Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2021-10-04 CVE-2021-40325 Unspecified vulnerability in Cobbler Project Cobbler
Cobbler before 3.3.0 allows authorization bypass for modification of settings.
network
low complexity
cobbler-project
7.5
7.5
2021-10-04 CVE-2021-41285 Unspecified vulnerability in Micron Ballistix Memory Overview Display Utility 2.0.2.5
Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component.
local
low complexity
micron
7.8
7.8
2021-10-04 CVE-2021-41322 Unspecified vulnerability in Polycom VVX 400 Firmware and VVX 410 Firmware
Poly VVX 400/410 5.3.1 allows low-privileged users to change the Admin password by modifying a POST parameter to 120 during the password reset process.
network
low complexity
polycom
8.8
8.8
2021-10-02 CVE-2021-41864 Integer Overflow or Wraparound vulnerability in multiple products
prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.
local
low complexity
linux fedoraproject netapp debian CWE-190
7.8
7.8
2021-10-01 CVE-2021-38098 Out-of-bounds Write vulnerability in Corel PDF Fusion 2.6.2.0
Corel PDF Fusion 2.6.2.0 is affected by a Heap Corruption vulnerability when parsing a crafted file.
local
low complexity
corel CWE-787
7.8
7.8
2021-10-01 CVE-2021-38100 Out-of-bounds Write vulnerability in Corel Photopaint 2020 22.0.0.474
Corel PhotoPaint Standard 2020 22.0.0.474 is affected by an Out-of-bounds Write vulnerability when parsing a crafted file.
local
low complexity
corel CWE-787
7.8
7.8
2021-10-01 CVE-2021-38101 Out-of-bounds Write vulnerability in Corel Photopaint 2020 22.0.0.474
CDRRip.dll in Corel PhotoPaint Standard 2020 22.0.0.474 is affected by an Out-of-bounds Write vulnerability when parsing a crafted file.
local
low complexity
corel CWE-787
7.8
7.8
2021-10-01 CVE-2021-38110 Out-of-bounds Write vulnerability in Corel Wordperfect 2020 20.0.0.200
Word97Import200.dll in Corel WordPerfect 2020 20.0.0.200 is affected by an Out-of-bounds Write vulnerability when parsing a crafted file.
local
low complexity
corel CWE-787
7.8
7.8
2021-10-01 CVE-2021-41847 Authorization Bypass Through User-Controlled Key vulnerability in 3Xlogic Infinias Access Control 6.7.10708.0
An issue was discovered in 3xLogic Infinias Access Control through 6.7.10708.0, affecting physical security.
network
low complexity
3xlogic CWE-639
8.8
8.8
2021-10-01 CVE-2020-21013 SQL Injection vulnerability in Emlog 6.0.0
emlog v6.0.0 contains a SQL injection via /admin/comment.php.
network
low complexity
emlog CWE-89
7.2
7.2