Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In March 2020
CVE-2018-10704
yidashi yii2cmf 2.0 has XSS via the /search q parameter.
CVSS Score
6.1
EPSS Score
0.003
Published
2020-03-12
CVE-2018-19516
messagepartthemes/default/defaultrenderer.cpp in messagelib in KDE Applications before 18.12.0 does not properly restrict the handling of an http-equiv="REFRESH" value.
CVSS Score
5.3
EPSS Score
0.004
Published
2020-03-12
CVE-2018-20586
bitcoind and Bitcoin-Qt prior to 0.17.1 allow injection of arbitrary data into the debug log via an RPC call.
CVSS Score
5.3
EPSS Score
0.004
Published
2020-03-12
CVE-2019-11343
Torpedo Query before 2.5.3 mishandles the LIKE operator in ConditionBuilder.java, LikeCondition.java, and NotLikeCondition.java.
CVSS Score
9.8
EPSS Score
0.004
Published
2020-03-12
CVE-2019-11355
An issue was discovered in Poly (formerly Polycom) HDX 3.1.13. A feature exists that allows the creation of a server / client certificate, or the upload of the user certificate, on the administrator's page. The value received from the user is the factor value of a shell script on the equipment. By entering a special character (such as a single quote) in a CN or other CSR field, one can insert a command into a factor value. A system command can be executed as root.
CVSS Score
7.2
EPSS Score
0.005
Published
2020-03-12
CVE-2015-3641
bitcoind and Bitcoin-Qt prior to 0.10.2 allow attackers to cause a denial of service (disabled functionality such as a client application crash) via an "Easy" attack.
CVSS Score
7.5
EPSS Score
0.008
Published
2020-03-12
CVE-2020-5959
NVIDIA Virtual GPU Manager, all versions, contains a vulnerability in the vGPU plugin in which an input index value is incorrectly validated which may lead to denial of service.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-03-12
CVE-2020-5960
NVIDIA Virtual GPU Manager contains a vulnerability in the kernel module (nvidia.ko), where a null pointer dereference may occur, which may lead to denial of service.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-03-12
CVE-2020-5961
NVIDIA vGPU graphics driver for guest OS contains a vulnerability in which an incorrect resource clean up on a failure path can impact the guest VM, leading to denial of service.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-03-12
CVE-2020-0508
Incorrect default permissions in the installer for Intel(R) Graphics Drivers before versions 15.33.49.5100, 15.36.38.5117, 15.40.44.5107, 15.45.30.5103, and 26.20.100.7212 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVSS Score
7.8
EPSS Score
0.0
Published
2020-03-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved