Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In July 2019
CVE-2019-13148
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the UDP Ports To Open in Add Gaming Rule.
CVSS Score
8.8
EPSS Score
0.046
Published
2019-07-02
CVE-2019-13149
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the key passwd in Routing RIP Settings.
CVSS Score
8.8
EPSS Score
0.046
Published
2019-07-02
CVE-2019-13150
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication). The command injection exists in the key ip_addr.
CVSS Score
8.8
EPSS Score
0.046
Published
2019-07-02
CVE-2019-13151
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the action set_sta_enrollee_pin_5g and the key wps_sta_enrollee_pin.
CVSS Score
8.8
EPSS Score
0.046
Published
2019-07-02
CVE-2019-13152
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the IP Address in Add Gaming Rule.
CVSS Score
8.8
EPSS Score
0.046
Published
2019-07-02
CVE-2019-13153
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the Private Port in Add Virtual Server.
CVSS Score
8.8
EPSS Score
0.046
Published
2019-07-02
CVE-2019-13154
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the TCP Ports To Open in Add Gaming Rule.
CVSS Score
8.8
EPSS Score
0.046
Published
2019-07-02
CVE-2019-13155
An issue was discovered in TRENDnet TEW-827DRU firmware before 2.05B11. There is a command injection in apply.cgi (exploitable with authentication) via the IP Address in Add Virtual Server.
CVSS Score
8.8
EPSS Score
0.046
Published
2019-07-02
CVE-2019-13147
In Audio File Library (aka audiofile) 0.3.6, there exists one NULL pointer dereference bug in ulaw2linear_buf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file.
CVSS Score
6.5
EPSS Score
0.001
Published
2019-07-02
CVE-2019-5497
NetApp AFF A700s Baseboard Management Controller (BMC) firmware versions 1.22 and higher were shipped with a default account enabled that could allow unauthorized arbitrary command execution.
CVSS Score
9.8
EPSS Score
0.01
Published
2019-07-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved