Rehme_Srlabs

**Name of the Vulnerable Software and Affected Versions** ILIAS versions 8.23, 9.13, and 10.1 **Description** A flaw exists in ILIAS related to the Certificate Import Handler component. This issue allows for Remote Code Execution, potentially triggered remotely. **Recommendations** Upgrade to version 8.24 Upgrade to version 9.14 Upgrade to version 10.2

**Name of the Vulnerable Software and Affected Versions** ILIAS versions up to 8.23 ILIAS versions up to 9.13 ILIAS versions up to 10.1 **Description** A flaw exists due to deserialization in the `unserialize` function of the Test Import component. This manipulation can be initiated remotely. **Recommendations** Upgrade to ILIAS version 8.24 Upgrade to ILIAS version 9.14 Upgrade to ILIAS version 10.2 Upgrade the affected Test Import component

**Name of the Vulnerable Software and Affected Versions** ILIAS versions prior to 8.24 ILIAS versions prior to 9.14 ILIAS versions prior to 10.2 **Description** A flaw exists in ILIAS related to the `unserialize` function within the Base64 Decoding Handler component. Manipulation of the `f settings` argument can lead to deserialization, potentially allowing remote attackers to exploit the system. **Recommendations** Upgrade to ILIAS version 8.24 or later. Upgrade to ILIAS version 9.14 or later. Upgrade to ILIAS version 10.2 or later.