Skip to main content
CVE-2015-1497 CRITICAL POC THREAT Emergency

radexecd.exe in Persistent Systems Radia Client Automation (RCA) 7.9, 8.1, 9.0, and 9.1 allows remote attackers to execute arbitrary commands via a crafted request to TCP port 3465. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 88.3%.

RCE Code Injection Radia Client Automation
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
88.3%
Threat
6.1
CVE-2015-1474 CRITICAL POC PATCH Act Now

Multiple integer overflows in the GraphicBuffer::unflatten function in platform/frameworks/native/libs/ui/GraphicBuffer.cpp in Android through 5.0 allow attackers to gain privileges or cause a denial. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Denial Of Service Google Buffer Overflow Android
NVD
CVSS 2.0
10.0
EPSS
9.0%
CVE-2015-1498 CRITICAL Act Now

Persistent Systems Radia Client Automation does not properly restrict access to certain request, which allows remote attackers to (1) enumerate user accounts via a getUsers request, (2) assign a role. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Radia Client Automation
NVD
CVSS 2.0
10.0
EPSS
1.3%
CVE-2014-9375 CRITICAL Act Now

Directory traversal vulnerability in the LibraryFileUploadServlet servlet in Lexmark Markvision Enterprise allows remote authenticated users to write to and execute arbitrary files via a .. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Markvision Enterprise
NVD
CVSS 2.0
9.0
EPSS
1.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy