CVE-2015-1590 Information

Feb 14, 2021 cve

Description

The kamcmd administrative utility and default configuration in kamailio before 4.3.0 use /tmp/kamailio_ctl.

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

http://www.openwall.com/lists/oss-security/2015/02/12/7 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=775681 https://github.com/kamailio/kamailio/blob/4.3.0/ChangeLogL2038 https://github.com/kamailio/kamailio/commit/06177b12936146d48378cc5f6c6e1b157ebd519b https://github.com/kamailio/kamailio/issues/48

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.8

Share on: