Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In February 2023
CVE-2022-48305
There is an identity authentication bypass vulnerability in Huawei Children Smart Watch (Simba-AL00) 1.1.1.274. Successful exploitation of this vulnerability may cause the access control function of specific applications to fail.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-02-27
CVE-2022-48230
There is a misinterpretation of input vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could lead to DoS.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-02-27
CVE-2022-48254
There is a data processing error vulnerability in Leia-B29 2.0.0.49(M03). Successful exploitation could bypass lock screen authentication.
CVSS Score
4.6
EPSS Score
0.0
Published
2023-02-27
CVE-2022-48255
There is a system command injection vulnerability in BiSheng-WNM FW 3.0.0.325. A Huawei printer has a system command injection vulnerability. Successful exploitation could lead to remote code execution.
CVSS Score
9.8
EPSS Score
0.017
Published
2023-02-27
CVE-2022-48259
There is a system command injection vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could allow attackers to gain higher privileges.
CVSS Score
9.8
EPSS Score
0.004
Published
2023-02-27
CVE-2022-48260
There is a buffer overflow vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could lead to device service exceptions.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-02-27
CVE-2022-48261
There is a misinterpretation of input vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation of this vulnerability may cause the printer service to be abnormal.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-02-27
CVE-2022-48283
A piece of Huawei whole-home intelligence software has an Incorrect Privilege Assignment vulnerability. Successful exploitation of this vulnerability could allow attackers to access restricted functions.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-02-27
CVE-2023-24251
WangEditor v5 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /dist/index.js.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-02-27
CVE-2023-24364
Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter under the Admin Panel.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-02-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved