Home  >  CVE-2015-8281
CVE Details for CVE: CVE-2015-8281
Summary
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations.
Timestamps
Last major update 20-01-2016 - 19:54
Published 15-01-2016 - 03:59
Last modified 20-01-2016 - 19:54
References
Vulnerable Configurations
  • cpe:2.3:a:samsung:web_viewer:1.0.0.193:*:*:*:*:*:*:*
    cpe:2.3:a:samsung:web_viewer:1.0.0.193:*:*:*:*:*:*:*
CAPEC
Click the CAPEC title to display a description
  • An attacker obtains an authoritative or reputable signer's private signature key by exploiting a cryptographic weakness in the signature algorithm or pseudorandom number generation and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.
CWE
CWE-310
CVSS
Base
7.8
Impact
6.9
Exploitability
10.0
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE NONE NONE
CVSS3
Base
7.5
Impact
3.6
Exploitability
3.9
Access
Attack ComplexityAttack vectorPrivileges RequiredScopeUser Interaction
LOW NETWORK NONE UNCHANGED NONE
Impact
ConfidentialityIntegrityAvailability
HIGH NONE NONE
VIA4 references
cvss-vector via4
AV:N/AC:L/Au:N/C:C/I:N/A:N
cvss3-vector via4
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
refmap via4
cert-vn VU#913000