CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-15812

DNN (aka DotNetNuke) 9.2 through 9.2.1 incorrectly converts encryption key source values, resulting in lower than expected entropy.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.782

EPSS Ranking 99.0%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2018-15812

Dnnsoftware » Dotnetnuke » Version: 9.2

cpe:2.3:a:dnnsoftware:dotnetnuke:9.2
Dnnsoftware » Dotnetnuke » Version: 9.2.0

cpe:2.3:a:dnnsoftware:dotnetnuke:9.2.0
Dnnsoftware » Dotnetnuke » Version: 9.2.1

cpe:2.3:a:dnnsoftware:dotnetnuke:9.2.1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved