Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-20 | CVE-2021-29691 | Use of Hard-coded Credentials vulnerability in IBM Security Identity Manager 7.0.2 IBM Security Identity Manager 7.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 7.5 |
| 2021-05-20 | CVE-2020-24396 | Insufficiently Protected Credentials vulnerability in Hom.Ee Brain Cube Core 2.28.2/2.28.4 homee Brain Cube v2 (2.28.2 and 2.28.4) devices have sensitive SSH keys within downloadable and unencrypted firmware images. | 7.5 |
| 2021-05-20 | CVE-2021-27434 | Uncontrolled Recursion vulnerability in Unified-Automation .Net Based OPC UA Client/Server SDK 3.0.7 Products with Unified Automation .NET based OPC UA Client/Server SDK Bundle: Versions V3.0.7 and prior (.NET 4.5, 4.0, and 3.5 Framework versions only) are vulnerable to an uncontrolled recursion, which may allow an attacker to trigger a stack overflow. | 7.5 |
| 2021-05-20 | CVE-2021-28111 | Use of Hard-coded Credentials vulnerability in Draeger X-Dock Firmware Draeger X-Dock Firmware before 03.00.13 has Hard-Coded Credentials, leading to remote code execution by an authenticated attacker. | 8.8 |
| 2021-05-20 | CVE-2021-28112 | Unspecified vulnerability in Draeger X-Dock Firmware Draeger X-Dock Firmware before 03.00.13 has Active Debug Code on a debug port, leading to remote code execution by an authenticated attacker. | 8.8 |
| 2021-05-20 | CVE-2021-3438 | Classic Buffer Overflow vulnerability in multiple products A potential buffer overflow in the software drivers for certain HP LaserJet products and Samsung product printers could lead to an escalation of privilege. | 7.8 |
| 2021-05-20 | CVE-2021-3480 | A flaw was found in slapi-nis in versions before 0.56.7. | 7.5 |
| 2021-05-20 | CVE-2021-27457 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Emerson products A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. | 7.5 |
| 2021-05-20 | CVE-2021-27461 | Unspecified vulnerability in Emerson products A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. | 7.5 |
| 2021-05-20 | CVE-2021-20718 | Resource Exhaustion vulnerability in multiple products mod_auth_openidc 2.4.0 to 2.4.7 allows a remote attacker to cause a denial-of-service (DoS) condition via unspecified vectors. | 7.5 |