Lucene search
K

439 matches found

EUVD
EUVD
added 2025/10/06 9:30 p.m.5 views

EUVD-2025-32588

A vulnerability was detected in ILIAS up to 8.23/9.13/10.1. Affected by this vulnerability is an unknown functionality of the component Certificate Import Handler. The manipulation results in Remote Code Execution. The attack may be performed from remote. Upgrading to version 8.24, 9.14 and 10.2...

7.5CVSS6.4AI score0.0047EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/06 9:30 p.m.6 views

EUVD-2025-32586

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

6.5CVSS6.4AI score0.00411EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/06 9:30 p.m.4 views

EUVD-2025-32587

A flaw has been found in ILIAS up to 8.23/9.13/10.1. Affected by this issue is the function unserialize of the component Test Import. This manipulation causes deserialization. It is possible to initiate the attack remotely. Upgrading to version 8.24, 9.14 and 10.2 can resolve this issue. Upgradin...

6.5CVSS6.3AI score0.00336EPSS
Exploits0References5
NVD
NVD
added 2025/10/06 8:15 p.m.6 views

CVE-2025-11346

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

9.8CVSS0.00411EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/06 7:32 p.m.9 views

CVE-2025-11346 ILIAS Base64 Decoding unserialize deserialization

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

6.5CVSS0.00411EPSS
Exploits0References4
OSV
OSV
added 2025/10/06 7:32 p.m.3 views

CVE-2025-11346 ILIAS Base64 Decoding unserialize deserialization

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

5.3CVSS6.2AI score0.00411EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/10/06 7:32 p.m.5 views

CVE-2025-11346 ILIAS Base64 Decoding unserialize deserialization

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

6.5CVSS6.7AI score0.00411EPSS
Exploits0References4
CVE
CVE
added 2025/10/06 7:32 p.m.16 views

CVE-2025-11346

The CVE concerns ILIAS up to versions 8.23/9.13/10.1 where the Base64 Decoding Handler’s unserialize function is exploitable by manipulating the f_settings argument, enabling deserialization and a remote attack. The issue’s root cause is improper handling of f_settings in the unserialize flow. Im...

9.8CVSS6.7AI score0.00411EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2025/10/06 7:15 p.m.5 views

CVE-2025-11344

A vulnerability was detected in ILIAS up to 8.23/9.13/10.1. Affected by this vulnerability is an unknown functionality of the component Certificate Import Handler. The manipulation results in Remote Code Execution. The attack may be performed from remote. Upgrading to version 8.24, 9.14 and 10.2...

9.8CVSS0.0047EPSS
Exploits0References5
NVD
NVD
added 2025/10/06 7:15 p.m.5 views

CVE-2025-11345

A flaw has been found in ILIAS up to 8.23/9.13/10.1. Affected by this issue is the function unserialize of the component Test Import. This manipulation causes deserialization. It is possible to initiate the attack remotely. Upgrading to version 8.24, 9.14 and 10.2 can resolve this issue. Upgradin...

9.8CVSS0.00336EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/10/06 7:2 p.m.8 views

CVE-2025-11345 ILIAS Test Import unserialize deserialization

A flaw has been found in ILIAS up to 8.23/9.13/10.1. Affected by this issue is the function unserialize of the component Test Import. This manipulation causes deserialization. It is possible to initiate the attack remotely. Upgrading to version 8.24, 9.14 and 10.2 can resolve this issue. Upgradin...

6.5CVSS0.00336EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/06 7:2 p.m.2 views

CVE-2025-11345 ILIAS Test Import unserialize deserialization

A flaw has been found in ILIAS up to 8.23/9.13/10.1. Affected by this issue is the function unserialize of the component Test Import. This manipulation causes deserialization. It is possible to initiate the attack remotely. Upgrading to version 8.24, 9.14 and 10.2 can resolve this issue. Upgradin...

6.5CVSS5.5AI score0.00336EPSS
Exploits0References4
OSV
OSV
added 2025/10/06 7:2 p.m.4 views

CVE-2025-11345 ILIAS Test Import unserialize deserialization

A flaw has been found in ILIAS up to 8.23/9.13/10.1. Affected by this issue is the function unserialize of the component Test Import. This manipulation causes deserialization. It is possible to initiate the attack remotely. Upgrading to version 8.24, 9.14 and 10.2 can resolve this issue. Upgradin...

5.1CVSS5.8AI score0.00336EPSS
Exploits0References7
CVE
CVE
added 2025/10/06 7:2 p.m.10 views

CVE-2025-11345

CVE-2025-11345 affects ILIAS up to versions 8.23, 9.13, and 10.1, where the unserialize function in the Test Import component is vulnerable to deserialization, enabling a remote attack. The issue stems from improper handling of deserialization within Test Import, with remote initiation possible. ...

9.8CVSS6.5AI score0.00336EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2025/10/06 6:32 p.m.9 views

CVE-2025-11344 ILIAS Certificate Import code injection

A vulnerability was detected in ILIAS up to 8.23/9.13/10.1. Affected by this vulnerability is an unknown functionality of the component Certificate Import Handler. The manipulation results in Remote Code Execution. The attack may be performed from remote. Upgrading to version 8.24, 9.14 and 10.2...

7.5CVSS0.0047EPSS
Exploits0References4
OSV
OSV
added 2025/10/06 6:32 p.m.6 views

CVE-2025-11344 ILIAS Certificate Import code injection

A vulnerability was detected in ILIAS up to 8.23/9.13/10.1. Affected by this vulnerability is an unknown functionality of the component Certificate Import Handler. The manipulation results in Remote Code Execution. The attack may be performed from remote. Upgrading to version 8.24, 9.14 and 10.2...

5.3CVSS6.2AI score0.0047EPSS
Exploits0References7
CVE
CVE
added 2025/10/06 6:32 p.m.15 views

CVE-2025-11344

CVE-2025-11344 affects the ILIAS open-source learning platform in versions up to 8.23, 9.13, and 10.1. The vulnerability involves an unknown function within the Certificate Import Handler that can be manipulated to achieve Remote Code Execution . Exploitation may be possible remotely. A fix is pu...

9.8CVSS6.6AI score0.0047EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/06 6:32 p.m.5 views

CVE-2025-11344 ILIAS Certificate Import code injection

A vulnerability was detected in ILIAS up to 8.23/9.13/10.1. Affected by this vulnerability is an unknown functionality of the component Certificate Import Handler. The manipulation results in Remote Code Execution. The attack may be performed from remote. Upgrading to version 8.24, 9.14 and 10.2...

7.5CVSS6.2AI score0.0047EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/06 12:0 a.m.8 views

ILIAS 代码问题漏洞

ILIAS is an open source learning management system. A code issue vulnerability exists in ILIAS versions 8.23 and earlier, 9.13 and earlier, and 10.1 and earlier, which stems from improper handling of the Test Import component's deserialization function, which could lead to remote code execution...

9.8CVSS6.3AI score0.00336EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/06 12:0 a.m.8 views

ILIAS 代码问题漏洞

ILIAS is an open source learning management system from ILIAS Open Source. A code issue vulnerability exists in ILIAS versions 8.23 and earlier, 9.13 and earlier, and 10.1 and earlier, which stems from improper deserialization of the parameter fsettings in the Base64 Decoding Handler component,...

9.8CVSS7.1AI score0.00411EPSS
Exploits0References5
Rows per page
Query Builder