Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In August 2018
An authenticated attacker can execute arbitrary code using command ejection in Eltex ESP-200 firmware version 1.2.0.
CVSS Score
8.8
EPSS Score
0.003
Published
2018-08-17
An authenticated attacker with low privileges can extract password hash information for all users in Eltex ESP-200 firmware version 1.2.0.
CVSS Score
6.5
EPSS Score
0.004
Published
2018-08-17
An authenticated attacker with low privileges can activate high privileged user and use it to expand attack surface in Eltex ESP-200 firmware version 1.2.0.
CVSS Score
8.8
EPSS Score
0.005
Published
2018-08-17
An authenticated attacker with low privileges can use insecure sudo configuration to expand attack surface in Eltex ESP-200 firmware version 1.2.0.
CVSS Score
8.8
EPSS Score
0.005
Published
2018-08-17
An attacker without authentication can login with default credentials for privileged users in Eltex ESP-200 firmware version 1.2.0.
CVSS Score
7.3
EPSS Score
0.001
Published
2018-08-17
Usage of SSLv2 and SSLv3 leads to transmitted data decryption in Kraftway 24F2XG Router firmware 3.5.30.1118.
CVSS Score
5.9
EPSS Score
0.001
Published
2018-08-17
Router Default Credentials in Kraftway 24F2XG Router firmware version 3.5.30.1118 allow remote attackers to get privileged access to the router.
CVSS Score
9.8
EPSS Score
0.007
Published
2018-08-17
Denial of service via crafting malicious link and sending it to a privileged user can cause Denial of Service in Kraftway 24F2XG Router firmware version 3.5.30.1118.
CVSS Score
6.5
EPSS Score
0.004
Published
2018-08-17
An attacker with low privileges can cause denial of service in Kraftway 24F2XG Router firmware version 3.5.30.1118.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-08-17
A Buffer Overflow exploited through web interface by remote attacker can cause remote code execution in Kraftway 24F2XG Router firmware 3.5.30.1118.
CVSS Score
9.8
EPSS Score
0.036
Published
2018-08-17


Contact Us

Shodan ® - All rights reserved