CVE-2015-8157 in Broadcom and Symantec Products
Published on June 8, 2016

SQL injection vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection (SCSP) before 5.2.9 MP6, Data Center Security: Server Advanced Server (DCS:SA) 6.x before 6.5 MP1 and 6.6 before MP1, and Data Center Security: Server Advanced Server and Agents (DCS:SA) through 6.6 MP1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

NVD

Products Associated with CVE-2015-8157

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2015-8157 are published in these products:

Broadcom Symantec Critical System Protection

Symantec Data Center Security Server

Symantec Data Center Security Serverand Agents

Symantec Embedded Security Critical System Protection

Symantec Embedded Security Critical System Protection Controllers Devices

Broadcom Symantec Data Center Security Server

Broadcom Symantec Data Center Security Server Agents

Broadcom Symantec Embedded Security Critical System Protection

Broadcom Symantec Embedded Security Critical System Protection Controllers Devices

Exploit Probability

EPSS

0.41%

Percentile

60.54%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2015-8157 in Broadcom and Symantec ProductsPublished on June 8, 2016

Products Associated with CVE-2015-8157

Exploit Probability

CVE-2015-8157 in Broadcom and Symantec Products
Published on June 8, 2016