Vulnerability Change Records for CVE-2015-2454

Change History

CPE Deprecation Remap 5/08/2019 6:11:29 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:microsoft:windows_8.1:-:-:-:*:-:-:x86:*
OR
     *cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:pro_n:*:x86:*

Initial CVE Analysis 8/17/2015 1:2:48 PM

Action Type Old Value New Value

Modified Analysis 5/14/2019 4:54:43 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_8:-:*:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_rt:-:*:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*
     *cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
     *cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
Removed CPE Configuration
OR
     *cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:x64:*
     *cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:x86:*
     *cpe:2.3:o:microsoft:windows_8:-:*:*:*:*:*:x64:*
     *cpe:2.3:o:microsoft:windows_8:-:*:*:*:*:*:x86:*
     *cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:pro_n:*:x64:*
     *cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:pro_n:*:x86:*
     *cpe:2.3:o:microsoft:windows_rt:-:*:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_rt:-:gold:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_server_2012:-:gold:*:*:*:*:*:*
     *cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:datacenter:*:*:*
     *cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:essentials:*:*:*
     *cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:standard:*:*:*
     *cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*

								
						
Removed CWE
CWE-20

								
						
Changed Reference Type
http://www.securitytracker.com/id/1033238 No Types Assigned
http://www.securitytracker.com/id/1033238 Third Party Advisory, VDB Entry
Changed Reference Type
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-080 No Types Assigned
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-080 Patch, Vendor Advisory

CPE Deprecation Remap 5/08/2019 6:11:29 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:microsoft:windows_8.1:-:-:-:*:-:-:x64:*
OR
     *cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:pro_n:*:x64:*

CVE Modified by Microsoft Corporation 9/20/2017 9:29:05 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1033238 [No Types Assigned]

CPE Deprecation Remap 5/08/2019 6:3:15 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:microsoft:windows_server_2012:r2:-:-:*:essentials:*:*:*
OR
     *cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:essentials:*:*:*

CPE Deprecation Remap 5/08/2019 6:3:15 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:microsoft:windows_server_2012:r2:-:-:*:standard:*:*:*
OR
     *cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:standard:*:*:*

CVE Translated 8/26/2015 10:45:02 PM

Action Type Old Value New Value
Added Translation

								
							
							
						
Vulnerabilidad en el controlador del modo kernel en Microsoft Windows Vista SP2, Windows Server 2008 SP2 y R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold y R2 y Windows RT Gold y 8.1, no restringe adecuadamente los niveles de suplantación, lo que permite a usuarios locales obtener privilegios a través de una aplicación manipulada, también conocida como "Windows KMD Security Feature Bypass Vulnerability".
Removed Translation
Vulnerabilidad en el controlador del modo kernel en Microsoft Windows Vista SP2, Windows Server 2008 SP2 y R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold y R2 y Windows RT Gold y 8.1, no restringe adecuadamente los niveles de suplantación, lo que permite a usuarios locales obtener privilegios a través de una aplicación manipulada, también conocida como "Vulnerabilidad de elusión del rasgo de seguridad KMD de Windows".

								
						

CVE Modified by Microsoft Corporation 10/12/2018 6:9:38 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-080 [No Types Assigned]
Removed Reference
http://technet.microsoft.com/security/bulletin/MS15-080 [Patch, Vendor Advisory]

								
						

CPE Deprecation Remap 5/08/2019 6:3:15 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:microsoft:windows_server_2012:r2:-:-:*:datacenter:*:*:*
OR
     *cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:datacenter:*:*:*