CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-16398

On Keeper K5 20.1.0.25 and 20.1.0.63 devices, remote code execution can occur by inserting an SD card containing a file named zskj_script_run.sh that executes a reverse shell.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.9%

CVSS Severity

CVSS v3 Score 6.8

CVSS v2 Score 7.2

References

https://gitlab.com/crypt0crc/cve-2019-16398
https://gitlab.com/crypt0crc/cve-2019-16398

Products affected by CVE-2019-16398

Keeper » K5 » Version: N/A

cpe:2.3:h:keeper:k5:-
Keeper » K5 Firmware » Version: 20.1.0.25

cpe:2.3:o:keeper:k5_firmware:20.1.0.25
Keeper » K5 Firmware » Version: 20.1.0.63

cpe:2.3:o:keeper:k5_firmware:20.1.0.63

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-16398

Products

Pricing

Contact Us