Vulnerabilities
Vulnerable Software
CWE‑502: Deserialization of Untrusted Data vulnerability exists that could cause arbitrary code execution with administrative privileges when a locally authenticated attacker sends a crafted data stream, triggering unsafe deserialization.
CVSS Score
8.5
EPSS Score
0.002
Published
2026-03-10
A CWE-502: Deserialization of untrusted data vulnerability exists that could allow an attacker to execute arbitrary code on the targeted system by sending a specifically crafted packet to the application.
CVSS Score
9.8
EPSS Score
0.008
Published
2023-10-04
A CWE-613: Insufficient Session Expiration vulnerability exists that could allow an attacker to maintain unauthorized access over a hijacked session in PME after the legitimate user has signed out of their account.
CVSS Score
6.7
EPSS Score
0.003
Published
2023-04-18


Contact Us

Shodan ® - All rights reserved