CVE-2015-1915
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2015-1915
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Endpoint Manager for Remote Control component in IBM Tivoli Endpoint Manager for Lifecycle Management 9.0.1 before IF6 and 9.1.0 before IF6 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
IBM Tivoli Endpoint Manager for Lifecycle Management Endpoint Manager for Remote Control组件安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IBM Tivoli Endpoint Manager for Lifecycle Management是美国IBM公司的一套终端控制软件。该软件可帮助用户查看和更新系统,向所有端点部署和管理补丁,并可通过持续管理修复问题。Remote Control是其中的一个远程控制组件。 IBM Tivoli Endpoint Manager for Lifecycle Management IF6之前9.0.1版本和IF6之前9.1.0版本的Endpoint Manager for Remote Control组
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2015-1915
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2015-1915
请登录查看更多情报信息。
Same Patch Batch · n/a · 2015-05-25 · 43 CVEs total
| CVE-2014-2174 | 多款Cisco TelePresence产品身份验证绕过漏洞 | |
| CVE-2015-0156 | IBM Business Process Manager Process Admin Console 跨站脚本漏洞 | |
| CVE-2015-1894 | IBM InfoSphere Optim Workload Replay 跨站请求伪造漏洞 | |
| CVE-2015-0722 | 多款Cisco TelePresence产品拒绝服务漏洞 | |
| CVE-2015-1895 | IBM InfoSphere Optim Workload Replay 权限许可和访问控制漏洞 | |
| CVE-2015-1909 | IBM InfoSphere Master Data Management Reference Data Management组件安全漏洞 | |
| CVE-2015-1910 | IBM InfoSphere Master Data Management Reference Data Management组件跨站脚本漏洞 | |
| CVE-2015-1911 | IBM Sterling Selling and Fulfillment Suite 跨站脚本漏洞 | |
| CVE-2015-1921 | IBM WebSphere Portal 开放重定向漏洞 | |
| CVE-2015-1899 | IBM WebSphere Portal 资源管理错误漏洞 | |
| CVE-2015-0713 | 多款Cisco TelePresence产品安全漏洞 | |
| CVE-2015-2122 | HP SDN VAN Controller设备拒绝服务漏洞 | |
| CVE-2015-2120 | HP SiteScope 安全漏洞 | |
| CVE-2015-0180 | IBM InfoSphere Information Server Connector Migration Tool 安全漏洞 | |
| CVE-2015-0171 | IBM Security SiteProtector System 路径遍历漏洞 | |
| CVE-2015-0170 | IBM Security SiteProtector System 安全漏洞 | |
| CVE-2015-0169 | IBM Security SiteProtector System 安全漏洞 | |
| CVE-2015-0168 | IBM Security SiteProtector System 跨站脚本漏洞 | |
| CVE-2015-0161 | IBM Security SiteProtector System SQL注入漏洞 | |
| CVE-2015-0160 | IBM Security SiteProtector System 权限许可和访问控制问题漏洞 |
Showing top 20 of 43 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2015-1915
No comments yet