CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-0974

Untrusted search path vulnerability in ZTE Datacard MF19 0V1.0.0B04 allows local users to gain privilege by modifying the 'Ucell Internet' directory to reference a malicious mms_dll_r.dll or mediaplayerdll.dll.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 17.0%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

http://packetstormsecurity.com/files/129808/ZTE-Datacard-MF19-Privilege-Escalation-DLL-Hijacking.html
http://packetstormsecurity.com/files/129808/ZTE-Datacard-MF19-Privilege-Escalation-DLL-Hijacking.html

Products affected by CVE-2015-0974

Mobilis » Mobiconnect » Version: 1.0.0b03

cpe:2.3:a:mobilis:mobiconnect:1.0.0b03

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-0974

Products

Pricing

Contact Us