Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In November 2020
CVE-2020-4685
A low level user of IBM Cognos Controller 10.3.0, 10.3.1, 10.4.0, 10.4.1, and 10.4.2 who has Administration rights to the server where the application is installed, can escalate their privilege from Low level to Super Admin and gain access to Create/Update/Delete any level of user in Cognos Controller. IBM X-Force ID: 186625.
CVSS Score
8.0
EPSS Score
0.005
Published
2020-11-11
CVE-2020-7767
All versions of package express-validators are vulnerable to Regular Expression Denial of Service (ReDoS) when validating specifically-crafted invalid urls.
CVSS Score
5.3
EPSS Score
0.004
Published
2020-11-11
CVE-2020-7768
The package grpc before 1.24.4; the package @grpc/grpc-js before 1.1.8 are vulnerable to Prototype Pollution via loadPackageDefinition.
CVSS Score
7.5
EPSS Score
0.018
Published
2020-11-11
CVE-2020-7329
Server-side request forgery vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers trigger server-side DNS requests to arbitrary domains via carefully constructed XML files loaded by an ePO administrator.
CVSS Score
7.2
EPSS Score
0.007
Published
2020-11-11
CVE-2020-7328
External entity attack vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers to gain control of a resource or trigger arbitrary code execution via improper input validation of an HTTP request, where the content for the attack has been loaded into ePO by an ePO administrator.
CVSS Score
7.2
EPSS Score
0.015
Published
2020-11-11
CVE-2020-1325
Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
CVSS Score
5.4
EPSS Score
0.018
Published
2020-11-11
CVE-2020-1599
Windows Spoofing Vulnerability
CVSS Score
5.5
EPSS Score
0.057
Published
2020-11-11
CVE-2020-17088
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVSS Score
7.8
EPSS Score
0.005
Published
2020-11-11
CVE-2020-17090
Microsoft Defender for Endpoint Security Feature Bypass Vulnerability
CVSS Score
5.3
EPSS Score
0.039
Published
2020-11-11
CVE-2020-17091
Microsoft Teams Remote Code Execution Vulnerability
CVSS Score
7.8
EPSS Score
0.017
Published
2020-11-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved