VYPR

CVEs

101,962 total · page 1278 of 2,040

  • CVE-2021-39256HigSep 7, 2021
    risk 0.51cvss 7.8epss 0.00

    A crafted NTFS image can cause a heap-based buffer overflow in ntfs_inode_lookup_by_name in NTFS-3G < 2021.8.22.

  • CVE-2021-39255HigSep 7, 2021
    risk 0.51cvss 7.8epss 0.00

    A crafted NTFS image can trigger an out-of-bounds read, caused by an invalid attribute in ntfs_attr_find_in_attrdef, in NTFS-3G < 2021.8.22.

  • CVE-2021-39254HigSep 7, 2021
    risk 0.51cvss 7.8epss 0.00

    A crafted NTFS image can cause an integer overflow in memmove, leading to a heap-based buffer overflow in the function ntfs_attr_record_resize, in NTFS-3G < 2021.8.22.

  • CVE-2021-39253HigSep 7, 2021
    risk 0.51cvss 7.8epss 0.00

    A crafted NTFS image can cause an out-of-bounds read in ntfs_runlists_merge_i in NTFS-3G < 2021.8.22.

  • CVE-2021-39252HigSep 7, 2021
    risk 0.51cvss 7.8epss 0.00

    A crafted NTFS image can cause an out-of-bounds read in ntfs_ie_lookup in NTFS-3G < 2021.8.22.

  • CVE-2021-39251HigSep 7, 2021
    risk 0.51cvss 7.8epss 0.00

    A crafted NTFS image can cause a NULL pointer dereference in ntfs_extent_inode_open in NTFS-3G < 2021.8.22.

  • CVE-2021-35267HigSep 7, 2021
    risk 0.44cvss 7.8epss 0.00

    NTFS-3G versions < 2021.8.22, a stack buffer overflow can occur when correcting differences in the MFT and MFTMirror allowing for code execution or escalation of privileges when setuid-root.

  • CVE-2021-35266HigSep 7, 2021
    risk 0.44cvss 7.8epss 0.00

    In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS inode pathname is supplied in an NTFS image a heap buffer overflow can occur resulting in memory disclosure, denial of service and even code execution.

  • CVE-2021-33287HigSep 7, 2021
    risk 0.44cvss 7.8epss 0.00

    In NTFS-3G versions < 2021.8.22, when specially crafted NTFS attributes are read in the function ntfs_attr_pread_i, a heap buffer overflow can occur and allow for writing to arbitrary memory or denial of service of the application.

  • CVE-2021-33286HigSep 7, 2021
    risk 0.51cvss 7.8epss 0.00

    In NTFS-3G versions < 2021.8.22, when a specially crafted unicode string is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.

  • CVE-2020-7865HigSep 7, 2021
    risk 0.57cvss 8.8epss 0.01

    A vulnerability(improper input validation) in the ExECM CoreB2B solution allows an unauthenticated attacker to download and execute an arbitrary file via httpDownload function. A successful exploit could allow the attacker to hijack vulnerable system.

  • CVE-2020-7832HigSep 7, 2021
    risk 0.57cvss 8.8epss 0.01

    A vulnerability (improper input validation) in the DEXT5 Upload solution allows an unauthenticated attacker to download and execute an arbitrary file via AddUploadFile, SetSelectItem, DoOpenFile function.(CVE-2020-7832)

  • CVE-2020-19131HigSep 7, 2021
    risk 0.49cvss 7.5epss 0.02

    Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the "invertImage()" function in the component "tiffcrop".

  • CVE-2021-35269HigSep 7, 2021
    risk 0.44cvss 7.8epss 0.00

    NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute from the MFT is setup in the function ntfs_attr_setup_flag, a heap buffer overflow can occur allowing for code execution and escalation of privileges.

  • CVE-2021-35268HigSep 7, 2021
    risk 0.44cvss 7.8epss 0.00

    In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS inode is loaded in the function ntfs_inode_real_open, a heap buffer overflow can occur allowing for code execution and escalation of privileges.

  • CVE-2021-33289HigSep 7, 2021
    risk 0.44cvss 7.8epss 0.00

    In NTFS-3G versions < 2021.8.22, when a specially crafted MFT section is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.

  • CVE-2021-33285HigSep 7, 2021
    risk 0.51cvss 7.8epss 0.00

    In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is caused by an out-of-bound buffer access which…

  • CVE-2021-37725HigSep 7, 2021
    risk 0.53cvss 8.1epss 0.00

    A remote cross-site request forgery (csrf) vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.8.0.1, 8.7.1.2, 8.6.0.8, 8.5.0.12, 8.3.0.15. Aruba has released patches for Aruba…

  • CVE-2021-37724HigSep 7, 2021
    risk 0.47cvss 7.2epss 0.03

    A remote arbitrary command execution vulnerability was discovered in Aruba Operating System Software version(s): Prior to 8.7.1.2, 8.6.0.8, 8.5.0.12, 8.3.0.16. Aruba has released patches for ArubaOS that address this security vulnerability.

  • CVE-2021-37723HigSep 7, 2021
    risk 0.47cvss 7.2epss 0.03

    A remote arbitrary command execution vulnerability was discovered in Aruba Operating System Software version(s): Prior to 8.7.1.2, 8.6.0.8, 8.5.0.12, 8.3.0.16. Aruba has released patches for ArubaOS that address this security vulnerability.

  • CVE-2021-37722HigSep 7, 2021
    risk 0.47cvss 7.2epss 0.03

    A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.4, 8.6.0.9, 8.5.0.13, 8.3.0.16, 6.5.4.20, 6.4.4.25. Aruba has released patches for Aruba…

  • CVE-2021-37721HigSep 7, 2021
    risk 0.47cvss 7.2epss 0.03

    A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.4, 8.6.0.9, 8.5.0.13, 8.3.0.16, 6.5.4.20, 6.4.4.25. Aruba has released patches for Aruba…

  • CVE-2021-37720HigSep 7, 2021
    risk 0.47cvss 7.2epss 0.03

    A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.4, 8.6.0.9, 8.5.0.13, 8.3.0.16, 6.5.4.20, 6.4.4.25. Aruba has released patches for Aruba…

  • CVE-2021-37719HigSep 7, 2021
    risk 0.47cvss 7.2epss 0.03

    A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.4, 8.6.0.9, 8.5.0.13, 8.3.0.16, 6.5.4.20, 6.4.4.25. Aruba has released patches for Aruba…

  • CVE-2021-37718HigSep 7, 2021
    risk 0.47cvss 7.2epss 0.03

    A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.6; Prior to 8.7.1.4, 8.6.0.7, 8.5.0.12, 8.3.0.16. Aruba has released patches for Aruba SD-WAN Software and…

  • CVE-2021-37717HigSep 7, 2021
    risk 0.47cvss 7.2epss 0.03

    A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.6; Prior to 8.7.1.4, 8.6.0.7, 8.5.0.12, 8.3.0.16. Aruba has released patches for Aruba SD-WAN Software and…

  • CVE-2021-38617HigSep 7, 2021
    risk 0.57cvss 8.8epss 0.01

    In Eigen NLP 3.10.1, a lack of access control on the /auth/v1/user/ user creation endpoint allows a standard user to create a super user account with a defined password. This directly leads to privilege escalation.

  • CVE-2021-38616HigSep 7, 2021
    risk 0.50cvss 7.6epss 0.01

    In Eigen NLP 3.10.1, a lack of access control on the /auth/v1/user/{user-guid}/ user edition endpoint could permit any logged-in user to increase their own permissions via a user_permissions array in a PATCH request. A guest user could modify other users' profiles and much more.

  • CVE-2021-37219HigSep 7, 2021
    risk 0.50cvss 8.8epss 0.01

    HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.8.15, 1.9.9 and 1.10.2.

  • CVE-2021-37218HigSep 7, 2021
    risk 0.57cvss 8.8epss 0.01

    HashiCorp Nomad and Nomad Enterprise Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.0.10 and 1.1.4.

  • CVE-2020-7877HigSep 7, 2021
    risk 0.52cvss 8.0epss 0.01

    A buffer overflow issue was discovered in ZOOK solution(remote administration tool) through processing 'ConnectMe' command while parsing a crafted OUTERIP value because of missing boundary check. This vulnerability allows the attacker to execute remote arbitrary command.

  • CVE-2021-36162HigSep 7, 2021
    risk 0.57cvss 8.8epss 0.02

    Apache Dubbo supports various rules to support configuration override or traffic routing (called routing in Dubbo). These rules are loaded into the configuration center (eg: Zookeeper, Nacos, ...) and retrieved by the customers when making a request in order to find the right…

  • CVE-2021-28139HigSep 7, 2021
    risk 0.57cvss 8.8epss 0.01

    The Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier does not properly restrict the Feature Page upon reception of an LMP Feature Response Extended packet, allowing attackers in radio range to trigger arbitrary code execution in ESP32 via a crafted Extended…

  • CVE-2021-39279HigSep 7, 2021
    risk 0.58cvss 8.8epss 0.05

    Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP. This affects WAC-2004 1.7, WAC-1001 2.1, WAC-1001-T 2.1, OnCell G3470A-LTE-EU 1.7, OnCell G3470A-LTE-EU-T 1.7, TAP-323-EU-CT-T 1.3, TAP-323-US-CT-T 1.3, TAP-323-JP-CT-T 1.3, WDR-3124A-EU 2.3,…

  • CVE-2021-38841HigSep 7, 2021
    risk 0.58cvss 8.8epss 0.04

    Remote Code Execution can occur in Simple Water Refilling Station Management System 1.0 via the System Logo option on the system_info page in classes/SystemSettings.php with an update_settings action.

  • CVE-2021-33484HigSep 7, 2021
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in CommentsService.ashx in OnyakTech Comments Pro 3.8. An attacker can download a copy of the installer, decompile it, and discover a hardcoded IV used to encrypt the username and userid in the comment POST request. Additionally, the attacker can decrypt…

  • CVE-2021-3770HigSep 6, 2021
    risk 0.00cvss 7.8epss 0.01

    vim is vulnerable to Heap-based Buffer Overflow

  • CVE-2021-36744HigSep 6, 2021
    risk 0.51cvss 7.8epss 0.00

    Trend Micro Security (Consumer) 2021 and 2020 are vulnerable to a directory junction vulnerability which could allow an attacker to exploit the system to escalate privileges and create a denial of service.

  • CVE-2021-32568HigSep 6, 2021
    risk 0.00cvss 7.8epss 0.01

    mrdoc is vulnerable to Deserialization of Untrusted Data

  • CVE-2021-24395HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    The editid GET parameter of the Embed Youtube Video WordPress plugin through 1.0 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

  • CVE-2021-24394HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    An id GET parameter of the Easy Testimonial Manager WordPress plugin through 1.2.0 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection

  • CVE-2021-24393HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    A c GET parameter of the Comment Highlighter WordPress plugin through 0.13 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

  • CVE-2021-24392HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    An id GET parameter of the WordPress Membership SwiftCloud.io WordPress plugin through 1.0 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

  • CVE-2021-24391HigSep 6, 2021
    risk 0.57cvss 8.8epss 0.02

    An editid GET parameter of the Cashtomer WordPress plugin through 1.0.0 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

  • CVE-2021-24390HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    A proid GET parameter of the WordPress支付宝Alipay|财付通Tenpay|贝宝PayPal集成插件 WordPress plugin through 3.7.2 is not sanitised, properly escaped or validated before inserting to a SQL statement not delimited by quotes, leading to SQL injection.

  • CVE-2021-24303HigSep 6, 2021
    risk 0.57cvss 8.8epss 0.02

    The JiangQie Official Website Mini Program WordPress plugin before 1.1.1 does not escape or validate the id GET parameter before using it in SQL statements, leading to SQL injection issues

  • CVE-2021-40524HigSep 5, 2021
    risk 0.00cvss 7.5epss 0.04

    In Pure-FTPd before 1.0.50, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occurs because a certain greater-than-zero test does not anticipate an initial -1…

  • CVE-2021-40523HigSep 5, 2021
    risk 0.49cvss 7.5epss 0.01

    In Contiki 3.0, Telnet option negotiation is mishandled. During negotiation between a server and a client, the server may fail to give the WILL/WONT or DO/DONT response for DO and WILL commands because of improper handling of exception condition, which leads to property…

  • CVE-2021-40516HigSep 5, 2021
    risk 0.00cvss 7.5epss 0.02

    WeeChat before 3.2.1 allows remote attackers to cause a denial of service (crash) via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin.

  • CVE-2021-30624HigSep 3, 2021
    risk 0.58cvss 8.8epss 0.04

    Chromium: CVE-2021-30624 Use after free in Autofill