Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2021-05-22 CVE-2021-1559 Unspecified vulnerability in Cisco DNA Spaces: Connector 2.0
Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, remote attacker to perform a command injection attack on an affected device.
network
low complexity
cisco
7.2
2021-05-22 CVE-2021-1560 Command Injection vulnerability in Cisco DNA Spaces: Connector 2.0
Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, remote attacker to perform a command injection attack on an affected device.
network
low complexity
cisco CWE-77
7.2
2021-05-21 CVE-2021-33511 Server-Side Request Forgery (SSRF) vulnerability in Plone
Plone though 5.2.4 allows SSRF via the lxml parser.
network
low complexity
plone CWE-918
7.5
2021-05-21 CVE-2021-21549 Cross-Site Request Forgery (CSRF) vulnerability in Dell Xtremio Management Server 6.3.0
Dell EMC XtremIO Versions prior to 6.3.3-8, contain a Cross-Site Request Forgery Vulnerability in XMS.
network
low complexity
dell CWE-352
8.8
2021-05-21 CVE-2021-21552 Unspecified vulnerability in Microsoft Windows 10 2019
Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability.
local
low complexity
microsoft
8.8
2021-05-21 CVE-2021-33500 Unspecified vulnerability in Putty
PuTTY before 0.75 on Windows allows remote servers to cause a denial of service (Windows GUI hang) by telling the PuTTY window to change its title repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls.
network
low complexity
putty
7.5
2021-05-21 CVE-2020-23765 Unrestricted Upload of File with Dangerous Type vulnerability in Bludit 3.12.0
A file upload vulnerability was discovered in the file path /bl-plugins/backup/plugin.php on Bludit version 3.12.0.
network
low complexity
bludit CWE-434
7.2
2021-05-21 CVE-2020-23768 Unspecified vulnerability in PHPyun 4.6
An information disclosure vulnerability was discovered in alipay_function.php in the log file of Alibaba payment interface on PHPPYUN prior to version 5.0.1.
network
low complexity
phpyun
7.5
2021-05-21 CVE-2021-27811 Code Injection vulnerability in Qibosoft 1.0
A code injection vulnerability has been discovered in the Upgrade function of QibosoftX1 v1.0.
network
low complexity
qibosoft CWE-94
7.2
2021-05-21 CVE-2021-32634 Unspecified vulnerability in NSA Emissary 6.4.0
Emissary is a distributed, peer-to-peer, data-driven workflow framework.
network
low complexity
nsa
7.2