Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-08 | CVE-2021-38388 | Missing Authorization vulnerability in Linecorp Central Dogma Central Dogma allows privilege escalation with mirroring to the internal dogma repository that has a file managing the authorization of the project. | 8.8 |
| 2021-09-08 | CVE-2021-21103 | Out-of-bounds Write vulnerability in Adobe Illustrator Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. | 8.8 |
| 2021-09-08 | CVE-2021-28571 | Unspecified vulnerability in Adobe After Effects Adobe After Effects version 18.1 (and earlier) is affected by a potential Command injection vulnerability when chained with a development and debugging tool for JavaScript scripts. | 8.8 |
| 2021-09-08 | CVE-2021-33982 | Insufficient Session Expiration vulnerability in Myfwc Fish | Hunt FL An insufficient session expiration vulnerability exists in the "Fish | Hunt FL" iOS app version 3.8.0 and earlier, which allows a remote attacker to reuse, spoof, or steal other user and admin sessions. | 7.5 |
| 2021-09-08 | CVE-2021-3051 | Improper Verification of Cryptographic Signature vulnerability in Paloaltonetworks Cortex Xsoar An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR SAML authentication that enables an unauthenticated network-based attacker with specific knowledge of the Cortex XSOAR instance to access protected resources and perform unauthorized actions on the Cortex XSOAR server. | 8.1 |
| 2021-09-08 | CVE-2021-3053 | Improper Handling of Exceptional Conditions vulnerability in Paloaltonetworks Pan-Os An improper handling of exceptional conditions vulnerability exists in the Palo Alto Networks PAN-OS dataplane that enables an unauthenticated network-based attacker to send specifically crafted traffic through the firewall that causes the service to crash. | 7.5 |
| 2021-09-08 | CVE-2021-40346 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HAProxy ACLs and possibly other ACLs. | 7.5 |
| 2021-09-08 | CVE-2021-21897 | A code execution vulnerability exists in the DL_Dxf::handleLWPolylineData functionality of Ribbonsoft dxflib 3.17.0. | 8.8 |
| 2021-09-08 | CVE-2021-35526 | Incorrect Authorization vulnerability in Hitachiabb-Powergrids Sdm600 Firmware Backup file without encryption vulnerability is found in Hitachi ABB Power Grids System Data Manager – SDM600 allows attacker to gain access to sensitive information. | 7.8 |
| 2021-09-08 | CVE-2020-27942 | Unspecified vulnerability in Apple mac OS X A logic issue was addressed with improved state management. | 7.8 |