CVE-2020-36478
Summary: An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS). A NULL...
Vulnerabilities
CVE-2015-5237
Summary: protobuf allows remote authenticated attackers to cause a heap-based buffer overflow. Reference Links(if available): https://github.com/google/protobuf/issues/760 https://bugzilla.redhat.com/show_bug.cgi?id=1256426 http://www.openwall.com/lists/oss-security/2015/08/27/2 https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E...
CVE-2019-15544
Summary: An issue was discovered in the protobuf crate before 2.6.0 for Rust. Attackers can exhaust all memory via Vec::reserve...
CVE-2021-33909 – Linux Foundation / Linux kernel – Out-of-bounds write
Summary: CVE-2021-33909 is an out-of-bounds write vulnerability impacting Linux kernel before version 5.13.4. An exploit was observed in open source...
CVE-2021-1513
Summary: A vulnerability in the vDaemon process of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to cause a...
CVE-2021-20594
Summary: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all...
CVE-2021-20592
Summary: Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions...
CVE-2021-24038
Summary: Due to a bug with management of handles in OVRServiceLauncher.exe, an attacker could expose a privileged process handle to...
CVE-2021-39131
Summary: ced detects character encoding using Google’s compact_enc_det library. In ced v0.1.0, passing data types other than `Buffer` causes the...
CVE-2021-34433
Summary: In Eclipse Californium version 2.0.0 to 2.6.4 and 3.0.0-M1 to 3.0.0-M3, the certificate based (x509 and RPK) DTLS handshakes...
CVE-2021-31799
Summary: In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary...
CVE-2019-6820
Summary: A CWE-306: Missing Authentication for Critical Function vulnerability exists which could cause a modification of device IP configuration (IP...
CVE-2021-22699
Summary: Improper Input Validation vulnerability exists in Modicon M241/M251 logic controllers firmware prior to V5.1.9.1 that could cause denial of...
CVE-2020-7524
Summary: Out-of-bounds Write vulnerability exists in Modicon M218 Logic Controller (V5.0.0.7 and prior) which could cause Denial of Service when...
CVE-2021-39240
Summary: An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It does not...
CVE-2021-39242
Summary: An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It can lead...
CVE-2020-18759
Summary: An information disclosure vulnerability exists in the EPA protocol of Dut Computer Control Engineering Co.'s PLC MAC1100. Reference Links(if...
CVE-2021-29981
Summary: An issue present in lowering/register allocation could have led to obscure but deterministic register confusion failures in JITted code...
CVE-2021-29985
Summary: A use-after-free vulnerability in media channels could have led to memory corruption and a potentially exploitable crash. This vulnerability...
Openpilot SSH Key security bypass
Summary: Openpilot could allow a remote attacker to bypass security restrictions, caused by the use of a default SSH key....
CVE-2021-26708 – Linux Kernel Organization / Linux kernel – Improper privilege management
Summary: CVE-2021-26708 is an improper privilege management vulnerability impacting Linux kernel versions 5.10.12 and earlier. An exploit was observed in...
CVE-2021-26701 – Microsoft / Multiple – RCE
Summary: CVE-2021-26701 is a remote code execution (RCE) vulnerability impacting multiple versions of Microsoft PowerShell Core, Visual Studio, and .NET...
CVE-2021-21106 – Google / Chrome – Use after free
Summary: CVE-2021-21106 is a use after free vulnerability impacting Google Chrome versions 87.0.4280.88 and earlier. A proof of concept (PoC)...
CVE-2021-21159 – Google / Chrome – Heap-based buffer overflow
Summary: CVE-2021-21159 is a heap-based buffer overflow vulnerability impacting Google Chrome versions 88.0.4324.182 and earlier. A proof of concept (PoC)...
