CVE-2015-2953
Severity CVSS v4.0:
Pending analysis
Type:
CWE-264
Permissions, Privileges, and Access Control
Publication date:
13/06/2015
Last modified:
12/04/2025
Description
Igreks MilkyStep Light 0.94 and earlier and Professional 1.82 and earlier allows remote attackers to bypass intended access restrictions and read files via unspecified vectors, a different vulnerability than CVE-2015-2952 and CVE-2015-2958.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:igreks:milkystep_light:*:*:*:*:*:*:*:* | 0.94 (including) | |
| cpe:2.3:a:igreks:milkystep_professional:*:*:*:*:*:*:*:* | 1.82 (including) | |
| cpe:2.3:a:igreks:milkystep_professional_oem:*:*:*:*:*:*:*:* | 1.82 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://jvn.jp/en/jp/JVN16409640/995646/index.html
- http://jvn.jp/en/jp/JVN16409640/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2015-000078
- http://www.securityfocus.com/bid/75073
- http://jvn.jp/en/jp/JVN16409640/995646/index.html
- http://jvn.jp/en/jp/JVN16409640/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2015-000078
- http://www.securityfocus.com/bid/75073