Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In July 2022
CVE-2022-34610
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the URL /ihomers/app.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-07-20
CVE-2022-34599
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the EdittriggerList interface at /goform/aspForm.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-07-20
CVE-2022-34600
H3C Magic R200 R200V200R004L02 was discovered to contain a stack overflow via the EditSTList interface at /goform/aspForm.
CVSS Score
9.8
EPSS Score
0.004
Published
2022-07-20
CVE-2021-31858
DotNetNuke (DNN) 9.9.1 CMS is vulnerable to a Stored Cross-Site Scripting vulnerability in the user profile biography section which allows remote authenticated users to inject arbitrary code via a crafted payload.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-07-20
CVE-2022-24657
Goldshell ASIC Miners v2.1.x was discovered to contain hardcoded credentials which allow attackers to remotely connect via the SSH protocol (port 22).
CVSS Score
9.8
EPSS Score
0.004
Published
2022-07-20
CVE-2022-24659
Goldshell ASIC Miners v2.2.1 and below was discovered to contain a path traversal vulnerability which allows unauthenticated attackers to retrieve arbitrary files from the device.
CVSS Score
7.5
EPSS Score
0.026
Published
2022-07-20
CVE-2022-24660
The debug interface of Goldshell ASIC Miners v2.2.1 and below was discovered to be exposed publicly on the web interface, allowing attackers to access passwords and other sensitive information in plaintext.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-07-20
CVE-2022-36321
In JetBrains TeamCity before 2022.04.2 the private SSH key could be written to the build log in some cases
CVSS Score
4.1
EPSS Score
0.0
Published
2022-07-20
CVE-2022-36322
In JetBrains TeamCity before 2022.04.2 build parameter injection was possible
CVSS Score
5.4
EPSS Score
0.0
Published
2022-07-20
CVE-2022-2492
A vulnerability was found in SourceCodester Library Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php. The manipulation of the argument RollNo with the input admin' AND (SELECT 2625 FROM (SELECT(SLEEP(5)))MdIL) AND 'KXmq'='KXmq&Password=1231312312 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
6.3
EPSS Score
0.003
Published
2022-07-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved