CVE-2025-1701 (GCVE-0-2025-1701)
Vulnerability from cvelistv5 – Published: 2025-06-04 13:01 – Updated: 2025-06-04 13:29
VLAI?
Summary
CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interface to execute arbitrary code with the privileges of the MIM Admin service. The RMI interface is only accessible locally (listening on 127.0.0.1), limiting the attack vector to the local machine. This means that in a properly configured hospital environment, an attacker must have already compromised the network and additionally compromised the system where the MIM Admin service is running. From there, attackers with sufficient knowledge of MIM's implementation, library usage, and functionality with access to extend the MIM RMI library could force the MIM Admin service to run commands on the local machine with its privileges.
Users of MIM Software products exposed via RDP or multi-user application virtualization system should take note that the system being exposed is the environment hosting the virtualized MIM client.
This issue affects MIM Admin Service: before 7.2.13, 7.3.8, 7.4.3
Severity ?
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| MIM Software | MIM Admin Service |
Affected:
0 , < 7.2.13
(custom)
Affected: 0 , < 7.3.8 (custom) Affected: 0 , < 7.4.3 (custom) |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-1701",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-06-04T13:28:54.223907Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-06-04T13:29:02.676Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"modules": [
"RMI Service Control"
],
"platforms": [
"Windows",
"MacOS",
"Linux"
],
"product": "MIM Admin Service",
"vendor": "MIM Software",
"versions": [
{
"lessThan": "7.2.13",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"lessThan": "7.3.8",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"lessThan": "7.4.3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eCVE-2025-1701 is a \u003c/span\u003e\u003cspan style=\"background-color: transparent;\"\u003ehigh-severity\u003c/span\u003e\u003cspan style=\"background-color: transparent;\"\u003e vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interface to execute arbitrary code with the privileges of the MIM Admin service. The RMI interface is only accessible locally (listening on 127.0.0.1), limiting the attack vector to the local machine. This means that in a properly configured hospital environment, an attacker must have already compromised the network and additionally compromised the system where the MIM Admin service is running. From there, attackers with sufficient knowledge of MIM\u0027s implementation, library usage, and functionality with access to extend the MIM RMI library could force the MIM Admin service to run commands on the local machine with its privileges.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eUsers of MIM Software products exposed via RDP or multi-user application virtualization system should take note that the system being exposed is the environment hosting the virtualized MIM client.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects MIM Admin Service: before 7.2.13, 7.3.8, 7.4.3\u003c/p\u003e"
}
],
"value": "CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interface to execute arbitrary code with the privileges of the MIM Admin service. The RMI interface is only accessible locally (listening on 127.0.0.1), limiting the attack vector to the local machine. This means that in a properly configured hospital environment, an attacker must have already compromised the network and additionally compromised the system where the MIM Admin service is running. From there, attackers with sufficient knowledge of MIM\u0027s implementation, library usage, and functionality with access to extend the MIM RMI library could force the MIM Admin service to run commands on the local machine with its privileges.\n\nUsers of MIM Software products exposed via RDP or multi-user application virtualization system should take note that the system being exposed is the environment hosting the virtualized MIM client.\n\n\n\nThis issue affects MIM Admin Service: before 7.2.13, 7.3.8, 7.4.3"
}
],
"impacts": [
{
"capecId": "CAPEC-251",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-251 Local Code Inclusion"
}
]
},
{
"capecId": "CAPEC-234",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-234 Hijacking a privileged process"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "ADJACENT",
"baseScore": 8.9,
"baseSeverity": "HIGH",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "STANDARD CONFIGURATION"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20 Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-306",
"description": "CWE-306 Missing Authentication for Critical Function",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-06-04T13:01:17.637Z",
"orgId": "f77a3b2e-a86f-4a4e-80d3-3d1378fbb974",
"shortName": "MIM"
},
"references": [
{
"url": "https://www.mimsoftware.com/cve-2025-1701"
}
],
"solutions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "It is recommended that customers update to a patched version as soon as possible.\u003cbr\u003e"
}
],
"value": "It is recommended that customers update to a patched version as soon as possible."
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Local Privilege Escalation in MIM Admin Service",
"workarounds": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eWe strongly recommend upgrading to the latest available version.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eFor customers who are unable or need a temporary workaround, the following steps may be taken. \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eCustomers who are not using a Fixed License may use a system firewall, endpoint management, or network control system to block all connections to port 5981 from localhost on all MIM systems. This will disable the ability for MIM clients to start and stop MIM services from the Network Preferences window, however services may still be managed directly from the OS.\u0026nbsp; Customers who are using a Fixed License may contact MIM support and switch their license to either a Local or Concurrent license, and then proceed to block all connections to port 5981 from localhost.\u003c/span\u003e\u003c/p\u003e"
}
],
"value": "We strongly recommend upgrading to the latest available version.\n\nFor customers who are unable or need a temporary workaround, the following steps may be taken. \n\nCustomers who are not using a Fixed License may use a system firewall, endpoint management, or network control system to block all connections to port 5981 from localhost on all MIM systems. This will disable the ability for MIM clients to start and stop MIM services from the Network Preferences window, however services may still be managed directly from the OS.\u00a0 Customers who are using a Fixed License may contact MIM support and switch their license to either a Local or Concurrent license, and then proceed to block all connections to port 5981 from localhost."
}
],
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "f77a3b2e-a86f-4a4e-80d3-3d1378fbb974",
"assignerShortName": "MIM",
"cveId": "CVE-2025-1701",
"datePublished": "2025-06-04T13:01:17.637Z",
"dateReserved": "2025-02-25T18:40:49.181Z",
"dateUpdated": "2025-06-04T13:29:02.676Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2025-1701\",\"sourceIdentifier\":\"security@mimsoftware.com\",\"published\":\"2025-06-04T14:15:27.050\",\"lastModified\":\"2025-06-04T14:54:33.783\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interface to execute arbitrary code with the privileges of the MIM Admin service. The RMI interface is only accessible locally (listening on 127.0.0.1), limiting the attack vector to the local machine. This means that in a properly configured hospital environment, an attacker must have already compromised the network and additionally compromised the system where the MIM Admin service is running. From there, attackers with sufficient knowledge of MIM\u0027s implementation, library usage, and functionality with access to extend the MIM RMI library could force the MIM Admin service to run commands on the local machine with its privileges.\\n\\nUsers of MIM Software products exposed via RDP or multi-user application virtualization system should take note that the system being exposed is the environment hosting the virtualized MIM client.\\n\\n\\n\\nThis issue affects MIM Admin Service: before 7.2.13, 7.3.8, 7.4.3\"},{\"lang\":\"es\",\"value\":\"CVE-2025-1701 es una vulnerabilidad de alta gravedad en el servicio MIM Admin. Un atacante podr\u00eda explotar esta vulnerabilidad enviando una solicitud especialmente manipulada a trav\u00e9s de la interfaz RMI para ejecutar c\u00f3digo arbitrario con los privilegios del servicio MIM Admin. La interfaz RMI solo es accesible localmente (escuchando en 127.0.0.1), lo que limita el vector de ataque al equipo local. Esto significa que, en un entorno hospitalario correctamente configurado, un atacante ya debe haber comprometido la red y, adem\u00e1s, el sistema donde se ejecuta el servicio MIM Admin. A partir de ah\u00ed, atacantes con conocimiento suficiente de la implementaci\u00f3n, el uso de la librer\u00eda y la funcionalidad de MIM, con acceso para extender la librer\u00eda RMI de MIM, podr\u00edan forzar al servicio MIM Admin a ejecutar comandos en el equipo local con sus privilegios. Los usuarios de productos de software MIM expuestos a trav\u00e9s de RDP o un sistema de virtualizaci\u00f3n de aplicaciones multiusuario deben tener en cuenta que el sistema expuesto es el entorno que aloja el cliente MIM virtualizado. Este problema afecta al Servicio de administraci\u00f3n de MIM: antes de 7.2.13, 7.3.8, 7.4.3\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security@mimsoftware.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":8.9,\"baseSeverity\":\"HIGH\",\"attackVector\":\"ADJACENT\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"HIGH\",\"subIntegrityImpact\":\"HIGH\",\"subAvailabilityImpact\":\"HIGH\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"security@mimsoftware.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"},{\"lang\":\"en\",\"value\":\"CWE-306\"}]}],\"references\":[{\"url\":\"https://www.mimsoftware.com/cve-2025-1701\",\"source\":\"security@mimsoftware.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-1701\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-06-04T13:28:54.223907Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-06-04T13:28:59.314Z\"}}], \"cna\": {\"title\": \"Local Privilege Escalation in MIM Admin Service\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"impacts\": [{\"capecId\": \"CAPEC-251\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-251 Local Code Inclusion\"}]}, {\"capecId\": \"CAPEC-234\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-234 Hijacking a privileged process\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 8.9, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"ADJACENT\", \"baseSeverity\": \"HIGH\", \"valueDensity\": \"NOT_DEFINED\", \"vectorString\": \"CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H\", \"providerUrgency\": \"NOT_DEFINED\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"LOW\", \"subIntegrityImpact\": \"HIGH\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"HIGH\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"HIGH\", \"vulnConfidentialityImpact\": \"HIGH\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"STANDARD CONFIGURATION\"}]}], \"affected\": [{\"vendor\": \"MIM Software\", \"modules\": [\"RMI Service Control\"], \"product\": \"MIM Admin Service\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"7.2.13\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"7.3.8\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"7.4.3\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows\", \"MacOS\", \"Linux\"], \"defaultStatus\": \"unaffected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"It is recommended that customers update to a patched version as soon as possible.