Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-22 | CVE-2020-36485 | Unrestricted Upload of File with Dangerous Type vulnerability in Madeportable Playable 9.18 Portable Ltd Playable v9.18 was discovered to contain an arbitrary file upload vulnerability in the filename parameter of the upload module. | 7.8 |
| 2021-10-22 | CVE-2021-41171 | Unspecified vulnerability in Elabftw eLabFTW is an open source electronic lab notebook manager for research teams. | 8.8 |
| 2021-10-22 | CVE-2021-42840 | Unrestricted Upload of File with Dangerous Type vulnerability in Salesagility Suitecrm SuiteCRM before 7.11.19 allows remote code execution via the system settings Log File Name setting. | 8.8 |
| 2021-10-22 | CVE-2021-42836 | Resource Exhaustion vulnerability in Gjson Project Gjson GJSON before 1.9.3 allows a ReDoS (regular expression denial of service) attack. | 7.5 |
| 2021-10-22 | CVE-2021-0483 | Use After Free vulnerability in Google Android 10.0/11.0 In multiple methods of AAudioService, there is a possible use-after-free due to a race condition. | 7.8 |
| 2021-10-22 | CVE-2021-0652 | Race Condition vulnerability in Google Android In VectorDrawable::VectorDrawable of VectorDrawable.java, there is a possible way to introduce a memory corruption due to sharing of not thread-safe objects. | 7.8 |
| 2021-10-22 | CVE-2021-0705 | Unspecified vulnerability in Google Android 10.0/11.0 In sanitizeSbn of NotificationManagerService.java, there is a possible way to keep service running in foreground and keep granted permissions due to Bypass of Background Service Restrictions. | 7.8 |
| 2021-10-22 | CVE-2021-0708 | Externally Controlled Reference to a Resource in Another Sphere vulnerability in Google Android In runDumpHeap of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy. | 7.8 |
| 2021-10-22 | CVE-2021-0870 | Race Condition vulnerability in Google Android In RW_SetActivatedTagType of rw_main.cc, there is possible memory corruption due to a race condition. | 8.1 |
| 2021-10-22 | CVE-2021-30359 | Uncontrolled Search Path Element vulnerability in Checkpoint Harmony Browse and Sandblast Agent for Browsers The Harmony Browse and the SandBlast Agent for Browsers installers must have admin privileges to execute some steps during the installation. | 7.8 |