Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-15 | CVE-2021-26924 | Cross-site Scripting vulnerability in Argoproj Argo CD An issue was discovered in Argo CD before 1.8.4. | 6.1 |
| 2021-03-15 | CVE-2021-26923 | Information Exposure vulnerability in Argoproj Argo CD An issue was discovered in Argo CD before 1.8.4. | 7.5 |
| 2021-03-15 | CVE-2021-27208 | Classic Buffer Overflow vulnerability in Xilinx Zynq-7000 Firmware and Zynq-7000S Firmware When booting a Zync-7000 SOC device from nand flash memory, the nand driver in the ROM does not validate the inputs when reading in any parameters in the nand’s parameter page. | 4.6 |
| 2021-03-15 | CVE-2021-20179 | Incorrect Authorization vulnerability in multiple products A flaw was found in pki-core. | 8.1 |
| 2021-03-15 | CVE-2020-35358 | Insufficient Session Expiration vulnerability in Domainmod 4.15.0 DomainMOD domainmod-v4.15.0 is affected by an insufficient session expiration vulnerability. | 7.5 |
| 2021-03-15 | CVE-2021-27576 | Unspecified vulnerability in Apache Openmeetings If was found that the NetTest web service can be used to overload the bandwidth of a Apache OpenMeetings server. | 5.0 |
| 2021-03-15 | CVE-2021-28379 | Unrestricted Upload of File with Dangerous Type vulnerability in multiple products web/upload/UploadHandler.php in Vesta Control Panel (aka VestaCP) through 0.9.8-27 and myVesta through 0.9.8-26-39 allows uploads from a different origin. | 6.8 |
| 2021-03-15 | CVE-2021-28378 | Cross-site Scripting vulnerability in Gitea Gitea 1.12.x and 1.13.x before 1.13.4 allows XSS via certain issue data in some situations. | 3.5 |
| 2021-03-15 | CVE-2021-28375 | Missing Authorization vulnerability in multiple products An issue was discovered in the Linux kernel through 5.11.6. | 7.8 |
| 2021-03-15 | CVE-2021-28374 | Cleartext Storage of Sensitive Information vulnerability in Debian Courier-Authlib and Debian Linux The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Library creates a /run/courier/authdaemon directory with weak permissions, allowing an attacker to read user information. | 5.0 |