Weekly Vulnerabilities Reports > October 18 to 24, 2021

Overview

388 new vulnerabilities reported during this period, including 43 critical vulnerabilities and 151 high severity vulnerabilities. This weekly summary report vulnerabilities in 601 products from 164 vendors including Oracle, Apple, Qualcomm, Auvesy, and Fedoraproject. Vulnerabilities are notably categorized as "Cross-site Scripting", "Out-of-bounds Write", "Path Traversal", "Out-of-bounds Read", and "SQL Injection".

  • 284 reported vulnerabilities are remotely exploitables.
  • 6 reported vulnerabilities have public exploit available.
  • 110 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
  • 191 reported vulnerabilities are exploitable by an anonymous user.
  • Oracle has the most reported vulnerabilities, with 43 reported vulnerabilities.
  • Auvesy has the most reported critical vulnerabilities, with 7 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

43 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2021-10-19 CVE-2021-31384 Juniper Missing Authorization vulnerability in Juniper Junos 20.4/21.1

Due to a Missing Authorization weakness and Insufficient Granularity of Access Control in a specific device configuration, a vulnerability exists in Juniper Networks Junos OS on SRX Series whereby an attacker who attempts to access J-Web administrative interfaces can successfully do so from any device interface regardless of the web-management configuration and filter rules which may otherwise protect access to J-Web.

10.0
2021-10-18 CVE-2021-23449 VM2 Project Unspecified vulnerability in VM2 Project VM2

This affects the package vm2 before 3.9.4 via a Prototype Pollution attack vector, which can lead to execution of arbitrary code on the host machine.

10.0
2021-10-22 CVE-2021-42258 BQE SQL Injection vulnerability in BQE Billquick web Suite

BQE BillQuick Web Suite 2018 through 2021 before 22.0.9.1 allows SQL injection for unauthenticated remote code execution, as exploited in the wild in October 2021 for ransomware installation.

9.8
2021-10-22 CVE-2020-23037 Portable Code Injection vulnerability in Portable Playable 9.18

Portable Ltd Playable v9.18 contains a code injection vulnerability in the filename parameter, which allows attackers to execute arbitrary web scripts or HTML via a crafted POST request.

9.8
2021-10-22 CVE-2020-28960 Cct95 SQL Injection vulnerability in Cct95 Chichen Tech CMS 1.0

Chichen Tech CMS v1.0 was discovered to contain multiple SQL injection vulnerabilities in the file product_list.php via the id and cid parameters.

9.8
2021-10-22 CVE-2021-42169 Simple Payroll System With Dynamic TAX Bracket Project SQL Injection vulnerability in Simple Payroll System With Dynamic TAX Bracket Project Simple Payroll System With Dynamic TAX Bracket 1.0

The Simple Payroll System with Dynamic Tax Bracket in PHP using SQLite Free Source Code (by: oretnom23 ) is vulnerable from remote SQL-Injection-Bypass-Authentication for the admin account.

9.8
2021-10-22 CVE-2021-36357 Openpowerfoundation Incorrect Conversion between Numeric Types vulnerability in Openpowerfoundation Skiboot 2.6

An issue was discovered in OpenPOWER 2.6 firmware.

9.8
2021-10-22 CVE-2021-38449 Auvesy Unspecified vulnerability in Auvesy Versiondog

Some API functions permit by-design writing or copying data into a given buffer.

9.8
2021-10-22 CVE-2021-38457 Auvesy Missing Authentication for Critical Function vulnerability in Auvesy Versiondog

The server permits communication without any authentication procedure, allowing the attacker to initiate a session with the server without providing any form of authentication.

9.8
2021-10-22 CVE-2021-38459 Auvesy Unspecified vulnerability in Auvesy Versiondog

The data of a network capture of the initial handshake phase can be used to authenticate at a SYSDBA level.

9.8
2021-10-22 CVE-2021-38477 Auvesy Unspecified vulnerability in Auvesy Versiondog

There are multiple API function codes that permit reading and writing data to or from files and directories, which could lead to the manipulation and/or the deletion of files.

9.8
2021-10-22 CVE-2021-38481 Auvesy Unspecified vulnerability in Auvesy Versiondog

The scheduler service running on a specific TCP port enables the user to start and stop jobs.

9.8
2021-10-22 CVE-2021-41744 Yonyou Command Injection vulnerability in Yonyou Ufida Product Lifecycle Management

All versions of yongyou PLM are affected by a command injection issue.

9.8
2021-10-22 CVE-2021-41745 Showdoc Unrestricted Upload of File with Dangerous Type vulnerability in Showdoc 2.8.3

ShowDoc 2.8.3 ihas a file upload vulnerability, where attackers can use the vulnerability to obtain server permissions.

9.8
2021-10-21 CVE-2020-27304 Civetweb Project
Siemens
Path Traversal vulnerability in multiple products

The CivetWeb web library does not validate uploaded filepaths when running on an OS other than Windows, when using the built-in HTTP form-based file upload mechanism, via the mg_handle_form_request API.

9.8
2021-10-21 CVE-2021-42740 Shell Quote Project Command Injection vulnerability in Shell-Quote Project Shell-Quote

The shell-quote package before 1.7.3 for Node.js allows command injection.

9.8
2021-10-20 CVE-2021-41163 Discourse Injection vulnerability in Discourse

Discourse is an open source platform for community discussion.

9.8
2021-10-20 CVE-2021-21748 ZTE Out-of-bounds Write vulnerability in ZTE Mf971R Firmware

ZTE MF971R product has two stack-based buffer overflow vulnerabilities.

9.8
2021-10-20 CVE-2021-21749 ZTE Out-of-bounds Write vulnerability in ZTE Mf971R Firmware

ZTE MF971R product has two stack-based buffer overflow vulnerabilities.

9.8
2021-10-20 CVE-2021-23452 Binaryops Unspecified vulnerability in Binaryops X-Assign

This affects all versions of package x-assign.

9.8
2021-10-19 CVE-2021-31349 Juniper Unspecified vulnerability in Juniper 128 Technology Session Smart Router Firmware

The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change settings, manipulate services and execute arbitrary code.

9.8
2021-10-19 CVE-2021-30820 Apple Unspecified vulnerability in Apple Ipados and Iphone OS

A logic issue was addressed with improved state management.

9.8
2021-10-19 CVE-2021-38462 Inhandnetworks Weak Password Requirements vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 does not enforce an efficient password policy.

9.8
2021-10-19 CVE-2021-38474 Inhandnetworks Improper Restriction of Excessive Authentication Attempts vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 have has no account lockout policy configured for the login page of the product.

9.8
2021-10-18 CVE-2021-41153 EVM Project Always-Incorrect Control Flow Implementation vulnerability in EVM Project EVM

The evm crate is a pure Rust implementation of Ethereum Virtual Machine.

9.8
2021-10-18 CVE-2021-42575 Owasp
Oracle
The OWASP Java HTML Sanitizer before 20211018.1 does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.
9.8
2021-10-18 CVE-2021-42576 Microco
Python
The bluemonday sanitizer before 1.0.16 for Go, and before 0.0.8 for Python (in pybluemonday), does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements.
9.8
2021-10-18 CVE-2021-22961 Glasswire Code Injection vulnerability in Glasswire 2.1.167

A code injection vulnerability exists within the firewall software of GlassWire v2.1.167 that could lead to arbitrary code execution from a file in the user path on first execution.

9.8
2021-10-18 CVE-2021-33023 Advantech Out-of-bounds Write vulnerability in Advantech Webaccess

Advantech WebAccess versions 9.02 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute code.

9.8
2021-10-18 CVE-2021-38389 Advantech Out-of-bounds Write vulnerability in Advantech Webaccess

Advantech WebAccess versions 9.02 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute code.

9.8
2021-10-18 CVE-2021-38297 Golang
Fedoraproject
Classic Buffer Overflow vulnerability in multiple products

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.

9.8
2021-10-22 CVE-2021-38453 Auvesy Unspecified vulnerability in Auvesy Versiondog

Some API functions allow interaction with the registry, which includes reading values as well as data modification.

9.1
2021-10-22 CVE-2021-38471 Auvesy Unspecified vulnerability in Auvesy Versiondog

There are multiple API function codes that permit data writing to any file, which may allow an attacker to modify existing files or create new files.

9.1
2021-10-20 CVE-2021-42764 Proof OF Stake Ethereum Project Unspecified vulnerability in Proof-Of-Stake Ethereum Project Proof-Of-Stake Ethereum

The Proof-of-Stake (PoS) Ethereum consensus protocol through 2021-10-19 allows an adversary to cause a denial of service (delayed consensus decisions), and also increase the profits of individual validators, via short-range reorganizations of the underlying consensus chain.

9.1
2021-10-20 CVE-2021-42766 Proof OF Stake Ethereum Project Unspecified vulnerability in Proof-Of-Stake Ethereum Project Proof-Of-Stake Ethereum

The Proof-of-Stake (PoS) Ethereum consensus protocol through 2021-10-19 allows an adversary to cause a denial of service (long-range consensus chain reorganizations), even when this adversary has little stake and cannot influence network message propagation.

9.1
2021-10-20 CVE-2021-1977 Qualcomm Out-of-bounds Read vulnerability in Qualcomm products

Possible buffer over read due to improper validation of frame length while processing AEAD decryption during ASSOC response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music

9.1
2021-10-20 CVE-2021-1980 Qualcomm Out-of-bounds Read vulnerability in Qualcomm products

Possible buffer over read due to lack of length check while parsing beacon IE response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

9.1
2021-10-20 CVE-2021-30304 Qualcomm Out-of-bounds Read vulnerability in Qualcomm products

Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity

9.1
2021-10-19 CVE-2021-31381 Juniper Unspecified vulnerability in Juniper Session and Resource Control

A configuration weakness in the JBoss Application Server (AppSvr) component of Juniper Networks SRC Series allows a remote attacker to send a specially crafted query to cause the web server to delete files which may allow the attacker to disrupt the integrity and availability of the system.

9.1
2021-10-19 CVE-2020-12141 Contiki NG Out-of-bounds Read vulnerability in Contiki-Ng

An out-of-bounds read in the SNMP stack in Contiki-NG 4.4 and earlier allows an attacker to cause a denial of service and potentially disclose information via crafted SNMP packets to snmp_ber_decode_string_len_buffer in os/net/app-layer/snmp/snmp-ber.c.

9.1
2021-10-19 CVE-2021-38470 Inhandnetworks Unspecified vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to an attacker using a ping tool to inject commands into the device.

9.1
2021-10-19 CVE-2021-38478 Inhandnetworks Unspecified vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to an attacker using a traceroute tool to inject commands into the device.

9.1
2021-10-19 CVE-2021-31382 Juniper Race Condition vulnerability in Juniper Junos

On PTX1000 System, PTX10002-60C System, after upgrading to an affected release, a Race Condition vulnerability between the chassis daemon (chassisd) and firewall process (dfwd) of Juniper Networks Junos OS, may update the device's interfaces with incorrect firewall filters.

9.0

151 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2021-10-22 CVE-2020-23043 AIR Sender Project Unrestricted Upload of File with Dangerous Type vulnerability in AIR Sender Project AIR Sender 1.0.2

Tran Tu Air Sender v1.0.2 was discovered to contain an arbitrary file upload vulnerability in the upload module.

8.8
2021-10-22 CVE-2020-28967 Flashget Classic Buffer Overflow vulnerability in Flashget 1.9.6

FlashGet v1.9.6 was discovered to contain a buffer overflow in the 'current path directory' function.

8.8
2021-10-22 CVE-2021-41171 Elabftw Unspecified vulnerability in Elabftw

eLabFTW is an open source electronic lab notebook manager for research teams.

8.8
2021-10-22 CVE-2021-42840 Salesagility Unrestricted Upload of File with Dangerous Type vulnerability in Salesagility Suitecrm

SuiteCRM before 7.11.19 allows remote code execution via the system settings Log File Name setting.

8.8
2021-10-22 CVE-2021-38485 Emerson Unspecified vulnerability in Emerson products

The affected product is vulnerable to improper input validation in the restore file.

8.8
2021-10-22 CVE-2021-42538 Emerson Command Injection vulnerability in Emerson products

The affected product is vulnerable to a parameter injection via passphrase, which enables the attacker to supply uncontrolled input.

8.8
2021-10-22 CVE-2021-42539 Emerson Unspecified vulnerability in Emerson products

The affected product is vulnerable to a missing permission validation on system backup restore, which could lead to account take over and unapproved settings change.

8.8
2021-10-22 CVE-2021-42540 Emerson Unspecified vulnerability in Emerson products

The affected product is vulnerable to a unsanitized extract folder for system configuration.

8.8
2021-10-22 CVE-2021-42542 Emerson Unspecified vulnerability in Emerson products

The affected product is vulnerable to directory traversal due to mishandling of provided backup folder structure.

8.8
2021-10-22 CVE-2021-38473 Auvesy Out-of-bounds Write vulnerability in Auvesy Versiondog

The affected product’s code base doesn’t properly control arguments for specific functions, which could lead to a stack overflow.

8.8
2021-10-22 CVE-2021-38475 Auvesy Unspecified vulnerability in Auvesy Versiondog

The database connection to the server is performed by calling a specific API, which could allow an unprivileged user to gain SYSDBA permissions.

8.8
2021-10-21 CVE-2021-41159 Freerdp
Fedoraproject
Out-of-bounds Write vulnerability in multiple products

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license.

8.8
2021-10-21 CVE-2021-41160 Freerdp
Fedoraproject
Out-of-bounds Write vulnerability in multiple products

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license.

8.8
2021-10-21 CVE-2021-20120 Commscope Cross-Site Request Forgery (CSRF) vulnerability in Commscope Arris Surfboard Sb8200 Firmware Ab01.02.053.01112320193.0A.Nsh

The administration web interface for the Arris Surfboard SB8200 lacks any protections against cross-site request forgery attacks.

8.8
2021-10-21 CVE-2021-41790 Alfresco Unspecified vulnerability in Alfresco Content Services 7.0/7.0.0.1/7.0.0.2

An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2.

8.8
2021-10-20 CVE-2021-25970 Tuzitio Insufficient Session Expiration vulnerability in Tuzitio Camaleon CMS

Camaleon CMS 0.1.7 to 2.6.0 doesn’t terminate the active session of the users, even after the admin changes the user’s password.

8.8
2021-10-19 CVE-2021-31350 Juniper Improper Privilege Management vulnerability in Juniper Junos and Junos OS Evolved

An Improper Privilege Management vulnerability in the gRPC framework, used by the Juniper Extension Toolkit (JET) API on Juniper Networks Junos OS and Junos OS Evolved, allows a network-based, low-privileged authenticated attacker to perform operations as root, leading to complete compromise of the targeted system.

8.8
2021-10-19 CVE-2021-31354 Juniper Out-of-bounds Read vulnerability in Juniper Junos and Junos OS Evolved

An Out Of Bounds (OOB) access vulnerability in the handling of responses by a Juniper Agile License (JAL) Client in Juniper Networks Junos OS and Junos OS Evolved, configured in Network Mode (to use Juniper Agile License Manager) may allow an attacker to cause a partial Denial of Service (DoS), or lead to remote code execution (RCE).

8.8
2021-10-19 CVE-2021-38480 Inhandnetworks Unspecified vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to cross-site request forgery when unauthorized commands are submitted from a user the web application trusts.

8.8
2021-10-19 CVE-2021-3846 Firefly III Unrestricted Upload of File with Dangerous Type vulnerability in Firefly-Iii Firefly III

firefly-iii is vulnerable to Unrestricted Upload of File with Dangerous Type

8.8
2021-10-19 CVE-2021-3858 Snipeitapp Cross-Site Request Forgery (CSRF) vulnerability in Snipeitapp Snipe-It

snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)

8.8
2021-10-18 CVE-2021-41154 Enalean SQL Injection vulnerability in Enalean Tuleap

Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration.

8.8
2021-10-18 CVE-2021-41155 Enalean SQL Injection vulnerability in Enalean Tuleap

Tuleap is a Free & Open Source Suite to improve management of software developments and collaboration.

8.8
2021-10-18 CVE-2021-41971 Apache SQL Injection vulnerability in Apache Superset

Apache Superset up to and including 1.3.0 when configured with ENABLE_TEMPLATE_PROCESSING on (disabled by default) allowed SQL injection when a malicious authenticated user sends an http request with a custom URL.

8.8
2021-10-18 CVE-2021-42098 Devolutions Incorrect Default Permissions vulnerability in Devolutions Remote Desktop Manager

An incomplete permission check on entries in Devolutions Remote Desktop Manager before 2021.2.16 allows attackers to bypass permissions via batch custom PowerShell.

8.8
2021-10-18 CVE-2021-24684 Teamlead Unspecified vulnerability in Teamlead Pdf-Light-Viewer

The WordPress PDF Light Viewer Plugin WordPress plugin before 1.4.12 allows users with Author roles to execute arbitrary OS command on the server via OS Command Injection when invoking Ghostscript.

8.8
2021-10-19 CVE-2021-41131 Linuxfoundation Unspecified vulnerability in Linuxfoundation the Update Framework

python-tuf is a Python reference implementation of The Update Framework (TUF).

8.7
2021-10-19 CVE-2021-38486 Inhandnetworks Missing Authorization vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 cloud portal allows for self-registration of the affected product without any requirements to create an account, which may allow an attacker to have full control over the product and execute code within the internal network to which the product is connected.

8.5
2021-10-22 CVE-2021-38461 Auvesy Use of Hard-coded Credentials vulnerability in Auvesy Versiondog

The affected product uses a hard-coded blowfish key for encryption/decryption processes.

8.2
2021-10-20 CVE-2021-35599 Oracle Unspecified vulnerability in Oracle Zero Downtime DB Migration to Cloud 21C

Vulnerability in the Zero Downtime DB Migration to Cloud component of Oracle Database Server.

8.2
2021-10-22 CVE-2021-0870 Google Race Condition vulnerability in Google Android

In RW_SetActivatedTagType of rw_main.cc, there is possible memory corruption due to a race condition.

8.1
2021-10-22 CVE-2021-38463 Auvesy Allocation of Resources Without Limits or Throttling vulnerability in Auvesy Versiondog

The affected product does not properly control the allocation of resources.

8.1
2021-10-22 CVE-2021-38467 Auvesy Unspecified vulnerability in Auvesy Versiondog

A specific function code receives a raw pointer supplied by the user and deallocates this pointer.

8.1
2021-10-21 CVE-2021-29873 IBM Unspecified vulnerability in IBM products

IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a restricted shell escape vulnerability.

8.1
2021-10-20 CVE-2021-35562 Oracle Unspecified vulnerability in Oracle Universal Work Queue

Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite (component: Work Provider Site Level Administration).

8.1
2021-10-20 CVE-2021-35563 Oracle Unspecified vulnerability in Oracle Shipping Execution 12.2.10/12.2.6

Vulnerability in the Oracle Shipping Execution product of Oracle E-Business Suite (component: Workflow Events).

8.1
2021-10-20 CVE-2021-35566 Oracle Unspecified vulnerability in Oracle Applications Manager

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: Diagnostics).

8.1
2021-10-20 CVE-2021-35570 Oracle Unspecified vulnerability in Oracle Mobile Field Service

Vulnerability in the Oracle Mobile Field Service product of Oracle E-Business Suite (component: Admin UI).

8.1
2021-10-20 CVE-2021-35585 Oracle Unspecified vulnerability in Oracle Incentive Compensation 12.1.1/12.1.3

Vulnerability in the Oracle Incentive Compensation product of Oracle E-Business Suite (component: User Interface).

8.1
2021-10-19 CVE-2021-41149 Amazon Unspecified vulnerability in Amazon Tough

Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories.

8.1
2021-10-19 CVE-2021-3888 Libmobi Project Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libmobi Project Libmobi

libmobi is vulnerable to Use of Out-of-range Pointer Offset

8.1
2021-10-19 CVE-2021-3889 Libmobi Project Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libmobi Project Libmobi

libmobi is vulnerable to Use of Out-of-range Pointer Offset

8.1
2021-10-22 CVE-2020-23050 Taotesting Injection vulnerability in Taotesting TAO Assessment Platform 3.3.0

TAO Open Source Assessment Platform v3.3.0 RC02 was discovered to contain a HTML injection vulnerability in the userFirstName parameter of the user account input field.

8.0
2021-10-21 CVE-2021-42097 GNU
Debian
Cross-Site Request Forgery (CSRF) vulnerability in multiple products

GNU Mailman before 2.1.35 may allow remote Privilege Escalation.

8.0
2021-10-22 CVE-2020-28963 Krylack Classic Buffer Overflow vulnerability in Krylack ZIP Password Recovery 3.70.69.0

Passcovery Co.

7.8
2021-10-22 CVE-2020-28969 Aplixio Classic Buffer Overflow vulnerability in Aplixio PDF Shapingup 5.0.0.139

Aplioxio PDF ShapingUp 5.0.0.139 contains a buffer overflow which allows attackers to cause a denial of service (DoS) via a crafted PDF file.

7.8
2021-10-22 CVE-2020-36485 Madeportable Unrestricted Upload of File with Dangerous Type vulnerability in Madeportable Playable 9.18

Portable Ltd Playable v9.18 was discovered to contain an arbitrary file upload vulnerability in the filename parameter of the upload module.

7.8
2021-10-22 CVE-2021-0483 Google Use After Free vulnerability in Google Android 10.0/11.0

In multiple methods of AAudioService, there is a possible use-after-free due to a race condition.

7.8
2021-10-22 CVE-2021-0652 Google Race Condition vulnerability in Google Android

In VectorDrawable::VectorDrawable of VectorDrawable.java, there is a possible way to introduce a memory corruption due to sharing of not thread-safe objects.

7.8
2021-10-22 CVE-2021-0705 Google Unspecified vulnerability in Google Android 10.0/11.0

In sanitizeSbn of NotificationManagerService.java, there is a possible way to keep service running in foreground and keep granted permissions due to Bypass of Background Service Restrictions.

7.8
2021-10-22 CVE-2021-0708 Google Externally Controlled Reference to a Resource in Another Sphere vulnerability in Google Android

In runDumpHeap of ActivityManagerShellCommand.java, there is a possible deletion of system files due to a confused deputy.

7.8
2021-10-22 CVE-2021-30359 Checkpoint Uncontrolled Search Path Element vulnerability in Checkpoint Harmony Browse and Sandblast Agent for Browsers

The Harmony Browse and the SandBlast Agent for Browsers installers must have admin privileges to execute some steps during the installation.

7.8
2021-10-21 CVE-2021-35227 Solarwinds Deserialization of Untrusted Data vulnerability in Solarwinds Access Rights Manager

The HTTP interface was enabled for RabbitMQ Plugin in ARM 2020.2.6 and the ability to configure HTTPS was not available.

7.8
2021-10-21 CVE-2021-42011 Trendmicro Incorrect Default Permissions vulnerability in Trendmicro Apex ONE 2019

An incorrect permission assignment vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to load a DLL with escalated privileges on affected installations.

7.8
2021-10-21 CVE-2021-42012 Trendmicro Out-of-bounds Write vulnerability in Trendmicro products

A stack-based buffer overflow vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security 10.0 SP1 could allow a local attacker to escalate privileges on affected installations.

7.8
2021-10-21 CVE-2021-42101 Trendmicro Uncontrolled Search Path Element vulnerability in Trendmicro Apex ONE 2019

An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations.

7.8
2021-10-21 CVE-2021-42102 Trendmicro Uncontrolled Search Path Element vulnerability in Trendmicro Apex ONE 2019

An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service agents could allow a local attacker to escalate privileges on affected installations.

