Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-03-25 | CVE-2021-3466 | Classic Buffer Overflow vulnerability in multiple products A flaw was found in libmicrohttpd. | 9.8 |
2021-03-25 | CVE-2021-3446 | Use of Insufficiently Random Values vulnerability in multiple products A flaw was found in libtpms in versions before 0.8.2. | 5.5 |
2021-03-25 | CVE-2021-3443 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.27 handled component references in the JP2 image format decoder. | 4.3 |
2021-03-25 | CVE-2021-29096 | Use After Free vulnerability in Esri products A use-after-free vulnerability when parsing a specially crafted file in Esri ArcReader, ArcGIS Desktop, ArcGIS Engine 10.8.1 (and earlier) and ArcGIS Pro 2.7 (and earlier) allows an unauthenticated attacker to achieve arbitrary code execution in the context of the current user. | 7.8 |
2021-03-25 | CVE-2021-27195 | Incorrect Authorization vulnerability in Netop Vision PRO Improper Authorization vulnerability in Netop Vision Pro up to and including to 9.7.1 allows an attacker to replay network traffic. | 5.0 |
2021-03-25 | CVE-2021-27194 | Cleartext Transmission of Sensitive Information vulnerability in Netop Vision PRO Cleartext transmission of sensitive information in Netop Vision Pro up to and including 9.7.1 allows a remote unauthenticated attacker to gather credentials including Windows login usernames and passwords. | 3.3 |
2021-03-25 | CVE-2021-27193 | Incorrect Default Permissions vulnerability in Netop Vision PRO Incorrect default permissions vulnerability in the API of Netop Vision Pro up to and including 9.7.1 allows a remote unauthenticated attacker to read and write files on the remote machine with system privileges resulting in a privilege escalation. | 7.5 |
2021-03-25 | CVE-2021-27192 | Improper Privilege Management vulnerability in Netop Vision PRO Local privilege escalation vulnerability in Windows clients of Netop Vision Pro up to and including 9.7.1 allows a local user to gain administrator privileges whilst using the clients. | 4.6 |
2021-03-25 | CVE-2021-26597 | Unrestricted Upload of File with Dangerous Type vulnerability in Nokia Netact 18A An issue was discovered in Nokia NetAct 18A. | 4.0 |
2021-03-25 | CVE-2021-26596 | Cross-site Scripting vulnerability in Nokia Netact 18A An issue was discovered in Nokia NetAct 18A. | 3.5 |