Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In February 2020
CVE-2011-1084
A cross-site scripting (XSS) vulnerability in Smoothwall Express 3.
CVSS Score
6.1
EPSS Score
0.002
Published
2020-02-07
CVE-2011-1085
CSRF vulnerability in Smoothwall Express 3.
CVSS Score
8.8
EPSS Score
0.002
Published
2020-02-07
CVE-2020-6769
Missing Authentication for Critical Function in the Bosch Video Streaming Gateway (VSG) allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streaming Gateway. A successful attack can impact the confidentiality and availability of live and recorded video data of all cameras configured to be controlled by the VSG as well as the recording storage associated with the VSG. This affects Bosch Video Streaming Gateway versions 6.45 <= 6.45.08, 6.44 <= 6.44.022, 6.43 <= 6.43.0023 and 6.42.10 and older. This affects Bosch DIVAR IP 3000, DIVAR IP 7000 and DIVAR IP all-in-one 5000 if a vulnerable VSG version is installed with BVMS. This affects Bosch DIVAR IP 2000 <= 3.62.0019 and DIVAR IP 5000 <= 3.80.0039 if the corresponding port 8023 has been opened in the device's firewall.
CVSS Score
10.0
EPSS Score
0.011
Published
2020-02-07
CVE-2020-8796
Biscom Secure File Transfer (SFT) before 5.1.1071 and 6.0.1xxx before 6.0.1005 allows Remote Code Execution on the server.
CVSS Score
9.8
EPSS Score
0.033
Published
2020-02-07
CVE-2013-3096
D-Link DIR865L v1.03 suffers from an "Unauthenticated Hardware Linking" vulnerability.
CVSS Score
5.9
EPSS Score
0.005
Published
2020-02-07
CVE-2013-3067
Linksys WRT310Nv2 2.0.0.1 is vulnerable to XSS.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-02-07
CVE-2013-3091
An Authentication Bypass vulnerability in Belkin N300 (F7D7301v1) router allows remote attackers to bypass authentication using "Javascript debugging."
CVSS Score
9.8
EPSS Score
0.05
Published
2020-02-07
CVE-2014-5087
A vulnerability exists in Sphider Search Engine prior to 1.3.6 due to exec calls in admin/spiderfuncs.php, which could let a remote malicious user execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.158
Published
2020-02-07
CVE-2014-5091
A vulnerability exits in Status2K 2.5 Server Monitoring Software via the multies parameter to includes/functions.php, which could let a malicious user execute arbitrary PHP code.
CVSS Score
9.8
EPSS Score
0.469
Published
2020-02-07
CVE-2014-5278
A vulnerability exists in Docker before 1.2 via container names, which may collide with and override container IDs.
CVSS Score
5.3
EPSS Score
0.004
Published
2020-02-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved