VYPR

CVEs

31,781 total · page 411 of 636

  • CVE-2021-26688CriFeb 4, 2021
    risk 0.64cvss 9.8epss 0.00

    An issue was discovered on LG Wing mobile devices with Android OS 10 software. The biometric sensor has weak security properties. The LG ID is LVE-SMP-200030 (February 2021).

  • CVE-2021-26687CriFeb 4, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. In preloaded applications, the HostnameVerified default is mishandled. The LG ID is LVE-SMP-200029 (February 2021).

  • CVE-2021-20016CriKEVFeb 4, 2021
    risk 0.85cvss 9.8epss 0.40

    A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. This vulnerability impacts SMA100 build version 10.x.

  • CVE-2021-3401CriFeb 4, 2021
    risk 0.01cvss 9.8epss 0.10

    Bitcoin Core before 0.19.0 might allow remote attackers to execute arbitrary code when another application unsafely passes the -platformpluginpath argument to the bitcoin-qt program, as demonstrated by an x-scheme-handler/bitcoin handler for a .desktop file or a web browser.…

  • CVE-2021-25274CriFeb 3, 2021
    risk 0.67cvss 9.8epss 0.36

    The Collector Service in SolarWinds Orion Platform before 2020.2.4 uses MSMQ (Microsoft Message Queue) and doesn't set permissions on its private queues. As a result, remote unauthenticated clients can send messages to TCP port 1801 that the Collector Service will process.…

  • CVE-2020-17523CriFeb 3, 2021
    risk 0.07cvss 9.8epss 0.86

    Apache Shiro before 1.7.1, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass.

  • CVE-2021-25770CriFeb 3, 2021
    risk 0.64cvss 9.8epss 0.03

    In JetBrains YouTrack before 2020.5.3123, server-side template injection (SSTI) was possible, which could lead to code execution.

  • CVE-2020-35481CriFeb 3, 2021
    risk 0.64cvss 9.8epss 0.01

    SolarWinds Serv-U before 15.2.2 allows Unauthenticated Macro Injection.

  • CVE-2020-2507CriFeb 3, 2021
    risk 0.64cvss 9.8epss 0.03

    The vulnerability have been reported to affect earlier versions of QTS. If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. This issue affects: QNAP Systems Inc. Helpdesk versions prior to 3.0.3.

  • CVE-2020-28653CriFeb 3, 2021
    risk 0.73cvss 9.8epss 0.79

    Zoho ManageEngine OpManager Stable build before 125203 (and Released build before 125233) allows Remote Code Execution via the Smart Update Manager (SUM) servlet.

  • CVE-2020-29165CriFeb 3, 2021
    risk 0.64cvss 9.8epss 0.02

    PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by incorrect access control, which can result in remotely gaining administrator privileges.

  • CVE-2020-28144CriFeb 3, 2021
    risk 0.64cvss 9.8epss 0.02

    Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. Crafted requests sent to the device may allow remote…

  • CVE-2021-25912CriFeb 2, 2021
    risk 0.57cvss 9.8epss 0.03

    Prototype pollution vulnerability in 'dotty' versions 0.0.1 through 0.1.0 allows attackers to cause a denial of service and may lead to remote code execution.

  • CVE-2020-7775CriFeb 2, 2021
    risk 0.64cvss 9.8epss 0.01

    This affects all versions of package freediskspace. The vulnerability arises out of improper neutralization of arguments in line 71 of freediskspace.js.

  • CVE-2020-15097CriFeb 2, 2021
    risk 0.00cvss 9.1epss 0.02

    loklak is an open-source server application which is able to collect messages from various sources, including twitter. The server contains a search index and a peer-to-peer index sharing interface. All messages are stored in an elasticsearch index. In loklak less than or equal…

  • CVE-2020-18568CriFeb 2, 2021
    risk 0.65cvss 9.8epss 0.15

    The D-Link DSR-250 (3.14) DSR-1000N (2.11B201) UPnP service contains a command injection vulnerability, which can cause remote command execution.

  • CVE-2020-25506CriKEVFeb 2, 2021
    risk 0.84cvss 9.8epss 1.00

    D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution.

  • CVE-2020-1896CriFeb 2, 2021
    risk 0.00cvss 9.8epss 0.02

    A stack overflow vulnerability in Facebook Hermes 'builtin apply' prior to commit 86543ac47e59c522976b5632b8bf9a2a4583c7d2 (https://github.com/facebook/hermes/commit/86543ac47e59c522976b5632b8bf9a2a4583c7d2) allows attackers to potentially execute arbitrary code via crafted…

  • CVE-2021-3378CriFeb 1, 2021
    risk 0.75cvss 9.8epss 0.98

    FortiLogger 4.4.2.2 is affected by Arbitrary File Upload by sending a "Content-Type: image/png" header to Config/SaveUploadedHotspotLogoFile and then visiting Assets/temp/hotspot/img/logohotspot.asp.

  • CVE-2019-20468CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in SeTracker2 for TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices. It has unnecessary permissions such as READ_EXTERNAL_STORAGE, WRITE_EXTERNAL_STORAGE, and READ_CONTACTS.

  • CVE-2020-21180CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.01

    Sql injection vulnerability in koa2-blog 1.0.0 allows remote attackers to Injecting a malicious SQL statement via the name parameter to the signup page.

  • CVE-2020-21179CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.01

    Sql injection vulnerability in koa2-blog 1.0.0 allows remote attackers to Injecting a malicious SQL statement via the name parameter to the signin page.

  • CVE-2020-21176CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in the model.increment and model.decrement function in ThinkJS 3.2.10 allows remote attackers to execute arbitrary SQL commands via the step parameter.

  • CVE-2020-20296CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was found in CMSWing project version 1.3.8, Because the rechargeAction function does not check the balance parameter, malicious parameters can execute arbitrary SQL commands.

  • CVE-2020-20295CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was found in CMSWing project version 1.3.8. Because the updateAction function does not check the detail parameter, malicious parameters can execute arbitrary SQL commands.

  • CVE-2020-20294CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was found in CMSWing project version 1.3.8. Because the log function does not check the log parameter, malicious parameters can execute arbitrary commands.

  • CVE-2020-20289CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.01

    Sql injection vulnerability in the yccms 3.3 project. The no_top function's improper judgment of the request parameters, triggers a sql injection vulnerability.

  • CVE-2020-20287CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.03

    Unrestricted file upload vulnerability in the yccms 3.3 project. The xhUp function's improper judgment of the request parameters, triggers remote code execution.

  • CVE-2021-23330CriFeb 1, 2021
    risk 0.00cvss 9.8epss 0.05

    All versions of package launchpad are vulnerable to Command Injection via stop.

  • CVE-2021-21276CriFeb 1, 2021
    risk 0.04cvss 9.3epss 0.07

    Polr is an open source URL shortener. in Polr before version 2.3.0, a vulnerability in the setup process allows attackers to gain admin access to site instances, even if they do not possess an existing account. This vulnerability exists regardless of users' settings. If an…

  • CVE-2020-36109CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.04

    ASUS RT-AX86U router firmware below version under 9.0.0.4_386 has a buffer overflow in the blocking_request.cgi function of the httpd module that can cause code execution when an attacker constructs malicious data.

  • CVE-2020-28194CriFeb 1, 2021
    risk 0.00cvss 9.8epss 0.03

    Variable underflow exists in accel-ppp radius/packet.c when receiving a RADIUS vendor-specific attribute with length field is less than 2. It has an impact only when the attacker controls the RADIUS server, which can lead to arbitrary code execution.

  • CVE-2020-26547CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.01

    Monal before 4.9 does not implement proper sender verification on MAM and Message Carbon (XEP-0280) results. This allows a remote attacker (able to send stanzas to a victim) to inject arbitrary messages into the local history, with full control over the sender and receiver…

  • CVE-2020-15836CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The authentication function passes untrusted data to the operating system without proper sanitization. A crafted request can be sent to execute arbitrary commands as root.

  • CVE-2020-15835CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The authentication function contains undocumented code that provides the ability to authenticate as root without knowing the actual root password. An adversary with the private key can remotely…

  • CVE-2020-15833CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The Dropbear SSH daemon has been modified to accept an alternate hard-coded path to a public key that allows root access. This key is stored in a /rom location that cannot be modified by the device owner.

  • CVE-2020-13859CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. A format error in /etc/shadow, coupled with a logic bug in the LuCI - OpenWrt Configuration Interface framework, allows the undocumented system account mofidev to login to the cgi-bin/luci/quick/wizard…

  • CVE-2020-13858CriFeb 1, 2021
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They contain two undocumented administrator accounts. The sftp and mofidev accounts are defined in /etc/passwd and the password is not unique across installations.

  • CVE-2020-15690CriJan 30, 2021
    risk 0.64cvss 9.8epss 0.03

    In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether a message contains a newline character.

  • CVE-2020-15568CriJan 30, 2021
    risk 0.66cvss 9.8epss 0.28

    TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic class method invocation vulnerability in include/exportUser.php, in which an attacker can trigger a call to the exec method with (for example) OS commands in the…

  • CVE-2020-29557CriKEVJan 29, 2021
    risk 0.80cvss 9.8epss 0.54

    An issue was discovered on D-Link DIR-825 R1 devices through 3.0.1 before 2020-11-20. A buffer overflow in the web interface allows attackers to achieve pre-authentication remote code execution.

  • CVE-2021-3346CriJan 29, 2021
    risk 0.64cvss 9.8epss 0.02

    Foris before 101.1.1, as used in Turris OS, lacks certain HTML escaping in the login template.

  • CVE-2020-35547CriJan 29, 2021
    risk 0.59cvss 9.1epss 0.01

    A library index page in NuPoint Messenger in Mitel MiCollab before 9.2 FP1 could allow an unauthenticated attacker to gain access (view and modify) to user data.

  • CVE-2021-26305CriJan 29, 2021
    risk 0.57cvss 9.8epss 0.02

    An issue was discovered in Deserializer::read_vec in the cdr crate before 0.2.4 for Rust. A user-provided Read implementation can gain access to the old contents of newly allocated heap memory, violating soundness.

  • CVE-2021-3160CriJan 28, 2021
    risk 0.64cvss 9.8epss 0.05

    Deserialization of untrusted data in the login page of ASSUWEB 359.3 build 1 subcomponent of ACA ASSUREX RENTES product allows a remote attacker to inject unsecure serialized Java object using a specially crafted HTTP request, resulting in an unauthenticated remote code…

  • CVE-2020-4682CriJan 28, 2021
    risk 0.64cvss 9.8epss 0.08

    IBM MQ 7.5, 8.0, 9.0, 9.1, 9.2 LTS, and 9.2 CD could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization of trusted data. An attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 186509.

  • CVE-2020-35124CriJan 28, 2021
    risk 0.56cvss 9.6epss 0.02

    A cross-site scripting (XSS) vulnerability in the assets component of Mautic before 3.2.4 allows remote attackers to inject executable JavaScript through the Referer header of asset downloads.

  • CVE-2020-25785CriJan 28, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Accfly Wireless Security IR Camera System 720P with software versions v3.10.73 through v4.15.77. There is an unauthenticated stack-based buffer overflow in the function CFtpProtocol::FtpLogin during the update procedure.

  • CVE-2020-25784CriJan 28, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Accfly Wireless Security IR Camera System 720P with software versions v3.10.73 through v4.15.77. There is an unauthenticated stack-based buffer overflow in the function CNetClientGuard::SubOprMsg during incoming message handling.

  • CVE-2020-25783CriJan 28, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Accfly Wireless Security IR Camera System 720P with software versions v3.10.73 through v4.15.77. There is an unauthenticated heap-based buffer overflow in the function CNetClientTalk::OprMsg during incoming message handling.