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"It is recommended that customers update to a patched version as soon as possible.\u003cbr\u003e\", \"base64\": false}]}], \"references\": [{\"url\": \"https://www.mimsoftware.com/cve-2025-1701\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"We strongly recommend upgrading to the latest available version.\\n\\nFor customers who are unable or need a temporary workaround, the following steps may be taken. \\n\\nCustomers who are not using a Fixed License may use a system firewall, endpoint management, or network control system to block all connections to port 5981 from localhost on all MIM systems. This will disable the ability for MIM clients to start and stop MIM services from the Network Preferences window, however services may still be managed directly from the OS.\\u00a0 Customers who are using a Fixed License may contact MIM support and switch their license to either a Local or Concurrent license, and then proceed to block all connections to port 5981 from localhost.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003e\u003cspan style=\\\"background-color: transparent;\\\"\u003eWe strongly recommend upgrading to the latest available version.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\\\"background-color: transparent;\\\"\u003eFor customers who are unable or need a temporary workaround, the following steps may be taken. \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\\\"background-color: transparent;\\\"\u003eCustomers who are not using a Fixed License may use a system firewall, endpoint management, or network control system to block all connections to port 5981 from localhost on all MIM systems. This will disable the ability for MIM clients to start and stop MIM services from the Network Preferences window, however services may still be managed directly from the OS.\u0026nbsp; Customers who are using a Fixed License may contact MIM support and switch their license to either a Local or Concurrent license, and then proceed to block all connections to port 5981 from localhost.\u003c/span\u003e\u003c/p\u003e\", \"base64\": false}]}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"CVE-2025-1701 is a high-severity vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interface to execute arbitrary code with the privileges of the MIM Admin service. The RMI interface is only accessible locally (listening on 127.0.0.1), limiting the attack vector to the local machine. This means that in a properly configured hospital environment, an attacker must have already compromised the network and additionally compromised the system where the MIM Admin service is running. From there, attackers with sufficient knowledge of MIM\u0027s implementation, library usage, and functionality with access to extend the MIM RMI library could force the MIM Admin service to run commands on the local machine with its privileges.\\n\\nUsers of MIM Software products exposed via RDP or multi-user application virtualization system should take note that the system being exposed is the environment hosting the virtualized MIM client.\\n\\n\\n\\nThis issue affects MIM Admin Service: before 7.2.13, 7.3.8, 7.4.3\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\\\"background-color: transparent;\\\"\u003eCVE-2025-1701 is a \u003c/span\u003e\u003cspan style=\\\"background-color: transparent;\\\"\u003ehigh-severity\u003c/span\u003e\u003cspan style=\\\"background-color: transparent;\\\"\u003e vulnerability in the MIM Admin service. An attacker could exploit this vulnerability by sending a specially crafted request over the RMI interface to execute arbitrary code with the privileges of the MIM Admin service. The RMI interface is only accessible locally (listening on 127.0.0.1), limiting the attack vector to the local machine. This means that in a properly configured hospital environment, an attacker must have already compromised the network and additionally compromised the system where the MIM Admin service is running. From there, attackers with sufficient knowledge of MIM\u0027s implementation, library usage, and functionality with access to extend the MIM RMI library could force the MIM Admin service to run commands on the local machine with its privileges.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\\\"background-color: transparent;\\\"\u003eUsers of MIM Software products exposed via RDP or multi-user application virtualization system should take note that the system being exposed is the environment hosting the virtualized MIM client.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003c/p\u003e\u003cp\u003eThis issue affects MIM Admin Service: before 7.2.13, 7.3.8, 7.4.3\u003c/p\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"CWE-20 Improper Input Validation\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-306\", \"description\": \"CWE-306 Missing Authentication for Critical Function\"}]}], \"providerMetadata\": {\"orgId\": \"f77a3b2e-a86f-4a4e-80d3-3d1378fbb974\", \"shortName\": \"MIM\", \"dateUpdated\": \"2025-06-04T13:01:17.637Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-1701\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-06-04T13:29:02.676Z\", \"dateReserved\": \"2025-02-25T18:40:49.181Z\", \"assignerOrgId\": \"f77a3b2e-a86f-4a4e-80d3-3d1378fbb974\", \"datePublished\": \"2025-06-04T13:01:17.637Z\", \"assignerShortName\": \"MIM\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…