| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-37087 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers can create arbitrary file. | ||
| CVE-2021-37084 | Cri | 0.64 | 9.8 | 0.01 | Dec 7, 2021 | There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to malicious invoking other functions of the Smart Assistant through text messages. | ||
| CVE-2021-37079 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to delete arbitrary file by system_app permission. | ||
| CVE-2021-37065 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is a Integer Overflow or Wraparound vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Confidentiality or Availability impacted. | ||
| CVE-2021-37064 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is a Improper Limitation of a Pathname to a Restricted Directory vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to arbitrary file created. | ||
| CVE-2021-37063 | Cri | 0.64 | 9.8 | 0.01 | Dec 7, 2021 | There is a Cryptographic Issues vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to read and delete images of Harmony devices. | ||
| CVE-2021-37062 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is a Improper Validation of Array Index vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to memory overflow and information leakage. | ||
| CVE-2021-37059 | Cri | 0.64 | 9.8 | 0.01 | Dec 7, 2021 | There is a Weaknesses Introduced During Design | ||
| CVE-2021-37021 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read. | ||
| CVE-2021-37020 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read. | ||
| CVE-2021-37011 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read. | ||
| CVE-2021-37042 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause out-of-bounds read. | ||
| CVE-2021-37041 | Cri | 0.59 | 9.1 | 0.01 | Dec 7, 2021 | There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause out-of-bounds read. | ||
| CVE-2021-42128 | Cri | 0.64 | 9.8 | 0.04 | Dec 7, 2021 | An exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 using inforail Service allows Privilege Escalation via Enterprise Server Service. | ||
| CVE-2021-42127 | Cri | 0.69 | 9.8 | 0.66 | Dec 7, 2021 | A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Inforail Service allows arbitrary code execution via Data Repository Service. | ||
| CVE-2021-29114 | Cri | 0.64 | 9.8 | 0.01 | Dec 7, 2021 | A SQL injection vulnerability in feature services provided by Esri ArcGIS Server 10.9 and below allows a remote, unauthenticated attacker to impact the confidentiality, integrity and availability of targeted services via specifically crafted queries. | ||
| CVE-2021-44685 | — | Cri | 0.64 | 9.8 | 0.03 | Dec 7, 2021 | Git-it through 4.4.0 allows OS command injection at the Branches Aren't Just For Birds challenge step. During the verification process, it attempts to run the reflog command followed by the current branch name (which is not sanitized for execution). | |
| CVE-2021-44684 | — | Cri | 0.64 | 9.8 | 0.03 | Dec 7, 2021 | naholyr github-todos 3.1.0 is vulnerable to command injection. The range argument for the _hook subcommand is concatenated without any validation, and is directly used by the exec function. | |
| CVE-2021-44682 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | An issue (6 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited… | ||
| CVE-2021-44681 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | An issue (5 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited… | ||
| CVE-2021-44680 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | An issue (4 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited… | ||
| CVE-2021-44679 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | An issue (3 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited… | ||
| CVE-2021-44678 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | An issue (2 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited… | ||
| CVE-2021-44677 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | An issue (1 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited… | ||
| CVE-2021-31632 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | b2evolution CMS v7.2.3 was discovered to contain a SQL injection vulnerability via the parameter cfqueryparam in the User login section. This vulnerability allows attackers to execute arbitrary code via a crafted input. | ||
| CVE-2021-40091 | Cri | 0.64 | 9.8 | 0.01 | Dec 6, 2021 | An SSRF issue was discovered in SquaredUp for SCOM 5.2.1.6654. | ||
| CVE-2021-36567 | — | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\AbstractCache. | |
| CVE-2021-36564 | — | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component vendor\league\flysystem-cached-adapter\src\Storage\Adapter.php. | |
| CVE-2021-43936 | Cri | 0.71 | 10.0 | 0.36 | Dec 6, 2021 | The software allows the attacker to upload or transfer files of dangerous types to the WebHMI portal, that may be automatically processed within the product's environment or lead to arbitrary code execution. | ||
| CVE-2021-43931 | Cri | 0.64 | 9.8 | 0.01 | Dec 6, 2021 | The authentication algorithm of the WebHMI portal is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error. | ||
| CVE-2021-24943 | Cri | 0.64 | 9.8 | 0.07 | Dec 6, 2021 | The Registrations for the Events Calendar WordPress plugin before 2.7.6 does not sanitise and escape the event_id in the rtec_send_unregister_link AJAX action (available to both unauthenticated and authenticated users) before using it in a SQL statement, leading to an… | ||
| CVE-2021-24931 | Cri | 0.73 | 9.8 | 0.79 | Dec 6, 2021 | The Secure Copy Content Protection and Content Locking WordPress plugin before 2.8.2 does not escape the sccp_id parameter of the ays_sccp_results_export_file AJAX action (available to both unauthenticated and authenticated users) before using it in a SQL statement, leading to… | ||
| CVE-2021-24866 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | The WP Data Access WordPress plugin before 5.0.0 does not properly sanitise and escape the backup_date parameter before using it a SQL statement, leading to a SQL injection issue and could allow arbitrary table deletion | ||
| CVE-2021-43044 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The SNMP daemon was configured with a weak default community. | ||
| CVE-2021-43042 | Cri | 0.64 | 9.8 | 0.03 | Dec 6, 2021 | An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A buffer overflow existed in the vaultServer component. This was exploitable by a remote unauthenticated attacker. | ||
| CVE-2021-43036 | Cri | 0.64 | 9.8 | 0.02 | Dec 6, 2021 | An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The password for the PostgreSQL wguest account is weak. | ||
| CVE-2021-43035 | Cri | 0.64 | 9.8 | 0.03 | Dec 6, 2021 | An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Two unauthenticated SQL injection vulnerabilities were discovered, allowing arbitrary SQL queries to be injected and executed under the postgres superuser account. Remote code execution was possible,… | ||
| CVE-2021-43033 | Cri | 0.64 | 9.8 | 0.06 | Dec 6, 2021 | An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Multiple functions in the bpserverd daemon were vulnerable to arbitrary remote code execution as root. The vulnerability was caused by untrusted input (received by the server) being passed to system… | ||
| CVE-2021-35414 | Cri | 0.00 | 9.8 | 0.02 | Dec 3, 2021 | Chamilo LMS v1.11.x was discovered to contain a SQL injection via the doc parameter in main/plagiarism/compilatio/upload.php. | ||
| CVE-2021-44349 | Cri | 0.64 | 9.8 | 0.01 | Dec 3, 2021 | SQL Injection vulnerability exists in TuziCMS v2.0.6 via the id parameter in App\Manage\Controller\DownloadController.class.php. | ||
| CVE-2021-44348 | Cri | 0.64 | 9.8 | 0.01 | Dec 3, 2021 | SQL Injection vulnerability exists in TuziCMS v2.0.6 via the id parameer in App\Manage\Controller\AdvertController.class.php. | ||
| CVE-2021-35346 | Cri | 0.00 | 9.8 | 0.02 | Dec 3, 2021 | tsMuxer v2.6.16 was discovered to contain a heap-based buffer overflow via the function HevcSpsUnit::short_term_ref_pic_set(int) in hevc.cpp. | ||
| CVE-2021-35344 | Cri | 0.00 | 9.8 | 0.02 | Dec 3, 2021 | tsMuxer v2.6.16 was discovered to contain a heap-based buffer overflow via the function BitStreamReader::getCurVal in bitStream.h. | ||
| CVE-2021-44352 | Cri | 0.65 | 9.8 | 0.13 | Dec 3, 2021 | A Stack-based Buffer Overflow vulnerability exists in the Tenda AC15 V15.03.05.18_multi device via the list parameter in a post request in goform/SetIpMacBind. | ||
| CVE-2021-44347 | Cri | 0.64 | 9.8 | 0.01 | Dec 3, 2021 | SQL Injection vulnerability exists in TuziCMS v2.0.6 in App\Manage\Controller\GuestbookController.class.php. | ||
| CVE-2021-43676 | — | Cri | 0.57 | 9.8 | 0.01 | Dec 3, 2021 | matyhtf framework v3.0.5 is affected by a path manipulation vulnerability in Smarty.class.php. | |
| CVE-2021-44278 | — | Cri | 0.00 | 9.8 | 0.01 | Dec 3, 2021 | Librenms 21.11.0 is affected by a path manipulation vulnerability in includes/html/pages/device/showconfig.inc.php. | |
| CVE-2021-43674 | Cri | 0.64 | 9.8 | 0.01 | Dec 3, 2021 | ThinkUp 2.0-beta.10 is affected by a path manipulation vulnerability in Smarty.class.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer | ||
| CVE-2020-29177 | Cri | 0.59 | 9.1 | 0.01 | Dec 2, 2021 | Z-BlogPHP v1.6.1.2100 was discovered to contain an arbitrary file deletion vulnerability via \app_del.php. | ||
| CVE-2021-28237 | Cri | 0.64 | 9.8 | 0.01 | Dec 2, 2021 | LibreDWG v0.12.3 was discovered to contain a heap-buffer overflow via decode_preR13. |
- risk 0.59cvss 9.1epss 0.01
There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers can create arbitrary file.
- risk 0.64cvss 9.8epss 0.01
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to malicious invoking other functions of the Smart Assistant through text messages.
- risk 0.59cvss 9.1epss 0.01
There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to delete arbitrary file by system_app permission.
- risk 0.59cvss 9.1epss 0.01
There is a Integer Overflow or Wraparound vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Confidentiality or Availability impacted.
- risk 0.59cvss 9.1epss 0.01
There is a Improper Limitation of a Pathname to a Restricted Directory vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to arbitrary file created.
- risk 0.64cvss 9.8epss 0.01
There is a Cryptographic Issues vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to read and delete images of Harmony devices.
- risk 0.59cvss 9.1epss 0.01
There is a Improper Validation of Array Index vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to memory overflow and information leakage.
- risk 0.64cvss 9.8epss 0.01
There is a Weaknesses Introduced During Design
- risk 0.59cvss 9.1epss 0.01
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.
- risk 0.59cvss 9.1epss 0.01
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.
- risk 0.59cvss 9.1epss 0.01
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.
- risk 0.59cvss 9.1epss 0.01
There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause out-of-bounds read.
- risk 0.59cvss 9.1epss 0.01
There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause out-of-bounds read.
- risk 0.64cvss 9.8epss 0.04
An exposed dangerous function vulnerability exists in Ivanti Avalanche before 6.3.3 using inforail Service allows Privilege Escalation via Enterprise Server Service.
- risk 0.69cvss 9.8epss 0.66
A deserialization of untrusted data vulnerability exists in Ivanti Avalanche before 6.3.3 using Inforail Service allows arbitrary code execution via Data Repository Service.
- risk 0.64cvss 9.8epss 0.01
A SQL injection vulnerability in feature services provided by Esri ArcGIS Server 10.9 and below allows a remote, unauthenticated attacker to impact the confidentiality, integrity and availability of targeted services via specifically crafted queries.
- risk 0.64cvss 9.8epss 0.03
Git-it through 4.4.0 allows OS command injection at the Branches Aren't Just For Birds challenge step. During the verification process, it attempts to run the reflog command followed by the current branch name (which is not sanitized for execution).
- risk 0.64cvss 9.8epss 0.03
naholyr github-todos 3.1.0 is vulnerable to command injection. The range argument for the _hook subcommand is concatenated without any validation, and is directly used by the exec function.
- risk 0.64cvss 9.8epss 0.02
An issue (6 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited…
- risk 0.64cvss 9.8epss 0.02
An issue (5 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited…
- risk 0.64cvss 9.8epss 0.02
An issue (4 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited…
- risk 0.64cvss 9.8epss 0.02
An issue (3 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited…
- risk 0.64cvss 9.8epss 0.02
An issue (2 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited…
- risk 0.64cvss 9.8epss 0.02
An issue (1 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited…
- risk 0.64cvss 9.8epss 0.02
b2evolution CMS v7.2.3 was discovered to contain a SQL injection vulnerability via the parameter cfqueryparam in the User login section. This vulnerability allows attackers to execute arbitrary code via a crafted input.
- risk 0.64cvss 9.8epss 0.01
An SSRF issue was discovered in SquaredUp for SCOM 5.2.1.6654.
- risk 0.64cvss 9.8epss 0.02
ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\AbstractCache.
