Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2021-05-24 CVE-2021-20726 Uncontrolled Search Path Element vulnerability in Overwolf
Untrusted search path vulnerability in The Installer of Overwolf 2.168.0.n and earlier allows an attacker to gain privileges and execute arbitrary code with the privilege of the user invoking the installer via a Trojan horse DLL in an unspecified directory.
local
low complexity
overwolf CWE-427
7.8
2021-05-22 CVE-2021-1487 Unspecified vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Evolved Programmable Network (EPN) Manager could allow an authenticated, remote attacker to execute arbitrary commands on an affected system.
network
low complexity
cisco
8.8
2021-05-22 CVE-2021-1531 Unspecified vulnerability in Cisco Modeling Labs
A vulnerability in the web UI of Cisco Modeling Labs could allow an authenticated, remote attacker to execute arbitrary commands with the privileges of the web application on the underlying operating system of an affected Cisco Modeling Labs server.
network
low complexity
cisco
8.8
2021-05-22 CVE-2021-1547 Unspecified vulnerability in Cisco products
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device.
network
low complexity
cisco
7.2
2021-05-22 CVE-2021-1548 Unspecified vulnerability in Cisco products
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device.
network
low complexity
cisco
7.2
2021-05-22 CVE-2021-1549 Unspecified vulnerability in Cisco products
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device.
network
low complexity
cisco
7.2
2021-05-22 CVE-2021-1550 Unspecified vulnerability in Cisco products
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device.
network
low complexity
cisco
7.2
2021-05-22 CVE-2021-1551 Unspecified vulnerability in Cisco products
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device.
network
low complexity
cisco
7.2
2021-05-22 CVE-2021-1552 Unspecified vulnerability in Cisco products
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device.
network
low complexity
cisco
7.2
2021-05-22 CVE-2021-1553 Unspecified vulnerability in Cisco products
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device.
network
low complexity
cisco
7.2