VYPR

Xen Mobile

by Xen Mobile

CVEs (1)

  • CVE-2018-18013HigOct 24, 2018
    risk 0.51cvss 7.8epss 0.03

    * Xen Mobile through 10.8.0 includes a service listening on port 5001 within its firewall that accepts unauthenticated input. If this service is supplied with raw serialised Java objects, it deserialises them back into Java objects in memory, giving rise to a remote code…