Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In 2020
CVE-2020-17089
Microsoft SharePoint Elevation of Privilege Vulnerability
CVSS Score
7.1
EPSS Score
0.058
Published
2020-12-10
CVE-2020-17092
Windows Network Connections Service Elevation of Privilege Vulnerability
CVSS Score
7.8
EPSS Score
0.005
Published
2020-12-10
CVE-2020-17094
Windows Error Reporting Information Disclosure Vulnerability
CVSS Score
5.5
EPSS Score
0.008
Published
2020-12-10
CVE-2020-10143
Macrium Reflect includes an OpenSSL component that specifies an OPENSSLDIR variable as C:\openssl\. Macrium Reflect contains a privileged service that uses this OpenSSL component. Because unprivileged Windows users can create subdirectories off of the system root, a user can create the appropriate path to a specially-crafted openssl.cnf file to achieve arbitrary code execution with SYSTEM privileges.
CVSS Score
7.8
EPSS Score
0.0
Published
2020-12-09
CVE-2020-29257
Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the q parameter to feedback.php.
CVSS Score
6.1
EPSS Score
0.002
Published
2020-12-09
CVE-2020-29258
Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the w parameter to index.php.
CVSS Score
6.1
EPSS Score
0.002
Published
2020-12-09
CVE-2020-29259
Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the subject or feedback parameter to feedback.php.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-12-09
CVE-2020-16590
A double free vulnerability exists in the Binary File Descriptor (BFD) (aka libbrd) in GNU Binutils 2.35 in the process_symbol_table, as demonstrated in readelf, via a crafted file.
CVSS Score
5.5
EPSS Score
0.003
Published
2020-12-09
CVE-2020-16591
A Denial of Service vulnerability exists in the Binary File Descriptor (BFD) in GNU Binutils 2.35 due to an invalid read in process_symbol_table, as demonstrated in readeif.
CVSS Score
5.5
EPSS Score
0.004
Published
2020-12-09
CVE-2020-16592
A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as demonstrated in nm-new, that can cause a denial of service via a crafted file.
CVSS Score
5.5
EPSS Score
0.003
Published
2020-12-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved