Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In September 2019
CVE-2019-5482
Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.
CVSS Score
9.8
EPSS Score
0.085
Published
2019-09-16
CVE-2019-15741
An issue was discovered in GitLab Omnibus 7.4 through 12.2.1. An unsafe interaction with logrotate could result in a privilege escalation
CVSS Score
9.8
EPSS Score
0.003
Published
2019-09-16
CVE-2019-16370
The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algorithm, which might allow an attacker to replace an artifact with a different one that has the same SHA-1 message digest, a related issue to CVE-2005-4900.
CVSS Score
5.9
EPSS Score
0.002
Published
2019-09-16
CVE-2019-16371
LogMeIn LastPass before 4.33.0 allows attackers to construct a crafted web site that captures the credentials for a victim's account on a previously visited web site, because do_popupregister can be bypassed via clickjacking.
CVSS Score
8.2
EPSS Score
0.003
Published
2019-09-16
CVE-2019-8368
OpenEMR v5.0.1-6 allows XSS.
CVSS Score
6.1
EPSS Score
0.388
Published
2019-09-16
CVE-2019-15734
An issue was discovered in GitLab Community and Enterprise Edition 8.6 through 12.2.1. Under very specific conditions, commit titles and team member comments could become viewable to users who did not have permission to access these.
CVSS Score
4.3
EPSS Score
0.001
Published
2019-09-16
CVE-2019-15736
An issue was discovered in GitLab Community and Enterprise Edition through 12.2.1. Under certain circumstances, CI pipelines could potentially be used in a denial of service attack.
CVSS Score
7.5
EPSS Score
0.003
Published
2019-09-16
CVE-2019-15737
An issue was discovered in GitLab Community and Enterprise Edition through 12.2.1. Certain account actions needed improved authentication and session management.
CVSS Score
6.5
EPSS Score
0.003
Published
2019-09-16
CVE-2019-15738
An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.2.1. Under certain conditions, merge request IDs were being disclosed via email.
CVSS Score
5.3
EPSS Score
0.003
Published
2019-09-16
CVE-2019-15739
An issue was discovered in GitLab Community and Enterprise Edition 8.1 through 12.2.1. Certain areas displaying Markdown were not properly sanitizing some XSS payloads.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-09-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved