Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In January 2020
CVE-2019-19309
GitLab Enterprise Edition (EE) 8.90 and later through 12.5 has Incorrect Access Control.
CVSS Score
4.3
EPSS Score
0.001
Published
2020-01-03
CVE-2019-19310
GitLab Enterprise Edition (EE) 9.0 and later through 12.5 allows Information Disclosure.
CVSS Score
4.9
EPSS Score
0.001
Published
2020-01-03
CVE-2019-5063
An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV 4.1.0. A specially crafted XML file can cause a buffer overflow, resulting in multiple heap corruptions and potential code execution. An attacker can provide a specially crafted file to trigger this vulnerability.
CVSS Score
8.8
EPSS Score
0.067
Published
2020-01-03
CVE-2019-5064
An exploitable heap buffer overflow vulnerability exists in the data structure persistence functionality of OpenCV, before version 4.2.0. A specially crafted JSON file can cause a buffer overflow, resulting in multiple heap corruptions and potentially code execution. An attacker can provide a specially crafted file to trigger this vulnerability.
CVSS Score
8.8
EPSS Score
0.032
Published
2020-01-03
CVE-2012-4451
Multiple cross-site scripting (XSS) vulnerabilities in Zend Framework 2.0.x before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified input to (1) Debug, (2) Feed\PubSubHubbub, (3) Log\Formatter\Xml, (4) Tag\Cloud\Decorator, (5) Uri, (6) View\Helper\HeadStyle, (7) View\Helper\Navigation\Sitemap, or (8) View\Helper\Placeholder\Container\AbstractStandalone, related to Escaper.
CVSS Score
6.1
EPSS Score
0.018
Published
2020-01-03
CVE-2019-19255
GitLab Enterprise Edition (EE) 12.3 and later through 12.5 has Incorrect Access Control.
CVSS Score
4.3
EPSS Score
0.001
Published
2020-01-03
CVE-2019-19256
GitLab Enterprise Edition (EE) 12.2 and later through 12.5 has Incorrect Access Control.
CVSS Score
5.3
EPSS Score
0.001
Published
2020-01-03
CVE-2019-19257
GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 1 of 2).
CVSS Score
5.3
EPSS Score
0.001
Published
2020-01-03
CVE-2019-19258
GitLab Enterprise Edition (EE) 10.8 and later through 12.5 has Incorrect Access Control.
CVSS Score
5.3
EPSS Score
0.001
Published
2020-01-03
CVE-2019-19259
GitLab Enterprise Edition (EE) 11.3 and later through 12.5 allows an Insecure Direct Object Reference (IDOR).
CVSS Score
4.3
EPSS Score
0.001
Published
2020-01-03


Products
Pricing
Contact Us

Shodan ® - All rights reserved