CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Timedoctor: >> Timedoctor Security Vulnerabilities

CVE-2015-4674

The autoupdate implementation in TimeDoctor Pro 1.4.72.3 on Windows relies on unsigned installer files that are retrieved without use of SSL, which makes it easier for man-in-the-middle attackers to execute arbitrary code via a crafted file.

CVSS Score

9.3

EPSS Score

0.003

Published

2015-08-07

Page 1

Vulnerabilities

Vulnerable Software

Timedoctor: >> Timedoctor Security Vulnerabilities

Products

Pricing

Contact Us