VYPR

CVEs

101,972 total · page 1261 of 2,040

  • CVE-2021-37199HigOct 12, 2021
    risk 0.49cvss 7.5epss 0.01

    A vulnerability has been identified in SINUMERIK 808D (All versions), SINUMERIK 828D (All versions < V4.95). Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial-of-service in the device.

  • CVE-2021-33736HigOct 12, 2021
    risk 0.47cvss 7.2epss 0.01

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

  • CVE-2021-33735HigOct 12, 2021
    risk 0.47cvss 7.2epss 0.01

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

  • CVE-2021-33734HigOct 12, 2021
    risk 0.49cvss 7.2epss 0.28

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

  • CVE-2021-33733HigOct 12, 2021
    risk 0.48cvss 7.2epss 0.15

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

  • CVE-2021-33732HigOct 12, 2021
    risk 0.49cvss 7.2epss 0.28

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

  • CVE-2021-33731HigOct 12, 2021
    risk 0.51cvss 7.2epss 0.47

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

  • CVE-2021-33730HigOct 12, 2021
    risk 0.49cvss 7.2epss 0.28

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

  • CVE-2021-33729HigOct 12, 2021
    risk 0.57cvss 8.8epss 0.02

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker that is able to import firmware containers to an affected system could execute arbitrary commands in the local database.

  • CVE-2021-33728HigOct 12, 2021
    risk 0.47cvss 7.2epss 0.01

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to upload JSON objects that are deserialized to JAVA objects. Due to insecure deserialization of user-supplied content by the affected software, a privileged attacker…

  • CVE-2021-33726HigOct 12, 2021
    risk 0.49cvss 7.5epss 0.01

    A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to download arbitrary files under a user controlled path and does not correctly check if the relative path is still within the intended target directory.

  • CVE-2021-27395HigOct 12, 2021
    risk 0.53cvss 8.1epss 0.01

    A vulnerability has been identified in SIMATIC Process Historian 2013 and earlier (All versions), SIMATIC Process Historian 2014 (All versions < SP3 Update 6), SIMATIC Process Historian 2019 (All versions), SIMATIC Process Historian 2020 (All versions). An interface in the…

  • CVE-2021-42260HigOct 11, 2021
    risk 0.49cvss 7.5epss 0.03

    TinyXML through 2.6.2 has an infinite loop in TiXmlParsingData::Stamp in tinyxmlparser.cpp via the TIXML_UTF_LEAD_0 case. It can be triggered by a crafted XML message and leads to a denial of service.

  • CVE-2021-42257HigOct 11, 2021
    risk 0.46cvss 7.1epss 0.00

    check_smart before 6.9.1 allows unintended drive access by an unprivileged user because it only checks for a substring match of a device path (the /dev/bus substring and a number), aka an unanchored regular expression.

  • CVE-2021-42252HigOct 11, 2021
    risk 0.00cvss 7.8epss 0.00

    An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka…

  • CVE-2021-40189HigOct 11, 2021
    risk 0.47cvss 7.2epss 0.02

    PHPFusion 9.03.110 is affected by a remote code execution vulnerability. The theme function will extract a file to "webroot/themes/{Theme Folder], where an attacker can access and execute arbitrary code.

  • CVE-2021-40188HigOct 11, 2021
    risk 0.47cvss 7.2epss 0.01

    PHPFusion 9.03.110 is affected by an arbitrary file upload vulnerability. The File Manager function in admin panel does not filter all PHP extensions such as ".php, .php7, .phtml, .php5, ...". An attacker can upload a malicious file and execute code on the server.

  • CVE-2021-41117HigOct 11, 2021
    risk 0.50cvss 8.7epss 0.03

    keypair is a a RSA PEM key generator written in javascript. keypair implements a lot of cryptographic primitives on its own or by borrowing from other libraries where possible, including node-forge. An issue was discovered where this library was generating identical RSA keys…

  • CVE-2021-27002HigOct 11, 2021
    risk 0.49cvss 7.5epss 0.01

    NetApp Cloud Manager versions prior to 3.9.10 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to retrieve sensitive data via the web proxy.

  • CVE-2021-25633HigOct 11, 2021
    risk 0.49cvss 7.5epss 0.01

    LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid. An Improper Certificate Validation vulnerability in LibreOffice…

  • CVE-2021-20122HigOct 11, 2021
    risk 0.47cvss 7.2epss 0.07

    The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is affected by an authenticated command injection vulnerability in multiple parameters passed to tr69_cmd.cgi. A remote attacker connected to the router's LAN and authenticated with a super user account, or…

  • CVE-2021-39317HigOct 11, 2021
    risk 0.57cvss 8.8epss 0.02

    A WordPress plugin and several WordPress themes developed by AccessPress Themes are vulnerable to malicious file uploads via the plugin_offline_installer AJAX action due to a missing capability check in the plugin_offline_installer_callback function found in the…

  • CVE-2021-27665HigOct 11, 2021
    risk 0.49cvss 7.5epss 0.01

    An unauthenticated remote user could exploit a potential integer overflow condition in the exacqVision Server with a specially crafted script and cause denial-of-service condition.

  • CVE-2021-0583HigOct 11, 2021
    risk 0.47cvss 7.3epss 0.00

    In onCreate of BluetoothPairingDialog, there is a possible way to enable Bluetooth without user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for…

  • CVE-2021-29005HigOct 11, 2021
    risk 0.57cvss 8.8epss 0.02

    Insecure permission of chmod command on rConfig server 3.9.6 exists. After installing rConfig apache user may execute chmod as root without password which may let an attacker with low privilege to gain root access on server.

  • CVE-2021-29004HigOct 11, 2021
    risk 0.57cvss 8.8epss 0.02

    rConfig 3.9.6 is affected by SQL Injection. A user must be authenticated to exploit the vulnerability. If --secure-file-priv in MySQL server is not set and the Mysql server is the same as rConfig, an attacker may successfully upload a webshell to the server and access it…

  • CVE-2021-40884HigOct 11, 2021
    risk 0.53cvss 8.1epss 0.01

    Projectsend version r1295 is affected by sensitive information disclosure. Because of not checking authorization in ids parameter in files-edit.php and id parameter in process.php function, a user with uploader role can download and edit all files of users in application.

  • CVE-2021-24711HigOct 11, 2021
    risk 0.57cvss 8.8epss 0.01

    The del_reistered_domains AJAX action of the Software License Manager WordPress plugin before 4.5.1 does not have any CSRF checks, and is vulnerable to a CSRF attack

  • CVE-2021-24651HigOct 11, 2021
    risk 0.49cvss 7.5epss 0.02

    The Poll Maker WordPress plugin before 3.4.2 allows unauthenticated users to perform SQL injection via the ays_finish_poll AJAX action. While the result is not disclosed in the response, it is possible to use a timing attack to exfiltrate data such as password hash.

  • CVE-2021-24546HigOct 11, 2021
    risk 0.57cvss 8.8epss 0.02

    The Gutenberg Block Editor Toolkit – EditorsKit WordPress plugin before 1.31.6 does not sanitise and validate the Conditional Logic of the Custom Visibility settings, allowing users with a role as low contributor to execute Arbitrary PHP code

  • CVE-2021-41832HigOct 11, 2021
    risk 0.49cvss 7.5epss 0.01

    It is possible for an attacker to manipulate documents to appear to be signed by a trusted source. All versions of Apache OpenOffice up to 4.1.10 are affected. Users are advised to update to version 4.1.11. See CVE-2021-25635 for the LibreOffice advisory.

  • CVE-2021-41830HigOct 11, 2021
    risk 0.49cvss 7.5epss 0.01

    It is possible for an attacker to manipulate signed documents and macros to appear to come from a trusted source. All versions of Apache OpenOffice up to 4.1.10 are affected. Users are advised to update to version 4.1.11. See CVE-2021-25633 for the LibreOffice advisory.

  • CVE-2021-41801HigOct 11, 2021
    risk 0.57cvss 8.8epss 0.01

    The ReplaceText extension through 1.41 for MediaWiki has Incorrect Access Control. When a user is blocked after submitting a replace job, the job is still run, even if it may be run at a later time (due to the job queue backlog)

  • CVE-2021-41799HigOct 11, 2021
    risk 0.49cvss 7.5epss 0.02

    MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). ApiQueryBacklinks (action=query&list=backlinks) can cause a full table scan.

  • CVE-2021-42135HigOct 11, 2021
    risk 0.53cvss 8.1epss 0.01

    HashiCorp Vault and Vault Enterprise 1.8.x through 1.8.4 may have an unexpected interaction between glob-related policies and the Google Cloud secrets engine. Users may, in some situations, have more privileges than intended, e.g., a user with read permission for the…

  • CVE-2021-41055HigOct 11, 2021
    risk 0.49cvss 7.5epss 0.02

    Gajim 1.2.x and 1.3.x before 1.3.3 allows remote attackers to cause a denial of service (crash) via a crafted XMPP Last Message Correction (XEP-0308) message in multi-user chat, where the message ID equals the correction ID.

  • CVE-2021-25966HigOct 10, 2021
    risk 0.57cvss 8.8epss 0.01

    In “Orchard core CMS” application, versions 1.0.0-beta1-3383 to 1.0.0 are vulnerable to an improper session termination after password change. When a password has been changed by the user or by an administrator, a user that was already logged in, will still have access to…

  • CVE-2021-37975HigKEVOct 8, 2021
    risk 0.72cvss 8.8epss 0.35

    Use after free in V8 in Google Chrome prior to 94.0.4606.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-37974HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Safebrowsing in Google Chrome prior to 94.0.4606.71 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-37972HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.02

    Out of bounds read in libjpeg-turbo in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-37970HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in File System API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-37969HigOct 8, 2021
    risk 0.51cvss 7.8epss 0.01

    Inappropriate implementation in Google Updater in Google Chrome on Windows prior to 94.0.4606.54 allowed a remote attacker to perform local privilege escalation via a crafted file.

  • CVE-2021-37962HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Performance Manager in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-37961HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Tab Strip in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-37959HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Task Manager in Google Chrome prior to 94.0.4606.54 allowed an attacker who convinced a user to enage in a series of user gestures to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-37957HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in WebGPU in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-37956HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Offline use in Google Chrome on Android prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30632HigKEVOct 8, 2021
    risk 0.74cvss 8.8epss 0.65

    Out of bounds write in V8 in Google Chrome prior to 93.0.4577.82 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30629HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Permissions in Google Chrome prior to 93.0.4577.82 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-30628HigOct 8, 2021
    risk 0.57cvss 8.8epss 0.01

    Stack buffer overflow in ANGLE in Google Chrome prior to 93.0.4577.82 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page.