CVE-2021-41773
Summary: A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could...
Vulnerabilities
CVE-2021-41773
Summary: A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could...
CVE-2021-41794
Summary: ogs_fqdn_parse in Open5GS 1.0.0 through 2.3.3 inappropriately trusts a client-supplied length value, leading to a buffer overflow. The attacker...
CVE-2021-28702
Summary: PCI devices with RMRRs not deassigned correctly Certain PCI devices in a system might be assigned Reserved Memory Regions...
CVE-2021-20584
Summary: IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote attacker to upload arbitrary files, caused by improper...
CVE-2021-41916
Summary: A Cross-Site Request Forgery (CSRF) vulnerability in webTareas version 2.4 and earlier allows a remote attacker to create a...
CVE-2021-41919
Summary: webTareas version 2.4 and earlier allows an authenticated user to arbitrarily upload potentially dangerous files without restrictions. This is...
CVE-2021-41124
Summary: Scrapy-splash is a library which provides Scrapy and JavaScript integration. In affected versions users who use (http://doc.scrapy.org/en/latest/topics/downloader-middleware.html#module-scrapy.downloadermiddlewares.httpauth) (i.e. the...
CVE-2021-34740
Summary: A vulnerability in the WLAN Control Protocol (WCP) implementation for Cisco Aironet Access Point (AP) software could allow an...
CVE-2021-42086
Summary: An issue was discovered in Zammad before 4.1.1. An Agent account can modify account data, and gain admin access,...
CVE-2021-3581
Summary: Buffer Access with Incorrect Length Value in zephyr. Zephyr versions >= >=2.5.0 contain Buffer Access with Incorrect Length Value...
CVE-2021-42093
Summary: An issue was discovered in Zammad before 4.1.1. An admin can execute code on the server via a crafted...
CVE-2021-34714
Summary: A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software, Cisco IOS Software, Cisco IOS XE...
CVE-2021-34768
Summary: Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software...
CVE-2021-34770
Summary: A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software...
CVE-2021-34770
Summary: A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software...
CVE-2021-41322
Summary: Poly VVX 400/410 through 5.3.1 allows low-privileged users to change the Admin password by modifying a POST parameter to...
CVE-2021-34769
Summary: Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software...
CVE-2021-40449 – Microsoft / Windows – Privilege escalation
Summary: CVE-2021-40449 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC)...
CVE-2021-37723
Summary: A remote arbitrary command execution vulnerability was discovered in Aruba Operating System Software version(s): Prior to 8.7.1.2, 8.6.0.8, 8.5.0.12,...
CVE-2021-37724
Summary: A remote arbitrary command execution vulnerability was discovered in Aruba Operating System Software version(s): Prior to 8.7.1.2, 8.6.0.8, 8.5.0.12,...
CVE-2021-37725
Summary: A remote cross-site request forgery (csrf) vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software...
CVE-2020-3302
Summary: A vulnerability in the web UI of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker...
CVE-2021-41869
Summary: SuiteCRM 7.10.x before 7.10.33 and 7.11.x before 7.11.22 is vulnerable to privilege escalation. Reference Links(if available): https://docs.suitecrm.com/admin/releases/7.11.x/#_7_11_22 https://docs.suitecrm.com/admin/releases/7.10.x/#_7_10_33 https://github.com/salesagility/SuiteCRM...
