VYPR

CVEs

101,963 total · page 1300 of 2,040

  • CVE-2021-36742HigKEVJul 29, 2021
    risk 0.63cvss 7.8epss 0.01

    A improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG and Worry-Free Business Security 10.0 SP1 allows a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to…

  • CVE-2021-36741HigKEVJul 29, 2021
    risk 0.70cvss 8.8epss 0.05

    An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG, and Worry-Free Business Security 10.0 SP1 allows a remote attached to upload arbitrary files on affected installations. Please note: an attacker must first obtain the…

  • CVE-2021-21546HigJul 29, 2021
    risk 0.51cvss 7.8epss 0.00

    Dell EMC NetWorker versions 18.x,19.x prior to 19.3.0.4 and 19.4.0.0 contain an Information Disclosure in Log Files vulnerability. A local low-privileged user of the Networker server could potentially exploit this vulnerability to read plain-text credentials from server log…

  • CVE-2020-5353HigJul 29, 2021
    risk 0.57cvss 8.8epss 0.01

    The Dell Isilon OneFS versions 8.2.2 and earlier and Dell EMC PowerScale OneFS version 9.0.0 default configuration for Network File System (NFS) allows access to an 'admin' home directory. An attacker may leverage a spoofed Unique Identifier (UID) over NFS to rewrite sensitive…

  • CVE-2021-23415HigJul 28, 2021
    risk 0.42cvss 7.5epss 0.02

    This affects the package elFinder.AspNet before 1.1.1. The user-controlled file name is not properly sanitized before it is used to create a file system path.

  • CVE-2020-5351HigJul 28, 2021
    risk 0.49cvss 7.5epss 0.01

    Dell EMC Data Protection Advisor versions 6.4, 6.5 and 18.1 contain an undocumented account with limited privileges that is protected with a hard-coded password. A remote unauthenticated malicious user with the knowledge of the hard-coded password may login to the system and…

  • CVE-2021-34432HigJul 27, 2021
    risk 0.49cvss 7.5epss 0.01

    In Eclipse Mosquitto versions 2.0.7 and earlier, the server will crash if the client tries to send a PUBLISH packet with topic length = 0.

  • CVE-2021-37576HigJul 26, 2021
    risk 0.00cvss 7.8epss 0.01

    arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.

  • CVE-2020-18430HigJul 26, 2021
    risk 0.49cvss 7.5epss 0.01

    tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of service (DOS).

  • CVE-2020-18428HigJul 26, 2021
    risk 0.49cvss 7.5epss 0.01

    tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS).

  • CVE-2020-18173HigJul 26, 2021
    risk 0.51cvss 7.8epss 0.00

    A DLL injection vulnerability in 1password.dll of 1Password 7.3.712 allows attackers to execute arbitrary code.

  • CVE-2020-18171HigJul 26, 2021
    risk 0.57cvss 8.8epss 0.00

    TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files used to escalate privileges. NOTE: This implies that Snagit's use of OLE is a security vulnerability unto itself and it is not. See reference…

  • CVE-2020-18169HigJul 26, 2021
    risk 0.51cvss 7.8epss 0.00

    A vulnerability in the Windows installer XML (WiX) toolset of TechSmith Snagit 19.1.1.2860 allows attackers to escalate privileges. NOTE: Exploit of the Snagit installer would require the end user to ignore other safety mechanisms provided by the Host OS. See reference document…

  • CVE-2021-37394HigJul 26, 2021
    risk 0.57cvss 8.8epss 0.01

    In RPCMS v1.8 and below, attackers can interact with API and change variable "role" to "admin" to achieve admin user registration.

  • CVE-2021-31292HigJul 26, 2021
    risk 0.49cvss 7.5epss 0.03

    An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service (DOS) via crafted metadata.

  • CVE-2021-25804HigJul 26, 2021
    risk 0.49cvss 7.5epss 0.02

    A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service (DOS) in the application.

  • CVE-2021-25803HigJul 26, 2021
    risk 0.46cvss 7.1epss 0.01

    A buffer overflow vulnerability in the vlc_input_attachment_New component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.

  • CVE-2021-25802HigJul 26, 2021
    risk 0.46cvss 7.1epss 0.01

    A buffer overflow vulnerability in the AVI_ExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.

  • CVE-2021-25801HigJul 26, 2021
    risk 0.46cvss 7.1epss 0.02

    A buffer overflow vulnerability in the __Parse_indx component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.

  • CVE-2021-32789HigJul 26, 2021
    risk 0.50cvss 7.5epss 0.17

    woocommerce-gutenberg-products-block is a feature plugin for WooCommerce Gutenberg Blocks. An SQL injection vulnerability impacts all WooCommerce sites running the WooCommerce Blocks feature plugin between version 2.5.0 and prior to version 2.5.16. Via a carefully crafted URL,…

  • CVE-2021-33629HigJul 26, 2021
    risk 0.49cvss 7.5epss 0.01

    isula-build before 0.9.5-6 can cause a program crash, when building container images, some functions for processing external data do not remove spaces when processing data.

  • CVE-2021-26824HigJul 26, 2021
    risk 0.46cvss 7.1epss 0.00

    DM FingerTool v1.19 in the DM PD065 Secure USB is susceptible to improper authentication by a replay attack, allowing local attackers to bypass user authentication and access all features and data on the USB.

  • CVE-2021-20337HigJul 26, 2021
    risk 0.49cvss 7.5epss 0.01

    IBM QRadar SIEM 7.3.0 to 7.3.3 Patch 8 and 7.4.0 to 7.4.3 GA uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 194448.

  • CVE-2020-12681HigJul 26, 2021
    risk 0.49cvss 7.5epss 0.01

    Missing TLS certificate validation on 3xLogic Infinias eIDC32 devices through 3.4.125 allows an attacker to intercept/control the channel by which door lock policies are applied.

  • CVE-2021-33900HigJul 26, 2021
    risk 0.49cvss 7.5epss 0.01

    While investigating DIRSTUDIO-1219 it was noticed that configured StartTLS encryption was not applied when any SASL authentication mechanism (DIGEST-MD5, GSSAPI) was used. While investigating DIRSTUDIO-1220 it was noticed that any configured SASL confidentiality layer was not…

  • CVE-2021-37447HigJul 25, 2021
    risk 0.53cvss 8.1epss 0.02

    In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentdelete?file=/.. for file deletion.

  • CVE-2021-37444HigJul 25, 2021
    risk 0.57cvss 8.8epss 0.02

    NCH IVM Attendant v5.12 and earlier suffers from a directory traversal weakness upon uploading plugins in a ZIP archive. This can lead to code execution if a ZIP element's pathname is set to a Windows startup folder, a file for the inbuilt Out-Going Message function, or a file…

  • CVE-2021-37443HigJul 25, 2021
    risk 0.53cvss 8.1epss 0.01

    NCH IVM Attendant v5.12 and earlier allows path traversal via the logdeleteselected check0 parameter for file deletion.

  • CVE-2021-37441HigJul 25, 2021
    risk 0.57cvss 8.8epss 0.01

    NCH Axon PBX v2.22 and earlier allows path traversal for file deletion via the logdelete?file=/.. substring.

  • CVE-2021-3663HigJul 25, 2021
    risk 0.42cvss 7.5epss 0.01

    firefly-iii is vulnerable to Improper Restriction of Excessive Authentication Attempts

  • CVE-2021-32783HigJul 23, 2021
    risk 0.48cvss 8.5epss 0.01

    Contour is a Kubernetes ingress controller using Envoy proxy. In Contour before version 1.17.1 a specially crafted ExternalName type Service may be used to access Envoy's admin interface, which Contour normally prevents from access outside the Envoy container. This can be used…

  • CVE-2021-25808HigJul 23, 2021
    risk 0.51cvss 7.8epss 0.01

    A code injection vulnerability in backup/plugin.php of Bludit 3.13.1 allows attackers to execute arbitrary code via a crafted ZIP file.

  • CVE-2021-23412HigJul 23, 2021
    risk 0.53cvss 8.1epss 0.04

    All versions of package gitlogplus are vulnerable to Command Injection via the main functionality, as options attributes are appended to the command to be executed without sanitization.

  • CVE-2021-25201HigJul 23, 2021
    risk 0.49cvss 7.5epss 0.02

    SQL injection vulnerability in Learning Management System v 1.0 allows remote attackers to execute arbitrary SQL statements through the id parameter to obtain sensitive database information.

  • CVE-2020-22284HigJul 22, 2021
    risk 0.49cvss 7.5epss 0.01

    A buffer overflow vulnerability in the zepif_linkoutput() function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet.

  • CVE-2020-22283HigJul 22, 2021
    risk 0.49cvss 7.5epss 0.01

    A buffer overflow vulnerability in the icmp6_send_response_with_addrs_and_netif() function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet.

  • CVE-2021-31581HigJul 22, 2021
    risk 0.51cvss 7.9epss 0.01

    The restricted shell provided by Akkadian Provisioning Manager Engine (PME) can be escaped by abusing the 'Edit MySQL Configuration' command. This command launches a standard vi editor interface which can then be escaped. This issue was resolved in Akkadian OVA appliance version…

  • CVE-2021-31580HigJul 22, 2021
    risk 0.57cvss 8.7epss 0.03

    The restricted shell provided by Akkadian Provisioning Manager Engine (PME) can be bypassed by switching the OpenSSH channel from `shell` to `exec` and providing the ssh client a single execution parameter. This issue was resolved in Akkadian OVA appliance version 3.0 (and…

  • CVE-2021-31579HigJul 22, 2021
    risk 0.53cvss 8.2epss 0.01

    Akkadian Provisioning Manager Engine (PME) ships with a hard-coded credential, akkadianuser:haakkadianpassword. This issue was resolved in Akkadian OVA appliance version 3.0 (and later), Akkadian Provisioning Manager 5.0.2 (and later), and Akkadian Appliance Manager…

  • CVE-2021-36222HigJul 22, 2021
    risk 0.01cvss 7.5epss 0.10

    ec_verify in kdc/kdc_preauth_ec.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in…

  • CVE-2021-35063HigJul 22, 2021
    risk 0.49cvss 7.5epss 0.02

    Suricata before 5.0.7 and 6.x before 6.0.3 has a "critical evasion."

  • CVE-2015-2100HigJul 22, 2021
    risk 0.57cvss 8.8epss 0.03

    Multiple stack-based buffer overflows in WebGate eDVR Manager and Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the (1) TCPDiscover or (2) TCPDiscover2 function in the WESPDiscovery.WESPDiscoveryCtrl.1 control.

  • CVE-2015-2099HigJul 22, 2021
    risk 0.61cvss 8.8epss 0.14

    Multiple buffer overflows in WebGate Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the (1) GetRecFileInfo function in the FileConverter.FileConverterCtrl.1 control, (2) Login function in the LoginContoller.LoginControllerCtrl.1…

  • CVE-2015-2098HigJul 22, 2021
    risk 0.61cvss 8.8epss 0.14

    Multiple stack-based buffer overflows in WebGate eDVR Manager allow remote attackers to execute arbitrary code via unspecified vectors to the (1) Connect, (2) ConnectEx, or (3) ConnectEx2 function in the WESPEvent.WESPEventCtrl.1 control; (4) AudioOnlySiteChannel function in the…

  • CVE-2021-29657HigJul 22, 2021
    risk 0.00cvss 7.4epss 0.00

    arch/x86/kvm/svm/nested.c in the Linux kernel before 5.11.12 has a use-after-free in which an AMD KVM guest can bypass access control on host OS MSRs when there are nested guests, aka CID-a58d9166a756. This occurs because of a TOCTOU race condition associated with a VMCB12…

  • CVE-2020-5370HigJul 22, 2021
    risk 0.51cvss 7.9epss 0.01

    Dell EMC OpenManage Enterprise (OME) versions prior to 3.4 contain an arbitrary file overwrite vulnerability. A remote authenticated malicious user with high privileges could potentially exploit this vulnerability to overwrite arbitrary files via directory traversal sequences…

  • CVE-2020-5316HigJul 22, 2021
    risk 0.51cvss 7.8epss 0.00

    Dell SupportAssist for Business PCs versions 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3 and Dell SupportAssist for Home PCs version 2.0, 2.0.1, 2.0.2, 2.1, 2.1.1, 2.1.2, 2.1.3, 2.2, 2.2.1, 2.2.2, 2.2.3, 3.0, 3.0.1, 3.0.2, 3.1, 3.2, 3.2.1, 3.2.2, 3.3, 3.3.1, 3.3.2, 3.3.3, 3.4…

  • CVE-2021-26764HigJul 22, 2021
    risk 0.57cvss 8.8epss 0.02

    SQL injection vulnerability in PHPGurukul Student Record System v 4.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edit-std.php.

  • CVE-2021-26762HigJul 22, 2021
    risk 0.57cvss 8.8epss 0.02

    SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the cid parameter to edit-course.php.

  • CVE-2021-1601HigJul 22, 2021
    risk 0.54cvss 8.3epss 0.00

    Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are…