CVE-2015-7450: CVE-2015-7450

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-7450

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and mobile and social products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the InvokerTransformer class in the Apache Commons Collections library.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

IBM Cognos Business Intelligence Tivoli Common Reporting 远程代码执行漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

IBM Cognos Business Intelligence（BI）和IBM Tivoli Common Reporting（TCR）都是美国IBM公司的产品。BI是一套商业智能软件。该软件包括报表、仪表板和记分卡等，并可通过分析关键因素与关键干系人等内容，协助企业调整决策。TCR是一套基于Tivoli（轻量级目录访问协议LDAP身份基础架构）的通用报表解决方案。该方案提供定制报表、管理报表和生成报表等功能。 IBM Cognos BI中使用的IBM TCR中存在安全漏洞，该漏洞源于Java Invo

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2015-7450

#	POC Description	Source Link	Shenlong Link
1	IBM Websphere Application Server 7, 8, and 8.5 have a deserialization vulnerability in the SOAP Connector (port 8880 by default).	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2015/CVE-2015-7450.yaml	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2015-7450

Please Login to view more intelligence information

http://www-01.ibm.com/support/docview.wss?uid=swg21971758x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21972799x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21971376x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21971733x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21970575x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg21971342x_refsource_CONFIRM
http://www.securityfocus.com/bid/77653vdb-entryx_refsource_BID
https://www.exploit-db.com/exploits/41613/exploitx_refsource_EXPLOIT-DB
http://www.securitytracker.com/id/1035125vdb-entryx_refsource_SECTRACK
https://nvd.nist.gov/vuln/detail/CVE-2015-7450

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2015-7450

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2015-7450

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2015-7450

III. Intelligence Information for CVE-2015-7450

New Vulnerabilities

V. Comments for CVE-2015-7450

Leave a comment