VYPR

CVEs

100,472 total · page 1315 of 2,010

  • CVE-2021-3497HigApr 19, 2021
    risk 0.51cvss 7.8epss 0.01

    GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files.

  • CVE-2021-29279HigApr 19, 2021
    risk 0.00cvss 7.8epss 0.01

    There is a integer overflow in function filter_core/filter_props.c:gf_props_assign_value in GPAC 1.0.1. In which, the arg const GF_PropertyValue *value,maybe value->value.data.size is a negative number. In result, memcpy in gf_props_assign_value failed.

  • CVE-2021-31255HigApr 19, 2021
    risk 0.00cvss 7.8epss 0.01

    Buffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.

  • CVE-2021-31254HigApr 19, 2021
    risk 0.00cvss 7.8epss 0.01

    Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file, related invalid IV sizes.

  • CVE-2021-29457HigApr 19, 2021
    risk 0.00cvss 7.8epss 0.02

    Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted…

  • CVE-2021-29455HigApr 19, 2021
    risk 0.00cvss 7.5epss 0.01

    Grassroot Platform is an application to make it faster, cheaper and easier to persistently organize and mobilize people in low-income communities. Grassroot Platform before master deployment as of 2021-04-16 did not properly verify the signature of JSON Web Tokens when…

  • CVE-2021-20527HigApr 19, 2021
    risk 0.47cvss 7.2epss 0.01

    IBM Resilient SOAR V38.0 could allow a privileged user to create create malicious scripts that could be executed as another user. IBM X-Force ID: 198759.

  • CVE-2021-27031HigApr 19, 2021
    risk 0.51cvss 7.8epss 0.01

    A user may be tricked into opening a malicious FBX file which may exploit a use-after-free vulnerability in FBX's Review causing the application to reference a memory location controlled by an unauthorized third party, thereby running arbitrary code on the system.

  • CVE-2021-27030HigApr 19, 2021
    risk 0.55cvss 7.8epss 0.60

    A user may be tricked into opening a malicious FBX file which may exploit a Directory Traversal Remote Code Execution vulnerability in FBX’s Review causing it to run arbitrary code on the system.

  • CVE-2021-27028HigApr 19, 2021
    risk 0.51cvss 7.8epss 0.02

    A Memory Corruption Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to remote code execution through maliciously crafted DLL files.

  • CVE-2021-27027HigApr 19, 2021
    risk 0.51cvss 7.8epss 0.02

    An Out-Of-Bounds Read Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to code execution through maliciously crafted DLL files or information disclosure.

  • CVE-2021-21981HigApr 19, 2021
    risk 0.51cvss 7.8epss 0.00

    VMware NSX-T contains a privilege escalation vulnerability due to an issue with RBAC (Role based access control) role assignment. Successful exploitation of this issue may allow attackers with local guest user account to assign privileges higher than their own permission level.

  • CVE-2021-20992HigApr 19, 2021
    risk 0.53cvss 8.1epss 0.01

    In Fibaro Home Center 2 and Lite devices in all versions provide a web based management interface over unencrypted HTTP protocol. Communication between the user and the device can be eavesdropped to hijack sessions, tokens and passwords.

  • CVE-2021-20990HigApr 19, 2021
    risk 0.49cvss 7.5epss 0.03

    In Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older an internal management service is accessible on port 8000 and some API endpoints could be accessed without authentication to trigger a shutdown, a reboot or a reboot into recovery mode.

  • CVE-2020-7851HigApr 19, 2021
    risk 0.51cvss 7.8epss 0.01

    Innorix Web-Based File Transfer Solution versuibs prior to and including 9.2.18.385 contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the internal method. A remote attacker could induce a user to access a crafted web…

  • CVE-2021-23381HigApr 18, 2021
    risk 0.48cvss 7.3epss 0.01

    This affects all versions of package killing. If attacker-controlled user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.

  • CVE-2021-23379HigApr 18, 2021
    risk 0.48cvss 7.3epss 0.01

    This affects all versions of package portkiller. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.

  • CVE-2021-23375HigApr 18, 2021
    risk 0.48cvss 7.3epss 0.01

    This affects all versions of package psnode. If attacker-controlled user input is given to the kill function, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.

  • CVE-2021-23374HigApr 18, 2021
    risk 0.48cvss 7.3epss 0.01

    This affects all versions of package ps-visitor. If attacker-controlled user input is given to the kill function, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.

  • CVE-2021-3493HigKEVApr 17, 2021
    risk 0.19cvss 8.8epss 0.44

    The overlayfs implementation in the linux kernel did not properly validate with respect to user namespaces the setting of file capabilities on files in an underlying file system. Due to the combination of unprivileged user namespaces along with a patch carried in the Ubuntu…

  • CVE-2021-3492HigApr 17, 2021
    risk 0.00cvss 8.8epss 0.02

    Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copy_from_user() correctly. These could lead to either a double-free situation or memory not being freed at all. An attacker could use this to cause a…

  • CVE-2021-29452HigApr 16, 2021
    risk 0.53cvss 8.1epss 0.01

    a12n-server is an npm package which aims to provide a simple authentication system. A new HAL-Form was added to allow editing users in version 0.18.0. This feature should only have been accessible to admins. Unfortunately, privileges were incorrectly checked allowing any logged…

  • CVE-2021-27394HigApr 16, 2021
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.19), Mendix Applications using Mendix 8 (All versions < V8.17.0), Mendix Applications using Mendix 8 (V8.12) (All versions < V8.12.5), Mendix Applications using Mendix 8 (V8.6) (All…

  • CVE-2020-9668HigApr 16, 2021
    risk 0.51cvss 7.8epss 0.02

    Adobe Genuine Service version 6.6 (and earlier) is affected by an Improper Access control vulnerability when handling symbolic links. An unauthenticated attacker could exploit this to elevate privileges in the context of the current user.

  • CVE-2021-22539HigApr 16, 2021
    risk 0.53cvss 8.2epss 0.00

    An attacker can place a crafted JSON config file into the project folder pointing to a custom executable. VScode-bazel allows the workspace path to lint *.bzl files to be set via this config file. As such the attacker is able to execute any executable on the system through…

  • CVE-2021-26073HigApr 16, 2021
    risk 0.50cvss 7.7epss 0.01

    Broken Authentication in Atlassian Connect Express (ACE) from version 3.0.2 before version 6.6.0: Atlassian Connect Express is a Node.js package for building Atlassian Connect apps. Authentication between Atlassian products and the Atlassian Connect Express app occurs with a…

  • CVE-2021-29447HigApr 15, 2021
    risk 0.49cvss 7.1epss 0.86

    Wordpress is an open source CMS. A user with the ability to upload files (like an Author) can exploit an XML parsing issue in the Media Library leading to XXE attacks. This requires WordPress installation to be using PHP 8. Access to internal files is possible in a successful…

  • CVE-2021-29431HigApr 15, 2021
    risk 0.43cvss 7.7epss 0.01

    Sydent is a reference Matrix identity server. Sydent can be induced to send HTTP GET requests to internal systems, due to lack of parameter validation or IP address blacklisting. It is not possible to exfiltrate data or control request headers, but it might be possible to use…

  • CVE-2021-29430HigApr 15, 2021
    risk 0.42cvss 7.5epss 0.02

    Sydent is a reference Matrix identity server. Sydent does not limit the size of requests it receives from HTTP clients. A malicious user could send an HTTP request with a very large body, leading to memory exhaustion and denial of service. Sydent also does not limit response…

  • CVE-2021-30245HigApr 15, 2021
    risk 0.58cvss 8.8epss 0.05

    The project received a report that all versions of Apache OpenOffice through 4.1.8 can open non-http(s) hyperlinks. The problem has existed since about 2006 and the issue is also in 4.1.9. If the link is specifically crafted this could lead to untrusted code execution. It is…

  • CVE-2021-31402HigApr 15, 2021
    risk 0.42cvss 7.5epss 0.01

    The dio package 4.0.0 for Dart allows CRLF injection if the attacker controls the HTTP method string, a different vulnerability than CVE-2020-35669.

  • CVE-2021-29448HigApr 15, 2021
    risk 0.49cvss 7.6epss 0.01

    Pi-hole is a Linux network-level advertisement and Internet tracker blocking application. The Stored XSS exists in the Pi-hole Admin portal, which can be exploited by the malicious actor with the network access to DNS server. See the referenced GitHub security advisory for patch…

  • CVE-2021-20288HigApr 15, 2021
    risk 0.40cvss 7.2epss 0.02

    An authentication flaw was found in ceph in versions before 14.2.20. When the monitor handles CEPHX_GET_AUTH_SESSION_KEY requests, it doesn't sanitize other_keys, allowing key reuse. An attacker who can request a global_id can exploit the ability of any user to request a…

  • CVE-2021-28549HigApr 15, 2021
    risk 0.51cvss 7.8epss 0.07

    Adobe Photoshop versions 21.2.6 (and earlier) and 22.3 (and earlier) are affected by a Buffer Overflow vulnerability when parsing a specially crafted JSX file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the…

  • CVE-2021-28548HigApr 15, 2021
    risk 0.51cvss 7.8epss 0.06

    Adobe Photoshop versions 21.2.6 (and earlier) and 22.3 (and earlier) are affected by a Buffer Overflow vulnerability when parsing a specially crafted JSX file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the…

  • CVE-2021-28242HigApr 15, 2021
    risk 0.61cvss 8.8epss 0.05

    SQL Injection in the "evoadm.php" component of b2evolution v7.2.2-stable allows remote attackers to obtain sensitive database information by injecting SQL commands into the "cf_name" parameter when creating a new filter under the "Collections" tab.

  • CVE-2021-21100HigApr 15, 2021
    risk 0.51cvss 7.8epss 0.02

    Adobe Digital Editions version 4.5.11.187245 (and earlier) is affected by a Privilege Escalation vulnerability during installation. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary file system write in the context of the current user.…

  • CVE-2021-21095HigApr 15, 2021
    risk 0.51cvss 7.8epss 0.04

    Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Out-of-bounds write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current…

  • CVE-2021-21094HigApr 15, 2021
    risk 0.51cvss 7.8epss 0.04

    Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Out-of-bounds write vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the…

  • CVE-2021-21093HigApr 15, 2021
    risk 0.51cvss 7.8epss 0.04

    Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the…

  • CVE-2021-21092HigApr 15, 2021
    risk 0.51cvss 7.8epss 0.04

    Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the…

  • CVE-2020-28593HigApr 15, 2021
    risk 0.53cvss 8.1epss 0.02

    A unauthenticated backdoor exists in the configuration server functionality of Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to code execution. An attacker can send a malicious packet to trigger this vulnerability.

  • CVE-2021-23887HigApr 15, 2021
    risk 0.51cvss 7.8epss 0.00

    Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.100 allows a local, low privileged, attacker to write to arbitrary controlled kernel addresses. This is achieved by launching applications, suspending them, modifying the…

  • CVE-2021-27183HigApr 14, 2021
    risk 0.47cvss 7.2epss 0.03

    An issue was discovered in MDaemon before 20.0.4. Administrators can use Remote Administration to exploit an Arbitrary File Write vulnerability. An attacker is able to create new files in any location of the filesystem, or he may be able to modify existing files. This…

  • CVE-2021-27182HigApr 14, 2021
    risk 0.57cvss 8.8epss 0.02

    An issue was discovered in MDaemon before 20.0.4. There is an IFRAME injection vulnerability in Webmail (aka WorldClient). It can be exploited via an email message. It allows an attacker to perform any action with the privileges of the attacked user.

  • CVE-2021-27181HigApr 14, 2021
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in MDaemon before 20.0.4. Remote Administration allows an attacker to perform a fixation of the anti-CSRF token. In order to exploit this issue, the user has to click on a malicious URL provided by the attacker and successfully authenticate into the…

  • CVE-2021-28157HigApr 14, 2021
    risk 0.47cvss 7.2epss 0.01

    An SQL Injection issue in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows an administrative user to execute arbitrary SQL commands via a username in api/security/userinfo/delete.

  • CVE-2021-3017HigApr 14, 2021
    risk 0.54cvss 7.5epss 0.63

    The web interface on Intelbras WIN 300 and WRN 342 devices through 2021-01-04 allows remote attackers to discover credentials by reading the def_wirelesspassword line in the HTML source code.

  • CVE-2021-29654HigApr 14, 2021
    risk 0.47cvss 7.2epss 0.02

    AjaxSearchPro before 4.20.8 allows Deserialization of Untrusted Data (in the import database feature of the administration panel), leading to Remote Code execution.

  • CVE-2021-28484HigApr 14, 2021
    risk 0.42cvss 7.5epss 0.02

    An issue was discovered in the /api/connector endpoint handler in Yubico yubihsm-connector before 3.0.1 (in YubiHSM SDK before 2021.04). The handler did not validate the length of the request, which can lead to a state where yubihsm-connector becomes stuck in a loop waiting for…