Vulnerabilities > CVE-2015-0140 - ActiveX Control Remote Code Execution vulnerability in IBM Spss Statistics 22.0

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
ibm

Summary

An unspecified ActiveX control in IBM SPSS Statistics 22.0 through FP1 on 32-bit platforms allows remote attackers to execute arbitrary code via a crafted HTML document.

Vulnerable Configurations

Part Description Count
Application
Ibm
1