Lucene search
K

4 matches found

NVD
NVD
added 2020/04/10 7:15 p.m.18 views

CVE-2015-9546

An issue was discovered on Samsung mobile devices with KK4.4 and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker can modify the client-server data stream to insert directory traversal sequences into an extracted fi...

5.8CVSS5.1AI score0.0034EPSS
Exploits0References1
Prion
Prion
added 2020/04/10 7:15 p.m.13 views

Directory traversal

An issue was discovered on Samsung mobile devices with KK4.4 and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker can modify the client-server data stream to insert directory traversal sequences into an extracted fi...

5.8CVSS7.1AI score0.0034EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/04/10 6:54 p.m.19 views

CVE-2015-9546

An issue was discovered on Samsung mobile devices with KK4.4 and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker can modify the client-server data stream to insert directory traversal sequences into an extracted fi...

5.1AI score0.0034EPSS
Exploits0References1
CVE
CVE
added 2020/04/10 6:54 p.m.129 views

CVE-2015-9546

CVE-2015-9546 affects Samsung mobile devices running KK(4.4) and later through 2015-06-16. The issue arises when HTTP is used for an Inputmethod instead of HTTPS, allowing a man-in-the-middle to modify the client–server data stream and insert directory traversal sequences into an extracted file p...

5.8CVSS5.1AI score0.0034EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder