Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-28 | CVE-2021-36991 | Unspecified vulnerability in Huawei Emui and Magic UI There is an Unauthorized file access vulnerability in Huawei Smartphone due to unstandardized path input.Successful exploitation of this vulnerability by creating malicious file paths can cause unauthorized file access. | 7.5 |
| 2021-10-28 | CVE-2021-36992 | Unspecified vulnerability in Huawei Emui and Magic UI There is a Public key verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2021-10-28 | CVE-2021-36993 | Memory Leak vulnerability in Huawei Emui and Magic UI There is a Memory leaks vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability. | 7.5 |
| 2021-10-28 | CVE-2021-36995 | Unspecified vulnerability in Huawei Emui and Magic UI There is an Unauthorized file access vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability by modifying soft links may tamper with the files restored from backups. | 7.5 |
| 2021-10-28 | CVE-2021-36999 | Classic Buffer Overflow vulnerability in Huawei Emui and Magic UI There is a Buffer overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability by sending malicious images and inducing users to open the images may cause remote code execution. | 7.8 |
| 2021-10-28 | CVE-2021-37001 | Unspecified vulnerability in Huawei Emui and Magic UI There is a Register tampering vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow the register value to be modified. | 7.5 |
| 2021-10-28 | CVE-2021-37748 | Out-of-bounds Write vulnerability in Grandstream Ht801 Firmware 1.0.17.5 Multiple buffer overflows in the limited configuration shell (/sbin/gs_config) on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manage_if setting, thus bypassing the intended restrictions of this shell and taking full control of the device. | 8.8 |
| 2021-10-28 | CVE-2021-37915 | Unspecified vulnerability in Grandstream Ht801 Firmware 1.0.17.5/1.0.29 An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. | 8.8 |
| 2021-10-28 | CVE-2021-43057 | Use After Free vulnerability in multiple products An issue was discovered in the Linux kernel before 5.14.8. | 7.8 |
| 2021-10-27 | CVE-2021-3901 | Unspecified vulnerability in Firefly-Iii Firefly III firefly-iii is vulnerable to Cross-Site Request Forgery (CSRF) | 8.8 |