CVE-2015-7253

Commvault Edge Server 10 R2 - Remote Code Execution via Serialized Cookie Data

Title source: llm
STIX 2.1

Description

The Web Console in Commvault Edge Server 10 R2 allows remote attackers to execute arbitrary OS commands via crafted serialized data in a cookie.

References (1)

Core 1
Core References
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/866432

Scores

EPSS 0.0432
EPSS Percentile 90.0%

Details

CWE
CWE-78
Status published
Products (1)
commvault/edge_server 10 r2
Published Nov 04, 2015
Tracked Since Feb 18, 2026