VYPR

CVEs

100,472 total · page 1310 of 2,010

  • CVE-2020-18019HigApr 28, 2021
    risk 0.49cvss 7.5epss 0.02

    SQL Injection in Xinhu OA System v1.8.3 allows remote attackers to obtain sensitive information by injecting arbitrary commands into the "typeid" variable of the "createfolderAjax" function in the "mode_worcAction.php" component.

  • CVE-2021-22332HigApr 28, 2021
    risk 0.49cvss 7.5epss 0.01

    There is a pointer double free vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. When a function is called, the same memory pointer is copied to two functional modules. Attackers can exploit this vulnerability by…

  • CVE-2021-22331HigApr 28, 2021
    risk 0.49cvss 7.5epss 0.01

    There is a JavaScript injection vulnerability in certain Huawei smartphones. A module does not verify some inputs sufficiently. Attackers can exploit this vulnerability by sending a malicious application request to launch JavaScript injection. This may compromise normal service.…

  • CVE-2021-22393HigApr 28, 2021
    risk 0.49cvss 7.5epss 0.01

    There is a denial of service vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. The affected product cannot deal with some messages because of module design weakness . Attackers can exploit this vulnerability by sending…

  • CVE-2021-30166HigApr 28, 2021
    risk 0.47cvss 7.2epss 0.04

    The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the privileged permission.

  • CVE-2021-31863HigApr 28, 2021
    risk 0.49cvss 7.5epss 0.02

    Insufficient input validation in the Git repository integration of Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows Redmine users to read arbitrary local files accessible by the application server process.

  • CVE-2021-3512HigApr 28, 2021
    risk 0.57cvss 8.8epss 0.01

    Improper access control vulnerability in Buffalo broadband routers (BHR-4GRV firmware Ver.1.99 and prior, DWR-HP-G300NH firmware Ver.1.83 and prior, HW-450HP-ZWE firmware Ver.1.99 and prior, WHR-300HP firmware Ver.1.99 and prior, WHR-300 firmware Ver.1.99 and prior, WHR-G301N…

  • CVE-2021-29472HigApr 27, 2021
    risk 0.58cvss 8.8epss 0.05

    Composer is a dependency manager for PHP. URLs for Mercurial repositories in the root composer.json and package source download URLs are not sanitized correctly. Specifically crafted URL values allow code to be executed in the HgDriver if hg/Mercurial is installed on the system.…

  • CVE-2021-29442HigApr 27, 2021
    risk 0.05cvss 8.6epss 0.65

    Nacos is a platform designed for dynamic service discovery and configuration and service management. In Nacos before version 1.4.1, the ConfigOpsController lets the user perform management operations like querying the database or even wiping it out. While the /data/remove…

  • CVE-2021-29441HigApr 27, 2021
    risk 0.06cvss 8.6epss 0.74

    Nacos is a platform designed for dynamic service discovery and configuration and service management. In Nacos before version 1.4.1, when configured to use authentication (-Dnacos.core.auth.enabled=true) Nacos uses the AuthFilter servlet filter to enforce authentication. This…

  • CVE-2021-29460HigApr 27, 2021
    risk 0.46cvss 7.6epss 0.03

    Kirby is an open source CMS. An editor with write access to the Kirby Panel can upload an SVG file that contains harmful content like `` tags. The direct link to that file can be sent to other users or visitors of the site. If the victim opens that link in a browser…

  • CVE-2021-30638HigApr 27, 2021
    risk 0.49cvss 7.5epss 0.07

    Information Exposure vulnerability in context asset handling of Apache Tapestry allows an attacker to download files inside WEB-INF if using a specially-constructed URL. This was caused by an incomplete fix for CVE-2020-13953. This issue affects Apache Tapestry Apache Tapestry…

  • CVE-2020-22000HigApr 27, 2021
    risk 0.52cvss 8.0epss 0.01

    HomeAutomation 3.3.2 suffers from an authenticated OS command execution vulnerability using custom command v0.1 plugin. This can be exploited with a CSRF vulnerability to execute arbitrary shell commands as the web user via the 'set_command_on' and 'set_command_off' POST…

  • CVE-2020-21989HigApr 27, 2021
    risk 0.57cvss 8.8epss 0.01

    HomeAutomation 3.3.2 is affected by Cross Site Request Forgery (CSRF). The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with…

  • CVE-2021-29667HigApr 27, 2021
    risk 0.51cvss 7.8epss 0.01

    IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.2 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 199403.

  • CVE-2021-3464HigApr 27, 2021
    risk 0.51cvss 7.8epss 0.00

    A DLL search path vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow privilege escalation.

  • CVE-2021-28269HigApr 27, 2021
    risk 0.57cvss 8.8epss 0.02

    Soyal Technology 701Client 9.0.1 is vulnerable to Insecure permissions via client.exe binary with Authenticated Users group with Full permissions.

  • CVE-2021-28271HigApr 27, 2021
    risk 0.57cvss 8.8epss 0.02

    Soyal Technologies SOYAL 701Server 9.0.1 suffers from an elevation of privileges vulnerability which can be used by an authenticated user to change the executable file with a binary choice. The vulnerability is due to improper permissions with the 'F' flag (Full) for…

  • CVE-2021-22664HigApr 27, 2021
    risk 0.51cvss 7.8epss 0.02

    CNCSoft-B Versions 1.0.0.3 and prior is vulnerable to an out-of-bounds write, which may allow an attacker to execute arbitrary code.

  • CVE-2021-22660HigApr 27, 2021
    risk 0.51cvss 7.8epss 0.02

    CNCSoft-B Versions 1.0.0.3 and prior is vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code.

  • CVE-2020-17517HigApr 27, 2021
    risk 0.49cvss 7.5epss 0.02

    The S3 buckets and keys in a secure Apache Ozone Cluster must be inaccessible to anonymous access by default. The current security vulnerability allows access to keys and buckets through a curl command or an unauthenticated HTTP request. This enables unauthorized access to…

  • CVE-2019-25041HigApr 27, 2021
    risk 0.49cvss 7.5epss 0.02

    Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited

  • CVE-2019-25040HigApr 27, 2021
    risk 0.42cvss 7.5epss 0.02

    Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited

  • CVE-2019-25037HigApr 27, 2021
    risk 0.42cvss 7.5epss 0.02

    Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an invalid packet. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited

  • CVE-2019-25036HigApr 27, 2021
    risk 0.42cvss 7.5epss 0.02

    Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation cannot be remotely or locally exploited

  • CVE-2021-31826HigApr 27, 2021
    risk 0.49cvss 7.5epss 0.02

    Shibboleth Service Provider 3.x before 3.2.2 is prone to a NULL pointer dereference flaw involving the session recovery feature. The flaw is exploitable (for a daemon crash) on systems not using this feature if a crafted cookie is supplied.

  • CVE-2021-31671HigApr 27, 2021
    risk 0.42cvss 7.5epss 0.01

    pgsync before 0.6.7 is affected by Information Disclosure of sensitive information. Syncing the schema with the --schema-first and --schema-only options is mishandled. For example, the sslmode connection parameter may be lost, which means that SSL would not be used.

  • CVE-2021-30165HigApr 27, 2021
    risk 0.49cvss 7.5epss 0.01

    The default administrator account & password of the EDIMAX wireless network camera is hard-coded. Remote attackers can disassemble firmware to obtain the privileged permission and further control the devices.

  • CVE-2021-31784HigApr 26, 2021
    risk 0.51cvss 7.8epss 0.01

    An out-of-bounds write vulnerability exists in the file-reading procedure in Open Design Alliance Drawings SDK before 2021.6 on all supported by ODA platforms in static configuration. This can allow attackers to cause a crash, potentially enabling a denial of service attack…

  • CVE-2021-31783HigApr 26, 2021
    risk 0.00cvss 7.5epss 0.01

    show_default.php in the LocalFilesEditor extension before 11.4.0.1 for Piwigo allows Local File Inclusion because the file parameter is not validated with a proper regular-expression check.

  • CVE-2021-22669HigApr 26, 2021
    risk 0.57cvss 8.8epss 0.01

    Incorrect permissions are set to default on the ‘Project Management’ page of WebAccess/SCADA portal of WebAccess/SCADA Versions 9.0.1 and prior, which may allow a low-privileged user to update an administrator’s password and login as an administrator to escalate privileges…

  • CVE-2020-36325HigApr 26, 2021
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Jansson through 2.13.1. Due to a parsing error in json_loads, there's an out-of-bounds read-access bug. NOTE: the vendor reports that this only occurs when a programmer fails to follow the API specification

  • CVE-2021-29694HigApr 26, 2021
    risk 0.49cvss 7.5epss 0.01

    IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 200258.

  • CVE-2021-29672HigApr 26, 2021
    risk 0.51cvss 7.8epss 0.00

    IBM Spectrum Protect Client 8.1.0.0-8 through 1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking when processing the current locale settings. A local attacker could overflow a buffer and execute arbitrary code on the system with elevated…

  • CVE-2021-21225HigApr 26, 2021
    risk 0.58cvss 8.8epss 0.07

    Out of bounds memory access in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21224HigKEVApr 26, 2021
    risk 0.74cvss 8.8epss 0.58

    Type confusion in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

  • CVE-2021-21220HigKEVApr 26, 2021
    risk 0.78cvss 8.8epss 0.70

    Insufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21214HigApr 26, 2021
    risk 0.57cvss 8.8epss 0.01

    Use after free in Network API in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension.

  • CVE-2021-21213HigApr 26, 2021
    risk 0.57cvss 8.8epss 0.02

    Use after free in WebMIDI in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21207HigApr 26, 2021
    risk 0.56cvss 8.6epss 0.01

    Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.

  • CVE-2021-21206HigKEVApr 26, 2021
    risk 0.70cvss 8.8epss 0.09

    Use after free in Blink in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21205HigApr 26, 2021
    risk 0.53cvss 8.1epss 0.01

    Insufficient policy enforcement in navigation in Google Chrome on iOS prior to 90.0.4430.72 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.

  • CVE-2021-21204HigApr 26, 2021
    risk 0.57cvss 8.8epss 0.02

    Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21203HigApr 26, 2021
    risk 0.57cvss 8.8epss 0.02

    Use after free in Blink in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2021-21202HigApr 26, 2021
    risk 0.56cvss 8.6epss 0.01

    Use after free in extensions in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension.

  • CVE-2021-20532HigApr 26, 2021
    risk 0.51cvss 7.8epss 0.00

    IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 could allow a local user to escalate their privileges to take full control of the system due to insecure directory permissions. IBM X-Force ID: 198811.

  • CVE-2021-3472HigApr 26, 2021
    risk 0.00cvss 7.8epss 0.01

    A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

  • CVE-2020-15078HigApr 26, 2021
    risk 0.49cvss 7.5epss 0.05

    OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentially trigger further information leaks.

  • CVE-2021-31802HigApr 26, 2021
    risk 0.61cvss 8.8epss 0.14

    NETGEAR R7000 1.0.11.116 devices have a heap-based Buffer Overflow that is exploitable from the local network without authentication. The vulnerability exists within the handling of an HTTP request. An attacker can leverage this to execute code as root. The problem is that a…

  • CVE-2021-20709HigApr 26, 2021
    risk 0.47cvss 7.2epss 0.01

    Improper validation of integrity check value vulnerability in NEC Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm WG1200CR firmware Ver1.3.3 and earlier, and Aterm WG2600HS firmware Ver1.5.1 and earlier allows an attacker with an administrative privilege to execute arbitrary…