ABOUT
Overview
Use Cases
Mapping Methodology
Scoring Rubric
Related Projects
ATT&CK OBJECTS
Matrix
Tactics
Techniques
MAPPING FRAMEWORKS
About Mappings
Amazon Web Services (AWS)
Azure
CVE
Google Cloud Platform (GCP)
NIST 800-53
M365
VERIS
You're currently viewing ATT&CK Version 9.0 Enterprise and CVE 10.21.2021.
Change versions here.
Home
Mapping Frameworks
CVE Home
n/a
CVE
CVE-2015-6480
Mappings
The MessageBrokerServlet servlet in Moxa OnCell Central Manager before 2.2 does not require authentication, which allows remote attackers to obtain administrative access via a command, as demonstrated by the addUserAndGroup action.
Mappings
ATT&CK Version
9.0
ATT&CK Domain
Enterprise
CVE
10.21.2021
Change Versions
Capability ID
Capability Description
Mapping Type
ATT&CK ID
ATT&CK Name
CVE-2015-6480
n/a
uncategorized
T1190
Exploit Public-Facing Application
CVE-2015-6480
n/a
uncategorized
T1059
Command and Scripting Interpreter
