Home
Mapping Frameworks
CVE Home
n/a

CVE CVE-2015-8562 Mappings

Joomla! 1.5.x, 2.x, and 3.x before 3.4.6 allow remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in December 2015.

Mappings

Capability ID	Capability Description	Mapping Type	ATT&CK ID	ATT&CK Name
CVE-2015-8562	n/a	uncategorized	T1190	Exploit Public-Facing Application
CVE-2015-8562	n/a	uncategorized	T1528	Steal Application Access Token
CVE-2015-8562	n/a	uncategorized	T1548	Abuse Elevation Control Mechanism
CVE-2015-8562	n/a	uncategorized	T1552	Unsecured Credentials