VYPR

CVEs

101,963 total · page 1295 of 2,040

  • CVE-2020-36435HigAug 8, 2021
    risk 0.46cvss 8.1epss 0.01

    An issue was discovered in the ruspiro-singleton crate before 0.4.1 for Rust. In Singleton, Send and Sync do not have bounds checks.

  • CVE-2020-36433HigAug 8, 2021
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in the chunky crate through 2020-08-25 for Rust. The Chunk API does not honor an alignment requirement.

  • CVE-2021-38185HigAug 8, 2021
    risk 0.51cvss 7.8epss 0.04

    GNU cpio through 2.13 allows attackers to execute arbitrary code via a crafted pattern file, because of a dstring.c ds_fgetstr integer overflow that triggers an out-of-bounds heap write. NOTE: it is unclear whether there are common cases where the pattern file, associated with…

  • CVE-2021-38169HigAug 7, 2021
    risk 0.57cvss 8.8epss 0.02

    Roxy-WI through 5.2.2.0 allows command injection via /app/funct.py and /api/api_funct.py.

  • CVE-2021-38168HigAug 7, 2021
    risk 0.57cvss 8.8epss 0.01

    Roxy-WI through 5.2.2.0 allows authenticated SQL injection via select_servers.

  • CVE-2021-38166HigAug 7, 2021
    risk 0.00cvss 7.8epss 0.00

    In kernel/bpf/hashtab.c in the Linux kernel through 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. NOTE: exploitation might be impractical without the CAP_SYS_ADMIN capability.

  • CVE-2021-29923HigAug 7, 2021
    risk 0.49cvss 7.5epss 0.04

    Go before 1.17 does not properly consider extraneous zero characters at the beginning of an IP address octet, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal interpretation. This affects net.ParseIP…

  • CVE-2021-38160HigAug 7, 2021
    risk 0.00cvss 7.8epss 0.00

    In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in any…

  • CVE-2020-28087HigAug 6, 2021
    risk 0.49cvss 7.5epss 0.02

    A SQL injection vulnerability in /jeecg boot/sys/dict/loadtreedata of jeecg-boot CMS 2.3 allows attackers to access sensitive database information.

  • CVE-2021-38155HigAug 6, 2021
    risk 0.42cvss 7.5epss 0.02

    OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking (related to PCI DSS features). By guessing the name of an account and failing to authenticate multiple times,…

  • CVE-2021-35312HigAug 6, 2021
    risk 0.54cvss 7.8epss 0.01

    A vulnerability was found in CIR 2000 / Gestionale Amica Prodigy v1.7. The Amica Prodigy's executable "RemoteBackup.Service.exe" has incorrect permissions, allowing a local unprivileged user to replace it with a malicious file that will be executed with "LocalSystem" privileges.

  • CVE-2020-18694HigAug 6, 2021
    risk 0.57cvss 8.8epss 0.01

    Cross Site Request Forgery (CSRF) in IgnitedCMS v1.0 allows remote attackers to obtain sensitive information and gain privilege via the component "/admin/profile/save_profile".

  • CVE-2021-36795HigAug 6, 2021
    risk 0.51cvss 7.8epss 0.00

    A permission issue in the Cohesity Linux agent may allow privilege escalation in version 6.5.1b to 6.5.1d-hotfix10, 6.6.0a to 6.6.0b-hotfix1. An underprivileged linux user, if certain environment criteria are met, can gain additional privileges.

  • CVE-2021-20594HigAug 6, 2021
    risk 0.49cvss 7.5epss 0.02

    Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU…

  • CVE-2021-36455HigAug 6, 2021
    risk 0.57cvss 8.8epss 0.01

    SQL Injection vulnerability in Naviwebs Navigate CMS 2.9 via the quicksearch parameter in \lib\packages\comments\comments.php.

  • CVE-2021-38137HigAug 6, 2021
    risk 0.53cvss 8.1epss 0.01

    Corero SecureWatch Managed Services 9.7.2.0020 does not correctly check swa-monitor and cns-monitor user’s privileges, allowing a user to perform actions not belonging to his role.

  • CVE-2021-37553HigAug 6, 2021
    risk 0.49cvss 7.5epss 0.01

    In JetBrains YouTrack before 2021.2.16363, an insecure PRNG was used.

  • CVE-2021-37550HigAug 6, 2021
    risk 0.49cvss 7.5epss 0.01

    In JetBrains YouTrack before 2021.2.16363, time-unsafe comparisons were used.

  • CVE-2021-37548HigAug 6, 2021
    risk 0.49cvss 7.5epss 0.01

    In JetBrains TeamCity before 2021.1, passwords in cleartext sometimes could be stored in VCS.

  • CVE-2021-37545HigAug 6, 2021
    risk 0.49cvss 7.5epss 0.01

    In JetBrains TeamCity before 2021.1.1, insufficient authentication checks for agent requests were made.

  • CVE-2021-37543HigAug 6, 2021
    risk 0.57cvss 8.8epss 0.01

    In JetBrains RubyMine before 2021.1.1, code execution without user confirmation was possible for untrusted projects.

  • CVE-2021-36708HigAug 6, 2021
    risk 0.49cvss 7.5epss 0.01

    In ProLink PRC2402M V1.0.18 and older, the set_sys_init function in the login.cgi binary allows an attacker to reset the password to the administrative interface of the router.

  • CVE-2021-37381HigAug 6, 2021
    risk 0.57cvss 8.8epss 0.01

    Southsoft GMIS 5.0 is vulnerable to CSRF attacks. Attackers can access other users' private information such as photos through CSRF. For example: any student's photo information can be accessed through /gmis/(S([1]))/student/grgl/PotoImageShow/?bh=[2]. Among them, the code in…

  • CVE-2021-3580HigAug 5, 2021
    risk 0.49cvss 7.5epss 0.03

    A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service.

  • CVE-2021-37632HigAug 5, 2021
    risk 0.53cvss 8.1epss 0.02

    SuperMartijn642's Config Lib is a library used by a number of mods for the game Minecraft. The versions of SuperMartijn642's Config Lib between 1.0.4 and 1.0.8 are affected by a vulnerability and can be exploited on both servers and clients. Using SuperMartijn642's Config Lib,…

  • CVE-2021-37156HigAug 5, 2021
    risk 0.49cvss 7.5epss 0.01

    Redmine 4.2.0 and 4.2.1 allow existing user sessions to continue upon enabling two-factor authentication for the user's account, but the intended behavior is for those sessions to be terminated.

  • CVE-2021-35326HigAug 5, 2021
    risk 0.49cvss 7.5epss 0.03

    A vulnerability in TOTOLINK A720R router with firmware v4.1.5cu.470_B20200911 allows attackers to download the configuration file via sending a crafted HTTP request.

  • CVE-2021-35325HigAug 5, 2021
    risk 0.50cvss 7.5epss 0.13

    A stack overflow in the checkLoginUser function of TOTOLINK A720R A720R_Firmware v4.1.5cu.470_B20200911 allows attackers to cause a denial of service (DOS).

  • CVE-2021-34639HigAug 5, 2021
    risk 0.49cvss 7.5epss 0.01

    Authenticated File Upload in WordPress Download Manager <= 3.1.24 allows authenticated (Author+) users to upload files with a double extension, e.g. "payload.php.png" which is executable in some configurations. This issue affects: WordPress Download Manager version 3.1.24 and…

  • CVE-2021-34634HigAug 5, 2021
    risk 0.57cvss 8.8epss 0.01

    The Nifty Newsletters WordPress plugin is vulnerable to Cross-Site Request Forgery via the sola_nl_wp_head function found in the ~/sola-newsletters.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 4.0.23.

  • CVE-2021-34633HigAug 5, 2021
    risk 0.57cvss 8.8epss 0.01

    The Youtube Feeder WordPress plugin is vulnerable to Cross-Site Request Forgery via the printAdminPage function found in the ~/youtube-feeder.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.1.

  • CVE-2021-32003HigAug 5, 2021
    risk 0.52cvss 8.0epss 0.00

    Unprotected Transport of Credentials vulnerability in SiteManager provisioning service allows local attacker to capture credentials if the service is used after provisioning. This issue affects: Secomea SiteManager All versions prior to 9.5 on Hardware.

  • CVE-2021-28216HigAug 5, 2021
    risk 0.51cvss 7.8epss 0.00

    BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE.

  • CVE-2021-26605HigAug 5, 2021
    risk 0.49cvss 7.5epss 0.01

    An improper input validation vulnerability in the service of ezPDFReader allows attacker to execute arbitrary command. This issue occurred when the ezPDF launcher received and executed crafted input values through JSON-RPC communication.

  • CVE-2021-26586HigAug 5, 2021
    risk 0.49cvss 7.5epss 0.02

    A potential security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely exploited to disclose sensitive information. HPE has made software updates…

  • CVE-2021-22928HigAug 5, 2021
    risk 0.51cvss 7.8epss 0.00

    A vulnerability has been identified in Citrix Virtual Apps and Desktops that could, if exploited, allow a user of a Windows VDA that has either Citrix Profile Management or Citrix Profile Management WMI Plugin installed to escalate their privilege level on that Windows VDA to…

  • CVE-2021-22927HigAug 5, 2021
    risk 0.53cvss 8.1epss 0.01

    A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an attacker to hijack a session.

  • CVE-2021-22926HigAug 5, 2021
    risk 0.50cvss 7.5epss 0.10

    libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the `CURLOPT_SSLCERT` option (`--cert` with the command line tool).When libcurl is built to use the macOS native TLS library Secure Transport, an application can ask…

  • CVE-2021-22919HigAug 5, 2021
    risk 0.49cvss 7.5epss 0.01

    A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the…

  • CVE-2021-22517HigAug 5, 2021
    risk 0.57cvss 8.8epss 0.01

    A potential unauthorized privilege escalation vulnerability has been identified in Micro Focus Data Protector. The vulnerability affects versions 10.10, 10.20, 10.30, 10.40, 10.50, 10.60, 10.70, 10.80, 10.0 and 10.91. A privileged user may potentially misuse this feature and…

  • CVE-2021-21893HigAug 5, 2021
    risk 0.57cvss 8.8epss 0.02

    A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 11.0.0.49893. A specially crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An attacker needs to trick the…

  • CVE-2021-21870HigAug 5, 2021
    risk 0.57cvss 8.8epss 0.02

    A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.4.37651. A specially crafted PDF document can trigger the reuse of previously free memory, which can lead to arbitrary code execution. An attacker needs to trick the…

  • CVE-2021-21831HigAug 5, 2021
    risk 0.58cvss 8.8epss 0.05

    A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.3.37598. A specially crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An attacker needs to trick the…

  • CVE-2021-20592HigAug 5, 2021
    risk 0.49cvss 7.5epss 0.01

    Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions 01.19.000 through 01.39.010 and GT23 model communication driver versions 01.19.000 through 01.39.010 and GT…

  • CVE-2021-1630HigAug 5, 2021
    risk 0.49cvss 7.5epss 0.01

    XML external entity (XXE) vulnerability affecting certain versions of a Mule runtime component that may affect CloudHub, GovCloud, Runtime Fabric, Pivotal Cloud Foundry, Private Cloud Edition, and on-premise customers.

  • CVE-2020-7863HigAug 5, 2021
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in File Transfer Solution of Raonwiz could allow arbitrary command execution as the result of viewing a specially-crafted web page. This vulnerability is due to insufficient validation of the parameter of the specific method. An attacker could exploit this…

  • CVE-2021-3682HigAug 5, 2021
    risk 0.55cvss 8.5epss 0.03

    A flaw was found in the USB redirector device emulation of QEMU in versions prior to 6.1.0-rc2. It occurs when dropping packets during a bulk transfer from a SPICE client due to the packet queue being full. A malicious SPICE client could use this flaw to make QEMU call free()…

  • CVE-2021-37859HigAug 5, 2021
    risk 0.46cvss 7.1epss 0.03

    Fixed a bypass for a reflected cross-site scripting vulnerability affecting OAuth-enabled instances of Mattermost.

  • CVE-2021-37614HigAug 5, 2021
    risk 0.57cvss 8.8epss 0.01

    In certain Progress MOVEit Transfer versions before 2021.0.3 (aka 13.0.3), SQL injection in the MOVEit Transfer web application could allow an authenticated remote attacker to gain access to the database. Depending on the database engine being used (MySQL, Microsoft SQL Server,…

  • CVE-2021-34631HigAug 5, 2021
    risk 0.57cvss 8.8epss 0.01

    The NewsPlugin WordPress plugin is vulnerable to Cross-Site Request Forgery via the handle_save_style function found in the ~/news-plugin.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.18.