Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-06 | CVE-2021-33879 | Download of Code Without Integrity Check vulnerability in Tencent Gameloop Tencent GameLoop before 4.1.21.90 downloaded updates over an insecure HTTP connection. | 8.1 |
| 2021-06-06 | CVE-2021-31701 | Improper Handling of Exceptional Conditions vulnerability in Mintty Project Mintty Mintty before 3.4.7 mishandles Bracketed Paste Mode. | 7.5 |
| 2021-06-04 | CVE-2020-29321 | Insufficiently Protected Credentials vulnerability in Dlink Dir-868L Firmware 3.01 The D-Link router DIR-868L 3.01 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data. | 7.5 |
| 2021-06-04 | CVE-2020-29322 | Insufficiently Protected Credentials vulnerability in Dlink Dir-880L Firmware 1.07 The D-Link router DIR-880L 1.07 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data. | 7.5 |
| 2021-06-04 | CVE-2020-29323 | Insufficiently Protected Credentials vulnerability in Dlink Dir-885L-Mfc Firmware 1.15B02/1.21B05 The D-link router DIR-885L-MFC 1.15b02, v1.21b05 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data. | 7.5 |
| 2021-06-04 | CVE-2020-29324 | Cleartext Storage of Sensitive Information vulnerability in Dlink Dir-895L MFC Firmware 1.21B05 The DLink Router DIR-895L MFC v1.21b05 is vulnerable to credentials disclosure in telnet service through decompilation of firmware, that allows an unauthenticated attacker to gain access to the firmware and to extract sensitive data. | 7.5 |
| 2021-06-04 | CVE-2021-29500 | Unspecified vulnerability in Bubble Fireworks Project Bubble Fireworks bubble fireworks is an open source java package relating to Spring Framework. | 7.5 |
| 2021-06-04 | CVE-2021-30506 | Injection vulnerability in multiple products Incorrect security UI in Web App Installs in Google Chrome on Android prior to 90.0.4430.212 allowed an attacker who convinced a user to install a web application to inject scripts or HTML into a privileged page via a crafted HTML page. | 8.8 |
| 2021-06-04 | CVE-2021-30507 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products Inappropriate implementation in Offline in Google Chrome on Android prior to 90.0.4430.212 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. | 8.8 |
| 2021-06-04 | CVE-2021-30508 | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in Media Feeds in Google Chrome prior to 90.0.4430.212 allowed an attacker who convinced a user to enable certain features in Chrome to potentially exploit heap corruption via a crafted HTML page. | 8.8 |