VYPR

CVEs

100,472 total · page 1318 of 2,010

  • CVE-2021-26416HigApr 13, 2021
    risk 0.50cvss 7.7epss 0.04

    Windows Hyper-V Denial of Service Vulnerability

  • CVE-2021-26415HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.04

    Windows Installer Elevation of Privilege Vulnerability

  • CVE-2021-23280HigApr 13, 2021
    risk 0.52cvss 8.0epss 0.01

    Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to authenticated arbitrary file upload vulnerability. IPM’s maps_srv.js allows an attacker to upload a malicious NodeJS file using uploadBackgroud action. An attacker can upload a malicious code or execute any…

  • CVE-2021-23279HigApr 13, 2021
    risk 0.54cvss 8.0epss 0.27

    Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated arbitrary file delete vulnerability induced due to improper input validation in meta_driver_srv.js class with saveDriverData action using invalidated driverID. An attacker can send specially…

  • CVE-2021-23278HigApr 13, 2021
    risk 0.57cvss 8.7epss 0.01

    Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to authenticated arbitrary file delete vulnerability induced due to improper input validation at server/maps_srv.js with action removeBackground and server/node_upgrade_srv.js with action removeFirmware. An…

  • CVE-2021-23277HigApr 13, 2021
    risk 0.54cvss 8.3epss 0.01

    Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated eval injection vulnerability. The software does not neutralize code syntax from users before using in the dynamic evaluation call in loadUserFile function under scripts/libs/utils.js. Successful…

  • CVE-2021-23276HigApr 13, 2021
    risk 0.46cvss 7.1epss 0.01

    Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to authenticated SQL injection. A malicious user can send a specially crafted packet to exploit the vulnerability. Successful exploitation of this vulnerability can allow attackers to add users in the data base.

  • CVE-2021-22720HigApr 13, 2021
    risk 0.49cvss 7.2epss 0.31

    A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restoring a project.

  • CVE-2021-22719HigApr 13, 2021
    risk 0.60cvss 8.8epss 0.41

    A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when a file is uploaded.

  • CVE-2021-22718HigApr 13, 2021
    risk 0.53cvss 7.8epss 0.27

    A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restoring project files.

  • CVE-2021-22717HigApr 13, 2021
    risk 0.60cvss 8.8epss 0.39

    A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when processing config files.

  • CVE-2021-22716HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.01

    A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could allow remote code execution when an unprivileged user modifies a file. Affected Product: C-Bus Toolkit (V1.15.9 and prior)

  • CVE-2021-21784HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.01

    An out-of-bounds write vulnerability exists in the JPG format SOF marker processing of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability.

  • CVE-2021-21482HigApr 13, 2021
    risk 0.54cvss 8.3epss 0.00

    SAP NetWeaver Master Data Management, versions - 710, 710.750, allows a malicious unauthorized user with access to the MDM Server subnet to find the password using a brute force method. If successful, the attacker could obtain access to highly sensitive data and MDM…

  • CVE-2021-0446HigApr 13, 2021
    risk 0.47cvss 7.3epss 0.00

    In ImportVCardActivity, there is a possible way to bypass user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:…

  • CVE-2021-0445HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.00

    In start of WelcomeActivity.java, there is a possible residual profile due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11…

  • CVE-2021-0442HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.00

    In updateInfo of android_hardware_input_InputApplicationHandle.cpp, there is a possible control of code flow due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2021-0439HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.00

    In setPowerModeWithHandle of com_android_server_power_PowerManagerService.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed…

  • CVE-2021-0438HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.00

    In several functions of InputDispatcher.cpp, WindowManagerService.java, and related files, there is a possible tapjacking attack due to an incorrect FLAG_OBSCURED value. This could lead to local escalation of privilege with no additional execution privileges needed. User…

  • CVE-2021-0437HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.00

    In setPlayPolicy of DrmPlugin.cpp, there is a possible double free. This could lead to local escalation of privilege in a privileged process with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11…

  • CVE-2021-0435HigApr 13, 2021
    risk 0.49cvss 7.5epss 0.02

    In avrc_proc_vendor_command of avrc_api.cc, there is a possible leak of heap data due to uninitialized data. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:…

  • CVE-2021-0433HigApr 13, 2021
    risk 0.52cvss 8.0epss 0.01

    In onCreate of DeviceChooserActivity.java, there is a possible way to bypass user consent when pairing a Bluetooth device due to a tapjacking/overlay attack. This could lead to local escalation of privilege and pairing malicious devices with no additional execution privileges…

  • CVE-2021-0432HigApr 13, 2021
    risk 0.46cvss 7.0epss 0.00

    In ClearPullerCacheIfNecessary and ForceClearPullerCache of StatsPullerManager.cpp, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2021-0431HigApr 13, 2021
    risk 0.49cvss 7.5epss 0.02

    In avrc_msg_cback of avrc_api.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure to a paired device with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0429HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.00

    In pollOnce of ALooper.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9…

  • CVE-2021-0427HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.00

    In parseExclusiveStateAnnotation of LogEvent.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0426HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.00

    In parsePrimaryFieldFirstUidAnnotation of LogEvent.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2021-21731HigApr 13, 2021
    risk 0.53cvss 8.1epss 0.00

    A CSRF vulnerability exists in the management page of a ZTE product.The vulnerability is caused because the management page does not fully verify whether the request comes from a trusted user. The attacker could submit a malicious request to the affected device to delete the…

  • CVE-2020-27228HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.01

    An incorrect default permissions vulnerability exists in the installation functionality of OpenClinic GA 5.173.3. Overwriting the binary can result in privilege escalation. An attacker can replace a file to exploit this vulnerability.

  • CVE-2020-13568HigApr 13, 2021
    risk 0.60cvss 8.8epss 0.30

    SQL injection vulnerability exists in phpGACL 3.3.7. A specially crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability in admin/edit_group.php, when the POST parameter action is “Submit”, the POST parameter…

  • CVE-2020-13566HigApr 13, 2021
    risk 0.57cvss 8.8epss 0.02

    SQL injection vulnerabilities exist in phpGACL 3.3.7. A specially crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability In admin/edit_group.php, when the POST parameter action is “Delete”, the POST parameter…

  • CVE-2021-28647HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.00

    Trend Micro Password Manager version 5 (Consumer) is vulnerable to a DLL Hijacking vulnerability which could allow an attacker to inject a malicious DLL file during the installation progress and could execute a malicious program each time a user installs a program.

  • CVE-2021-28645HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.01

    An incorrect permission assignment vulnerability in Trend Micro Apex One, Apex One as a Service and OfficeScan XG SP1 could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged…

  • CVE-2021-25253HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.02

    An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain…

  • CVE-2021-25250HigApr 13, 2021
    risk 0.51cvss 7.8epss 0.01

    An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to…

  • CVE-2021-29262HigApr 13, 2021
    risk 0.49cvss 7.5epss 0.08

    When starting Apache Solr versions prior to 8.8.2, configured with the SaslZkACLProvider or VMParamsAllAndReadonlyDigestZkACLProvider and no existing security.json znode, if the optional read-only user is configured then Solr would not treat that node as a sensitive path and…

  • CVE-2021-29054HigApr 13, 2021
    risk 0.57cvss 8.8epss 0.01

    Certain Papoo products are affected by: Cross Site Request Forgery (CSRF) in the admin interface. This affects Papoo CMS Light through 21.02 and Papoo CMS Pro through 6.0.1. The impact is: gain privileges (remote).

  • CVE-2021-21545HigApr 12, 2021
    risk 0.51cvss 7.8epss 0.00

    Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with privileges of the system user.

  • CVE-2019-15059HigApr 12, 2021
    risk 0.49cvss 7.5epss 0.01

    In Liberty lisPBX 2.0-4, configuration backup files can be retrieved remotely from /backup/lispbx-CONF-YYYY-MM-DD.tar or /backup/lispbx-CDR-YYYY-MM-DD.tar without authentication or authorization. These configuration files have all PBX information including extension numbers,…

  • CVE-2021-3128HigApr 12, 2021
    risk 0.49cvss 7.5epss 0.02

    In ASUS RT-AX3000, ZenWiFi AX (XT8), RT-AX88U, and other ASUS routers with firmware < 3.0.0.4.386.42095 or < 9.0.0.4.386.41994, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This…

  • CVE-2021-3125HigApr 12, 2021
    risk 0.49cvss 7.5epss 0.01

    In TP-Link TL-XDR3230 < 1.0.12, TL-XDR1850 < 1.0.9, TL-XDR1860 < 1.0.14, TL-XDR3250 < 1.0.2, TL-XDR6060 Turbo < 1.1.8, TL-XDR5430 < 1.0.11, and possibly others, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and…

  • CVE-2021-29357HigApr 12, 2021
    risk 0.56cvss 8.6epss 0.01

    The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF for arbitrary outbound HTTP requests.

  • CVE-2021-29302HigApr 12, 2021
    risk 0.53cvss 8.1epss 0.06

    TP-Link TL-WR802N(US), Archer_C50v5_US v4_200 <= 2020.06 contains a buffer overflow vulnerability in the httpd process in the body message. The attack vector is: The attacker can get shell of the router by sending a message through the network, which may lead to remote code…

  • CVE-2021-23270HigApr 12, 2021
    risk 0.00cvss 7.5epss 0.01

    In Gargoyle OS 1.12.0, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its upstream ISP's router. This occurs when a link prefix route points to a point-to-point link, a destination IPv6 address belongs to the…

  • CVE-2020-4965HigApr 12, 2021
    risk 0.49cvss 7.5epss 0.01

    IBM Jazz Team Server products use weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 192422.

  • CVE-2021-27486HigApr 12, 2021
    risk 0.51cvss 7.8epss 0.01

    FATEK Automation WinProladder Versions 3.30 and prior is vulnerable to an integer underflow, which may cause an out-of-bounds write and allow an attacker to execute arbitrary code.

  • CVE-2021-22190HigApr 12, 2021
    risk 0.55cvss 8.5epss 0.01

    A path traversal vulnerability via the GitLab Workhorse in all versions of GitLab could result in the leakage of a JWT token

  • CVE-2021-24230HigApr 12, 2021
    risk 0.53cvss 8.1epss 0.01

    The Jetpack Scan team identified a Cross-Site Request Forgery vulnerability in the Patreon WordPress plugin before 1.7.0, allowing attackers to make a logged in user overwrite or create arbitrary user metadata on the victim’s account once visited. If exploited, this bug can be…

  • CVE-2021-24227HigApr 12, 2021
    risk 0.49cvss 7.5epss 0.06

    The Jetpack Scan team identified a Local File Disclosure vulnerability in the Patreon WordPress plugin before 1.7.0 that could be abused by anyone visiting the site. Using this attack vector, an attacker could leak important internal files like wp-config.php, which contains…

  • CVE-2021-24226HigApr 12, 2021
    risk 0.49cvss 7.5epss 0.05

    In the AccessAlly WordPress plugin before 3.5.7, the file "resource/frontend/product/product-shortcode.php" responsible for the [accessally_order_form] shortcode is dumping serialize($_SERVER), which contains all environment variables. The leakage occurs on all public facing…