| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 196129 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2021-09-19 | CVE-2021-23441 | cve | All versions of package com.jsoniter:jsoniter are vulnerable to Deserialization of Untrusted Data via malicious JSON strings. This may lead to a Denial of Service, and in certai... |
| N/A | 2021-09-19 | CVE-2021-41073 | cve | loop_rw_iter in fs/io_uring.c in the Linux kernel through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free of a kernel buffer, a... |
| N/A | 2021-09-18 | CVE-2021-3806 | cve | A path traversal vulnerability on Pardus Software Center's "extractArchive" function could allow anyone on the same network to do a man-in-the-middle and write files on the... |
| N/A | 2021-09-18 | CVE-2021-41393 | cve | Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows forgery of SSH host certificates in some situations. |
| N/A | 2021-09-18 | CVE-2021-41394 | cve | Teleport before 4.4.11, 5.x before 5.2.4, 6.x before 6.2.12, and 7.x before 7.1.1 allows alteration of build artifacts in some situations. |
| N/A | 2021-09-18 | CVE-2021-41395 | cve | Teleport before 6.2.12 and 7.x before 7.1.1 allows attackers to control a database connection string, in some situations, via a crafted database name or username. |
| N/A | 2021-09-17 | CVE-2021-41392 | cve | static/main-preload.js in Boost Note through 0.22.0 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC i... |
| N/A | 2021-09-17 | CVE-2020-12080 | cve | A Denial of Service vulnerability has been identified in FlexNet Publisher's lmadmin.exe version 11.16.6. A certain message protocol can be exploited to cause lmadmin to cr... |
| N/A | 2021-09-17 | CVE-2020-12082 | cve | A stored cross-site scripting issue impacts certain areas of the Web UI for Code Insight v7.x releases up to and including 2020 R1 (7.11.0-64). |
| N/A | 2021-09-17 | CVE-2020-12083 | cve | An elevated privileges issue related to Spring MVC calls impacts Code Insight v7.x releases up to and including 2020 R1 (7.11.0-64). |
| N/A | 2021-09-17 | CVE-2021-41326 | cve | In MISP before 2.4.148, app/Lib/Export/OpendataExport.php mishandles parameter data that is used in a shell_exec call. |
| N/A | 2021-09-17 | CVE-2018-20686 | cve | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. ... |
| N/A | 2021-09-17 | CVE-2021-38402 | cve | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could lead to a stack-based buffer... |
| N/A | 2021-09-17 | CVE-2021-38404 | cve | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in a heap-based buffe... |
| N/A | 2021-09-17 | CVE-2021-38406 | cve | Delta Electronic DOPSoft 2 (Version 2.00.07 and prior) lacks proper validation of user-supplied data when parsing specific project files. This could result in multiple out-of-bo... |
| N/A | 2021-09-17 | CVE-2021-38412 | cve | Properly formatted POST requests to multiple resources on the HTTP and HTTPS web servers of the Digi PortServer TS 16 Rack device do not require authentication or authentication... |
| N/A | 2021-09-17 | CVE-2021-39216 | cve | Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.19.0 and before version 0.30.0 there was a use-after-free bug when passing `externref`s fro... |
| 6.3 | 2021-09-17 | CVE-2021-39219 | cve | Wasmtime is an open source runtime for WebAssembly & WASI. Wasmtime before version 0.30.0 is affected by a type confusion vulnerability. As a Rust library the `wasmtime` crate c... |
| N/A | 2021-09-17 | CVE-2021-41380 | cve | RealVNC Viewer 6.21.406 allows remote VNC servers to cause a denial of service (application crash) via crafted RFB protocol data. |
| N/A | 2021-09-17 | CVE-2021-41383 | cve | setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute arbitrary shell commands via shell metacharacters in the ntp_server field. |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 196129 |
