CVE-2015-2958
Severity CVSS v4.0:
Pending analysis
Type:
CWE-264
Permissions, Privileges, and Access Control
Publication date:
13/06/2015
Last modified:
12/04/2025
Description
Igreks MilkyStep Light 0.94 and earlier and Professional 1.82 and earlier allows remote attackers to bypass intended access restrictions and modify settings via unspecified vectors, a different vulnerability than CVE-2015-2952 and CVE-2015-2953.
Impact
Base Score 2.0
6.40
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:igreks:milkystep_light:*:*:*:*:*:*:*:* | 0.94 (including) | |
| cpe:2.3:a:igreks:milkystep_professional:*:*:*:*:*:*:*:* | 1.82 (including) | |
| cpe:2.3:a:igreks:milkystep_professional_oem:*:*:*:*:*:*:*:* | 1.82 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://jvn.jp/en/jp/JVN74280258/995646/index.html
- http://jvn.jp/en/jp/JVN74280258/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2015-000083
- http://www.securityfocus.com/bid/75078
- http://jvn.jp/en/jp/JVN74280258/995646/index.html
- http://jvn.jp/en/jp/JVN74280258/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2015-000083
- http://www.securityfocus.com/bid/75078