CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2021-35196 Exec Code 2021-06-21 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
** DISPUTED ** Manuskript through 0.12.0 allows remote attackers to execute arbitrary code via a crafted settings.pickle file in a project file, because there is insecure deserialization via the pickle.load() function in settings.py. NOTE: the vendor's position is that the product is not intended for opening an untrusted project file.
2 CVE-2021-35066 2021-06-21 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
An XXE vulnerability exists in ConnectWise Automate before 2021.0.6.132.
3 CVE-2021-34813 Exec Code Overflow 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
Matrix libolm before 3.2.3 allows a malicious Matrix homeserver to crash a client (while it is attempting to retrieve an Olm encrypted room key backup from the homeserver) because olm_pk_decrypt has a stack-based buffer overflow. Remote code execution might be possible for some nonstandard build configurations.
4 CVE-2021-34812 798 +Info 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Use of hard-coded credentials vulnerability in php component in Synology Calendar before 2.4.0-0761 allows remote attackers to obtain sensitive information via unspecified vectors.
5 CVE-2021-34811 918 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Server-Side Request Forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to access intranet resources via unspecified vectors.
6 CVE-2021-34810 269 Exec Code 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Improper privilege management vulnerability in cgi component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors.
7 CVE-2021-34809 77 Exec Code 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Improper neutralization of special elements used in a command ('Command Injection') vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors.
8 CVE-2021-34808 918 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Server-Side Request Forgery (SSRF) vulnerability in cgi component in Synology Media Server before 1.8.3-2881 allows remote attackers to access intranet resources via unspecified vectors.
9 CVE-2021-34801 DoS 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
Valine 1.4.14 allows remote attackers to cause a denial of service (application outage) by supplying a ua (aka User-Agent) value that only specifies the product and version.
10 CVE-2021-34683 +Info 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in EXCELLENT INFOTEK CORPORATION (EIC) E-document System 3.0. A remote attacker can use kw/auth/bbs/asp/get_user_email_info_bbs.asp to obtain the contact information (name and e-mail address) of everyone in the entire organization. This information can allow remote attackers to perform social engineering or brute force attacks against the system login page.
11 CVE-2021-34682 2021-06-12 2021-06-14
0.0
None ??? ??? ??? ??? ??? ???
Receita Federal IRPF 2021 1.7 allows a man-in-the-middle attack against the update feature.
12 CVE-2021-34679 2021-06-11 2021-06-14
0.0
None ??? ??? ??? ??? ??? ???
Thycotic Password Reset Server before 5.3.0 allows credential disclosure.
13 CVE-2021-34557 Overflow Bypass 2021-06-10 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
XScreenSaver 5.45 can be bypassed if the machine has more than ten disconnectable video outputs. A buffer overflow in update_screen_layout() allows an attacker to bypass the standard screen lock authentication mechanism by crashing XScreenSaver. The attacker must physically disconnect many video outputs.
14 CVE-2021-34553 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Sonatype Nexus Repository Manager 3.x before 3.31.0 allows a remote authenticated attacker to get a list of blob files and read the content of a blob file (via a GET request) without having been granted access.
15 CVE-2021-34546 Exec Code 2021-06-10 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
An unauthenticated attacker with physical access to a computer with NetSetMan Pro before 5.0 installed, that has the pre-logon profile switch button within the Windows logon screen enabled, is able to drop to an administrative shell and execute arbitrary commands as SYSTEM via the "save log to file" feature. To accomplish this, the attacker can navigate to cmd.exe.
16 CVE-2021-34389 2021-06-21 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Trusty contains a vulnerability in NVIDIA OTE protocol message parsing code, which is present in all the TAs. An incorrect bounds check leads to a memory leak of a portion of the heap situated after a stream buffer.
17 CVE-2021-34388 DoS Exec Code Overflow 2021-06-21 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Bootloader contains a vulnerability in NVIDIA MB2 where a potential heap overflow might allow an attacker to control all the RAM after the heap block, leading to denial of service or code execution.
18 CVE-2021-34387 Exec Code 2021-06-21 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
The ARM TrustZone Technology on which Trusty is based on contains a vulnerability in access permission settings where the portion of the DRAM reserved for TrustZone is identity-mapped by TLK with read, write, and execute permissions, which gives write access to kernel code and data that is otherwise mapped read only.
19 CVE-2021-34386 Overflow 2021-06-21 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the calloc size calculation can cause the multiplication of count and size can overflow, which might lead to heap overflows.
20 CVE-2021-34204 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
D-Link DIR-2640-US 1.01B04 is affected by Insufficiently Protected Credentials. D-Link AC2600(DIR-2640) stores the device system account password in plain text. It does not use linux user management. In addition, the passwords of all devices are the same, and they cannot be modified by normal users. An attacker can easily log in to the target router through the serial port and obtain root privileges.
21 CVE-2021-34203 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
D-Link DIR-2640-US 1.01B04 is vulnerable to Incorrect Access Control. Router ac2600 (dir-2640-us), when setting PPPoE, will start quagga process in the way of whole network monitoring, and this function uses the original default password and port. An attacker can easily use telnet to log in, modify routing information, monitor the traffic of all devices under the router, hijack DNS and phishing attacks. In addition, this interface is likely to be questioned by customers as a backdoor, because the interface should not be exposed.
22 CVE-2021-34202 Exec Code 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
There are multiple out-of-bounds vulnerabilities in some processes of D-Link AC2600(DIR-2640) 1.01B04. Ordinary permissions can be elevated to administrator permissions, resulting in local arbitrary code execution. An attacker can combine other vulnerabilities to further achieve the purpose of remote code execution.
23 CVE-2021-34201 Overflow 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
D-Link DIR-2640-US 1.01B04 is vulnerable to Buffer Overflow. There are multiple out-of-bounds vulnerabilities in some processes of D-Link AC2600(DIR-2640). Local ordinary users can overwrite the global variables in the .bss section, causing the process crashes or changes.
24 CVE-2021-34170 Exec Code 2021-06-15 2021-06-15
0.0
None ??? ??? ??? ??? ??? ???
Bandai Namco FromSoftware Dark Souls III allows remote attackers to execute arbitrary code.
25 CVE-2021-33894 Sql 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
In Progress MOVEit Transfer before 2019.0.6 (11.0.6), 2019.1.x before 2019.1.5 (11.1.5), 2019.2.x before 2019.2.2 (11.2.2), 2020.x before 2020.0.5 (12.0.5), 2020.1.x before 2020.1.4 (12.1.4), and 2021.x before 2021.0.1 (13.0.1), a SQL injection vulnerability exists in SILUtility.vb in MOVEit.DMZ.WebApp in the MOVEit Transfer web app. This could allow an authenticated attacker to gain unauthorized access to the database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database and/or execute SQL statements that alter or delete database elements.
26 CVE-2021-33887 2021-06-15 2021-06-15
0.0
None ??? ??? ??? ??? ??? ???
Insufficient verification of data authenticity in Peloton TTR01 up to and including PTV55G allows an attacker with physical access to boot into a modified kernel/ramdisk without unlocking the bootloader.
27 CVE-2021-33833 Overflow 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
ConnMan (aka Connection Manager) 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH (for A or AAAA).
28 CVE-2021-33824 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.
29 CVE-2021-33823 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.
30 CVE-2021-33822 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered on 4GEE ROUTER HH70VB Version HH70_E1_02.00_22. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.
31 CVE-2021-33820 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.
32 CVE-2021-33818 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.
33 CVE-2021-33805 2021-06-03 2021-06-03
0.0
None ??? ??? ??? ??? ??? ???
In the reference implementation of FUSE before 2.9.8 and 3.x before 3.2.5, local attackers were able to specify the allow_other option even if forbidden in /etc/fuse.conf, leading to exposure of FUSE filesystems to other users. This issue only affects systems with SELinux active.
34 CVE-2021-33577 Bypass 2021-06-18 2021-06-20
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Cleo LexiCom 5.5.0.0. The requirement for the sender of an AS2 message to identify themselves (via encryption and signing of the message) can be bypassed by changing the Content-Type of the message to text/plain.
35 CVE-2021-33576 2021-06-18 2021-06-20
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Cleo LexiCom 5.5.0.0. Within the AS2 message, the sender can specify a filename. This filename can include path-traversal characters, allowing the file to be written to an arbitrary location on disk.
36 CVE-2021-33572 2021-06-21 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Linux Security whereby the FSAVD component used in certain F-Secure products can crash while scanning larger packages/fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Service (DoS) of the Anti-Virus engine.
37 CVE-2021-33190 Bypass 2021-06-08 2021-06-08
0.0
None ??? ??? ??? ??? ??? ???
In Apache APISIX Dashboard version 2.6, we changed the default value of listen host to 0.0.0.0 in order to facilitate users to configure external network access. In the IP allowed list restriction, a risky function was used for the IP acquisition, which made it possible to bypass the network limit. At the same time, the default account and password are fixed.Ultimately these factors lead to the issue of security risks. This issue is fixed in APISIX Dashboard 2.6.1
38 CVE-2021-33186 Overflow +Info 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
SerenityOS in test-crypto.cpp contains a stack buffer overflow which could allow attackers to obtain sensitive information.
39 CVE-2021-33185 Overflow +Info 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
SerenityOS contains a buffer overflow in the set_range test in TestBitmap which could allow attackers to obtain sensitive information.
40 CVE-2021-33031 +Priv 2021-06-10 2021-06-10
0.0
None ??? ??? ??? ??? ??? ???
In LabCup before <v2_next_18022, it is possible to use the save API to perform unauthorized actions for users without access to user management in order to, after successful exploitation, gain access to a victim's account. A user without the user-management privilege can change another user's email address if the attacker knows details of the victim such as the exact roles and group roles, ID, and remote authentication ID settings. These must be sent in a modified save API request. It was fixed in 6.3.0.03.
41 CVE-2021-32956 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to redirection, which may allow an attacker to send a maliciously crafted URL that could result in redirecting a user to a malicious webpage.
42 CVE-2021-32954 Dir. Trav. 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to a directory traversal, which may allow an attacker to remotely read arbitrary files on the file system.
43 CVE-2021-32930 Exec Code 2021-06-11 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
The affected product’s configuration is vulnerable due to missing authentication, which may allow an attacker to change configurations and execute arbitrary code on the iView (versions prior to v5.7.03.6182).
44 CVE-2021-32928 2021-06-16 2021-06-16
0.0
None ??? ??? ??? ??? ??? ???
The Sentinel LDK Run-Time Environment installer (Versions 7.6 and prior) adds a firewall rule named “Sentinel License Manager” that allows incoming connections from private networks using TCP Port 1947. While uninstalling, the uninstaller fails to close Port 1947.
45 CVE-2021-32698 2021-06-21 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
eLabFTW is an open source electronic lab notebook for research labs. This vulnerability allows an attacker to make GET requests on behalf of the server. It is "blind" because the attacker cannot see the result of the request. Issue has been patched in eLabFTW 4.0.0.
46 CVE-2021-32697 2021-06-21 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
neos/forms is an open source framework to build web forms. By crafting a special `GET` request containing a valid form state, a form can be submitted without invoking any validators. Form state is secured with an HMAC that is still verified. That means that this issue can only be exploited if Form Finishers cause side effects even if no form values have been sent. Form Finishers can be adjusted in a way that they only execute an action if the submitted form contains some expected data. Alternatively a custom Finisher can be added as first finisher. This regression was introduced with https://github.com/neos/form/commit/049d415295be8d4a0478ccba97dba1bb81649567
47 CVE-2021-32696 XSS 2021-06-18 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
The npm package "striptags" is an implementation of PHP's strip_tags in Typescript. In striptags before version 3.2.0, a type-confusion vulnerability can cause `striptags` to concatenate unsanitized strings when an array-like object is passed in as the `html` parameter. This can be abused by an attacker who can control the shape of their input, e.g. if query parameters are passed directly into the function. This can lead to a XSS.
48 CVE-2021-32695 200 +Info 2021-06-17 2021-06-20
0.0
None ??? ??? ??? ??? ??? ???
Nextcloud Android app is the Android client for Nextcloud. In versions prior to 3.16.1, a malicious app on the same device could have gotten access to the shared preferences of the Nextcloud Android application. This required user-interaction as a victim had to initiate the sharing flow and choose the malicious app. The shared preferences contain some limited private data such as push tokens and the account name. The vulnerability is patched in version 3.16.1.
49 CVE-2021-32694 2021-06-17 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Nextcloud Android app is the Android client for Nextcloud. In versions prior to 3.15.1, a malicious application on the same device is possible to crash the Nextcloud Android Client due to an uncaught exception. The vulnerability is patched in version 3.15.1.
50 CVE-2021-32693 2021-06-17 2021-06-21
0.0
None ??? ??? ??? ??? ??? ???
Symfony is a PHP framework for web and console applications and a set of reusable PHP components. A vulnerability related to firewall authentication is in Symfony starting with version 5.3.0 and prior to 5.3.2. When an application defines multiple firewalls, the token authenticated by one of the firewalls was available for all other firewalls. This could be abused when the application defines different providers for each part of the application, in such a situation, a user authenticated on a part of the application could be considered authenticated on the rest of the application. Starting in version 5.3.2, a patch ensures that the authenticated token is only available for the firewall that generates it.
Total number of vulnerabilities : 799   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.