Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In April 2020
CVE-2020-11793
A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash).
CVSS Score
8.8
EPSS Score
0.008
Published
2020-04-17
CVE-2020-11872
The Cloud Functions subsystem in OpenTrace 1.0 might allow fabrication attacks by making billions of TempID requests before an AES-256-GCM key rotation occurs.
CVSS Score
7.5
EPSS Score
0.001
Published
2020-04-17
CVE-2020-11868
ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissions are rescheduled even when a packet lacks a valid origin timestamp.
CVSS Score
5.9
EPSS Score
0.006
Published
2020-04-17
CVE-2019-7306
Byobu Apport hook may disclose sensitive information since it automatically uploads the local user's .screenrc which may contain private hostnames, usernames and passwords. This issue affects: byobu
CVSS Score
4.3
EPSS Score
0.005
Published
2020-04-17
CVE-2019-20757
NETGEAR R7800 devices before 1.0.2.62 are affected by command injection by an authenticated user.
CVSS Score
6.8
EPSS Score
0.003
Published
2020-04-16
CVE-2019-20758
NETGEAR R7000 devices before 1.0.9.42 are affected by a buffer overflow by an authenticated user.
CVSS Score
7.4
EPSS Score
0.003
Published
2020-04-16
CVE-2019-20759
NETGEAR R9000 devices before 1.0.4.26 are affected by stored XSS.
CVSS Score
7.4
EPSS Score
0.002
Published
2020-04-16
CVE-2019-20760
NETGEAR R9000 devices before 1.0.4.26 are affected by authentication bypass.
CVSS Score
8.3
EPSS Score
0.002
Published
2020-04-16
CVE-2019-20761
NETGEAR R7800 devices before 1.0.2.62 are affected by command injection by an authenticated user.
CVSS Score
7.6
EPSS Score
0.004
Published
2020-04-16
CVE-2019-20762
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects D8500 before 1.0.3.43, R8500 before 1.0.2.128, R8300 before 1.0.2.128, R8000 before 1.0.4.28, R7300DST before 1.0.0.68, R7100LG before 1.0.0.48, R6900P before 1.3.1.44, R7900P before 1.4.1.30, R8000P before 1.4.1.30, R7000P before 1.3.1.44, R7000 before 1.0.9.34, R6900 before 1.0.2.4, R6700 before 1.0.2.6, and R6400 before 1.0.1.44.
CVSS Score
6.8
EPSS Score
0.003
Published
2020-04-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved