Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-02-25 CVE-2021-1721 Unspecified vulnerability in Microsoft products
.NET Core and Visual Studio Denial of Service Vulnerability
network
microsoft
4.3
2021-02-25 CVE-2021-21066 Out-Of-Bounds Write vulnerability in Adobe Bridge
Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bounds write vulnerability when parsing TTF files that could result in arbitrary code execution in the context of the current user.
network
adobe CWE-787
6.8
2021-02-25 CVE-2021-21065 Out-Of-Bounds Write vulnerability in Adobe Bridge
Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bounds write vulnerability when parsing TTF files that could result in arbitrary code execution in the context of the current user.
network
adobe CWE-787
6.8
2021-02-24 CVE-2021-21620 Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Claim
A cross-site request forgery (CSRF) vulnerability in Jenkins Claim Plugin 2.18.1 and earlier allows attackers to change claims.
network
jenkins CWE-352
4.3
2021-02-24 CVE-2021-21617 Cross-Site Request Forgery (CSRF) vulnerability in Jenkins Configuration Slicing
A cross-site request forgery (CSRF) vulnerability in Jenkins Configuration Slicing Plugin 1.51 and earlier allows attackers to apply different slice configurations.
network
jenkins CWE-352
6.8
2021-02-23 CVE-2021-26927 Null Pointer Dereference vulnerability in Jasper Project Jasper
A flaw was found in jasper before 2.0.25.
4.3
2021-02-23 CVE-2020-7120 Classic Buffer Overflow vulnerability in Arubanetworks Clearpass Policy Manager 6.9.0/6.9.1
A local authenticated buffer overflow vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1.
local
low complexity
arubanetworks CWE-120
4.6
2021-02-23 CVE-2021-26926 Out-Of-Bounds Read vulnerability in Jasper Project Jasper
A flaw was found in jasper before 2.0.25.
5.8
2021-02-23 CVE-2021-26686 SQL Injection vulnerability in Arubanetworks Clearpass Policy Manager
A remote authenticated SQL Injection vulnerabilitiy was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1.
network
low complexity
arubanetworks CWE-89
5.5
2021-02-23 CVE-2021-26682 Cross-Site Scripting vulnerability in Arubanetworks Clearpass Policy Manager
A remote reflected cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1.
4.3