CVE-2020-25682
Summary: A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the way dnsmasq extract...
Third Party Advisory
CVE-2021-20075
Summary: Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows for privilege escalation via configd. Reference Links(if available): https://www.tenable.com/security/research/tra-2021-04 CVSS...
CVE-2020-26664
Summary: A vulnerability in EbmlTypeDispatcher::send in VideoLAN VLC media player 3.0.11 allows attackers to trigger a heap-based buffer overflow via...
CVE-2021-27188
Summary: The Sovremennye Delovye Tekhnologii FX Aggregator terminal client 1 allows attackers to cause a denial of service (access suspended...
CVE-2021-22857
Summary: The CGE page with download function contains a Directory Traversal vulnerability. Attackers can use this loophole to download system...
CVE-2021-22856
Summary: The CGE property management system contains SQL Injection vulnerabilities. Remote attackers can inject SQL commands into the parameters in...
CVE-2020-7848
Summary: The EFM ipTIME C200 IP Camera is affected by a Command Injection vulnerability in /login.cgi?logout=1 script. To exploit this...
CVE-2017-16544
Summary: In the add_match function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to...
CVE-2016-4970
Summary: handler/ssl/OpenSslEngine.java in Netty 4.0.x before 4.0.37.Final and 4.1.x before 4.1.1.Final allows remote attackers to cause a denial of service...
CVE-2020-17418
Summary: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.922. User interaction...
CVE-2021-25249
Summary: An out-of-bounds write information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free...
CVE-2020-27274
Summary: Some parsing functions in the affected product do not check the return value of malloc and the thread handling...
CVE-2020-27295
Summary: The affected product has uncontrolled resource consumption issues, which may allow an attacker to cause a denial-of-service condition on...
CVE-2021-3164
Summary: ChurchRota 2.6.4 is vulnerable to authenticated remote code execution. The user does not need to have file upload permission...
CVE-2020-28403
Summary: A Cross-Site Request Forgery (CSRF) vulnerability exists in Star Practice Management Web version 2019.2.0.6, allowing an attacker to change...
CVE-2020-27284
Summary: TPEditor (v1.98 and prior) is vulnerable to two out-of-bounds write instances in the way it processes project files, allowing...
CVE-2020-27288
Summary: An untrusted pointer dereference has been identified in the way TPEditor(v1.98 and prior) processes project files, allowing an attacker...
CVE-2021-22639
Summary: An uninitialized pointer issue has been identified in the way the application processes project files, allowing an attacker to...
CVE-2021-22655
Summary: Multiple out-of-bounds read issues have been identified in the way the application processes project files, allowing an attacker to...
CVE-2020-27858
Summary: This vulnerability allows remote attackers to disclose sensitive information on affected installations of CA Arcserve D2D 16.5. Authentication is...
CVE-2020-28452
Summary: This affects the package com.softwaremill.akka-http-session:core_2.12 from 0 and before 0.6.1; all versions of package com.softwaremill.akka-http-session:core_2.11; the package com.softwaremill.akka-http-session:core_2.13 from...
CVE-2016-9675
Summary: openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause...
CVE-2016-7163
Summary: Integer overflow in the opj_pi_create_decode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a...
CVE-2020-12351
Summary: Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access....
