Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In February 2020
CVE-2019-4613
IBM Planning Analytics 2.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 168524.
CVSS Score
4.3
EPSS Score
0.001
Published
2020-02-05
CVE-2019-4616
IBM Cloud Automation Manager 3.2.1.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can then obtain the cookie value by snooping the traffic. IBM X-Force ID: 168644.
CVSS Score
4.3
EPSS Score
0.001
Published
2020-02-05
CVE-2019-4670
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to obtain sensitive information caused by improper data representation. IBM X-Force ID: 171319.
CVSS Score
6.5
EPSS Score
0.003
Published
2020-02-05
CVE-2020-6174
TUF (aka The Update Framework) through 0.12.1 has Improper Verification of a Cryptographic Signature.
CVSS Score
9.8
EPSS Score
0.002
Published
2020-02-05
CVE-2020-6969
It is possible to unmask credentials and other sensitive information on “unprotected” project files, which may allow an attacker to remotely access the C-More Touch Panels EA9 series: firmware versions prior to 6.53 and manipulate system configurations.
CVSS Score
9.8
EPSS Score
0.005
Published
2020-02-05
CVE-2020-7966
GitLab EE 11.11 and later through 12.7.2 allows Directory Traversal.
CVSS Score
7.5
EPSS Score
0.001
Published
2020-02-05
CVE-2020-7967
GitLab EE 8.0 through 12.7.2 has Insecure Permissions (issue 1 of 2).
CVSS Score
4.3
EPSS Score
0.0
Published
2020-02-05
CVE-2020-7968
GitLab EE 8.0 through 12.7.2 has Incorrect Access Control.
CVSS Score
7.5
EPSS Score
0.001
Published
2020-02-05
CVE-2020-7969
GitLab EE 8.0 and later through 12.7.2 allows Information Disclosure.
CVSS Score
7.5
EPSS Score
0.001
Published
2020-02-05
CVE-2013-0507
IBM InfoSphere Information Server 8.1, 8.5, 8.7, 9.1 has a Session Fixation Vulnerability
CVSS Score
8.1
EPSS Score
0.002
Published
2020-02-05


Products
Pricing
Contact Us

Shodan ® - All rights reserved