CVE-2015-3140

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2015-3140
Multiple cross-site request forgery (CSRF) vulnerabilities in Synametrics Technologies SynaMan before 3.5 Build 1451, Syncrify before 3.7 Build 856, and SynTail before 1.5 Build 567

8.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

6.8 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://web.synametrics.com/SynamanVersionHistory.htm Mitigation Release Notes Vendor Advisory
https://web.synametrics.com/SyncrifyVersionHistory.htm Mitigation Release Notes Vendor Advisory
https://web.synametrics.com/SyntailVersionHistory.htm Mitigation Release Notes Vendor Advisory
http://web.synametrics.com/SynamanVersionHistory.htm Mitigation Release Notes Vendor Advisory
https://web.synametrics.com/SyncrifyVersionHistory.htm Mitigation Release Notes Vendor Advisory
https://web.synametrics.com/SyntailVersionHistory.htm Mitigation Release Notes Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:synametrics:synaman:1.0:build786:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:1.0:build805:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:1.1:build972:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.0:build1185:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.1:build1202:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.2:build1205:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.2:build1246:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.3:build1259:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.3:build1261:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.4:build1272:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1282:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1289:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1291:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1302:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1303:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1304:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1310:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1313:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1314:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1316:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1318:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1321:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1322:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1324:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.5:build1325:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.6:build1328:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.7:build1337:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.7:build1341:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:2.7:build1342:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.0:build1358:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.0:build1363:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.0:build1365:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.1:build1380:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.1:build1382:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.1:build1384:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.1:build1386:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.2:build1393:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.2:build1394:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.2:build1398:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.3:build1418:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.3:build1425:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.3:build1430:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.4:build1434:*:*:*:*:*:*
cpe:2.3:a:synametrics:synaman:3.4:build1444:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:synametrics:syncrify:1.3:build352:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:1.3:build369:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:1.3:build372:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:1.3:build375:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:1.4:build379:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:1.4:build393:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.0:build413:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.0:build415:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.1:build420:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.1:build422:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.2:build429:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.2:build432:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.3:build443:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.3:build444:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.4:build459:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.4:build463:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.5:build473:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.6:build510:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.6:build517:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:2.6:build522:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.0:build580:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.0:build591:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.0:build596:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.1:build614:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.2:build629:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.2:build630:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.2:build633:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.2:build638:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.2:build649:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.3:build682:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.3:build688:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.3:build693:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.3:build696:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.3:build700:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.3:build704:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.4:build725:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.4:build735:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.4:build741:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.4:build749:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.5:build778:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.5:build781:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.6:build800:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.6:build809:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.6:build812:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.6:build813:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.6:build814:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.6:build823:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.6:build828:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.7:build833:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.7:build834:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.7:build844:*:*:*:*:*:*
cpe:2.3:a:synametrics:syncrify:3.7:build850:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:synametrics:syntail:1.0:build420:*:*:*:*:*:*
cpe:2.3:a:synametrics:syntail:1.1:build429:*:*:*:*:*:*
cpe:2.3:a:synametrics:syntail:1.2:build445:*:*:*:*:*:*
cpe:2.3:a:synametrics:syntail:1.5:build561:*:*:*:*:*:*
History

21 Nov 2024, 02:28

Type Values Removed Values Added
References () http://web.synametrics.com/SynamanVersionHistory.htm - Mitigation, Release Notes, Vendor Advisory () http://web.synametrics.com/SynamanVersionHistory.htm - Mitigation, Release Notes, Vendor Advisory
References () https://web.synametrics.com/SyncrifyVersionHistory.htm - Mitigation, Release Notes, Vendor Advisory () https://web.synametrics.com/SyncrifyVersionHistory.htm - Mitigation, Release Notes, Vendor Advisory
References () https://web.synametrics.com/SyntailVersionHistory.htm - Mitigation, Release Notes, Vendor Advisory () https://web.synametrics.com/SyntailVersionHistory.htm - Mitigation, Release Notes, Vendor Advisory
Information

Published : 2019-11-21 22:15

Updated : 2024-11-21 02:28

NVD link : CVE-2015-3140

Mitre link : CVE-2015-3140

CVE.ORG link : CVE-2015-3140

JSON object : View

Products Affected

synametrics

  • syntail
  • synaman
  • syncrify
CWE
CWE-352

Cross-Site Request Forgery (CSRF)