Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In April 2017
CVE-2016-0720
Cross-site request forgery (CSRF) vulnerability in pcsd web UI in pcs before 0.9.149.
CVSS Score
8.8
EPSS Score
0.004
Published
2017-04-21
CVE-2016-0721
Session fixation vulnerability in pcsd in pcs before 0.9.157.
CVSS Score
8.1
EPSS Score
0.004
Published
2017-04-21
CVE-2016-10091
Multiple stack-based buffer overflows in unrtf 0.21.9 allow remote attackers to cause a denial-of-service by writing a negative integer to the (1) cmd_expand function, (2) cmd_emboss function, or (3) cmd_engrave function.
CVSS Score
7.5
EPSS Score
0.026
Published
2017-04-21
CVE-2016-1555
Known exploited
(1) boardData102.php, (2) boardData103.php, (3) boardDataJP.php, (4) boardDataNA.php, and (5) boardDataWW.php in Netgear WN604 before 3.3.3 and WN802Tv2, WNAP210v2, WNAP320, WNDAP350, WNDAP360, and WNDAP660 before 3.5.5.0 allow remote attackers to execute arbitrary commands.
CVSS Score
9.8
EPSS Score
0.941
Published
2017-04-21
CVE-2016-1556
Information disclosure in Netgear WN604 before 3.3.3; WNAP210, WNAP320, WNDAP350, and WNDAP360 before 3.5.5.0; and WND930 before 2.0.11 allows remote attackers to read the wireless WPS PIN or passphrase by visiting unauthenticated webpages.
CVSS Score
7.5
EPSS Score
0.01
Published
2017-04-21
CVE-2016-1557
Netgear WNAP320, WNDAP350, and WNDAP360 before 3.5.5.0 reveal wireless passwords and administrative usernames and passwords over SNMP.
CVSS Score
9.8
EPSS Score
0.012
Published
2017-04-21
CVE-2016-1558
Buffer overflow in D-Link DAP-2310 2.06 and earlier, DAP-2330 1.06 and earlier, DAP-2360 2.06 and earlier, DAP-2553 H/W ver. B1 3.05 and earlier, DAP-2660 1.11 and earlier, DAP-2690 3.15 and earlier, DAP-2695 1.16 and earlier, DAP-3320 1.00 and earlier, and DAP-3662 1.01 and earlier allows remote attackers to have unspecified impact via a crafted 'dlink_uid' cookie.
CVSS Score
9.8
EPSS Score
0.149
Published
2017-04-21
CVE-2016-1559
D-Link DAP-1353 H/W vers. B1 3.15 and earlier, D-Link DAP-2553 H/W ver. A1 1.31 and earlier, and D-Link DAP-3520 H/W ver. A1 1.16 and earlier reveal wireless passwords and administrative usernames and passwords over SNMP.
CVSS Score
8.1
EPSS Score
0.011
Published
2017-04-21
CVE-2016-6519
Cross-site scripting (XSS) vulnerability in the "Shares" overview in Openstack Manila before 2.5.1 allows remote authenticated users to inject arbitrary web script or HTML via the Metadata field in the "Create Share" form.
CVSS Score
5.4
EPSS Score
0.003
Published
2017-04-21
CVE-2016-0833
Android allows users to cause a denial of service.
CVSS Score
7.5
EPSS Score
0.001
Published
2017-04-21


Products
Pricing
Contact Us

Shodan ® - All rights reserved