Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In January 2022
CVE-2021-44829
Cross Site Scripting (XSS) vulnerability exists in index.html in AFI WebACMS through 2.1.0 via the the ID parameter.
CVSS Score
6.1
EPSS Score
0.034
Published
2022-01-20
CVE-2022-0219
Improper Restriction of XML External Entity Reference in GitHub repository skylot/jadx prior to 1.3.2.
CVSS Score
5.5
EPSS Score
0.005
Published
2022-01-20
CVE-2021-44734
Embedded web server input sanitization vulnerability in Lexmark devices through 2021-12-07, which can which can lead to remote code execution on the device.
CVSS Score
9.8
EPSS Score
0.083
Published
2022-01-20
CVE-2021-44735
Embedded web server command injection vulnerability in Lexmark devices through 2021-12-07.
CVSS Score
9.8
EPSS Score
0.126
Published
2022-01-20
CVE-2021-44736
The initial admin account setup wizard on Lexmark devices allow unauthenticated access to the “out of service erase” feature.
CVSS Score
9.8
EPSS Score
0.007
Published
2022-01-20
CVE-2021-44737
PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged to overwrite internal configuration files.
CVSS Score
8.8
EPSS Score
0.008
Published
2022-01-20
CVE-2021-44738
Buffer overflow vulnerability has been identified in Lexmark devices through 2021-12-07 in postscript interpreter.
CVSS Score
9.8
EPSS Score
0.008
Published
2022-01-20
CVE-2021-32039
Users with appropriate file access may be able to access unencrypted user credentials saved by MongoDB Extension for VS Code in a binary file. These credentials may be used by malicious attackers to perform unauthorized actions. This vulnerability affects all MongoDB Extension for VS Code including and prior to version 0.7.0
CVSS Score
5.5
EPSS Score
0.001
Published
2022-01-20
CVE-2022-0285
Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.9.
CVSS Score
6.6
EPSS Score
0.0
Published
2022-01-20
CVE-2021-34600
Telenot CompasX versions prior to 32.0 use a weak seed for random number generation leading to predictable AES keys used in the NFC tags used for local authorization of users. This may lead to total loss of trustworthiness of the installation.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-01-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved