Skip to main content

Ipolis Device Manager

3 CVEs product

Monthly

CVE-2015-0555 MEDIUM POC THREAT This Month

Buffer overflow in the XnsSdkDeviceIpInstaller.ocx ActiveX control in Samsung iPOLiS Device Manager 1.12.2 allows remote attackers to execute arbitrary code via a long string in the first argument to. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 24.9%.

RCE Samsung Buffer Overflow Ipolis Device Manager
NVD Exploit-DB
CVSS 2.0
6.8
EPSS
24.9%
CVE-2014-3911 CRITICAL PATCH Act Now

Samsung iPOLiS Device Manager before 1.8.7 allow remote attackers to execute arbitrary code via unspecified values to the (1) Start, (2) ChangeControlLocalName, (3) DeleteDeviceProfile, (4). Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Samsung Code Injection Ipolis Device Manager
NVD
CVSS 2.0
9.3
EPSS
8.4%
CVE-2014-3912 CRITICAL PATCH Act Now

Stack-based buffer overflow in the FindConfigChildeKeyList method in the XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ActiveX control in Samsung iPOLiS Device Manager before 1.8.7 allows remote. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Epss exploitation probability 12.3%.

RCE Samsung Buffer Overflow Ipolis Device Manager
NVD
CVSS 2.0
9.3
EPSS
12.3%
EPSS 25% CVSS 6.8
MEDIUM POC THREAT This Month

Buffer overflow in the XnsSdkDeviceIpInstaller.ocx ActiveX control in Samsung iPOLiS Device Manager 1.12.2 allows remote attackers to execute arbitrary code via a long string in the first argument to. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 24.9%.

RCE Samsung Buffer Overflow +1
NVD Exploit-DB
EPSS 8% CVSS 9.3
CRITICAL PATCH Act Now

Samsung iPOLiS Device Manager before 1.8.7 allow remote attackers to execute arbitrary code via unspecified values to the (1) Start, (2) ChangeControlLocalName, (3) DeleteDeviceProfile, (4). Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Samsung Code Injection +1
NVD
EPSS 12% CVSS 9.3
CRITICAL PATCH Act Now

Stack-based buffer overflow in the FindConfigChildeKeyList method in the XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ActiveX control in Samsung iPOLiS Device Manager before 1.8.7 allows remote. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Epss exploitation probability 12.3%.

RCE Samsung Buffer Overflow +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy