Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In November 2017
CVE-2017-14111
The workstation logging function in Philips IntelliSpace Cardiovascular (ISCV) 2.3.0 and earlier and Xcelera R4.1L1 and earlier records domain authentication credentials, which if accessed allows an attacker to use credentials to access the application, or other user entitlements.
CVSS Score
7.2
EPSS Score
0.022
Published
2017-11-17
CVE-2017-16845
hw/input/ps2.c in Qemu does not validate 'rptr' and 'count' values during guest migration, leading to out-of-bounds access.
CVSS Score
10.0
EPSS Score
0.021
Published
2017-11-17
CVE-2017-6168
On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) against RSA, which when exploited, may result in plaintext recovery of encrypted messages and/or a Man-in-the-middle (MiTM) attack, despite the attacker not having gained access to the server's private key itself, aka a ROBOT attack.
CVSS Score
7.4
EPSS Score
0.596
Published
2017-11-17
CVE-2017-1000168
sodiumoxide 0.0.13 and older scalarmult() vulnerable to degenerate public keys
CVSS Score
6.5
EPSS Score
0.003
Published
2017-11-17
CVE-2017-1000169
QuickerBB version <= 0.7.2 is vulnerable to arbitrary file writes which can lead to remote code execution. This can lead to the complete takeover of the server hosting QuickerBB.
CVSS Score
9.8
EPSS Score
0.034
Published
2017-11-17
CVE-2017-1000170
jqueryFileTree 2.1.5 and older Directory Traversal
CVSS Score
7.5
EPSS Score
0.889
Published
2017-11-17
CVE-2017-13700
An issue was discovered on MOXA EDS-G512E 5.1 build 16072215 devices. There is XSS in the administration interface.
CVSS Score
4.8
EPSS Score
0.003
Published
2017-11-17
CVE-2017-13702
An issue was discovered on MOXA EDS-G512E 5.1 build 16072215 devices. Cookies can be stolen, manipulated, and reused.
CVSS Score
5.3
EPSS Score
0.004
Published
2017-11-17
CVE-2017-13703
An issue was discovered on MOXA EDS-G512E 5.1 build 16072215 devices. A denial of service may occur.
CVSS Score
7.5
EPSS Score
0.004
Published
2017-11-17
CVE-2017-1000191
Jool 3.5.0-3.5.1 is vulnerable to a kernel crashing packet resulting in a DOS.
CVSS Score
7.5
EPSS Score
0.003
Published
2017-11-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved