Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In November 2019
CVE-2013-1666
Foswiki before 1.1.8 contains a code injection vulnerability in the MAKETEXT macro.
CVSS Score
9.8
EPSS Score
0.041
Published
2019-11-01
CVE-2013-2227
GLPI 0.83.7 has Local File Inclusion in common.tabs.php.
CVSS Score
7.5
EPSS Score
0.281
Published
2019-11-01
CVE-2019-12752
The Symantec SONAR component, prior to 12.0.2, may be susceptible to a tamper protection bypass vulnerability which could potentially allow an attacker to circumvent the existing tamper protection in use on the resident system.
CVSS Score
6.1
EPSS Score
0.001
Published
2019-11-01
CVE-2019-15588
There is an OS Command Injection in Nexus Repository Manager <= 2.14.14 (bypass CVE-2019-5475) that could allow an attacker a Remote Code Execution (RCE). All instances using CommandLineExecutor.java with user-supplied data is vulnerable, such as the Yum Configuration Capability.
CVSS Score
7.2
EPSS Score
0.077
Published
2019-11-01
CVE-2019-6657
On BIG-IP 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, a reflected cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Traffic Management User Interface (TMUI), also known as the BIG-IP Configuration utility.
CVSS Score
6.1
EPSS Score
0.005
Published
2019-11-01
CVE-2019-6658
On BIG-IP AFM 15.0.0-15.0.1, 14.0.0-14.1.2, 13.1.0-13.1.3.1, and 12.1.0-12.1.5, a vulnerability in the AFM configuration utility may allow any authenticated BIG-IP user to run an SQL injection attack.
CVSS Score
4.3
EPSS Score
0.003
Published
2019-11-01
CVE-2012-2979
FreeBSD NSD before 3.2.13 allows remote attackers to crash a NSD child server process (SIGSEGV) and cause a denial of service in the NSD server.
CVSS Score
7.5
EPSS Score
0.007
Published
2019-11-01
CVE-2011-3923
Apache Struts before 2.3.1.2 allows remote attackers to bypass security protections in the ParameterInterceptor class and execute arbitrary commands.
CVSS Score
9.8
EPSS Score
0.911
Published
2019-11-01
CVE-2005-3056
TWiki allows arbitrary shell command execution via the Include function
CVSS Score
9.8
EPSS Score
0.012
Published
2019-11-01
CVE-2013-2739
MiniDLNA has heap-based buffer overflow
CVSS Score
9.8
EPSS Score
0.082
Published
2019-11-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved