Filtered by vendor Soffid
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2024-39669 | 1 Soffid | 1 Iam | 2024-11-21 | 9.8 Critical |
In the Console in Soffid IAM before 3.5.39, necessary checks were not applied to some Java objects. A malicious agent could possibly execute arbitrary code in the Sync Server and compromise security. | ||||
CVE-2017-9363 | 1 Soffid | 1 Iam | 2024-11-21 | N/A |
Untrusted Java serialization in Soffid IAM console before 1.7.5 allows remote attackers to achieve arbitrary remote code execution via a crafted authentication request. |
Page 1 of 1.