Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities
CVE-2025-13768
WebITR developed by Uniong has an Authentication Bypass vulnerability, allowing authenticated remote attackers to log into the system as any user by modifying a specific parameter. Attackers must first obtain a user ID to exploit this vulnerability.
CVSS Score
7.5
EPSS Score
0.003
Published
2025-11-28
CVE-2025-66382
In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.
CVSS Score
2.9
EPSS Score
0.0
Published
2025-11-28
CVE-2025-58302
Permission control vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVSS Score
8.4
EPSS Score
0.0
Published
2025-11-28
CVE-2025-58304
Permission control vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVSS Score
4.9
EPSS Score
0.0
Published
2025-11-28
CVE-2025-58305
Identity authentication bypass vulnerability in the Gallery app. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVSS Score
6.2
EPSS Score
0.0
Published
2025-11-28
CVE-2025-58308
Vulnerability of improper criterion security check in the call module. Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.
CVSS Score
7.3
EPSS Score
0.0
Published
2025-11-28
CVE-2025-58311
UAF vulnerability in the USB driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
CVSS Score
5.8
EPSS Score
0.0
Published
2025-11-28
CVE-2025-64312
Permission control vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVSS Score
4.9
EPSS Score
0.0
Published
2025-11-28
CVE-2025-64315
Configuration defect vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect app data confidentiality and integrity.
CVSS Score
4.4
EPSS Score
0.0
Published
2025-11-28
CVE-2025-58314
Vulnerability of accessing invalid memory in the component driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
CVSS Score
6.6
EPSS Score
0.0
Published
2025-11-28


Products
Pricing
Contact Us

Shodan ® - All rights reserved