Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-27 | CVE-2021-37129 | Out-of-bounds Write vulnerability in Huawei products There is an out of bounds write vulnerability in some Huawei products. | 7.5 |
| 2021-10-27 | CVE-2021-37130 | Path Traversal vulnerability in Huawei Fusioncube Firmware 6.0.2 There is a path traversal vulnerability in Huawei FusionCube 6.0.2.The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a directory that is located underneath a restricted parent directory, but the software does not properly validate the pathname. | 7.5 |
| 2021-10-27 | CVE-2021-38450 | Unspecified vulnerability in Trane products The affected controllers do not properly sanitize the input containing code syntax. | 8.8 |
| 2021-10-26 | CVE-2021-23877 | Improper Privilege Management vulnerability in Mcafee Total Protection Privilege escalation vulnerability in the Windows trial installer of McAfee Total Protection (MTP) prior to 16.0.34_x may allow a local user to run arbitrary code as the admin user by replacing a specific temporary file created during the installation of the trial version of MTP. | 7.8 |
| 2021-10-26 | CVE-2019-3556 | Path Traversal vulnerability in Facebook Hhvm HHVM supports the use of an "admin" server which accepts administrative requests over HTTP. | 8.1 |
| 2021-10-26 | CVE-2021-37363 | Incorrect Default Permissions vulnerability in Gestionaleopen Gestionale Open 11.00.00 An Insecure Permissions issue exists in Gestionale Open 11.00.00. | 7.8 |
| 2021-10-26 | CVE-2021-37364 | Incorrect Permission Assignment for Critical Resource vulnerability in Openclinic GA Project Openclinic GA 5.194.18 OpenClinic GA 5.194.18 is affected by Insecure Permissions. | 7.8 |
| 2021-10-26 | CVE-2021-41158 | Origin Validation Error vulnerability in Freeswitch FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. | 7.5 |
| 2021-10-26 | CVE-2021-26609 | SQL Injection vulnerability in Mangboard Mang Board A vulnerability was found in Mangboard(WordPress plugin). | 7.5 |
| 2021-10-26 | CVE-2021-37372 | Unrestricted Upload of File with Dangerous Type vulnerability in Online Student Admission System Project Online Student Admission System 1.0 Online Student Admission System 1.0 is affected by an insecure file upload vulnerability. | 8.8 |