CVE-2021-20594
Summary: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all...
Vulnerabilities
CVE-2021-20592
Summary: Missing synchronization vulnerability in GOT2000 series GT27 model communication driver versions 01.19.000 through 01.39.010, GT25 model communication driver versions...
CVE-2021-24038
Summary: Due to a bug with management of handles in OVRServiceLauncher.exe, an attacker could expose a privileged process handle to...
CVE-2021-39131
Summary: ced detects character encoding using Google’s compact_enc_det library. In ced v0.1.0, passing data types other than `Buffer` causes the...
CVE-2021-34433
Summary: In Eclipse Californium version 2.0.0 to 2.6.4 and 3.0.0-M1 to 3.0.0-M3, the certificate based (x509 and RPK) DTLS handshakes...
CVE-2021-31799
Summary: In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary...
CVE-2019-6820
Summary: A CWE-306: Missing Authentication for Critical Function vulnerability exists which could cause a modification of device IP configuration (IP...
CVE-2021-22699
Summary: Improper Input Validation vulnerability exists in Modicon M241/M251 logic controllers firmware prior to V5.1.9.1 that could cause denial of...
CVE-2020-7524
Summary: Out-of-bounds Write vulnerability exists in Modicon M218 Logic Controller (V5.0.0.7 and prior) which could cause Denial of Service when...
CVE-2021-39240
Summary: An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It does not...
CVE-2021-39242
Summary: An issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It can lead...
CVE-2020-18759
Summary: An information disclosure vulnerability exists in the EPA protocol of Dut Computer Control Engineering Co.'s PLC MAC1100. Reference Links(if...
CVE-2021-29981
Summary: An issue present in lowering/register allocation could have led to obscure but deterministic register confusion failures in JITted code...
CVE-2021-29985
Summary: A use-after-free vulnerability in media channels could have led to memory corruption and a potentially exploitable crash. This vulnerability...
Openpilot SSH Key security bypass
Summary: Openpilot could allow a remote attacker to bypass security restrictions, caused by the use of a default SSH key....
CVE-2021-26701 – Microsoft / Multiple – RCE
Summary: CVE-2021-26701 is a remote code execution (RCE) vulnerability impacting multiple versions of Microsoft PowerShell Core, Visual Studio, and .NET...
CVE-2021-21106 – Google / Chrome – Use after free
Summary: CVE-2021-21106 is a use after free vulnerability impacting Google Chrome versions 87.0.4280.88 and earlier. A proof of concept (PoC)...
CVE-2021-26708 – Linux Kernel Organization / Linux kernel – Improper privilege management
Summary: CVE-2021-26708 is an improper privilege management vulnerability impacting Linux kernel versions 5.10.12 and earlier. An exploit was observed in...
CVE-2021-21159 – Google / Chrome – Heap-based buffer overflow
Summary: CVE-2021-21159 is a heap-based buffer overflow vulnerability impacting Google Chrome versions 88.0.4324.182 and earlier. A proof of concept (PoC)...
CVE-2021-31979 – Microsoft / Windows – Privilege escalation
Summary: CVE-2021-31979 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC)...
CVE-2021-34448 – Microsoft / Windows – Memory corruption
Summary: CVE-2021-34448 is a memory corruption vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC)...
CVE-2021-30563 – Google / Chrome – Type confusion
Summary: CVE-2021-30563 is a type confusion vulnerability impacting Google Chrome versions 91.0.4472.114 and earlier. A proof of concept (PoC) was...
CVE-2021-33771 – Microsoft / Windows – Privilege escalation
Summary: CVE-2021-33771 is a privilege escalation vulnerability impacting multiple products and versions of Microsoft Windows. A proof of concept (PoC)...
CVE-2021-24145 – Webnus / Modern Events Calendar Lite – Unrestricted file upload
Summary: CVE-2021-24145 is an unrestricted file upload vulnerability impacting Webnus Modern Events Calendar Lite versions 5.16.2 and earlier. An exploit...
