Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2019
CVE-2019-11948
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
CVSS Score
8.8
EPSS Score
0.017
Published
2019-06-05
CVE-2019-12243
Istio 1.1.x through 1.1.6 has Incorrect Access Control.
CVSS Score
7.5
EPSS Score
0.001
Published
2019-06-05
CVE-2019-12538
An issue was discovered in Zoho ManageEngine ServiceDesk Plus 9.3. There is XSS via the SiteLookup.do search field.
CVSS Score
6.1
EPSS Score
0.021
Published
2019-06-05
CVE-2019-12541
An issue was discovered in Zoho ManageEngine ServiceDesk Plus 9.3. There is XSS via the SolutionSearch.do searchText parameter.
CVSS Score
6.1
EPSS Score
0.021
Published
2019-06-05
CVE-2019-12542
An issue was discovered in Zoho ManageEngine ServiceDesk Plus 9.3. There is XSS via the SearchN.do userConfigID parameter.
CVSS Score
6.1
EPSS Score
0.021
Published
2019-06-05
CVE-2019-12543
An issue was discovered in Zoho ManageEngine ServiceDesk Plus 9.3. There is XSS via the PurchaseRequest.do serviceRequestId parameter.
CVSS Score
6.1
EPSS Score
0.021
Published
2019-06-05
CVE-2019-12741
XSS exists in the HAPI FHIR testpage overlay module of the HAPI FHIR library before 3.8.0. The attack involves unsanitized HTTP parameters being output in a form page, allowing attackers to leak cookies and other sensitive information from ca/uhn/fhir/to/BaseController.java via a specially crafted URL. (This module is not generally used in production systems so the attack surface is expected to be low, but affected systems are recommended to upgrade immediately.)
CVSS Score
6.1
EPSS Score
0.004
Published
2019-06-05
CVE-2019-5338
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
CVSS Score
8.8
EPSS Score
0.018
Published
2019-06-05
CVE-2019-5339
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
CVSS Score
8.8
EPSS Score
0.018
Published
2019-06-05
CVE-2018-18571
An Incorrect Access Control vulnerability has been identified in Citrix XenMobile Server 10.8.0 before Rolling Patch 6 and 10.9.0 before Rolling Patch 3. An attacker can impersonate and take actions on behalf of any Mobile Application Management (MAM) enrolled device.
CVSS Score
9.1
EPSS Score
0.003
Published
2019-06-05


Products
Pricing
Contact Us

Shodan ® - All rights reserved