Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-20402

Safe Software FME Server through 2018.1 creates and enables three additional accounts in addition to the initial administrator account. The passwords to the three accounts are the same as the usernames, which are guest, user, and author. Logging in with these accounts will grant any user the default privilege roles that were also created for each of the accounts.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
Products affected by CVE-2018-20402
  • Safe » Fme Server » Version: N/A
    cpe:2.3:a:safe:fme_server:-
  • Safe » Fme Server » Version: 1.47
    cpe:2.3:a:safe:fme_server:1.47
  • Safe » Fme Server » Version: 2.0
    cpe:2.3:a:safe:fme_server:2.0
  • Safe » Fme Server » Version: 2.1
    cpe:2.3:a:safe:fme_server:2.1
  • Safe » Fme Server » Version: 2.2
    cpe:2.3:a:safe:fme_server:2.2
  • Safe » Fme Server » Version: 2.3
    cpe:2.3:a:safe:fme_server:2.3
  • Safe » Fme Server » Version: 2000
    cpe:2.3:a:safe:fme_server:2000
  • Safe » Fme Server » Version: 2002
    cpe:2.3:a:safe:fme_server:2002
  • Safe » Fme Server » Version: 2003
    cpe:2.3:a:safe:fme_server:2003
  • Safe » Fme Server » Version: 2004
    cpe:2.3:a:safe:fme_server:2004
  • Safe » Fme Server » Version: 2005
    cpe:2.3:a:safe:fme_server:2005
  • Safe » Fme Server » Version: 2006
    cpe:2.3:a:safe:fme_server:2006
  • Safe » Fme Server » Version: 2007
    cpe:2.3:a:safe:fme_server:2007
  • Safe » Fme Server » Version: 2008
    cpe:2.3:a:safe:fme_server:2008
  • Safe » Fme Server » Version: 2009
    cpe:2.3:a:safe:fme_server:2009
  • Safe » Fme Server » Version: 2010
    cpe:2.3:a:safe:fme_server:2010
  • Safe » Fme Server » Version: 2011
    cpe:2.3:a:safe:fme_server:2011
  • Safe » Fme Server » Version: 2012
    cpe:2.3:a:safe:fme_server:2012
  • Safe » Fme Server » Version: 2013
    cpe:2.3:a:safe:fme_server:2013
  • Safe » Fme Server » Version: 2014
    cpe:2.3:a:safe:fme_server:2014
  • Safe » Fme Server » Version: 2015.0
    cpe:2.3:a:safe:fme_server:2015.0
  • Safe » Fme Server » Version: 2015.1.0
    cpe:2.3:a:safe:fme_server:2015.1.0
  • Safe » Fme Server » Version: 2015.1.0.1
    cpe:2.3:a:safe:fme_server:2015.1.0.1
  • Safe » Fme Server » Version: 2015.1.0.2
    cpe:2.3:a:safe:fme_server:2015.1.0.2
  • Safe » Fme Server » Version: 2015.1.0.3
    cpe:2.3:a:safe:fme_server:2015.1.0.3
  • Safe » Fme Server » Version: 2015.1.1
    cpe:2.3:a:safe:fme_server:2015.1.1
  • Safe » Fme Server » Version: 2015.1.2
    cpe:2.3:a:safe:fme_server:2015.1.2
  • Safe » Fme Server » Version: 2015.1.2.1
    cpe:2.3:a:safe:fme_server:2015.1.2.1
  • Safe » Fme Server » Version: 2015.1.3
    cpe:2.3:a:safe:fme_server:2015.1.3
  • Safe » Fme Server » Version: 2015.1.3.1
    cpe:2.3:a:safe:fme_server:2015.1.3.1
  • Safe » Fme Server » Version: 2015.1.3.2
    cpe:2.3:a:safe:fme_server:2015.1.3.2
  • Safe » Fme Server » Version: 2016.0
    cpe:2.3:a:safe:fme_server:2016.0
  • Safe » Fme Server » Version: 2016.0.1
    cpe:2.3:a:safe:fme_server:2016.0.1
  • Safe » Fme Server » Version: 2016.0.1.1
    cpe:2.3:a:safe:fme_server:2016.0.1.1
  • Safe » Fme Server » Version: 2016.0.1.2
    cpe:2.3:a:safe:fme_server:2016.0.1.2
  • Safe » Fme Server » Version: 2016.1
    cpe:2.3:a:safe:fme_server:2016.1
  • Safe » Fme Server » Version: 2016.1.0.1
    cpe:2.3:a:safe:fme_server:2016.1.0.1
  • Safe » Fme Server » Version: 2016.1.1
    cpe:2.3:a:safe:fme_server:2016.1.1
  • Safe » Fme Server » Version: 2016.1.2
    cpe:2.3:a:safe:fme_server:2016.1.2
  • Safe » Fme Server » Version: 2016.1.2.1
    cpe:2.3:a:safe:fme_server:2016.1.2.1
  • Safe » Fme Server » Version: 2016.1.3
    cpe:2.3:a:safe:fme_server:2016.1.3
  • Safe » Fme Server » Version: 2016.1.3.1
    cpe:2.3:a:safe:fme_server:2016.1.3.1
  • Safe » Fme Server » Version: 2016.1.3.2
    cpe:2.3:a:safe:fme_server:2016.1.3.2
  • Safe » Fme Server » Version: 2016.1.3.3
    cpe:2.3:a:safe:fme_server:2016.1.3.3
  • Safe » Fme Server » Version: 2017.0
    cpe:2.3:a:safe:fme_server:2017.0
  • Safe » Fme Server » Version: 2017.0.0.1
    cpe:2.3:a:safe:fme_server:2017.0.0.1
  • Safe » Fme Server » Version: 2017.0.0.2
    cpe:2.3:a:safe:fme_server:2017.0.0.2
  • Safe » Fme Server » Version: 2017.0.1
    cpe:2.3:a:safe:fme_server:2017.0.1
  • Safe » Fme Server » Version: 2017.0.1.1
    cpe:2.3:a:safe:fme_server:2017.0.1.1
  • Safe » Fme Server » Version: 2017.0.1.2
    cpe:2.3:a:safe:fme_server:2017.0.1.2
  • Safe » Fme Server » Version: 2017.1
    cpe:2.3:a:safe:fme_server:2017.1
  • Safe » Fme Server » Version: 2017.1.1
    cpe:2.3:a:safe:fme_server:2017.1.1
  • Safe » Fme Server » Version: 2017.1.1.1
    cpe:2.3:a:safe:fme_server:2017.1.1.1
  • Safe » Fme Server » Version: 2017.1.2
    cpe:2.3:a:safe:fme_server:2017.1.2
  • Safe » Fme Server » Version: 2017.1.2.1
    cpe:2.3:a:safe:fme_server:2017.1.2.1
  • Safe » Fme Server » Version: 2018.0
    cpe:2.3:a:safe:fme_server:2018.0
  • Safe » Fme Server » Version: 2018.0.0.1
    cpe:2.3:a:safe:fme_server:2018.0.0.1
  • Safe » Fme Server » Version: 2018.0.0.2
    cpe:2.3:a:safe:fme_server:2018.0.0.2
  • Safe » Fme Server » Version: 2018.0.0.3
    cpe:2.3:a:safe:fme_server:2018.0.0.3
  • Safe » Fme Server » Version: 2018.0.1
    cpe:2.3:a:safe:fme_server:2018.0.1
  • Safe » Fme Server » Version: 2018.0.1.1
    cpe:2.3:a:safe:fme_server:2018.0.1.1
  • Safe » Fme Server » Version: 2018.1
    cpe:2.3:a:safe:fme_server:2018.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved