CVE-2021-33194
Summary: golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows attackers to cause a denial of service (infinite loop) via crafted ParseFragment input. Reference Links(if...
Third Party Advisory
CVE-2019-13538
Summary: 3S-Smart Software Solutions GmbH CODESYS V3 Library Manager, all versions prior to 3.5.16.0, allows the system to display active...
CVE-2021-29461
Summary: Discord Recon Server is a bot that allows one to do one's reconnaissance process from one's Discord. A vulnerability...
CVE-2018-16497
Summary: In Versa Analytics, the cron jobs are used for scheduling tasks by executing commands at specific dates and times...
CVE-2019-9517
Summary: Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker...
CVE-2018-16495
Summary: In VOS user session identifier (authentication token) is issued to the browser prior to authentication but is not changed...
CVE-2021-21206
Summary: Use after free in Blink in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap...
CVE-2021-21207
Summary: Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to...
CVE-2021-33563
Summary: Koel before 5.1.4 lacks login throttling, lacks a password strength policy, and shows whether a failed login attempt had...
CVE-2021-33477
Summary: rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code execution because of improper handling of...
CVE-2021-20254
Summary: A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix...
CVE-2021-20254
Summary: A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix...
CVE-2021-33477
Summary: rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code execution because of improper handling of...
CVE-2021-31439
Summary: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Synology DiskStation Manager. Authentication is not...
CVE-2021-27434
Summary: Products with Unified Automation .NET based OPC UA Client/Server SDK Bundle: Versions V3.0.7 and prior (.NET 4.5, 4.0, and...
CVE-2021-31793
Summary: An issue exists on NightOwl WDB-20-V2 WDB-20-V2_20190314 devices that allows an unauthenticated user to gain access to snapshots and...
CVE-2018-10811
Summary: strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable. Reference Links(if available):...
CVE-2016-4834
Summary: modules/Users/actions/Save.php in Vtiger CRM 6.4.0 and earlier does not properly restrict user-save actions, which allows remote authenticated users to...
CVE-2016-4838
Summary: The Android Apps Money Forward (prior to v7.18.0), Money Forward for The Gunma Bank (prior to v1.2.0), Money Forward...
CVE-2017-11566
Summary: AppUse 4.0 allows shell command injection via a proxy field. Reference Links(if available): https://gist.github.com/shiham101/4807e3dea54ee0f0456c47fcd1400e97 CVSS Score (if available) v2:...
CVE-2021-31919
Summary: An issue was discovered in the rkyv crate before 0.6.0 for Rust. When an archive is created via serialization,...
CVE-2020-7731
Summary: This affects all versions of package github.com/russellhaering/gosaml2. There is a crash on nil-pointer dereference caused by sending malformed XML...
CVE-2021-21431
Summary: sopel-channelmgnt is a channelmgnt plugin for sopel. In versions prior to 2.0.1, on some IRC servers, restrictions around the...
CVE-2021-21225
Summary: Out of bounds memory access in V8 in Google Chrome prior to 90.0.4430.85 allowed a remote attacker to potentially...
