Aggregates CVE and security vulnerability intelligence across all ininet_solutions-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk path handling and vendor risk buffer overflow and related problems; some flaws may lead to vendor impact file overwrite and vendor impact application crash.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2015-1005 | IniNet embeddedWebServer (aka eWebServer) before 2.02 for Windows CE uses cleartext for password storage, which allows context-dependent attackers to obtain sensitive information via unspecified vectors. | [email protected] | 2.1 | 0.07% | 2015-10-25 | 2026-05-06 |
| CVE-2015-1003 | Directory traversal vulnerability in IniNet embeddedWebServer (aka eWebServer) before 2.02 allows remote attackers to read arbitrary files via a crafted pathname. | [email protected] | 5.0 | 0.62% | 2015-10-25 | 2026-05-06 |
| CVE-2015-1002 | IniNet embeddedWebServer (aka eWebServer) before 2.02 mishandles URL encoding, which allows remote attackers to write to or delete files via a crafted string. | [email protected] | 6.4 | 0.60% | 2015-10-25 | 2026-05-06 |
| CVE-2015-1001 | Multiple stack-based buffer overflows in IniNet embeddedWebServer (aka eWebServer) before 2.02 allow remote attackers to execute arbitrary code via a long field in an HTTP request. | [email protected] | 10.0 | 2.82% | 2015-10-25 | 2026-05-06 |