Vulnerabilities > Ipass > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-01-22 | CVE-2015-0925 | Code Injection vulnerability in Ipass Open Mobile 2.4.4 The client in iPass Open Mobile before 2.4.5 on Windows allows remote authenticated users to execute arbitrary code via a DLL pathname in a crafted Unicode string that is improperly handled by a subprocess reached through a named pipe, as demonstrated by a UNC share pathname. | 9.0 |