Every CVE whose affected-product data names Kaspersky Tinycheck, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-35929 — CVSS 9.8 (critical): In TinyCheck before commits 9fd360d and ea53de8, the installation script of the tool contained hard-coded credentials to the backend part…
CVE-2020-36199 — CVSS 9.8 (critical): TinyCheck before commits 9fd360d and ea53de8 was vulnerable to command injection due to insufficient checks of input parameters in several…
CVE-2020-36200 — CVSS 6.5 (medium): TinyCheck before commits 9fd360d and ea53de8 allowed an authenticated attacker to send an HTTP GET request to the crafted URLs.