Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In October 2016
CVE-2016-1000215
Ruckus Wireless H500 web management interface denial of service
CVSS Score
7.5
EPSS Score
0.004
Published
2016-10-25
CVE-2016-1000214
Ruckus Wireless H500 web management interface authentication bypass
CVSS Score
5.3
EPSS Score
0.003
Published
2016-10-25
CVE-2016-1000213
Ruckus Wireless H500 web management interface CSRF
CVSS Score
8.8
EPSS Score
0.002
Published
2016-10-25
CVE-2016-1000033
Shotwell version 0.22.0 (and possibly other versions) is vulnerable to a TLS/SSL certification validation flaw resulting in a potential for man in the middle attacks.
CVSS Score
3.7
EPSS Score
0.003
Published
2016-10-25
CVE-2016-1000032
TGCaptcha2 version 0.3.0 is vulnerable to a replay attack due to a missing nonce allowing attackers to use a single solved CAPTCHA multiple times.
CVSS Score
7.5
EPSS Score
0.006
Published
2016-10-25
CVE-2016-1000031
Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution
CVSS Score
9.8
EPSS Score
0.619
Published
2016-10-25
CVE-2016-0377
The Administrative Console in IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x before 8.0.0.13, and 8.5.x before 8.5.5.10 mishandles CSRFtoken cookies, which allows remote authenticated users to obtain sensitive information via unspecified vectors.
CVSS Score
4.3
EPSS Score
0.003
Published
2016-10-22
CVE-2016-0328
IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows local users to obtain administrator privileges for command execution via unspecified vectors.
CVSS Score
7.8
EPSS Score
0.001
Published
2016-10-22
CVE-2016-0326
IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.x before 4.0.7 iFix11, 5.x before 5.0.2 iFix17, and 6.x before 6.0.1 ifix3 allow remote authenticated users to execute arbitrary OS commands via a crafted "HTML request."
CVSS Score
8.8
EPSS Score
0.009
Published
2016-10-22
CVE-2016-0247
IBM Security Guardium 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows local users to obtain sensitive cleartext information via unspecified vectors, as demonstrated by password information.
CVSS Score
7.8
EPSS Score
0.0
Published
2016-10-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved