Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-18 | CVE-2020-9367 | Uncontrolled Search Path Element vulnerability in Zohocorp Manageengine Desktop Central 10.0.486 The MPS Agent in Zoho ManageEngine Desktop Central MSP build MSP build 10.0.486 is vulnerable to DLL Hijacking: dcinventory.exe and dcconfig.exe try to load CSUNSAPI.dll without supplying the complete path. | 6.9 |
| 2021-03-18 | CVE-2020-36144 | Injection vulnerability in Redash 8.0.0 Redash 8.0.0 is affected by LDAP Injection. | 4.3 |
| 2021-03-18 | CVE-2020-26886 | Improper Initialization vulnerability in Softaculous Softaculous before 5.5.7 is affected by a code execution vulnerability because of External Initialization of Trusted Variables or Data Stores. | 6.9 |
| 2021-03-18 | CVE-2020-26797 | Out-of-bounds Write vulnerability in multiple products Mediainfo before version 20.08 has a heap buffer overflow vulnerability via MediaInfoLib::File_Gxf::ChooseParser_ChannelGrouping. | 7.5 |
| 2021-03-18 | CVE-2019-14852 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Redhat 3Scale API Management 2.0 A flaw was found in 3scale’s APIcast gateway that enabled the TLS 1.0 protocol. | 5.0 |
| 2021-03-18 | CVE-2019-14851 | Reachable Assertion vulnerability in Nbdkit Project Nbdkit A denial of service vulnerability was discovered in nbdkit. | 3.5 |
| 2021-03-18 | CVE-2021-28160 | Cross-site Scripting vulnerability in Acexy Wireless-N Wifi Repeater Project Acexy Wireless-N Wifi Repeater Firmware 28.08.06.1 Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) suffers from a reflected XSS vulnerability due to unsanitized SSID value when the latter is displayed in the /repeater.html page ("Repeater Wizard" homepage section). | 4.3 |
| 2021-03-18 | CVE-2021-1287 | Stack-based Buffer Overflow vulnerability in Cisco Rv132W Firmware and Rv134W Firmware A vulnerability in the web-based management interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an authenticated, remote attacker to execute arbitrary code on an affected device or cause the device to restart unexpectedly. | 7.2 |
| 2021-03-18 | CVE-2020-35492 | Out-of-bounds Write vulnerability in Cairographics Cairo A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. | 7.8 |
| 2021-03-18 | CVE-2019-3867 | Insufficient Session Expiration vulnerability in Redhat Quay 2.0.0/3.0.0 A vulnerability was found in the Quay web application. | 4.4 |