CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-11344

A vulnerability was detected in ILIAS up to 8.23/9.13/10.1. Affected by this vulnerability is an unknown functionality of the component Certificate Import Handler. The manipulation results in Remote Code Execution. The attack may be performed from remote. Upgrading to version 8.24, 9.14 and 10.2 addresses this issue. It is recommended to upgrade the affected component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.1%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 7.5

References

https://docu.ilias.de/go/blog/15821/882
https://vuldb.com/?ctiid.327229
https://vuldb.com/?id.327229
https://vuldb.com/?submit.664889

Products affected by CVE-2025-11344

Ilias » Ilias » Version: 10.1

cpe:2.3:a:ilias:ilias:10.1
Ilias » Ilias » Version: 8.23

cpe:2.3:a:ilias:ilias:8.23
Ilias » Ilias » Version: 9.13

cpe:2.3:a:ilias:ilias:9.13

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-11344

Products

Pricing

Contact Us