Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In April 2021
CVE-2021-27357
RIOT-OS 2020.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-04-06
CVE-2021-27697
RIOT-OS 2021.01 contains a buffer overflow vulnerability in sys/net/gnrc/routing/rpl/gnrc_rpl_validation.c through the gnrc_rpl_validation_options() function.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-04-06
CVE-2021-27698
RIOT-OS 2021.01 contains a buffer overflow vulnerability in /sys/net/gnrc/routing/rpl/gnrc_rpl_control_messages.c through the _parse_options() function.
CVSS Score
9.8
EPSS Score
0.005
Published
2021-04-06
CVE-2021-28075
iKuaiOS 3.4.8 Build 202012291059 has an arbitrary file download vulnerability, which can be exploited by attackers to obtain sensitive information.
CVSS Score
7.5
EPSS Score
0.004
Published
2021-04-06
CVE-2021-28874
SerenityOS fixed as of c9f25bca048443e317f1994ba9b106f2386688c3 contains a buffer overflow vulnerability in LibTextCode through opening a crafted file.
CVSS Score
7.8
EPSS Score
0.003
Published
2021-04-06
CVE-2021-30045
SerenityOS 2021-03-27 contains a buffer overflow vulnerability in the EndOfCentralDirectory::read() function.
CVSS Score
9.1
EPSS Score
0.006
Published
2021-04-06
CVE-2021-30046
VIGRA Computer Vision Library Version-1-11-1 contains a segmentation fault vulnerability in the impex.hxx read_image_band() function, in which a crafted file can cause a denial of service.
CVSS Score
6.5
EPSS Score
0.003
Published
2021-04-06
CVE-2021-28171
The Vangene deltaFlow E-platform does not take properly protective measures. Attackers can obtain privileged permissions remotely by tampering with users’ data in the Cookie.
CVSS Score
9.8
EPSS Score
0.003
Published
2021-04-06
CVE-2021-28172
There is a Path Traversal vulnerability in the file download function of Vangene deltaFlow E-platform. Remote attackers can access credential data with this leakage.
CVSS Score
7.5
EPSS Score
0.005
Published
2021-04-06
CVE-2021-28173
The file upload function of Vangene deltaFlow E-platform does not perform access controlled properly. Remote attackers can upload and execute arbitrary files without login.
CVSS Score
9.8
EPSS Score
0.007
Published
2021-04-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved