Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2022
CVE-2022-2088
An authenticated user with admin privileges may be able to terminate any process on the system running Elcomplus SmartICS v2.3.4.0.
CVSS Score
6.8
EPSS Score
0.001
Published
2022-06-27
CVE-2022-2106
Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables authenticated administrator-level users to perform path traversal attacks and specify arbitrary files.
CVSS Score
3.8
EPSS Score
0.002
Published
2022-06-27
CVE-2022-2140
Elcomplus SmartICS v2.3.4.0 does not neutralize user-controllable input, which allows an authenticated user to inject arbitrary code into specific parameters.
CVSS Score
8.8
EPSS Score
0.003
Published
2022-06-27
CVE-2021-33647
When performing the inference shape operation of the Tile operator, if the input data type is not int or int32, it will access data outside of bounds of heap allocated buffers.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-06-27
CVE-2021-33648
When performing the inference shape operation of Affine, Concat, MatMul, ArgMinMax, EmbeddingLookup, and Gather operators, if the input shape size is 0, it will access data outside of bounds of shape which allocated from heap buffers.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-06-27
CVE-2021-33649
When performing the inference shape operation of the Transpose operator, if the value in the perm element is greater than or equal to the size of the input_shape, it will access data outside of bounds of input_shape which allocated from heap buffers.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-06-27
CVE-2021-33650
When performing the inference shape operation of the SparseToDense operator, if the number of inputs is less than three, it will access data outside of bounds of inputs which allocated from heap buffers.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-06-27
CVE-2021-33651
When performing the analytical operation of the DepthwiseConv2D operator, if the attribute depth_multiplier is 0, it will cause a division by 0 exception.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-06-27
CVE-2021-33652
When the Reduce operator run operation is executed, if there is a value of 0 in the parameter axis_sizes element, it will cause a division by 0 exception.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-06-27
CVE-2021-33653
When performing the derivation shape operation of the SpaceToBatch operator, if there is a value of 0 in the parameter block_shape element, it will cause a division by 0 exception.
CVSS Score
7.5
EPSS Score
0.004
Published
2022-06-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved