Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In May 2018
CVE-2018-10578
An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15, and AP300 devices with firmware before 2.0.0.10. Incorrect validation of the "old password" field in the change password form allows an attacker to bypass validation of this field.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-05-02
CVE-2018-8900
The License Manager service of HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE 7.80 allows remote attackers to inject malicious web script in the logs page of Admin Control Center (ACC) for cross-site scripting (XSS) vulnerability.
CVSS Score
6.1
EPSS Score
0.003
Published
2018-05-02
CVE-2018-9919
A web-accessible backdoor, with resultant SSRF, exists in Tp-shop 2.0.5 through 2.0.8, which allows remote attackers to obtain sensitive information, attack intranet hosts, or possibly trigger remote command execution, because /vendor/phpdocumentor/reflection-docblock/tests/phpDocumentor/Reflection/DocBlock/Tag/LinkTagTeet.php writes data from the "down_url" URL into the "bddlj" local file if the attacker knows the backdoor "jmmy" parameter.
CVSS Score
9.8
EPSS Score
0.049
Published
2018-05-02
CVE-2018-10115
Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03 and before can lead to usage of uninitialized memory, allowing remote attackers to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive.
CVSS Score
7.8
EPSS Score
0.076
Published
2018-05-02
CVE-2018-10294
Flexense DiskBoss Enterprise v7.4.28 to v9.1.16 has XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-05-02
CVE-2018-10563
An XSS in Flexense SyncBreeze affects all versions (tested from SyncBreeze Enterprise from v10.1 to v10.7).
CVSS Score
6.1
EPSS Score
0.002
Published
2018-05-02
CVE-2018-10564
XSS exists in Flexense DiskPulse Enterprise from v10.4 to v10.7.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-05-02
CVE-2018-10565
XSS exists in Flexense DiskSavvy Enterprise from v10.4 to v10.7.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-05-02
CVE-2018-10566
XSS exists in Flexense DupScout Enterprise from v10.0.18 to v10.7.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-05-02
CVE-2018-10567
XSS exists in Flexense VX Search Enterprise from v10.1.12 to v10.7.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-05-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved