Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In September 2021
CVE-2021-25463
Improper access control vulnerability in PENUP prior to version 3.8.00.18 allows arbitrary webpage loading in webview.
CVSS Score
4.0
EPSS Score
0.001
Published
2021-09-09
CVE-2021-25464
An improper file management vulnerability in SamsungCapture prior to version 4.8.02 allows sensitive information leak.
CVSS Score
3.3
EPSS Score
0.001
Published
2021-09-09
CVE-2021-25465
An improper scheme check vulnerability in Samsung Themes prior to version 5.2.01 allows attackers to perform Man-in-the-middle attack.
CVSS Score
3.3
EPSS Score
0.0
Published
2021-09-09
CVE-2021-25466
Improper scheme check vulnerability in Samsung Internet prior to version 15.0.2.47 allows attackers to perform Man-in-the-middle attack and obtain Samsung Account token.
CVSS Score
6.5
EPSS Score
0.002
Published
2021-09-09
CVE-2021-28914
BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow the user to set a weak password because the strength is shown in configuration tool, but finally not enforced. This is usable and part of an attack chain to gain SSH root access.
CVSS Score
6.5
EPSS Score
0.006
Published
2021-09-09
CVE-2021-25453
Some improper access control in Bluetooth APIs prior to SMR Sep-2021 Release 1 allows untrusted application to get Bluetooth information.
CVSS Score
5.1
EPSS Score
0.0
Published
2021-09-09
CVE-2021-25454
OOB read vulnerability in libsaacextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute remote DoS via forged aac file.
CVSS Score
3.1
EPSS Score
0.001
Published
2021-09-09
CVE-2021-25455
OOB read vulnerability in libsaviextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to access arbitrary address through pointer via forged avi file.
CVSS Score
3.3
EPSS Score
0.001
Published
2021-09-09
CVE-2021-25456
OOB read vulnerability in libswmfextractor.so library prior to SMR Sep-2021 Release 1 allows attackers to execute memcpy at arbitrary address via forged wmf file.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-09-09
CVE-2021-25457
An improper input validation vulnerability in DSP driver prior to SMR Sep-2021 Release 1 allows local attackers to get a limited kernel memory information.
CVSS Score
5.9
EPSS Score
0.0
Published
2021-09-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved