Security Vulnerabilities - CVEs Published In April 2019
An issue was discovered on AudioCodes 450HD IP Phone devices with firmware 3.0.0.535.106. The traceroute and ping functionality, which uses a parameter in a request to command.cgi from the Monitoring page in the web UI, unsafely puts user-alterable data directly into an OS command, leading to Remote Code Execution via shell metacharacters in the query string.
CVSS Score
8.8
EPSS Score
0.131
Published
2019-04-01
An SSRF vulnerability was found in an API from Ctrip Apollo through 1.4.0-SNAPSHOT. An attacker may use it to do an intranet port scan or raise a GET request via /system-info/health because the %23 substring is mishandled.
CVSS Score
10.0
EPSS Score
0.004
Published
2019-04-01
Remote code execution vulnerability exists in KaKaoTalk PC messenger when user clicks specially crafted link in the message window. This affects KaKaoTalk windows version 2.7.5.2024 or lower.
CVSS Score
8.8
EPSS Score
0.011
Published
2019-04-01
Application/Admin/Controller/ConfigController.class.php in 74cms v5.0.1 allows remote attackers to execute arbitrary PHP code via the index.php?m=Admin&c=config&a=edit site_domain parameter.
CVSS Score
9.8
EPSS Score
0.006
Published
2019-04-01
Multiple XSS vulnerabilities were discovered in OverIT Geocall 6.3 before build 2:346977.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-04-01
An log-management directory traversal issue was discovered in OverIT Geocall 6.3 before build 2:346977.
CVSS Score
7.5
EPSS Score
0.01
Published
2019-04-01
An issue was discovered in OverIT Geocall 6.3 before build 2:346977. Weak authentication and session management allows an authenticated user to obtain access to the Administrative control panel and execute administrative functions.
CVSS Score
8.8
EPSS Score
0.004
Published
2019-04-01
An issue was discovered in OverIT Geocall 6.3 before build 2:346977. An unauthenticated servlet allows an attacker to obtain a cookie of an authenticated user, and login to the web application.
CVSS Score
9.8
EPSS Score
0.006
Published
2019-04-01
It was discovered in gnutls before version 3.6.7 upstream that there is an uninitialized pointer access in gnutls versions 3.6.3 or later which can be triggered by certain post-handshake messages.
CVSS Score
5.9
EPSS Score
0.004
Published
2019-04-01
A flaw was found in the /oauth/token/request custom endpoint of the OpenShift OAuth server allowing for XSS generation of CLI tokens due to missing X-Frame-Options and CSRF protections. If not otherwise prevented, a separate XSS vulnerability via JavaScript could further allow for the extraction of these tokens.
CVSS Score
5.0
EPSS Score
0.001
Published
2019-04-01