Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2020
CVE-2020-14398
An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.
CVSS Score
7.5
EPSS Score
0.018
Published
2020-06-17
CVE-2020-14399
An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. NOTE: there is reportedly "no trust boundary crossed.
CVSS Score
7.5
EPSS Score
0.024
Published
2020-06-17
CVE-2020-14400
An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerability as there is no known path of exploitation or cross of a trust boundary
CVSS Score
7.5
EPSS Score
0.024
Published
2020-06-17
CVE-2020-12827
MJML prior to 4.6.3 contains a path traversal vulnerability when processing the mj-include directive within an MJML document.
CVSS Score
7.2
EPSS Score
0.021
Published
2020-06-17
CVE-2020-14295
A SQL injection issue in color.php in Cacti 1.2.12 allows an admin to inject SQL via the filter parameter. This can lead to remote command execution because the product accepts stacked queries.
CVSS Score
7.2
EPSS Score
0.812
Published
2020-06-17
CVE-2020-13224
TP-LINK NC200 devices through 2.1.10 build 200401, NC210 devices through 1.0.10 build 200401, NC220 devices through 1.3.1 build 200401, NC230 devices through 1.3.1 build 200401, NC250 devices through 1.3.1 build 200401, NC260 devices through 1.5.3 build_200401, and NC450 devices through 1.5.4 build 200401 have a Buffer Overflow
CVSS Score
8.8
EPSS Score
0.01
Published
2020-06-17
CVE-2020-11910
The Treck TCP/IP stack before 6.0.1.66 has an ICMPv4 Out-of-bounds Read.
CVSS Score
5.3
EPSS Score
0.036
Published
2020-06-17
CVE-2020-11911
The Treck TCP/IP stack before 6.0.1.66 has Improper ICMPv4 Access Control.
CVSS Score
5.3
EPSS Score
0.059
Published
2020-06-17
CVE-2020-11912
The Treck TCP/IP stack before 6.0.1.66 has a TCP Out-of-bounds Read.
CVSS Score
5.3
EPSS Score
0.016
Published
2020-06-17
CVE-2020-11913
The Treck TCP/IP stack before 6.0.1.66 has an IPv6 Out-of-bounds Read.
CVSS Score
5.3
EPSS Score
0.041
Published
2020-06-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved