Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In August 2019
CVE-2018-20953
cPanel before 68.0.27 allows self XSS in the WHM listips interface (SEC-389).
CVSS Score
6.1
EPSS Score
0.004
Published
2019-08-01
CVE-2019-14491
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read in the function cv::predictOrdered<cv::HaarEvaluator> in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service.
CVSS Score
8.2
EPSS Score
0.005
Published
2019-08-01
CVE-2019-14492
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read/write in the function HaarEvaluator::OptFeature::calc in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service.
CVSS Score
7.5
EPSS Score
0.005
Published
2019-08-01
CVE-2019-14493
An issue was discovered in OpenCV before 4.1.1. There is a NULL pointer dereference in the function cv::XMLParser::parse at modules/core/src/persistence.cpp.
CVSS Score
7.5
EPSS Score
0.006
Published
2019-08-01
CVE-2019-14494
An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc.
CVSS Score
7.5
EPSS Score
0.005
Published
2019-08-01
CVE-2019-14495
webadmin.c in 3proxy before 0.8.13 has an out-of-bounds write in the admin interface.
CVSS Score
5.8
EPSS Score
0.005
Published
2019-08-01
CVE-2019-9140
When processing Deeplink scheme, Happypoint mobile app 6.3.19 and earlier versions doesn't check Deeplink URL correctly. This could lead to javascript code execution, url redirection, sensitive information disclosure. An attacker can exploit this issue by enticing an unsuspecting user to open a specific malicious URL.
CVSS Score
7.8
EPSS Score
0.003
Published
2019-08-01
CVE-2016-10834
cPanel before 55.9999.141 allows account-suspension bypass via ftp (SEC-105).
CVSS Score
8.8
EPSS Score
0.004
Published
2019-08-01
CVE-2016-10835
cPanel before 55.9999.141 allows a POP/IMAP cPHulk bypass via account name munging (SEC-107).
CVSS Score
4.3
EPSS Score
0.001
Published
2019-08-01
CVE-2018-20936
cPanel before 68.0.27 allows attackers to read the SRS secret via exim.conf (SEC-308).
CVSS Score
3.3
EPSS Score
0.001
Published
2019-08-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved