Uci

Idol2

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1

CVE-2024-45168

Exploit
  • EPSS 0.17%
  • Veröffentlicht 22.08.2024 04:15:27
  • Zuletzt bearbeitet 03.09.2025 19:34:13

An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Data is transferred over a raw socket without any authentication mechanism. Thus, communication endpoints are not verifiable.

9.8

CVE-2024-45169

Exploit
  • EPSS 1.89%
  • Veröffentlicht 22.08.2024 04:15:27
  • Zuletzt bearbeitet 04.09.2025 10:57:49

An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Servi...

9.8

CVE-2024-45167

Exploit
  • EPSS 2.98%
  • Veröffentlicht 22.08.2024 04:15:25
  • Zuletzt bearbeitet 03.09.2025 19:39:44

An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Servi...

9.8

CVE-2024-45166

Exploit
  • EPSS 3.61%
  • Veröffentlicht 22.08.2024 04:15:24
  • Zuletzt bearbeitet 03.09.2025 19:43:20

An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Due to improper input validation, improper deserialization, and improper restriction of operations within the bounds of a memory buffer, IDOL2 is vulnerable to Denial-of-Servi...

5.3

CVE-2024-45165

  • EPSS 0.02%
  • Veröffentlicht 22.08.2024 04:15:22
  • Zuletzt bearbeitet 03.09.2025 19:43:58

An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12. Data is sent between client and server with encryption. However, the key is derived from the string "(c)2007 UCI Software GmbH B.Boll" (without quotes). The key is both static...