CVE-2015-2100

HIGH

WebGate Control Center and eDVR Manager - Remote Code Execution via TCPDiscover Function Buffer Overflow

Title source: llm
STIX 2.1

Description

Multiple stack-based buffer overflows in WebGate eDVR Manager and Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the (1) TCPDiscover or (2) TCPDiscover2 function in the WESPDiscovery.WESPDiscoveryCtrl.1 control.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-067/
Third Party Advisory, VDB Entry x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-057/

Scores

CVSS v3 8.8
EPSS 0.0293
EPSS Percentile 85.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (2)
webgate/control_center
webgate/edvr_manager
Published Jul 22, 2021
Tracked Since Feb 18, 2026