Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In November 2024
CVE-2023-24467
Possible Command Injection in iManager GET parameter has been discovered in OpenText™ iManager 3.2.6.0000.
CVSS Score
8.8
EPSS Score
0.007
Published
2024-11-22
CVE-2021-38116
Possible Elevation of Privilege Vulnerability in iManager has been discovered in OpenText™ iManager. This impacts all versions before 3.2.5
CVSS Score
8.8
EPSS Score
0.002
Published
2024-11-22
CVE-2021-38117
Possible Command injection Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000.
CVSS Score
8.8
EPSS Score
0.008
Published
2024-11-22
CVE-2021-38118
Possible improper input validation Vulnerability in iManager has been discovered in OpenText™ iManager 3.2.4.0000.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-11-22
CVE-2024-49054
Microsoft Edge (Chromium-based) Spoofing Vulnerability
CVSS Score
4.3
EPSS Score
0.001
Published
2024-11-22
CVE-2024-45719
Inadequate Encryption Strength vulnerability in Apache Answer. This issue affects Apache Answer: through 1.4.0. The ids generated using the UUID v1 version are to some extent not secure enough. It can cause the generated token to be predictable. Users are recommended to upgrade to version 1.4.1, which fixes the issue.
CVSS Score
2.6
EPSS Score
0.001
Published
2024-11-22
CVE-2024-41781
IBM PowerVM Platform KeyStore (IBM PowerVM Hypervisor FW950.00 through FW950.90, FW1030.00 through FW1030.60, FW1050.00 through FW1050.20, and FW1060.00 through FW1060.10 functionality can be compromised if an attacker gains service access to the HMC. An attacker that gains service access to the HMC can locate and through a series of service procedures decrypt data contained in the Platform KeyStore.
CVSS Score
5.1
EPSS Score
0.001
Published
2024-11-22
CVE-2024-41779
IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2 and 7.0.3 could allow a remote attacker to bypass security restrictions, caused by a race condition. By sending a specially crafted request, an attacker could exploit this vulnerability to remotely execute code.
CVSS Score
9.8
EPSS Score
0.0
Published
2024-11-22
CVE-2021-30299
Possible out of bound access in audio module due to lack of validation of user provided input.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-11-22
CVE-2017-9711
Certain unprivileged processes are able to perform IOCTL calls.
CVSS Score
6.7
EPSS Score
0.0
Published
2024-11-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved