| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-38173 | Cri | 0.00 | 9.8 | 0.03 | Aug 7, 2021 | Btrbk before 0.31.2 allows command execution because of the mishandling of remote hosts filtering SSH commands using ssh_filter_btrbk.sh in authorized_keys. | ||
| CVE-2021-38167 | Cri | 0.64 | 9.8 | 0.01 | Aug 7, 2021 | Roxy-WI through 5.2.2.0 allows SQL Injection via check_login. An unauthenticated attacker can extract a valid uuid to bypass authentication. | ||
| CVE-2021-38159 | Cri | 0.64 | 9.8 | 0.02 | Aug 7, 2021 | In certain Progress MOVEit Transfer versions before 2021.0.4 (aka 13.0.4), SQL injection in the MOVEit Transfer web application could allow an unauthenticated remote attacker to gain access to the database. Depending on the database engine being used (MySQL, Microsoft SQL… | ||
| CVE-2021-29922 | Cri | 0.00 | 9.1 | 0.03 | Aug 7, 2021 | library/std/src/net/parser.rs in Rust before 1.53.0 does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal… | ||
| CVE-2021-38148 | — | Cri | 0.64 | 9.8 | 0.01 | Aug 7, 2021 | Obsidian before 0.12.12 does not require user confirmation for non-http/https URLs. | |
| CVE-2020-28088 | — | Cri | 0.64 | 9.8 | 0.02 | Aug 6, 2021 | An arbitrary file upload vulnerability in /jeecg-boot/sys/common/upload of jeecg-boot CMS 2.3 allows attackers to execute arbitrary code. | |
| CVE-2021-20597 | Cri | 0.59 | 9.1 | 0.02 | Aug 6, 2021 | Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU firmware versions "11" and… | ||
| CVE-2021-26606 | Cri | 0.64 | 9.8 | 0.02 | Aug 6, 2021 | A vulnerability in PKI Security Solution of Dream Security could allow arbitrary command execution. This vulnerability is due to insufficient validation of the authorization certificate. An attacker could exploit this vulnerability by sending a crafted HTTP request an affected… | ||
| CVE-2021-37549 | Cri | 0.59 | 9.1 | 0.01 | Aug 6, 2021 | In JetBrains YouTrack before 2021.1.11111, sandboxing in workflows was insufficient. | ||
| CVE-2021-37544 | Cri | 0.64 | 9.8 | 0.01 | Aug 6, 2021 | In JetBrains TeamCity before 2020.2.4, there was an insecure deserialization. | ||
| CVE-2021-36707 | Cri | 0.64 | 9.8 | 0.03 | Aug 6, 2021 | In ProLink PRC2402M V1.0.18 and older, the set_ledonoff function in the adm.cgi binary, accessible with a page parameter value of ledonoff contains a trivial command injection where the value of the led_cmd parameter is passed directly to do_system. | ||
| CVE-2021-36706 | Cri | 0.64 | 9.8 | 0.03 | Aug 6, 2021 | In ProLink PRC2402M V1.0.18 and older, the set_sys_cmd function in the adm.cgi binary, accessible with a page parameter value of sysCMD contains a trivial command injection where the value of the command parameter is passed directly to system. | ||
| CVE-2021-36705 | Cri | 0.64 | 9.8 | 0.03 | Aug 6, 2021 | In ProLink PRC2402M V1.0.18 and older, the set_TR069 function in the adm.cgi binary, accessible with a page parameter value of TR069 contains a trivial command injection where the value of the TR069_local_port parameter is passed directly to system. | ||
| CVE-2021-36351 | Cri | 0.64 | 9.8 | 0.02 | Aug 6, 2021 | SQL Injection Vulnerability in Care2x Open Source Hospital Information Management 2.7 Alpha via the (1) pday, (2) pmonth, and (3) pyear parameters in GET requests sent to /modules/nursing/nursing-station.php. | ||
| CVE-2021-36209 | Cri | 0.64 | 9.8 | 0.01 | Aug 6, 2021 | In JetBrains Hub before 2021.1.13389, account takeover was possible during password reset. | ||
| CVE-2021-37388 | Cri | 0.64 | 9.8 | 0.04 | Aug 6, 2021 | A buffer overflow in D-Link DIR-615 C2 3.03WW. The ping_ipaddr parameter in ping_response.cgi POST request allows an attacker to crash the webserver and might even gain remote code execution. | ||
| CVE-2021-35327 | Cri | 0.64 | 9.8 | 0.01 | Aug 5, 2021 | A vulnerability in TOTOLINK A720R A720R_Firmware v4.1.5cu.470_B20200911 allows attackers to start the Telnet service, then login with the default credentials via a crafted POST request. | ||
| CVE-2021-35324 | Cri | 0.65 | 9.8 | 0.10 | Aug 5, 2021 | A vulnerability in the Form_Login function of TOTOLINK A720R A720R_Firmware V4.1.5cu.470_B20200911 allows attackers to bypass authentication. | ||
| CVE-2021-22234 | Cri | 0.62 | 9.6 | 0.01 | Aug 5, 2021 | An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.11 before 13.11.7, all versions starting from 13.12 before 13.12.8, and all versions starting from 14.0 before 14.0.4. A specially crafted design image allowed attackers to read arbitrary files… | ||
| CVE-2021-21805 | Cri | 0.69 | 9.8 | 0.70 | Aug 5, 2021 | An OS Command Injection vulnerability exists in the ping.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). A specially crafted HTTP request can lead to arbitrary OS command execution. An attacker can send a crafted HTTP request to trigger this vulnerability. | ||
| CVE-2021-34371 | — | Cri | 0.65 | 9.8 | 0.13 | Aug 5, 2021 | Neo4j through 3.4.18 (with the shell server enabled) exposes an RMI service that arbitrarily deserializes Java objects, e.g., through setSessionVariable. An attacker can abuse this for remote code execution because there are dependencies with exploitable gadget chains. | |
| CVE-2021-29978 | Cri | 0.00 | 9.8 | 0.03 | Aug 5, 2021 | Multiple low security issues were discovered and fixed in a security audit of Mozilla VPN 2.x branch as part of a 3rd party security audit. This vulnerability affects Mozilla VPN < 2.3. | ||
| CVE-2021-29971 | Cri | 0.64 | 9.8 | 0.01 | Aug 5, 2021 | If a user had granted a permission to a webpage and saved that grant, any webpage running on the same host - irrespective of scheme or port - would be granted that permission. *This bug only affects Firefox for Android. Other operating systems are unaffected.*. This… | ||
| CVE-2021-20028 | Cri | 0.84 | 9.8 | 0.30 | KEV | Aug 4, 2021 | Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier | |
| CVE-2021-1610 | Cri | 0.64 | 9.8 | 0.09 | Aug 4, 2021 | Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Execute arbitrary code Cause a denial of service (DoS) condition Execute… | ||
| CVE-2021-1609 | Cri | 0.64 | 9.8 | 0.10 | Aug 4, 2021 | Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Execute arbitrary code Cause a denial of service (DoS) condition Execute… | ||
| CVE-2021-32590 | Cri | 0.64 | 9.9 | 0.02 | Aug 4, 2021 | Multiple improper neutralization of special elements used in an SQL command vulnerabilities in FortiPortal 6.0.0 through 6.0.4, 5.3.0 through 5.3.5, 5.2.0 through 5.2.5, and 4.2.2 and earlier may allow an attacker with regular user's privileges to execute arbitrary commands on… | ||
| CVE-2021-37232 | Cri | 0.00 | 9.8 | 0.02 | Aug 4, 2021 | A stack overflow vulnerability occurs in Atomicparsley 20210124.204813.840499f through APar_read64() in src/util.cpp due to the lack of buffer size of uint32_buffer while reading more bytes in APar_read64. | ||
| CVE-2020-19305 | Cri | 0.64 | 9.8 | 0.02 | Aug 3, 2021 | An issue in /app/system/column/admin/index.class.php of Metinfo v7.0.0 causes the indeximg parameter to be deleted when the column is deleted, allowing attackers to escalate privileges. | ||
| CVE-2020-19302 | Cri | 0.64 | 9.8 | 0.02 | Aug 3, 2021 | An arbitrary file upload vulnerability in the avatar upload function of vaeThink v1.0.1 allows attackers to open a webshell via changing uploaded file suffixes to ".php". | ||
| CVE-2020-19301 | Cri | 0.64 | 9.8 | 0.03 | Aug 3, 2021 | A vulnerability in the vae_admin_rule database table of vaeThink v1.0.1 allows attackers to execute arbitrary code via a crafted payload in the condition parameter. | ||
| CVE-2021-30571 | Cri | 0.62 | 9.6 | 0.01 | Aug 3, 2021 | Insufficient policy enforcement in DevTools in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted HTML page. | ||
| CVE-2021-36701 | Cri | 0.59 | 9.1 | 0.02 | Aug 3, 2021 | In htmly version 2.8.1, is vulnerable to an Arbitrary File Deletion on the local host when delete backup files. The vulnerability may allow a remote attacker to delete arbitrary know files on the host. | ||
| CVE-2021-36623 | Cri | 0.64 | 9.8 | 0.02 | Aug 3, 2021 | Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE. | ||
| CVE-2021-36622 | Cri | 0.64 | 9.8 | 0.02 | Aug 3, 2021 | Sourcecodester Online Covid Vaccination Scheduler System 1.0 is affected vulnerable to Arbitrary File Upload. The admin panel has an upload function of profile photo accessible at http://localhost/scheduler/admin/?page=user. An attacker could upload a malicious file such as… | ||
| CVE-2021-32016 | Cri | 0.65 | 9.9 | 0.02 | Aug 3, 2021 | An issue was discovered in JUMP AMS 3.6.0.04.009-2487. A JUMP SOAP endpoint permitted the writing of arbitrary files to a user-controlled location on the remote filesystem (with user-controlled content) via directory traversal, potentially leading to remote code and command… | ||
| CVE-2021-32017 | Cri | 0.64 | 9.9 | 0.01 | Aug 3, 2021 | An issue was discovered in JUMP AMS 3.6.0.04.009-2487. A JUMP SOAP endpoint permitted the listing of the content of the remote file system. This can be used to identify the complete server filesystem structure, i.e., identifying all the directories and files. | ||
| CVE-2021-37558 | Cri | 0.00 | 9.8 | 0.02 | Aug 3, 2021 | A SQL injection vulnerability in a MediaWiki script in Centreon before 20.04.14, 20.10.8, and 21.04.2 allows remote unauthenticated attackers to execute arbitrary SQL commands via the host_name and service_description parameters. The vulnerability can be exploited only when a… | ||
| CVE-2021-33485 | Cri | 0.64 | 9.8 | 0.01 | Aug 3, 2021 | CODESYS Control Runtime system before 3.5.17.10 has a Heap-based Buffer Overflow. | ||
| CVE-2021-27952 | Cri | 0.64 | 9.8 | 0.01 | Aug 3, 2021 | Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console. | ||
| CVE-2021-36159 | Cri | 0.59 | 9.1 | 0.03 | Aug 3, 2021 | libfetch before 2021-07-26, as used in apk-tools, xbps, and other products, mishandles numeric strings for the FTP and HTTP protocols. The FTP passive mode implementation allows an out-of-bounds read because strtol is used to parse the relevant numbers into address bytes. It… | ||
| CVE-2021-37832 | Cri | 0.64 | 9.8 | 0.04 | Aug 3, 2021 | A SQL injection vulnerability exists in version 3.0.2 of Hotel Druid when SQLite is being used as the application database. A malicious attacker can issue SQL commands to the SQLite database through the vulnerable idappartamenti parameter. | ||
| CVE-2021-37843 | Cri | 0.64 | 9.8 | 0.02 | Aug 2, 2021 | The resolution SAML SSO apps for Atlassian products allow a remote attacker to login to a user account when only the username is known (i.e., no other authentication is provided). The fixed versions are for Jira: 3.6.6.1, 4.0.12, 5.0.5; for Confluence 3.6.6, 4.0.12, 5.0.5; for… | ||
| CVE-2021-32810 | Cri | 0.64 | 9.8 | 0.02 | Aug 2, 2021 | crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are… | ||
| CVE-2021-22444 | Cri | 0.64 | 9.8 | 0.01 | Aug 2, 2021 | There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause code injection. | ||
| CVE-2021-22438 | Cri | 0.64 | 9.8 | 0.01 | Aug 2, 2021 | There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause malicious code to be executed. | ||
| CVE-2021-22435 | Cri | 0.59 | 9.1 | 0.01 | Aug 2, 2021 | There is a Configuration Defect Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service integrity and availability. | ||
| CVE-2021-22390 | Cri | 0.64 | 9.8 | 0.01 | Aug 2, 2021 | There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed. | ||
| CVE-2021-22389 | Cri | 0.64 | 9.8 | 0.01 | Aug 2, 2021 | There is a Permission Control Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed. | ||
| CVE-2021-22388 | Cri | 0.64 | 9.8 | 0.01 | Aug 2, 2021 | There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed. |
- risk 0.00cvss 9.8epss 0.03
Btrbk before 0.31.2 allows command execution because of the mishandling of remote hosts filtering SSH commands using ssh_filter_btrbk.sh in authorized_keys.
- risk 0.64cvss 9.8epss 0.01
Roxy-WI through 5.2.2.0 allows SQL Injection via check_login. An unauthenticated attacker can extract a valid uuid to bypass authentication.
- risk 0.64cvss 9.8epss 0.02
In certain Progress MOVEit Transfer versions before 2021.0.4 (aka 13.0.4), SQL injection in the MOVEit Transfer web application could allow an unauthenticated remote attacker to gain access to the database. Depending on the database engine being used (MySQL, Microsoft SQL…
- risk 0.00cvss 9.1epss 0.03
library/std/src/net/parser.rs in Rust before 1.53.0 does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass access control that is based on IP addresses, because of unexpected octal…
- risk 0.64cvss 9.8epss 0.01
Obsidian before 0.12.12 does not require user confirmation for non-http/https URLs.
- risk 0.64cvss 9.8epss 0.02
An arbitrary file upload vulnerability in /jeecg-boot/sys/common/upload of jeecg-boot CMS 2.3 allows attackers to execute arbitrary code.
- risk 0.59cvss 9.1epss 0.02
Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU firmware versions "11" and…
- risk 0.64cvss 9.8epss 0.02
A vulnerability in PKI Security Solution of Dream Security could allow arbitrary command execution. This vulnerability is due to insufficient validation of the authorization certificate. An attacker could exploit this vulnerability by sending a crafted HTTP request an affected…
- risk 0.59cvss 9.1epss 0.01
In JetBrains YouTrack before 2021.1.11111, sandboxing in workflows was insufficient.
- risk 0.64cvss 9.8epss 0.01
In JetBrains TeamCity before 2020.2.4, there was an insecure deserialization.
- risk 0.64cvss 9.8epss 0.03
In ProLink PRC2402M V1.0.18 and older, the set_ledonoff function in the adm.cgi binary, accessible with a page parameter value of ledonoff contains a trivial command injection where the value of the led_cmd parameter is passed directly to do_system.
- risk 0.64cvss 9.8epss 0.03
In ProLink PRC2402M V1.0.18 and older, the set_sys_cmd function in the adm.cgi binary, accessible with a page parameter value of sysCMD contains a trivial command injection where the value of the command parameter is passed directly to system.
- risk 0.64cvss 9.8epss 0.03
In ProLink PRC2402M V1.0.18 and older, the set_TR069 function in the adm.cgi binary, accessible with a page parameter value of TR069 contains a trivial command injection where the value of the TR069_local_port parameter is passed directly to system.
- risk 0.64cvss 9.8epss 0.02
SQL Injection Vulnerability in Care2x Open Source Hospital Information Management 2.7 Alpha via the (1) pday, (2) pmonth, and (3) pyear parameters in GET requests sent to /modules/nursing/nursing-station.php.
- risk 0.64cvss 9.8epss 0.01
In JetBrains Hub before 2021.1.13389, account takeover was possible during password reset.
- risk 0.64cvss 9.8epss 0.04
A buffer overflow in D-Link DIR-615 C2 3.03WW. The ping_ipaddr parameter in ping_response.cgi POST request allows an attacker to crash the webserver and might even gain remote code execution.
- risk 0.64cvss 9.8epss 0.01
A vulnerability in TOTOLINK A720R A720R_Firmware v4.1.5cu.470_B20200911 allows attackers to start the Telnet service, then login with the default credentials via a crafted POST request.
- risk 0.65cvss 9.8epss 0.10
A vulnerability in the Form_Login function of TOTOLINK A720R A720R_Firmware V4.1.5cu.470_B20200911 allows attackers to bypass authentication.
- risk 0.62cvss 9.6epss 0.01
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.11 before 13.11.7, all versions starting from 13.12 before 13.12.8, and all versions starting from 14.0 before 14.0.4. A specially crafted design image allowed attackers to read arbitrary files…
- risk 0.69cvss 9.8epss 0.70
An OS Command Injection vulnerability exists in the ping.php script functionality of Advantech R-SeeNet v 2.4.12 (20.10.2020). A specially crafted HTTP request can lead to arbitrary OS command execution. An attacker can send a crafted HTTP request to trigger this vulnerability.
- risk 0.65cvss 9.8epss 0.13
Neo4j through 3.4.18 (with the shell server enabled) exposes an RMI service that arbitrarily deserializes Java objects, e.g., through setSessionVariable. An attacker can abuse this for remote code execution because there are dependencies with exploitable gadget chains.
- risk 0.00cvss 9.8epss 0.03
Multiple low security issues were discovered and fixed in a security audit of Mozilla VPN 2.x branch as part of a 3rd party security audit. This vulnerability affects Mozilla VPN < 2.3.
- risk 0.64cvss 9.8epss 0.01
If a user had granted a permission to a webpage and saved that grant, any webpage running on the same host - irrespective of scheme or port - would be granted that permission. *This bug only affects Firefox for Android. Other operating systems are unaffected.*. This…
- risk 0.84cvss 9.8epss 0.30
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products, specifically the SRA appliances running all 8.x firmware and 9.0.0.9-26sv or earlier
- risk 0.64cvss 9.8epss 0.09
Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Execute arbitrary code Cause a denial of service (DoS) condition Execute…
- risk 0.64cvss 9.8epss 0.10
Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Execute arbitrary code Cause a denial of service (DoS) condition Execute…
- risk 0.64cvss 9.9epss 0.02
Multiple improper neutralization of special elements used in an SQL command vulnerabilities in FortiPortal 6.0.0 through 6.0.4, 5.3.0 through 5.3.5, 5.2.0 through 5.2.5, and 4.2.2 and earlier may allow an attacker with regular user's privileges to execute arbitrary commands on…
- risk 0.00cvss 9.8epss 0.02
A stack overflow vulnerability occurs in Atomicparsley 20210124.204813.840499f through APar_read64() in src/util.cpp due to the lack of buffer size of uint32_buffer while reading more bytes in APar_read64.
- risk 0.64cvss 9.8epss 0.02
An issue in /app/system/column/admin/index.class.php of Metinfo v7.0.0 causes the indeximg parameter to be deleted when the column is deleted, allowing attackers to escalate privileges.
- risk 0.64cvss 9.8epss 0.02
An arbitrary file upload vulnerability in the avatar upload function of vaeThink v1.0.1 allows attackers to open a webshell via changing uploaded file suffixes to ".php".
- risk 0.64cvss 9.8epss 0.03
A vulnerability in the vae_admin_rule database table of vaeThink v1.0.1 allows attackers to execute arbitrary code via a crafted payload in the condition parameter.
- risk 0.62cvss 9.6epss 0.01
Insufficient policy enforcement in DevTools in Google Chrome prior to 92.0.4515.107 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted HTML page.
- risk 0.59cvss 9.1epss 0.02
In htmly version 2.8.1, is vulnerable to an Arbitrary File Deletion on the local host when delete backup files. The vulnerability may allow a remote attacker to delete arbitrary know files on the host.
- risk 0.64cvss 9.8epss 0.02
Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE.
- risk 0.64cvss 9.8epss 0.02
Sourcecodester Online Covid Vaccination Scheduler System 1.0 is affected vulnerable to Arbitrary File Upload. The admin panel has an upload function of profile photo accessible at http://localhost/scheduler/admin/?page=user. An attacker could upload a malicious file such as…
- risk 0.65cvss 9.9epss 0.02
An issue was discovered in JUMP AMS 3.6.0.04.009-2487. A JUMP SOAP endpoint permitted the writing of arbitrary files to a user-controlled location on the remote filesystem (with user-controlled content) via directory traversal, potentially leading to remote code and command…
- risk 0.64cvss 9.9epss 0.01
An issue was discovered in JUMP AMS 3.6.0.04.009-2487. A JUMP SOAP endpoint permitted the listing of the content of the remote file system. This can be used to identify the complete server filesystem structure, i.e., identifying all the directories and files.
- risk 0.00cvss 9.8epss 0.02
A SQL injection vulnerability in a MediaWiki script in Centreon before 20.04.14, 20.10.8, and 21.04.2 allows remote unauthenticated attackers to execute arbitrary SQL commands via the host_name and service_description parameters. The vulnerability can be exploited only when a…
- risk 0.64cvss 9.8epss 0.01
CODESYS Control Runtime system before 3.5.17.10 has a Heap-based Buffer Overflow.
- risk 0.64cvss 9.8epss 0.01
Hardcoded default root credentials exist on the ecobee3 lite 4.5.81.200 device. This allows a threat actor to gain access to the password-protected bootloader environment through the serial console.
- risk 0.59cvss 9.1epss 0.03
libfetch before 2021-07-26, as used in apk-tools, xbps, and other products, mishandles numeric strings for the FTP and HTTP protocols. The FTP passive mode implementation allows an out-of-bounds read because strtol is used to parse the relevant numbers into address bytes. It…
- risk 0.64cvss 9.8epss 0.04
A SQL injection vulnerability exists in version 3.0.2 of Hotel Druid when SQLite is being used as the application database. A malicious attacker can issue SQL commands to the SQLite database through the vulnerable idappartamenti parameter.
- risk 0.64cvss 9.8epss 0.02
The resolution SAML SSO apps for Atlassian products allow a remote attacker to login to a user account when only the username is known (i.e., no other authentication is provided). The fixed versions are for Jira: 3.6.6.1, 4.0.12, 5.0.5; for Confluence 3.6.6, 4.0.12, 5.0.5; for…
- risk 0.64cvss 9.8epss 0.02
crossbeam-deque is a package of work-stealing deques for building task schedulers when programming in Rust. In versions prior to 0.7.4 and 0.8.0, the result of the race condition is that one or more tasks in the worker queue can be popped twice instead of other tasks that are…
- risk 0.64cvss 9.8epss 0.01
There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause code injection.
- risk 0.64cvss 9.8epss 0.01
There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause malicious code to be executed.
- risk 0.59cvss 9.1epss 0.01
There is a Configuration Defect Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service integrity and availability.
- risk 0.64cvss 9.8epss 0.01
There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed.
- risk 0.64cvss 9.8epss 0.01
There is a Permission Control Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed.
- risk 0.64cvss 9.8epss 0.01
There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed.