Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In February 2020
CVE-2019-4562
IBM Security Directory Server 6.4.0 stores sensitive information in URLs. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referer header or browser history. IBM X-Force ID: 166623.
CVSS Score
3.7
EPSS Score
0.003
Published
2020-02-04
CVE-2019-4674
IBM Security Identity Manager 7.0.1 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 171510.
CVSS Score
6.8
EPSS Score
0.003
Published
2020-02-04
CVE-2019-19273
On Samsung mobile devices with O(8.0) and P(9.0) software and an Exynos 8895 chipset, RKP (aka the Samsung Hypervisor EL2 implementation) allows arbitrary memory write operations. The Samsung ID is SVE-2019-16265.
CVSS Score
7.8
EPSS Score
0.0
Published
2020-02-04
CVE-2013-2676
Brother MFC-9970CDW 1.10 firmware L devices contain an information disclosure vulnerability which allows remote attackers to view private IP addresses and other sensitive information.
CVSS Score
7.5
EPSS Score
0.019
Published
2020-02-04
CVE-2013-2678
Cisco Linksys E4200 1.0.05 Build 7 routers contain a Local File Include Vulnerability which could allow remote attackers to obtain sensitive information or execute arbitrary code by sending a crafted URL request to the apply.cgi script using the submit_type parameter.
CVSS Score
8.1
EPSS Score
0.713
Published
2020-02-04
CVE-2019-19968
PandoraFMS 742 suffers from multiple XSS vulnerabilities, affecting the Agent Management, Report Builder, and Graph Builder components. An authenticated user can inject dangerous content into a data store that is later read and included in dynamic content.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-02-04
CVE-2019-9674
Lib/zipfile.py in Python through 3.7.2 allows remote attackers to cause a denial of service (resource consumption) via a ZIP bomb.
CVSS Score
7.5
EPSS Score
0.012
Published
2020-02-04
CVE-2013-7054
D-Link DIR-100 4.03B07: cli.cgi XSS
CVSS Score
6.1
EPSS Score
0.145
Published
2020-02-04
CVE-2013-7055
D-Link DIR-100 4.03B07 has PPTP and poe information disclosure
CVSS Score
9.8
EPSS Score
0.493
Published
2020-02-04
CVE-2011-4912
Joomla! com_mailto 1.5.x through 1.5.13 has an automated mail timeout bypass.
CVSS Score
5.3
EPSS Score
0.0
Published
2020-02-04


Products
Pricing
Contact Us

Shodan ® - All rights reserved