VYPR

CVEs

31,781 total · page 398 of 636

  • CVE-2021-26583CriMay 10, 2021
    risk 0.64cvss 9.8epss 0.04

    A potential security vulnerability was identified in HPE iLO Amplifier Pack. The vulnerabilities could be remotely exploited to allow remote code execution.

  • CVE-2021-25848CriMay 10, 2021
    risk 0.59cvss 9.1epss 0.01

    Improper validation of the length field of LLDP-MED TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to using fixed loop counter variable without checking the actual available length via a crafted lldp…

  • CVE-2021-25847CriMay 10, 2021
    risk 0.59cvss 9.1epss 0.01

    Improper validation of the length field of LLDP-MED TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to controllable loop counter variable via a crafted lldp packet.

  • CVE-2021-31758CriMay 7, 2021
    risk 0.64cvss 9.8epss 0.07

    An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in /goform/setportList allows attackers to execute arbitrary code on the system via a crafted post request.

  • CVE-2021-31757CriMay 7, 2021
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in /goform/setVLAN allows attackers to execute arbitrary code on the system via a crafted post request.

  • CVE-2021-31756CriMay 7, 2021
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in /gofrom/setwanType allows attackers to execute arbitrary code on the system via a crafted post request. This occurs when input vector controlled by…

  • CVE-2021-31755CriKEVMay 7, 2021
    risk 0.83cvss 9.8epss 0.86

    An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in /goform/setmac allows attackers to execute arbitrary code on the system via a crafted post request.

  • CVE-2021-27573CriMay 7, 2021
    risk 0.65cvss 9.8epss 0.14

    An issue was discovered in Emote Remote Mouse through 4.0.0.0. Remote unauthenticated users can execute arbitrary code via crafted UDP packets with no prior authorization or authentication.

  • CVE-2021-27437CriMay 7, 2021
    risk 0.59cvss 9.1epss 0.01

    The affected product allows attackers to obtain sensitive information from the WISE-PaaS dashboard. The system contains a hard-coded administrator username and password that can be used to query Grafana APIs. Authentication is not required for exploitation on the WISE-PaaS/RMM…

  • CVE-2021-22671CriMay 7, 2021
    risk 0.64cvss 9.8epss 0.02

    Multiple integer overflow issues exist while processing long domain names, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and…

  • CVE-2021-22679CriMay 7, 2021
    risk 0.64cvss 9.8epss 0.02

    The affected product is vulnerable to an integer overflow while processing HTTP headers, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03,…

  • CVE-2021-21984CriMay 7, 2021
    risk 0.64cvss 9.8epss 0.02

    VMware vRealize Business for Cloud 7.x prior to 7.6.0 contains a remote code execution vulnerability due to an unauthorised end point. A malicious actor with network access may exploit this issue causing unauthorised remote code execution on vRealize Business for Cloud Virtual…

  • CVE-2021-32090CriMay 7, 2021
    risk 0.57cvss 9.8epss 0.02

    The dashboard component of StackLift LocalStack 0.12.6 allows attackers to inject arbitrary shell commands via the functionName parameter.

  • CVE-2021-32099CriMay 7, 2021
    risk 0.65cvss 9.8epss 0.11

    A SQL injection vulnerability in the pandora_console component of Artica Pandora FMS 742 allows an unauthenticated attacker to upgrade his unprivileged session via the /include/chart_generator.php session_id parameter, leading to a login bypass.

  • CVE-2021-32098CriMay 7, 2021
    risk 0.64cvss 9.8epss 0.02

    Artica Pandora FMS 742 allows unauthenticated attackers to perform Phar deserialization.

  • CVE-2021-31737CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.04

    emlog v5.3.1 and emlog v6.0.0 have a Remote Code Execution vulnerability due to upload of database backup file in admin/data.php.

  • CVE-2021-29203CriMay 6, 2021
    risk 0.69cvss 9.8epss 0.68

    A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software, prior to version 1.22. The vulnerability could be remotely exploited to bypass remote authentication leading to execution of…

  • CVE-2020-18890CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    Rmote Code Execution (RCE) vulnerability in puppyCMS v5.1 due to insecure permissions, which could let a remote malicious user getshell via /admin/functions.php.

  • CVE-2021-28152CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.05

    Hongdian H8922 3.0.5 devices have an undocumented feature that allows access to a shell as a superuser. To connect, the telnet service is used on port 5188 with the default credentials of root:superzxmn.

  • CVE-2021-32030CriKEVMay 6, 2021
    risk 0.84cvss 9.8epss 0.99

    The administrator application on ASUS GT-AC2900 devices before 3.0.0.4.386.42643 and Lyra Mini before 3.0.0.4_384_46630 allows authentication bypass when processing remote input from an unauthenticated user, leading to unauthorized access to the administrator interface. This…

  • CVE-2021-30473CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    aom_image.c in libaom in AOMedia before 2021-04-07 frees memory that is not located on the heap.

  • CVE-2021-20204CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    A heap memory corruption problem (use after free) can be triggered in libgetdata v0.10.0 when processing maliciously crafted dirfile databases. This degrades the confidentiality, integrity and availability of third-party software that uses libgetdata as a library. This…

  • CVE-2021-29921CriMay 6, 2021
    risk 0.01cvss 9.8epss 0.07

    In Python before 3,9,5, the ipaddress library mishandles leading zero characters in the octets of an IP address string. This (in some situations) allows attackers to bypass access control that is based on IP addresses.

  • CVE-2021-24236CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.07

    The Imagements WordPress plugin through 1.2.5 allows images to be uploaded in comments, however only checks for the Content-Type in the request to forbid dangerous files. This allows unauthenticated attackers to upload arbitrary files by using a valid image Content-Type along…

  • CVE-2021-1508CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the…

  • CVE-2021-1506CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the…

  • CVE-2021-1505CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the…

  • CVE-2021-1498CriKEVMay 6, 2021
    risk 0.87cvss 9.8epss 1.00

    Multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device. For more information about these vulnerabilities, see the Details section of this…

  • CVE-2021-1497CriKEVMay 6, 2021
    risk 0.87cvss 9.8epss 1.00

    Multiple vulnerabilities in the web-based management interface of Cisco HyperFlex HX could allow an unauthenticated, remote attacker to perform command injection attacks against an affected device. For more information about these vulnerabilities, see the Details section of this…

  • CVE-2021-1468CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the…

  • CVE-2021-1275CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    Multiple vulnerabilities in Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to execute arbitrary code or gain access to sensitive information, or allow an authenticated, local attacker to gain escalated privileges or gain unauthorized access to the…

  • CVE-2020-28026CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.09

    Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers…

  • CVE-2020-28024CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.04

    Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unauthenticated remote attackers executing arbitrary commands, because smtp_ungetc was only intended to push back characters, but can actually push back non-character error codes such as EOF.

  • CVE-2020-28022CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.03

    Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands.

  • CVE-2020-28020CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.08

    Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote attacker can execute arbitrary code by leveraging the mishandling of continuation lines during header-length restriction.

  • CVE-2020-28018CriMay 6, 2021
    risk 0.68cvss 9.8epss 0.57

    Exim 4 before 4.94.2 allows Use After Free in smtp_reset in certain situations that may be common for builds with OpenSSL.

  • CVE-2020-28017CriMay 6, 2021
    risk 0.67cvss 9.8epss 0.37

    Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receive_add_recipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption.

  • CVE-2020-19114CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    SQL Injection vulnerability in Online Book Store v1.0 via the publisher parameter to edit_book.php, which could let a remote malicious user execute arbitrary code.

  • CVE-2020-19113CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.03

    Arbitrary File Upload vulnerability in Online Book Store v1.0 in admin_add.php, which may lead to remote code execution.

  • CVE-2020-19112CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to admin_delete.php, which could let a remote malicious user execute arbitrary code.

  • CVE-2020-19111CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    Incorrect Access Control vulnerability in Online Book Store v1.0 via admin_verify.php, which could let a remote mailicious user bypass authentication and obtain sensitive information.

  • CVE-2020-19110CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to book.php parameter, which could let a remote malicious user execute arbitrary code.

  • CVE-2020-19109CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    SQL Injection vulnerability in Online Book Store v1.0 via the bookisbn parameter to admin_edit.php, which could let a remote malicious user execute arbitrary code.

  • CVE-2020-19108CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    SQL Injection vulnerability in Online Book Store v1.0 via the pubid parameter to bookPerPub.php, which could let a remote malicious user execute arbitrary code.

  • CVE-2020-19107CriMay 6, 2021
    risk 0.64cvss 9.8epss 0.02

    SQL Injection vulnerability in Online Book Store v1.0 via the isbn parameter to edit_book.php, which could let a remote malicious user execute arbitrary code.

  • CVE-2021-32055CriMay 5, 2021
    risk 0.00cvss 9.1epss 0.03

    Mutt 1.11.0 through 2.0.x before 2.0.7 (and NeoMutt 2019-10-25 through 2021-05-04) has a $imap_qresync issue in which imap/util.c has an out-of-bounds read in situations where an IMAP sequence set ends with a comma. NOTE: the $imap_qresync setting for QRESYNC is not enabled by…

  • CVE-2020-4979CriMay 5, 2021
    risk 0.64cvss 9.8epss 0.02

    IBM QRadar SIEM 7.3 and 7.4 is vulnerable to insecure inter-deployment communication. An attacker that is able to comprimise or spoof traffic between hosts may be able to execute arbitrary commands. IBM X-Force D: 192538.

  • CVE-2020-13665CriMay 5, 2021
    risk 0.64cvss 9.8epss 0.01

    Access bypass vulnerability in Drupal Core allows JSON:API when JSON:API is in read/write mode. Only sites that have the read_only set to FALSE under jsonapi.settings config are vulnerable. This issue affects: Drupal Drupal Core 8.8.x versions prior to 8.8.8; 8.9.x versions…

  • CVE-2016-20010CriMay 5, 2021
    risk 0.65cvss 10.0epss 0.04

    EWWW Image Optimizer before 2.8.5 allows remote command execution because it relies on a protection mechanism involving boolval, which is unavailable before PHP 5.5.

  • CVE-2021-31800CriMay 5, 2021
    risk 0.58cvss 9.8epss 0.19

    Multiple path traversal vulnerabilities exist in smbserver.py in Impacket through 0.9.22. An attacker that connects to a running smbserver instance can list and write to arbitrary files via ../ directory traversal. This could potentially be abused to achieve arbitrary code…