Skip to main content
CVE-2015-0925 CRITICAL POC THREAT Emergency

The client in iPass Open Mobile before 2.4.5 on Windows allows remote authenticated users to execute arbitrary code via a DLL pathname in a crafted Unicode string that is improperly handled by a. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 68.3%.

RCE Code Injection Microsoft Ipass Open Mobile
NVD Exploit-DB
CVSS 2.0
9.0
EPSS
68.3%
Threat
5.3
CVE-2015-1311 CRITICAL Act Now

The Extended Application Services (XS) in SAP HANA allows remote attackers to inject arbitrary ABAP code via unspecified vectors, aka SAP Note 2098906. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE SAP Code Injection Hana Extended Application Services
NVD
CVSS 2.0
10.0
EPSS
1.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy