Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-13 | CVE-2020-27969 | Origin Validation Error vulnerability in Yandex Browser Yandex Browser for Android 20.8.4 allows remote attackers to perform SOP bypass and addresss bar spoofing | 7.3 |
| 2021-09-13 | CVE-2021-22527 | Unspecified vulnerability in Microfocus Access Manager 5.0 Information leakage vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 | 7.5 |
| 2021-09-13 | CVE-2021-40866 | Unspecified vulnerability in Netgear products Certain NETGEAR smart switches are affected by a remote admin password change by an unauthenticated attacker via the (disabled by default) /sqfs/bin/sccd daemon, which fails to check authentication when the authentication TLV is missing from a received NSDP packet. low complexity netgear | 8.8 |
| 2021-09-13 | CVE-2021-40867 | Authentication Bypass by Spoofing vulnerability in Netgear products Certain NETGEAR smart switches are affected by an authentication hijacking race-condition vulnerability by an unauthenticated attacker who uses the same source IP address as an admin in the process of logging in (e.g., behind the same NAT device, or already in possession of a foothold on an admin's machine). | 7.1 |
| 2021-09-10 | CVE-2021-39207 | Unspecified vulnerability in Facebook Parlai parlai is a framework for training and evaluating AI models on a variety of openly available dialogue datasets. | 8.8 |
| 2021-09-10 | CVE-2021-37414 | Improper Authentication vulnerability in Zohocorp Manageengine Desktop Central Zoho ManageEngine DesktopCentral before 10.0.709 allows anyone to get a valid user's APIKEY without authentication. | 7.5 |
| 2021-09-10 | CVE-2021-28813 | Insecure Storage of Sensitive Information vulnerability in Qnap Qsw-M2116P-2T2S Firmware and Qunetswitch A vulnerability involving insecure storage of sensitive information has been reported to affect QSW-M2116P-2T2S and QNAP switches running QuNetSwitch. | 7.5 |
| 2021-09-10 | CVE-2021-28816 | Out-of-bounds Write vulnerability in Qnap Qts, Quts Hero and Qutscloud A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. | 8.8 |
| 2021-09-10 | CVE-2021-34343 | Out-of-bounds Write vulnerability in Qnap Qts, Quts Hero and Qutscloud A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. | 7.2 |
| 2021-09-10 | CVE-2021-40839 | Infinite Loop vulnerability in multiple products The rencode package through 1.0.6 for Python allows an infinite loop in typecode decoding (such as via ;\x2f\x7f), enabling a remote attack that consumes CPU and memory. | 7.5 |