Samsung Ipolis Device Manager vulnerabilities
3 known vulnerabilities affecting samsung/ipolis_device_manager.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2015-0555MEDIUMCVSS 6.8PoCv1.12.22015-02-24
CVE-2015-0555 [MEDIUM] CWE-119 CVE-2015-0555: Buffer overflow in the XnsSdkDeviceIpInstaller.ocx ActiveX control in Samsung iPOLiS Device Manager
Buffer overflow in the XnsSdkDeviceIpInstaller.ocx ActiveX control in Samsung iPOLiS Device Manager 1.12.2 allows remote attackers to execute arbitrary code via a long string in the first argument to the (1) ReadConfigValue or (2) WriteConfigValue function.
nvd
CVE-2014-3911CRITICALCVSS 9.3≤ 1.8.22014-06-11
CVE-2014-3911 [CRITICAL] CWE-94 CVE-2014-3911: Samsung iPOLiS Device Manager before 1.8.7 allow remote attackers to execute arbitrary code via unsp
Samsung iPOLiS Device Manager before 1.8.7 allow remote attackers to execute arbitrary code via unspecified values to the (1) Start, (2) ChangeControlLocalName, (3) DeleteDeviceProfile, (4) FrameAdvanceReader, or other unknown method in the XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ActiveX control.
nvd
CVE-2014-3912CRITICALCVSS 9.3≤ 1.8.22014-06-05
CVE-2014-3912 [CRITICAL] CWE-119 CVE-2014-3912: Stack-based buffer overflow in the FindConfigChildeKeyList method in the XNSSDKDEVICE.XnsSdkDeviceCt
Stack-based buffer overflow in the FindConfigChildeKeyList method in the XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ActiveX control in Samsung iPOLiS Device Manager before 1.8.7 allows remote attackers to execute arbitrary code via a long value.
nvd