CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In June 2021

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2021-34682 2021-06-12 2021-06-12
0.0
None ??? ??? ??? ??? ??? ???
Receita Federal IRPF 2021 1.7 allows a man-in-the-middle attack against the update feature.
2 CVE-2021-34679 2021-06-11 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
Thycotic Password Reset Server before 5.3.0 allows credential disclosure.
3 CVE-2021-34557 Overflow Bypass 2021-06-10 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
XScreenSaver 5.45 can be bypassed if the machine has more than ten disconnectable video outputs. A buffer overflow in update_screen_layout() allows an attacker to bypass the standard screen lock authentication mechanism by crashing XScreenSaver. The attacker must physically disconnect many video outputs.
4 CVE-2021-34555 DoS 2021-06-10 2021-06-10
0.0
None ??? ??? ??? ??? ??? ???
OpenDMARC 1.4.1 and 1.4.1.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a multi-value From header field.
5 CVE-2021-34547 CSRF 2021-06-10 2021-06-10
0.0
None ??? ??? ??? ??? ??? ???
PRTG Network Monitor 20.1.55.1775 allows /editsettings CSRF for user account creation.
6 CVE-2021-34546 Exec Code 2021-06-10 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
An unauthenticated attacker with physical access to a computer with NetSetMan Pro before 5.0 installed, that has the pre-logon profile switch button within the Windows logon screen enabled, is able to drop to an administrative shell and execute arbitrary commands as SYSTEM via the "save log to file" feature. To accomplish this, the attacker can navigate to cmd.exe.
7 CVE-2021-34540 XSS 2021-06-11 2021-06-11
0.0
None ??? ??? ??? ??? ??? ???
Advantech WebAccess 8.4.2 and 8.4.4 allows XSS via the username column of the bwRoot.asp page of WADashboard.
8 CVE-2021-34539 Exec Code 2021-06-10 2021-06-10
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in CubeCoders AMP before 2.1.1.8. A lack of validation of the Java Version setting means that an unintended executable path can be set. The result is that high-privileged users can trigger code execution.
9 CVE-2021-34370 XSS 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Accela Civic Platform through 20.1 allows ssoAdapter/logoutAction.do successURL XSS.
10 CVE-2021-34369 +Info 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
portlets/contact/ref/refContactDetail.do in Accela Civic Platform through 20.1 allows remote attackers to obtain sensitive information via a modified contactSeqNumber value.
11 CVE-2021-34364 79 XSS 2021-06-09 2021-06-10
4.3
None Remote Medium Not required None Partial None
The Refined GitHub browser extension before 21.6.8 might allow XSS via a link in a document. NOTE: github.com sends Content-Security-Policy headers to, in general, address XSS and other concerns.
12 CVE-2021-34363 2021-06-10 2021-06-10
0.0
None ??? ??? ??? ??? ??? ???
The thefuck (aka The Fuck) package before 3.31 for Python allows Path Traversal that leads to arbitrary file deletion via the "undo archive operation" feature.
13 CVE-2021-34280 Exec Code 2021-06-08 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Polaris Office v9.103.83.44230 is affected by a Uninitialized Pointer Vulnerability in PolarisOffice.exe and EngineDLL.dll that may cause a Remote Code Execution. To exploit the vulnerability, someone must open a crafted PDF file.
14 CVE-2021-33904 79 XSS 2021-06-07 2021-06-11
4.3
None Remote Medium Not required None Partial None
In Accela Civic Platform through 21.1, the security/hostSignon.do parameter servProvCode is vulnerable to XSS.
15 CVE-2021-33898 Exec Code 2021-06-06 2021-06-07
0.0
None ??? ??? ??? ??? ??? ???
In Invoice Ninja before 4.4.0, there is an unsafe call to unserialize() in app/Ninja/Repositories/AccountRepository.php that may allow an attacker to deserialize arbitrary PHP classes. In certain contexts, this can result in remote code execution. The attacker's input must be hosted at http://www.geoplugin.net (cleartext HTTP), and thus a successful attack requires spoofing that site or obtaining control of it.
16 CVE-2021-33896 22 Dir. Trav. 2021-06-07 2021-06-10
5.0
None Remote Low Not required None Partial None
Dino before 0.1.2 and 0.2.x before 0.2.1 allows Directory Traversal (only for creation of new files) via URI-encoded path separators.
17 CVE-2021-33894 Sql 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
In Progress MOVEit Transfer before 2019.0.6 (11.0.6), 2019.1.x before 2019.1.5 (11.1.5), 2019.2.x before 2019.2.2 (11.2.2), 2020.x before 2020.0.5 (12.0.5), 2020.1.x before 2020.1.4 (12.1.4), and 2021.x before 2021.0.1 (13.0.1), a SQL injection vulnerability exists in SILUtility.vb in MOVEit.DMZ.WebApp in the MOVEit Transfer web app. This could allow an authenticated attacker to gain unauthorized access to the database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database and/or execute SQL statements that alter or delete database elements.
18 CVE-2021-33881 Bypass 2021-06-06 2021-06-07
0.0
None ??? ??? ??? ??? ??? ???
On NXP MIFARE Ultralight and NTAG cards, an attacker can interrupt a write operation (aka conduct a "tear off" attack) over RFID to bypass a Monotonic Counter protection mechanism. The impact depends on how the anti tear-off feature is used in specific applications such as public transportation, physical access control, etc.
19 CVE-2021-33880 2021-06-06 2021-06-07
0.0
None ??? ??? ??? ??? ??? ???
The aaugustin websockets library before 9.1 for Python has an Observable Timing Discrepancy on servers when HTTP Basic Authentication is enabled with basic_auth_protocol_factory(credentials=...). An attacker may be able to guess a password via a timing attack.
20 CVE-2021-33879 2021-06-06 2021-06-07
0.0
None ??? ??? ??? ??? ??? ???
Tencent GameLoop before 4.1.21.90 downloaded updates over an insecure HTTP connection. A malicious attacker in an MITM position could spoof the contents of an XML document describing an update package, replacing a download URL with one pointing to an arbitrary Windows executable. Because the only integrity check would be a comparison of the downloaded file's MD5 checksum to the one contained within the XML document, the downloaded executable would then be executed on the victim's machine.
21 CVE-2021-33842 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Improper Authentication vulnerability in the cookie parameter of Circutor SGE-PLC1000 firmware version 0.9.2b allows an attacker to perform operations as an authenticated user. In order to exploit this vulnerability, the attacker must be within the network where the device affected is located.
22 CVE-2021-33841 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
SGE-PLC1000 device, in its 0.9.2b firmware version, does not handle some requests correctly, allowing a remote attacker to inject code into the operating system with maximum privileges.
23 CVE-2021-33840 400 DoS 2021-06-04 2021-06-07
5.0
None Remote Low Not required None None Partial
The server in Luca through 1.1.14 allows remote attackers to cause a denial of service (insertion of many fake records related to COVID-19) because Phone Number data lacks a digital signature.
24 CVE-2021-33839 200 +Info 2021-06-04 2021-06-07
5.0
None Remote Low Not required Partial None None
Luca through 1.7.4 on Android allows remote attackers to obtain sensitive information about COVID-19 tracking because the QR code of a Public Location can be intentionally confused with the QR code of a Private Meeting.
25 CVE-2021-33838 200 +Info 2021-06-04 2021-06-07
5.0
None Remote Low Not required Partial None None
Luca through 1.7.4 on Android allows remote attackers to obtain sensitive information about COVID-19 tracking because requests related to Check-In State occur shortly after requests for Phone Number Registration.
26 CVE-2021-33833 Overflow 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
ConnMan (aka Connection Manager) 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH (for A or AAAA).
27 CVE-2021-33829 79 XSS 2021-06-09 2021-06-10
4.3
None Remote Medium Not required None Partial None
A cross-site scripting (XSS) vulnerability in the HTML Data Processor in CKEditor 4 4.14.0 through 4.16.x before 4.16.1 allows remote attackers to inject executable JavaScript code through a crafted comment because --!> is mishandled.
28 CVE-2021-33815 129 2021-06-03 2021-06-07
6.8
None Remote Medium Not required Partial Partial Partial
dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an out-of-bounds array access because dc_count is not strictly checked.
29 CVE-2021-33806 Exec Code 2021-06-03 2021-06-03
0.0
None ??? ??? ??? ??? ??? ???
The BDew BdLib library before 1.16.1.7 for Minecraft allows remote code execution because it deserializes untrusted data in ObjectInputStream.readObject as part of its use of Java serialization.
30 CVE-2021-33805 2021-06-03 2021-06-03
0.0
None ??? ??? ??? ??? ??? ???
In the reference implementation of FUSE before 2.9.8 and 3.x before 3.2.5, local attackers were able to specify the allow_other option even if forbidden in /etc/fuse.conf, leading to exposure of FUSE filesystems to other users. This issue only affects systems with SELinux active.
31 CVE-2021-33742 Exec Code 2021-06-08 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Windows MSHTML Platform Remote Code Execution Vulnerability
32 CVE-2021-33741 269 2021-06-08 2021-06-11
5.1
None Remote High Not required Partial Partial Partial
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
33 CVE-2021-33739 2021-06-08 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Microsoft DWM Core Library Elevation of Privilege Vulnerability
34 CVE-2021-33712 345 2021-06-08 2021-06-08
0.0
None ??? ??? ??? ??? ??? ???
A vulnerability has been identified in Mendix SAML Module (All versions < V2.1.2). The configuration of the SAML module does not properly check various restrictions and validations imposed by an identity provider. This could allow a remote authenticated attacker to escalate privileges.
35 CVE-2021-33669 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Under certain conditions, SAP Mobile SDK Certificate Provider allows a local unprivileged attacker to exploit an insecure temporary file storage. For a successful exploitation user interaction from another user is required and could lead to complete impact of confidentiality integrity and availability.
36 CVE-2021-33668 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Due to improper input sanitization, specially crafted LDAP queries can be injected by an unauthenticated user. This could partially impact the confidentiality of the application.
37 CVE-2021-33666 XSS 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
When SAP Commerce Cloud version 100, hosts a JavaScript storefront, it is vulnerable to MIME sniffing, which, in certain circumstances, could be used to facilitate an XSS attack or malware proliferation.
38 CVE-2021-33665 XSS 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
SAP NetWeaver Application Server ABAP (Applications based on SAP GUI for HTML), versions - KRNL64NUC - 7.49, KRNL64UC - 7.49,7.53, KERNEL - 7.49,7.53,7.77,7.81,7.84, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
39 CVE-2021-33664 XSS 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
SAP NetWeaver Application Server ABAP (Applications based on Web Dynpro ABAP), versions - SAP_UI - 750,752,753,754,755, SAP_BASIS - 702, 731 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
40 CVE-2021-33663 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
SAP NetWeaver AS ABAP, versions - KRNL32NUC - 7.22,7.22EXT, KRNL32UC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83,7.84, allows an unauthorized attacker to insert cleartext commands due to improper restriction of I/O buffering into encrypted SMTP sessions over the network which can partially impact the integrity of the application.
41 CVE-2021-33662 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Under certain conditions, the installation of SAP Business One, version - 10.0, discloses sensitive information on the file system allowing an attacker to access information which would otherwise be restricted.
42 CVE-2021-33661 20 2021-06-09 2021-06-11
4.3
None Remote Medium Not required None None Partial
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PCX file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.
43 CVE-2021-33660 20 2021-06-09 2021-06-11
4.3
None Remote Medium Not required None None Partial
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated FLI file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.
44 CVE-2021-33659 20 2021-06-09 2021-06-11
4.3
None Remote Medium Not required None None Partial
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated GIF file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.
45 CVE-2021-33571 Bypass 2021-06-08 2021-06-08
0.0
None ??? ??? ??? ??? ??? ???
In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4_address and validate_ipv46_address are unaffected with Python 3.9.5+..) .
46 CVE-2021-33560 2021-06-08 2021-06-08
0.0
None ??? ??? ??? ??? ??? ???
Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm, and the window size is not chosen appropriately. (There is also an interoperability problem because the selection of the k integer value does not properly consider the differences between basic ElGamal encryption and generalized ElGamal encryption.) This, for example, affects use of ElGamal in OpenPGP.
47 CVE-2021-33393 2021-06-09 2021-06-10
0.0
None ??? ??? ??? ??? ??? ???
lfs/backup in IPFire 2.25-core155 does not ensure that /var/ipfire/backup/bin/backup.pl is owned by the root account. It might be owned by an unprivileged account, which could potentially be used to install a Trojan horse backup.pl script that is later executed by root. Similar problems with the ownership/permissions of other files may be present as well.
48 CVE-2021-33359 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
A vulnerability exists in gowitness < 2.3.6 that allows an unauthenticated attacker to perform an arbitrary file read using the file:// scheme in the url parameter to get an image of any file.
49 CVE-2021-33358 Exec Code 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
Multiple vulnerabilities exist in RaspAP 2.3 to 2.6.5 in the "interface", "ssid" and "wpa_passphrase" POST parameters in /hostapd, when the parameter values contain special characters such as ";" or "$()" which enables an authenticated attacker to execute arbitrary OS commands.
50 CVE-2021-33357 Exec Code 2021-06-09 2021-06-09
0.0
None ??? ??? ??? ??? ??? ???
A vulnerability exists in RaspAP 2.6 to 2.6.5 in the "iface" GET parameter in /ajax/networking/get_netcfg.php, when the "iface" parameter value contains special characters such as ";" which enables an unauthenticated attacker to execute arbitrary OS commands.
Total number of vulnerabilities : 889   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.