Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-04 | CVE-2021-41579 | Path Traversal vulnerability in Laquisscada Scada LCDS LAquis SCADA through 4.3.1.1085 is vulnerable to a control bypass and path traversal. | 7.8 |
| 2021-10-04 | CVE-2021-40683 | Unquoted Search Path or Element vulnerability in Akamai Enterprise Application Access 2.0.1/2.4.0 In Akamai EAA (Enterprise Application Access) Client before 2.3.1, 2.4.x before 2.4.1, and 2.5.x before 2.5.3, an unquoted path may allow an attacker to hijack the flow of execution. | 7.8 |
| 2021-10-04 | CVE-2021-41103 | containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. | 7.8 |
| 2021-10-04 | CVE-2021-41530 | Unspecified vulnerability in Forcepoint Next Generation Firewall Forcepoint NGFW Engine versions 6.5.11 and earlier, 6.8.6 and earlier, and 6.10.0 are vulnerable to TCP reflected amplification vulnerability, if HTTP User Response has been configured. | 7.5 |
| 2021-10-04 | CVE-2021-41593 | Allocation of Resources Without Limits or Throttling vulnerability in Lightning Network Daemon Project Lightning Network Daemon Lightning Labs lnd before 0.13.3-beta allows loss of funds because of dust HTLC exposure. | 8.6 |
| 2021-10-04 | CVE-2021-37777 | Authorization Bypass Through User-Controlled Key vulnerability in Gilacms Gila CMS 2.2.0 Gila CMS 2.2.0 is vulnerable to Insecure Direct Object Reference (IDOR). | 7.5 |
| 2021-10-04 | CVE-2021-24465 | SQL Injection vulnerability in Meowapps Meow Gallery The Meow Gallery WordPress plugin before 4.1.9 does not sanitise, validate or escape the ids attribute of its gallery shortcode (available for users as low as Contributor) before using it in an SQL statement, leading to an authenticated SQL Injection issue. | 8.1 |
| 2021-10-04 | CVE-2021-22557 | OS Command Injection vulnerability in Google SLO Generator SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. | 7.8 |
| 2021-10-04 | CVE-2021-41869 | Unspecified vulnerability in Salesagility Suitecrm SuiteCRM 7.10.x before 7.10.33 and 7.11.x before 7.11.22 is vulnerable to privilege escalation. | 8.8 |
| 2021-10-04 | CVE-2021-40324 | Unrestricted Upload of File with Dangerous Type vulnerability in Cobbler Project Cobbler Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data. | 7.5 |