- risk 0.64cvss 9.8epss 0.02
ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component vendor\league\flysystem-cached-adapter\src\Storage\Adapter.php.
- risk 0.71cvss 10.0epss 0.36
The software allows the attacker to upload or transfer files of dangerous types to the WebHMI portal, that may be automatically processed within the product's environment or lead to arbitrary code execution.
- risk 0.64cvss 9.8epss 0.01
The authentication algorithm of the WebHMI portal is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.
- risk 0.64cvss 9.8epss 0.07
The Registrations for the Events Calendar WordPress plugin before 2.7.6 does not sanitise and escape the event_id in the rtec_send_unregister_link AJAX action (available to both unauthenticated and authenticated users) before using it in a SQL statement, leading to an…
- risk 0.73cvss 9.8epss 0.79
The Secure Copy Content Protection and Content Locking WordPress plugin before 2.8.2 does not escape the sccp_id parameter of the ays_sccp_results_export_file AJAX action (available to both unauthenticated and authenticated users) before using it in a SQL statement, leading to…
- risk 0.64cvss 9.8epss 0.02
The WP Data Access WordPress plugin before 5.0.0 does not properly sanitise and escape the backup_date parameter before using it a SQL statement, leading to a SQL injection issue and could allow arbitrary table deletion
- risk 0.64cvss 9.8epss 0.02
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The SNMP daemon was configured with a weak default community.
- risk 0.64cvss 9.8epss 0.03
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. A buffer overflow existed in the vaultServer component. This was exploitable by a remote unauthenticated attacker.
- risk 0.64cvss 9.8epss 0.02
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The password for the PostgreSQL wguest account is weak.
- risk 0.64cvss 9.8epss 0.03
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Two unauthenticated SQL injection vulnerabilities were discovered, allowing arbitrary SQL queries to be injected and executed under the postgres superuser account. Remote code execution was possible,…
- risk 0.64cvss 9.8epss 0.06
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. Multiple functions in the bpserverd daemon were vulnerable to arbitrary remote code execution as root. The vulnerability was caused by untrusted input (received by the server) being passed to system…
- risk 0.00cvss 9.8epss 0.02
Chamilo LMS v1.11.x was discovered to contain a SQL injection via the doc parameter in main/plagiarism/compilatio/upload.php.
- risk 0.64cvss 9.8epss 0.01
SQL Injection vulnerability exists in TuziCMS v2.0.6 via the id parameter in App\Manage\Controller\DownloadController.class.php.
- risk 0.64cvss 9.8epss 0.01
SQL Injection vulnerability exists in TuziCMS v2.0.6 via the id parameer in App\Manage\Controller\AdvertController.class.php.
- risk 0.00cvss 9.8epss 0.02
tsMuxer v2.6.16 was discovered to contain a heap-based buffer overflow via the function HevcSpsUnit::short_term_ref_pic_set(int) in hevc.cpp.
- risk 0.00cvss 9.8epss 0.02
tsMuxer v2.6.16 was discovered to contain a heap-based buffer overflow via the function BitStreamReader::getCurVal in bitStream.h.
- risk 0.65cvss 9.8epss 0.13
A Stack-based Buffer Overflow vulnerability exists in the Tenda AC15 V15.03.05.18_multi device via the list parameter in a post request in goform/SetIpMacBind.
- risk 0.64cvss 9.8epss 0.01
SQL Injection vulnerability exists in TuziCMS v2.0.6 in App\Manage\Controller\GuestbookController.class.php.
- risk 0.57cvss 9.8epss 0.01
matyhtf framework v3.0.5 is affected by a path manipulation vulnerability in Smarty.class.php.
- risk 0.00cvss 9.8epss 0.01
Librenms 21.11.0 is affected by a path manipulation vulnerability in includes/html/pages/device/showconfig.inc.php.
- risk 0.64cvss 9.8epss 0.01
ThinkUp 2.0-beta.10 is affected by a path manipulation vulnerability in Smarty.class.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
- risk 0.59cvss 9.1epss 0.01
Z-BlogPHP v1.6.1.2100 was discovered to contain an arbitrary file deletion vulnerability via \app_del.php.
- risk 0.64cvss 9.8epss 0.01
LibreDWG v0.12.3 was discovered to contain a heap-buffer overflow via decode_preR13.