electric",
"version": null
},
{
"model": "proclima",
"scope": "lte",
"trust": 1.0,
"vendor": "schneider electric",
"version": "6.1"
},
{
"model": "proclima",
"scope": "eq",
"trust": 0.9,
"vendor": "schneider electric",
"version": "6.1"
},
{
"model": "proclima",
"scope": "lt",
"trust": 0.8,
"vendor": "schneider electric",
"version": "6.2"
},
{
"model": "electric proclima",
"scope": "lt",
"trust": 0.6,
"vendor": "schneider",
"version": "6.2"
},
{
"model": "proclima",
"scope": "eq",
"trust": 0.3,
"vendor": "schneider electric",
"version": "6.0"
},
{
"model": "proclima",
"scope": "ne",
"trust": 0.3,
"vendor": "schneider electric",
"version": "6.2"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "proclima",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"db": "ZDI",
"id": "ZDI-15-626"
},
{
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"db": "ZDI",
"id": "ZDI-15-627"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"db": "BID",
"id": "79802"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"db": "NVD",
"id": "CVE-2015-8561"
},
{
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:schneider-electric:proclima:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "6.1",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2015-8561"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Ariele Caltabiano (kimiya)",
"sources": [
{
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"db": "ZDI",
"id": "ZDI-15-627"
}
],
"trust": 2.1
},
"cve": "CVE-2015-8561",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": null,
"accessComplexity": "Medium",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 6.8,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2015-8561",
"impactScore": null,
"integrityImpact": "Partial",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 3.6,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": false,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": true,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CNVD-2015-08395",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "694110a2-2351-11e6-abef-000c29c66e3d",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "VHN-86522",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "ZDI",
"id": "CVE-2015-8561",
"trust": 2.8,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2015-8561",
"trust": 1.8,
"value": "MEDIUM"
},
{
"author": "CNVD",
"id": "CNVD-2015-08395",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201512-442",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d",
"trust": 0.2,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-86522",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"db": "ZDI",
"id": "ZDI-15-626"
},
{
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"db": "ZDI",
"id": "ZDI-15-627"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"db": "VULHUB",
"id": "VHN-86522"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"db": "NVD",
"id": "CVE-2015-8561"
},
{
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted integer value to the (1) AttachToSS, (2) CopyAll, (3) CopyRange, (4) CopyRangeEx, or (5) SwapTable method, a different vulnerability than CVE-2015-7918. (1) AttachToSS The method (2) CopyAll The method (3) CopyRange The method (4) CopyRangeEx The method (5) SwapTable The method. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the implementation of the CopyAll method of the F1BookView ActiveX control. The method accepts an integer value and interprets it as the address of a structure in memory. An attacker can leverage this vulnerability to achieve code execution under the context of the process. Schneider Electric ProClima is the thermal calculation software of Schneider Electric, France. Failed exploit attempts will likely result in denial-of-service conditions",
"sources": [
{
"db": "NVD",
"id": "CVE-2015-8561"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"db": "ZDI",
"id": "ZDI-15-626"
},
{
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"db": "ZDI",
"id": "ZDI-15-627"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"db": "BID",
"id": "79802"
},
{
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"db": "VULHUB",
"id": "VHN-86522"
}
],
"trust": 5.22
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2015-8561",
"trust": 6.4
},
{
"db": "ZDI",
"id": "ZDI-15-628",
"trust": 3.3
},
{
"db": "ZDI",
"id": "ZDI-15-629",
"trust": 2.7
},
{
"db": "ZDI",
"id": "ZDI-15-626",
"trust": 2.7
},
{
"db": "ICS CERT",
"id": "ICSA-15-335-02",
"trust": 2.5
},
{
"db": "ZDI",
"id": "ZDI-15-627",
"trust": 2.4
},
{
"db": "SCHNEIDER",
"id": "SEVD-2015-329-01",
"trust": 2.0
},
{
"db": "CNNVD",
"id": "CNNVD-201512-442",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2015-08395",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2015-006425",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-3054",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-3056",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-3053",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-3055",
"trust": 0.7
},
{
"db": "BID",
"id": "79802",
"trust": 0.4
},
{
"db": "IVD",
"id": "694110A2-2351-11E6-ABEF-000C29C66E3D",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-86522",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"db": "ZDI",
"id": "ZDI-15-626"
},
{
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"db": "ZDI",
"id": "ZDI-15-627"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"db": "VULHUB",
"id": "VHN-86522"
},
{
"db": "BID",
"id": "79802"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"db": "NVD",
"id": "CVE-2015-8561"
},
{
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
]
},
"id": "VAR-201512-0224",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"db": "VULHUB",
"id": "VHN-86522"
}
],
"trust": 1.9
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
}
]
},
"last_update_date": "2023-12-18T12:51:37.968000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Schneider Electric has issued an update to correct this vulnerability.",
"trust": 2.8,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-15-335-02"
},
{
"title": "SEVD-2015-329-01",
"trust": 0.8,
"url": "http://download.schneider-electric.com/files?p_doc_ref=sevd-2015-329-01"
},
{
"title": "Schneider Electric ProClima denial of service vulnerability patch",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/68764"
},
{
"title": "Schneider Electric ProClima F1 Bookview Buffer Overflow Vulnerability Fix",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=59231"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"db": "ZDI",
"id": "ZDI-15-626"
},
{
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"db": "ZDI",
"id": "ZDI-15-627"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-119",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-86522"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"db": "NVD",
"id": "CVE-2015-8561"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 5.3,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-15-335-02"
},
{
"trust": 2.6,
"url": "http://www.zerodayinitiative.com/advisories/zdi-15-628"
},
{
"trust": 2.0,
"url": "http://download.schneider-electric.com/files?p_doc_ref=sevd-2015-329-01"
},
{
"trust": 2.0,
"url": "http://www.zerodayinitiative.com/advisories/zdi-15-626"
},
{
"trust": 2.0,
"url": "http://www.zerodayinitiative.com/advisories/zdi-15-629"
},
{
"trust": 1.7,
"url": "http://www.zerodayinitiative.com/advisories/zdi-15-627"
},
{
"trust": 1.4,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-8561"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-8561"
},
{
"trust": 0.6,
"url": "http://support.microsoft.com/kb/240797"
},
{
"trust": 0.3,
"url": "http://www.schneider-electric.com/en/product-range-download/2560-proclima"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"db": "ZDI",
"id": "ZDI-15-626"
},
{
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"db": "ZDI",
"id": "ZDI-15-627"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"db": "VULHUB",
"id": "VHN-86522"
},
{
"db": "BID",
"id": "79802"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"db": "NVD",
"id": "CVE-2015-8561"
},
{
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"db": "ZDI",
"id": "ZDI-15-626"
},
{
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"db": "ZDI",
"id": "ZDI-15-627"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"db": "VULHUB",
"id": "VHN-86522"
},
{
"db": "BID",
"id": "79802"
},
{
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"db": "NVD",
"id": "CVE-2015-8561"
},
{
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-12-22T00:00:00",
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"date": "2015-12-08T00:00:00",
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"date": "2015-12-08T00:00:00",
"db": "ZDI",
"id": "ZDI-15-626"
},
{
"date": "2015-12-08T00:00:00",
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"date": "2015-12-08T00:00:00",
"db": "ZDI",
"id": "ZDI-15-627"
},
{
"date": "2015-12-22T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"date": "2015-12-15T00:00:00",
"db": "VULHUB",
"id": "VHN-86522"
},
{
"date": "2015-11-25T00:00:00",
"db": "BID",
"id": "79802"
},
{
"date": "2015-12-17T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"date": "2015-12-15T05:59:09.797000",
"db": "NVD",
"id": "CVE-2015-8561"
},
{
"date": "2015-12-16T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2015-12-08T00:00:00",
"db": "ZDI",
"id": "ZDI-15-629"
},
{
"date": "2015-12-08T00:00:00",
"db": "ZDI",
"id": "ZDI-15-626"
},
{
"date": "2015-12-08T00:00:00",
"db": "ZDI",
"id": "ZDI-15-628"
},
{
"date": "2015-12-08T00:00:00",
"db": "ZDI",
"id": "ZDI-15-627"
},
{
"date": "2015-12-22T00:00:00",
"db": "CNVD",
"id": "CNVD-2015-08395"
},
{
"date": "2015-12-16T00:00:00",
"db": "VULHUB",
"id": "VHN-86522"
},
{
"date": "2015-11-25T00:00:00",
"db": "BID",
"id": "79802"
},
{
"date": "2015-12-17T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2015-006425"
},
{
"date": "2015-12-16T13:22:28.820000",
"db": "NVD",
"id": "CVE-2015-8561"
},
{
"date": "2015-12-18T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Schneider Electric ProClima Denial of service vulnerability",
"sources": [
{
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNVD",
"id": "CNVD-2015-08395"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Buffer overflow",
"sources": [
{
"db": "IVD",
"id": "694110a2-2351-11e6-abef-000c29c66e3d"
},
{
"db": "CNNVD",
"id": "CNNVD-201512-442"
}
],
"trust": 0.8
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…