VYPR

CVEs

100,082 total · page 1333 of 2,002

  • CVE-2021-27229HigFeb 16, 2021
    risk 0.00cvss 8.8epss 0.03

    Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a server list and clicks on the Open Webpage text.

  • CVE-2021-21511HigFeb 15, 2021
    risk 0.53cvss 8.1epss 0.01

    Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged attacker could potentially exploit this vulnerability, to gain unauthorized read or modification access to other users' backup data.

  • CVE-2020-35734HigFeb 15, 2021
    risk 0.47cvss 7.2epss 0.07

    Sruu.pl in Batflat 1.3.6 allows an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Users tab. To exploit this, one must login to the administration panel and edit an arbitrary user's data (username, displayed…

  • CVE-2020-29143HigFeb 15, 2021
    risk 0.47cvss 7.2epss 0.02

    A SQL injection vulnerability in interface/reports/non_reported.php in OpenEMR before 5.0.2.5 allows a remote authenticated attacker to execute arbitrary SQL commands via the form_code parameter.

  • CVE-2020-29140HigFeb 15, 2021
    risk 0.47cvss 7.2epss 0.02

    A SQL injection vulnerability in interface/reports/immunization_report.php in OpenEMR before 5.0.2.5 allows a remote authenticated attacker to execute arbitrary SQL commands via the form_code parameter.

  • CVE-2020-29139HigFeb 15, 2021
    risk 0.47cvss 7.2epss 0.02

    A SQL injection vulnerability in interface/main/finder/patient_select.php from library/patient.inc in OpenEMR before 5.0.2.5 allows a remote authenticated attacker to execute arbitrary SQL commands via the searchFields parameter.

  • CVE-2020-29142HigFeb 15, 2021
    risk 0.47cvss 7.2epss 0.02

    A SQL injection vulnerability in interface/usergroup/usergroup_admin.php in OpenEMR before 5.0.2.5 allows a remote authenticated attacker to execute arbitrary SQL commands via the schedule_facility parameter when restrict_user_facility=on is in global settings.

  • CVE-2020-28337HigFeb 15, 2021
    risk 0.44cvss 7.2epss 0.17

    A directory traversal issue in the Utils/Unzip module in Microweber through 1.1.20 allows an authenticated attacker to gain remote code execution via the backup restore feature. To exploit the vulnerability, an attacker must have the credentials of an administrative user, upload…

  • CVE-2021-27211HigFeb 15, 2021
    risk 0.49cvss 7.5epss 0.03

    steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data.

  • CVE-2021-27201HigFeb 15, 2021
    risk 0.57cvss 8.8epss 0.03

    Endian Firewall Community (aka EFW) 3.3.2 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment.

  • CVE-2020-24899HigFeb 15, 2021
    risk 0.58cvss 8.8epss 0.17

    Nagios XI 5.7.2 is affected by a remote code execution (RCE) vulnerability. An authenticated user can inject additional commands into normal webapp query.

  • CVE-2020-22427HigFeb 15, 2021
    risk 0.48cvss 7.2epss 0.14

    NagiosXI 5.6.11 is affected by a remote code execution (RCE) vulnerability. An authenticated nagiosadmin user can inject additional commands into a request. NOTE: the vendor disputes whether the CVE and its references are actionable because all technical details are omitted, and…

  • CVE-2020-22425HigFeb 15, 2021
    risk 0.57cvss 8.8epss 0.02

    Centreon 19.10-3.el7 is affected by a SQL injection vulnerability, where an authorized user is able to inject additional SQL queries to perform remote command execution.

  • CVE-2021-27219HigFeb 15, 2021
    risk 0.49cvss 7.5epss 0.03

    An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The overflow could potentially lead to memory corruption.

  • CVE-2021-27218HigFeb 15, 2021
    risk 0.49cvss 7.5epss 0.04

    An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated modulo 2**32, causing unintended length truncation.

  • CVE-2020-35512HigFeb 15, 2021
    risk 0.51cvss 7.8epss 0.00

    A use-after-free flaw was found in D-Bus Development branch <= 1.13.16, dbus-1.12.x stable branch <= 1.12.18, and dbus-1.10.x and older branches <= 1.10.30 when a system has multiple usernames sharing the same UID. When a set of policy rules references these usernames, D-Bus may…

  • CVE-2020-29031HigFeb 15, 2021
    risk 0.46cvss 7.1epss 0.01

    An Insecure Direct Object Reference vulnerability exists in the web UI of the GateManager which allows an authenticated attacker to reset the password of any user in its domain or any sub-domain, via escalation of privileges. This issue affects all GateManager versions prior to…

  • CVE-2020-4955HigFeb 15, 2021
    risk 0.52cvss 8.0epss 0.01

    IBM Spectrum Protect Operations Center 7.1 and 8.1could allow a remote attacker to execute arbitrary code on the system, caused by improper parameter validation. By creating an unspecified servlet request with specially crafted input parameters, an attacker could exploit this…

  • CVE-2021-25298HigKEVFeb 15, 2021
    risk 0.78cvss 8.8epss 0.75

    Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/cloud-vm/cloud-vm.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can…

  • CVE-2021-25297HigKEVFeb 15, 2021
    risk 0.76cvss 8.8epss 0.59

    Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead…

  • CVE-2021-25296HigKEVFeb 15, 2021
    risk 0.78cvss 8.8epss 0.72

    Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/windowswmi/windowswmi.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which…

  • CVE-2021-23337HigFeb 15, 2021
    risk 0.42cvss 7.2epss 0.22

    Lodash versions prior to 4.17.21 are vulnerable to Command Injection via the template function.

  • CVE-2021-27212HigFeb 14, 2021
    risk 0.54cvss 7.5epss 0.64

    In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.

  • CVE-2021-27209HigFeb 13, 2021
    risk 0.46cvss 7.1epss 0.00

    In the management interface on TP-Link Archer C5v 1.7_181221 devices, credentials are sent in a base64 format over cleartext HTTP.

  • CVE-2021-26752HigFeb 12, 2021
    risk 0.57cvss 8.8epss 0.01

    NeDi 1.9C allows an authenticated user to execute operating system commands in the Nodes Traffic function on the endpoint /Nodes-Traffic.php via the md or ag HTTP GET parameter. This allows an attacker to obtain access to the operating system where NeDi is installed and to all…

  • CVE-2021-26751HigFeb 12, 2021
    risk 0.57cvss 8.8epss 0.01

    NeDi 1.9C allows an authenticated user to perform a SQL Injection in the Monitoring History function on the endpoint /Monitoring-History.php via the det HTTP GET parameter. This allows an attacker to access all the data in the database and obtain access to the NeDi application.

  • CVE-2021-22978HigFeb 12, 2021
    risk 0.54cvss 8.3epss 0.01

    On BIG-IP version 16.0.x before 16.0.1, 15.1.x before 15.1.1, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.5, and all 12.1.x and 11.6.x versions, undisclosed endpoints in iControl REST allow for a reflected XSS attack, which could lead to a complete compromise of BIG-IP if the…

  • CVE-2021-22977HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.01

    On BIG-IP version 16.0.0-16.0.1 and 14.1.2.4-14.1.3, cooperation between malicious HTTP client code and a malicious server may cause TMM to restart and generate a core file. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.

  • CVE-2020-13949HigFeb 12, 2021
    risk 0.42cvss 7.5epss 0.07

    In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large memory allocation, potentially leading to denial of service.

  • CVE-2013-20001HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in OpenZFS through 2.0.3. When an NFS share is exported to IPv6 addresses via the sharenfs feature, there is a silent failure to parse the IPv6 address data, and access is allowed to everyone. IPv6 restrictions from the configuration are not applied.

  • CVE-2021-22985HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.01

    On BIG-IP APM version 16.0.x before 16.0.1.1, under certain conditions, when processing VPN traffic with APM, TMM consumes excessive memory. A malicious, authenticated VPN user may abuse this to perform a DoS attack against the APM. Note: Software versions which have reached End…

  • CVE-2021-22982HigFeb 12, 2021
    risk 0.47cvss 7.2epss 0.01

    On BIG-IP DNS and GTM version 13.1.x before 13.1.0.4, and all versions of 12.1.x and 11.6.x, big3d does not securely handle and parse certain payloads resulting in a buffer overflow. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.

  • CVE-2021-22980HigFeb 12, 2021
    risk 0.51cvss 7.8epss 0.00

    In Edge Client version 7.2.x before 7.2.1.1, 7.1.9.x before 7.1.9.8, and 7.1.x-7.1.8.x before 7.1.8.5, an untrusted search path vulnerability in the BIG-IP APM Client Troubleshooting Utility (CTU) for Windows could allow an attacker to load a malicious DLL library from its…

  • CVE-2021-22976HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.01

    On BIG-IP Advanced WAF and ASM version 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.6, and all 12.1.x versions, when the BIG-IP ASM system processes WebSocket requests with JSON payloads, an unusually large number of parameters can…

  • CVE-2021-22975HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.01

    On BIG-IP version 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, and 14.1.x before 14.1.3.1, under some circumstances, Traffic Management Microkernel (TMM) may restart on the BIG-IP system while passing large bursts of traffic. Note: Software versions which have reached End of…

  • CVE-2021-22974HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.01

    On BIG-IP version 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x before 14.1.3.1, and 13.1.x before 13.1.3.6 and all versions of BIG-IQ 7.x and 6.x, an authenticated attacker with access to iControl REST over the control plane may be able to take advantage of a race…

  • CVE-2021-22973HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.01

    On BIG-IP version 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.5, and all 12.1.x versions, JSON parser function does not protect against out-of-bounds memory accesses or writes. Note: Software versions which have reached End of…

  • CVE-2021-20412HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.01

    IBM Security Verify Information Queue 1.0.6 and 1.0.7 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 198192.

  • CVE-2021-20411HigFeb 12, 2021
    risk 0.53cvss 8.1epss 0.00

    IBM Security Verify Information Queue 1.0.6 and 1.0.7 could allow a user to impersonate another user on the system due to incorrectly updating the session identifier. IBM X-Force ID: 198191.

  • CVE-2021-27197HigFeb 12, 2021
    risk 0.53cvss 8.1epss 0.01

    DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability. The AppendToTextFile method doesn't check if it's being called from the application or from a malicious user. The vulnerability is triggered when a remote attacker crafts an…

  • CVE-2021-27188HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.02

    The Sovremennye Delovye Tekhnologii FX Aggregator terminal client 1 allows attackers to cause a denial of service (access suspended for five hours) by making five invalid login attempts to a victim's account.

  • CVE-2021-27187HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.02

    The Sovremennye Delovye Tekhnologii FX Aggregator terminal client 1 stores authentication credentials in cleartext in login.sav when the Save Password box is checked.

  • CVE-2021-20643HigFeb 12, 2021
    risk 0.49cvss 7.5epss 0.01

    Improper access control vulnerability in ELECOM LD-PS/U1 allows remote attackers to change the administrative password of the affected device by processing a specially crafted request.

  • CVE-2020-27869HigFeb 12, 2021
    risk 0.58cvss 8.8epss 0.05

    This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this vulnerability. The specific flaw exists within the WriteToFile method. The…

  • CVE-2020-27866HigFeb 12, 2021
    risk 0.58cvss 8.8epss 0.09

    This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020, Nighthawk AC2100, and Nighthawk AC2400 routers. Authentication is not required…

  • CVE-2020-27865HigFeb 12, 2021
    risk 0.57cvss 8.8epss 0.03

    This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 firmware version 1.04B03 WiFi extenders. Authentication is not required to exploit this vulnerability. The specific flaw exists within the uhttpd service,…

  • CVE-2020-27864HigFeb 12, 2021
    risk 0.58cvss 8.8epss 0.10

    This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 firmware version 1.04B03 WiFi extenders. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HNAP service,…

  • CVE-2020-27862HigFeb 12, 2021
    risk 0.57cvss 8.8epss 0.01

    This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DVA-2800 and DSL-2888A routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dhttpd service, which listens on…

  • CVE-2020-27861HigFeb 12, 2021
    risk 0.57cvss 8.8epss 0.02

    This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Orbi 2.5.1.16 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UA_Parser utility. A crafted Host Name…

  • CVE-2020-27860HigFeb 12, 2021
    risk 0.51cvss 7.8epss 0.04

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.0.1.35811. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…