Vulnerabilities (CVE)

Filtered by vendor Samsung Subscribe
Filtered by product Ipolis Device Manager
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-3911 1 Samsung 1 Ipolis Device Manager 2024-02-28 9.3 HIGH N/A
Samsung iPOLiS Device Manager before 1.8.7 allow remote attackers to execute arbitrary code via unspecified values to the (1) Start, (2) ChangeControlLocalName, (3) DeleteDeviceProfile, (4) FrameAdvanceReader, or other unknown method in the XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ActiveX control.
CVE-2014-3912 1 Samsung 1 Ipolis Device Manager 2024-02-28 9.3 HIGH N/A
Stack-based buffer overflow in the FindConfigChildeKeyList method in the XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ActiveX control in Samsung iPOLiS Device Manager before 1.8.7 allows remote attackers to execute arbitrary code via a long value.
CVE-2015-0555 1 Samsung 1 Ipolis Device Manager 2024-02-28 6.8 MEDIUM N/A
Buffer overflow in the XnsSdkDeviceIpInstaller.ocx ActiveX control in Samsung iPOLiS Device Manager 1.12.2 allows remote attackers to execute arbitrary code via a long string in the first argument to the (1) ReadConfigValue or (2) WriteConfigValue function.