Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In May 2022
CVE-2022-22454
IBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.
CVSS Score
5.9
EPSS Score
0.001
Published
2022-05-10
CVE-2022-26987
TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MmtAtePrase` function. Local users could get remote code execution.
CVSS Score
7.8
EPSS Score
0.005
Published
2022-05-10
CVE-2022-26988
TP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution.
CVSS Score
7.8
EPSS Score
0.005
Published
2022-05-10
CVE-2022-28910
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the devicename parameter in /setting/setDeviceName.
CVSS Score
9.8
EPSS Score
0.113
Published
2022-05-10
CVE-2022-28911
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the filename parameter in /setting/CloudACMunualUpdate.
CVSS Score
9.8
EPSS Score
0.113
Published
2022-05-10
CVE-2022-28912
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the filename parameter in /setting/setUpgradeFW.
CVSS Score
9.8
EPSS Score
0.113
Published
2022-05-10
CVE-2022-28913
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability via the filename parameter in /setting/setUploadSetting.
CVSS Score
9.8
EPSS Score
0.113
Published
2022-05-10
CVE-2022-28915
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a command injection vulnerability via the admuser and admpass parameters in /goform/setSysAdm.
CVSS Score
9.8
EPSS Score
0.334
Published
2022-05-10
CVE-2022-29321
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the lanip parameter in /goform/setNetworkLan.
CVSS Score
9.8
EPSS Score
0.019
Published
2022-05-10
CVE-2022-29322
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a stack overflow via the IPADDR and nvmacaddr parameters in /goform/form2Dhcpip.
CVSS Score
9.8
EPSS Score
0.026
Published
2022-05-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved