Vulnerabilities > Kaspersky > Tinycheck
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-26 | CVE-2020-36200 | Server-Side Request Forgery (SSRF) vulnerability in Kaspersky Tinycheck TinyCheck before commits 9fd360d and ea53de8 allowed an authenticated attacker to send an HTTP GET request to the crafted URLs. | 4.0 |
| 2021-01-26 | CVE-2020-36199 | Command Injection vulnerability in Kaspersky Tinycheck TinyCheck before commits 9fd360d and ea53de8 was vulnerable to command injection due to insufficient checks of input parameters in several places. | 7.5 |
| 2021-01-19 | CVE-2020-35929 | Use of Hard-coded Credentials vulnerability in Kaspersky Tinycheck In TinyCheck before commits 9fd360d and ea53de8, the installation script of the tool contained hard-coded credentials to the backend part of the tool. | 5.0 |