CVE-2021-43860
Summary: Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.12.3 and 1.10.6, Flatpak doesn't properly validate...
patch
CVE-2021-44701
Summary: Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204 (and earlier) are affected by a use-after-free...
CVE-2021-25036
Summary: The All in One SEO WordPress plugin before 4.1.5.3 is affected by a Privilege Escalation issue, which was discovered...
CVE-2021-4164
Summary: calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) Reference Links(if available): https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30 https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758 CVSS Score (if available) v2: /...
CVE-2021-4164
Summary: calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) Reference Links(if available): https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30 https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758 CVSS Score (if available) v2: /...
CVE-2021-4164
Summary: calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) Reference Links(if available): https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30 https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758 CVSS Score (if available) v2: /...
CVE-2021-4164
Summary: calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) Reference Links(if available): https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30 https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758 CVSS Score (if available) v2: /...
CVE-2021-39634
Summary: In fs/eventpoll.c, there is a possible use after free. This could lead to local escalation of privilege with no...
CVE-2022-21882
Summary: Win32k Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21887. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21882 CVSS Score (if...
CVE-2022-21883
Summary: Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21848, CVE-2022-21889, CVE-2022-21890. Reference Links(if...
CVE-2022-21884
Summary: Local Security Authority Subsystem Service Elevation of Privilege Vulnerability. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21884 CVSS Score (if available) v2: /...
CVE-2022-0128
Summary: vim is vulnerable to Out-of-bounds Read Reference Links(if available): https://github.com/vim/vim/commit/d3a117814d6acbf0dca3eff1a7626843b9b3734a https://huntr.dev/bounties/63f51299-008a-4112-b85b-1e904aadd4ba http://www.openwall.com/lists/oss-security/2022/01/15/1 CVSS Score (if available) v2: / MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P...
CVE-2021-45442
Summary: A link following denial-of-service vulnerability in Trend Micro Worry-Free Business Security (on prem only) could allow a local attacker...
CVE-2022-21841
Summary: Microsoft Excel Remote Code Execution Vulnerability. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21841 CVSS Score (if available) v2: / HIGH v3: /...
CVE-2021-45441
Summary: A origin validation error vulnerability in Trend Micro Apex One (on-prem and SaaS) could allow a local attacker drop...
CVE-2021-30298
Summary: Possible out of bound access due to improper validation of item size and DIAG memory pools data while switching...
CVE-2021-30335
Summary: Possible assertion in QOS request due to improper validation when multiple add or update request are received simultaneously in...
CVE-2021-45647
Summary: Certain NETGEAR devices are affected by disclosure of sensitive information. This affects EAX80 before 1.0.1.62, EX7000 before 1.0.1.104, R6120...
CVE-2022-22111
Summary: In DayByDay CRM, version 2.2.0 is vulnerable to missing authorization. Any application user in the application who has update...
CVE-2021-45525
Summary: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects EX7000 before 1.0.1.80, R6400...
CVE-2021-45526
Summary: Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects EX6000 before 1.0.0.38, EX6120...
CVE-2021-44014
Summary: A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization (All versions < V13.2.0.5). The Jt1001.dll...
CVE-2021-45660
Summary: Certain NETGEAR devices are affected by server-side injection. This affects RBK40 before 2.5.1.16, RBR40 before 2.5.1.16, RBS40 before 2.5.1.16,...
CVE-2021-45659
Summary: Certain NETGEAR devices are affected by server-side injection. This affects RBK40 before 2.5.1.16, RBR40 before 2.5.1.16, RBS40 before 2.5.1.16,...
