VYPR

CVEs

31,782 total · page 380 of 636

  • CVE-2021-21913CriSep 23, 2021
    risk 0.64cvss 9.8epss 0.02

    An information disclosure vulnerability exists in the WiFi Smart Mesh functionality of D-LINK DIR-3040 1.13B03. A specially-crafted network request can lead to command execution. An attacker can connect to the MQTT service to trigger this vulnerability.

  • CVE-2021-22945CriSep 23, 2021
    risk 0.60cvss 9.1epss 0.06

    When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and both use that again in a subsequent call to send data and also free it *again*.

  • CVE-2021-22941CriKEVSep 23, 2021
    risk 0.86cvss 9.8epss 0.54

    Improper Access Control in Citrix ShareFile storage zones controller before 5.11.20 may allow an unauthenticated attacker to remotely compromise the storage zones controller.

  • CVE-2021-22005CriKEVSep 23, 2021
    risk 0.93cvss 9.8epss 1.00

    The vCenter Server contains an arbitrary file upload vulnerability in the Analytics service. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to execute code on vCenter Server by uploading a specially crafted file.

  • CVE-2021-34770CriSep 23, 2021
    risk 0.65cvss 10.0epss 0.03

    A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to execute arbitrary code with administrative…

  • CVE-2021-34727CriSep 23, 2021
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected device. This vulnerability is due to insufficient bounds checking when an affected device processes traffic. An…

  • CVE-2021-1619CriSep 23, 2021
    risk 0.64cvss 9.8epss 0.02

    A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass NETCONF or RESTCONF authentication and do either of the following: Install, manipulate, or delete the…

  • CVE-2021-40684CriSep 22, 2021
    risk 0.59cvss 9.1epss 0.01

    Talend ESB Runtime in all versions from 5.1 to 7.3.1-R2021-09, 7.2.1-R2021-09, 7.1.1-R2021-09, has an unauthenticated Jolokia HTTP endpoint which allows remote access to the JMX of the runtime container, which would allow an attacker the ability to read or modify the container…

  • CVE-2019-6288CriSep 22, 2021
    risk 0.64cvss 9.8epss 0.03

    Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the command1 HTTP header to the /EXCU_SHELL URI.

  • CVE-2021-37927CriSep 22, 2021
    risk 0.64cvss 9.8epss 0.02

    Zoho ManageEngine ADManager Plus version 7110 and prior allows account takeover via SSO.

  • CVE-2021-37925CriSep 22, 2021
    risk 0.65cvss 9.8epss 0.10

    Zoho ManageEngine ADManager Plus version 7110 and prior has a Post-Auth OS command injection vulnerability.

  • CVE-2021-36260CriKEVSep 22, 2021
    risk 0.87cvss 9.8epss 1.00

    A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.

  • CVE-2021-31819CriSep 22, 2021
    risk 0.64cvss 9.8epss 0.02

    In Halibut versions prior to 4.4.7 there is a deserialisation vulnerability that could allow remote code execution on systems that already trust each other based on certificate verification.

  • CVE-2021-37424CriSep 21, 2021
    risk 0.64cvss 9.8epss 0.05

    ManageEngine ADSelfService Plus before 6112 is vulnerable to domain user account takeover.

  • CVE-2021-28960CriSep 21, 2021
    risk 0.64cvss 9.8epss 0.02

    Zoho ManageEngine Desktop Central before build 10.0.683 allows unauthenticated command injection due to improper handling of an input command in on-demand operations.

  • CVE-2021-0869CriSep 21, 2021
    risk 0.64cvss 9.8epss 0.01

    In GetTimeStampAndPkt of DumpstateDevice.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android…

  • CVE-2021-31917CriSep 21, 2021
    risk 0.64cvss 9.8epss 0.01

    A flaw was found in Red Hat DataGrid 8.x (8.0.0, 8.0.1, 8.1.0 and 8.1.1) and Infinispan (10.0.0 through 12.0.0). An attacker could bypass authentication on all REST endpoints when DIGEST is used as the authentication method. The highest threat from this vulnerability is to data…

  • CVE-2021-40674CriSep 20, 2021
    risk 0.64cvss 9.8epss 0.01

    An SQL injection vulnerability exists in Wuzhi CMS v4.1.0 via the KeyValue parameter in coreframe/app/order/admin/index.php.

  • CVE-2021-24741CriSep 20, 2021
    risk 0.64cvss 9.8epss 0.06

    The Support Board WordPress plugin before 3.3.4 does not escape multiple POST parameters (such as status_code, department, user_id, conversation_id, conversation_status_code, and recipient_id) before using them in SQL statements, leading to SQL injections which are exploitable…

  • CVE-2021-24638CriSep 20, 2021
    risk 0.59cvss 9.1epss 0.02

    The OMGF WordPress plugin before 4.5.4 does not escape or validate the handle parameter of the REST API, which allows unauthenticated users to perform path traversal and overwrite arbitrary CSS file with Google Fonts CSS, or download fonts uploaded on Google Fonts website.

  • CVE-2021-41393CriSep 18, 2021
    risk 0.64cvss 9.8epss 0.01

    Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows forgery of SSH host certificates in some situations.

  • CVE-2021-41392CriSep 17, 2021
    risk 0.64cvss 9.8epss 0.03

    static/main-preload.js in Boost Note through 0.22.0 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal Electron API.

  • CVE-2021-38412CriSep 17, 2021
    risk 0.63cvss 9.6epss 0.01

    Properly formatted POST requests to multiple resources on the HTTP and HTTPS web servers of the Digi PortServer TS 16 Rack device do not require authentication or authentication tokens. This vulnerability could allow an attacker to enable the SNMP service and manipulate the…

  • CVE-2021-41326CriSep 17, 2021
    risk 0.64cvss 9.8epss 0.02

    In MISP before 2.4.148, app/Lib/Export/OpendataExport.php mishandles parameter data that is used in a shell_exec call.

  • CVE-2020-12083CriSep 17, 2021
    risk 0.64cvss 9.9epss 0.01

    An elevated privileges issue related to Spring MVC calls impacts Code Insight v7.x releases up to and including 2020 R1 (7.11.0-64).

  • CVE-2021-41317CriSep 17, 2021
    risk 0.00cvss 9.8epss 0.02

    XSS Hunter Express before 2021-09-17 does not properly enforce authentication requirements for paths.

  • CVE-2021-41303CriSep 17, 2021
    risk 0.70cvss 9.8epss 0.77

    Apache Shiro before 1.8.0, when using Apache Shiro with Spring Boot, a specially crafted HTTP request may cause an authentication bypass. Users should update to Apache Shiro 1.8.0.

  • CVE-2021-1976CriSep 17, 2021
    risk 0.64cvss 9.8epss 0.01

    A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired…

  • CVE-2021-20791CriSep 17, 2021
    risk 0.61cvss 9.3epss 0.01

    Improper access control vulnerability in RevoWorks Browser 2.1.230 and earlier allows an attacker to bypass access restriction and to exchange unauthorized files between the local environment and the isolated environment or settings of the web browser via unspecified vectors.

  • CVE-2021-20790CriSep 17, 2021
    risk 0.62cvss 9.6epss 0.01

    Improper control of program execution vulnerability in RevoWorks Browser 2.1.230 and earlier allows an attacker to execute an arbitrary command or code via unspecified vectors.

  • CVE-2021-40670CriSep 16, 2021
    risk 0.64cvss 9.8epss 0.01

    SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the keywords iparameter under the /coreframe/app/order/admin/card.php file.

  • CVE-2021-40669CriSep 16, 2021
    risk 0.64cvss 9.8epss 0.01

    SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the keywords parameter under the coreframe/app/promote/admin/index.php file.

  • CVE-2021-40438CriKEVSep 16, 2021
    risk 0.79cvss 9.0epss 1.00

    A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.

  • CVE-2021-39275CriSep 16, 2021
    risk 0.67cvss 9.8epss 0.36

    ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and earlier.

  • CVE-2021-27341CriSep 16, 2021
    risk 0.00cvss 9.8epss 0.02

    OpenSIS Community Edition version <= 7.6 is affected by a local file inclusion vulnerability in DownloadWindow.php via the "filename" parameter.

  • CVE-2020-14124CriSep 16, 2021
    risk 0.64cvss 9.8epss 0.02

    There is a buffer overflow in librsa.so called by getwifipwdurl interface, resulting in code execution on Xiaomi router AX3600 with ROM version =rom< 1.1.12.

  • CVE-2020-14119CriSep 16, 2021
    risk 0.64cvss 9.8epss 0.03

    There is command injection in the addMeshNode interface of xqnetwork.lua, which leads to command execution under administrator authority on Xiaomi router AX3600 with rom versionrom< 1.1.12

  • CVE-2021-40881CriSep 15, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue in the BAT file parameters of PublicCMS v4.0 allows attackers to execute arbitrary code.

  • CVE-2021-33045CriKEVSep 15, 2021
    risk 0.84cvss 9.8epss 1.00

    The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.

  • CVE-2021-33044CriKEVSep 15, 2021
    risk 0.84cvss 9.8epss 1.00

    The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.

  • CVE-2020-21322CriSep 15, 2021
    risk 0.57cvss 9.8epss 0.02

    An arbitrary file upload vulnerability in Feehi CMS v2.0.8 and below allows attackers to execute arbitrary code via a crafted PHP file.

  • CVE-2021-37913CriSep 15, 2021
    risk 0.64cvss 9.8epss 0.03

    The HGiga OAKlouds mobile portal does not filter special characters of the IPv6 Gateway parameter of the network interface card setting page. Remote attackers can use this vulnerability to perform command injection and execute arbitrary commands in the system without logging in.

  • CVE-2021-37912CriSep 15, 2021
    risk 0.64cvss 9.8epss 0.03

    The HGiga OAKlouds mobile portal does not filter special characters of the Ethernet number parameter of the network interface card setting page. Remote attackers can use this vulnerability to perform command injection and execute arbitrary commands in the system without logging…

  • CVE-2021-37909CriSep 15, 2021
    risk 0.64cvss 9.8epss 0.02

    WriteRegistry function in TSSServiSign component does not filter and verify users’ input, remote attackers can rewrite to the registry without permissions thus perform hijack attacks to execute arbitrary code.

  • CVE-2021-33701CriSep 15, 2021
    risk 0.59cvss 9.1epss 0.02

    DMIS Mobile Plug-In or SAP S/4HANA, versions - DMIS 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 710, 2011_1_731, 710, 2011_1_752, 2020, SAPSCORE 125, S4CORE 102, 102, 103, 104, 105, allows an attacker with access to highly privileged account to execute…

  • CVE-2021-33695CriSep 15, 2021
    risk 0.59cvss 9.1epss 0.01

    Potentially, SAP Cloud Connector, version - 2.0 communication with the backend is accepted without sufficient validation of the certificate.

  • CVE-2021-33690CriSep 15, 2021
    risk 0.70cvss 9.9epss 0.68

    Server-Side Request Forgery (SSRF) vulnerability has been detected in the SAP NetWeaver Development Infrastructure Component Build Service versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50The SAP NetWeaver Development Infrastructure Component Build Service allows a threat actor who…

  • CVE-2021-39392CriSep 15, 2021
    risk 0.64cvss 9.8epss 0.02

    The management tool in MyLittleBackup up to and including 1.7 allows remote attackers to execute arbitrary code because machineKey is hardcoded (the same for all customers' installations) in web.config, and can be used to send serialized ASP code.

  • CVE-2020-21127CriSep 15, 2021
    risk 0.64cvss 9.8epss 0.02

    MetInfo 7.0.0 contains a SQL injection vulnerability via admin/?n=logs&c=index&a=dodel.

  • CVE-2020-21125CriSep 15, 2021
    risk 0.64cvss 9.8epss 0.02

    An arbitrary file creation vulnerability in UReport 2.2.9 allows attackers to execute arbitrary code.