Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In February 2020
CVE-2020-0560
Improper permissions in the installer for the Intel(R) Renesas Electronics(R) USB 3.0 Driver, all versions, may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS Score
7.8
EPSS Score
0.001
Published
2020-02-13
CVE-2020-8981
A cross-site scripting (XSS) vulnerability was discovered in the Source Integration plugin before 1.6.2 and 2.x before 2.3.1 for MantisBT. The repo_delete.php Delete Repository page allows execution of arbitrary code via a repo name (if CSP settings permit it). This is related to CVE-2018-16362.
CVSS Score
6.1
EPSS Score
0.004
Published
2020-02-13
CVE-2012-1500
Stored XSS vulnerability in UpdateFieldJson.jspa in JIRA 4.4.3 and GreenHopper before 5.9.8 allows an attacker to inject arbitrary script code.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-02-13
CVE-2012-1903
XSS in Telligent Community 5.6.583.20496 via a flash file and related to the allowScriptAccess parameter.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-02-13
CVE-2020-8801
SuiteCRM through 7.11.11 allows PHAR Deserialization.
CVSS Score
7.2
EPSS Score
0.005
Published
2020-02-13
CVE-2020-8802
SuiteCRM through 7.11.11 has Incorrect Access Control via action_saveHTMLField Bean Manipulation.
CVSS Score
9.8
EPSS Score
0.005
Published
2020-02-13
CVE-2020-8803
SuiteCRM through 7.11.11 allows Directory Traversal to include arbitrary .php files within the webroot via add_to_prospect_list.
CVSS Score
9.8
EPSS Score
0.01
Published
2020-02-13
CVE-2020-8804
SuiteCRM through 7.11.10 allows SQL Injection via the SOAP API, the EmailUIAjax interface, or the MailMerge module.
CVSS Score
6.5
EPSS Score
0.004
Published
2020-02-13
CVE-2020-3751
Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017.011.30156 and earlier, and 2015.006.30508 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution .
CVSS Score
9.8
EPSS Score
0.044
Published
2020-02-13
CVE-2020-3752
Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017.011.30156 and earlier, and 2015.006.30508 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution .
CVSS Score
9.8
EPSS Score
0.031
Published
2020-02-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved