CVE-2021-27365
Summary: An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length...
vulnerability
CVE-2021-28375
Summary: An issue was discovered in the Linux kernel through 5.11.6. fastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user applications from...
CVE-2019-12425
Summary: Apache OFBiz 17.12.01 is vulnerable to Host header injection by accepting arbitrary host Reference Links(if available): https://s.apache.org/7sr1x https://lists.apache.org/thread.html/r5181b36218225447d3ce70891eeccfb6d6885309dffd7e0e59091817@%3Cuser.ofbiz.apache.org%3E https://lists.apache.org/thread.html/r907ce90745b52d2d5b6a815de03fd1d5f3831ab579a81d70cfda6f3d@%3Cuser.ofbiz.apache.org%3E...
CVE-2021-21180
Summary: Use after free in tab search in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit...
CVE-2021-21188
Summary: Use after free in Blink in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap...
CVE-2021-21190
Summary: Uninitialized data in PDFium in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to obtain potentially sensitive information...
CVE-2021-28375
Summary: An issue was discovered in the Linux kernel through 5.11.6. fastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user applications from...
CVE-2019-10172
Summary: A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries. XML external entity vulnerabilities similar CVE-2016-3720 also affects codehaus jackson-mapper-asl libraries but...
CVE-2020-13936
Summary: An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands...
CVE-2020-24983
Summary: An issue was discovered in Quadbase EspressReports ES 7 Update 9. An unauthenticated attacker can create a malicious HTML...
CVE-2021-21518
Summary: Dell SupportAssist Client for Consumer PCs versions 3.7.x, 3.6.x, 3.4.x, 3.3.x, Dell SupportAssist Client for Business PCs versions 2.0.x,...
CVE-2021-21381
Summary: Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In Flatpack since version 0.9.4...
CVE-2021-27085
Summary: Internet Explorer Remote Code Execution Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27085 CVSS Score (if available) v2: / HIGH v3: /...
CVE-2021-26901
Summary: Windows Event Tracing Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26872, CVE-2021-26898. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26901...
CVE-2021-27918
Summary: encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder)...
CVE-2021-26896
Summary: Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-27063. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26896 CVSS...
CVE-2021-26896
Summary: Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-27063. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26896 CVSS...
CVE-2021-26570
Summary: The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer...
CVE-2020-29553
Summary: The Scheduler in Grav CMS through 1.7.0-rc.17 allows an attacker to execute a system command by tricking an admin...
CVE-2020-14987
Summary: An issue was discovered in Bloomreach Experience Manager (brXM) 4.1.0 through 14.2.2. It allows remote attackers to execute arbitrary...
CVE-2020-13936
Summary: An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands...
CVE-2020-4184
Summary: IBM Security Guardium 11.2 performs an operation at a privilege level that is higher than the minimum level required,...
CVE-2020-35231
Summary: The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an attacker...
CVE-2021-27055
Summary: Microsoft Visio Security Feature Bypass Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27055 CVSS Score (if available) v2: / MEDIUM v3: /...
