Tripwire · Tripwire Ip360 Vne Manager · CVE-2015-6237
**Name of the Vulnerable Software and Affected Versions**
Tripwire IP360 VnE Manager versions 7.2.2 through 7.2.5
**Description**
The issue allows remote attackers to bypass authentication, enabling them to enumerate users, reset passwords, or manipulate IP filter restrictions by using crafted "privileged commands".
**Recommendations**
For Tripwire IP360 VnE Manager versions 7.2.2 through 7.2.5, update to version 7.2.6 or later to resolve the issue.