7.8
2021-10-21 CVE-2021-42103 Trendmicro Uncontrolled Search Path Element vulnerability in Trendmicro Apex ONE 2019

An uncontrolled search path element vulnerabilities in Trend Micro Apex One and Apex One as a Service could allow a local attacker to escalate privileges on affected installations.

7.8
2021-10-21 CVE-2021-42104 Trendmicro Improper Privilege Management vulnerability in Trendmicro products

Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations.

7.8
2021-10-21 CVE-2021-42105 Trendmicro Improper Privilege Management vulnerability in Trendmicro products

Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations.

7.8
2021-10-21 CVE-2021-42106 Trendmicro Improper Privilege Management vulnerability in Trendmicro products

Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations.

7.8
2021-10-21 CVE-2021-42107 Trendmicro Improper Privilege Management vulnerability in Trendmicro products

Unnecessary privilege vulnerabilities in Trend Micro Apex One, Apex One as a Service, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services could allow a local attacker to escalate privileges on affected installations.

7.8
2021-10-21 CVE-2021-42108 Trendmicro Improper Privilege Management vulnerability in Trendmicro products

Unnecessary privilege vulnerabilities in the Web Console of Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security 10.0 SP1 could allow a local attacker to escalate privileges on affected installations.

7.8
2021-10-21 CVE-2021-1529 Cisco OS Command Injection vulnerability in Cisco IOS XE

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges.

7.8
2021-10-20 CVE-2021-42771 Pocoo
Debian
Path Traversal vulnerability in multiple products

Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution.

7.8
2021-10-20 CVE-2021-1983 Qualcomm Classic Buffer Overflow vulnerability in Qualcomm products

Possible buffer overflow due to improper handling of negative data length while processing write request in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

7.8
2021-10-20 CVE-2021-1984 Qualcomm Classic Buffer Overflow vulnerability in Qualcomm products

Possible buffer overflow due to improper validation of index value while processing the plugin block in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

7.8
2021-10-20 CVE-2021-30256 Qualcomm Out-of-bounds Write vulnerability in Qualcomm products

Possible stack overflow due to improper validation of camera name length before copying the name in VR Service in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT

7.8
2021-10-20 CVE-2021-30257 Qualcomm Out-of-bounds Write vulnerability in Qualcomm products

Possible out of bound read or write in VR service due to lack of validation of DSP selection values in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT

7.8
2021-10-20 CVE-2021-30258 Qualcomm Out-of-bounds Write vulnerability in Qualcomm products

Possible buffer overflow due to improper size calculation of payload received in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

7.8
2021-10-20 CVE-2021-30288 Qualcomm Out-of-bounds Write vulnerability in Qualcomm products

Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

7.8
2021-10-20 CVE-2021-30291 Qualcomm Out-of-bounds Write vulnerability in Qualcomm products

Possible memory corruption due to lack of validation of client data used for memory allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

7.8
2021-10-20 CVE-2021-30292 Qualcomm Out-of-bounds Write vulnerability in Qualcomm products

Possible memory corruption due to lack of validation of client data used for memory allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

7.8
2021-10-20 CVE-2021-30305 Qualcomm Improper Input Validation vulnerability in Qualcomm products

Possible out of bound access due to lack of validation of page offset before page is inserted in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.8
2021-10-20 CVE-2021-30315 Qualcomm Use After Free vulnerability in Qualcomm products

Improper handling of sensor HAL structure in absence of sensor can lead to use after free in Snapdragon Auto

7.8
2021-10-20 CVE-2021-30316 Qualcomm Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products

Possible out of bound memory access due to improper boundary check while creating HSYNC fence in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.8
2021-10-19 CVE-2021-31357 Juniper OS Command Injection vulnerability in Juniper Junos OS Evolved

A command injection vulnerability in tcpdump command processing on Juniper Networks Junos OS Evolved allows an attacker with authenticated CLI access to be able to bypass configured access protections to execute arbitrary shell commands within the context of the current user.

7.8
2021-10-19 CVE-2021-30807 Apple Out-of-bounds Write vulnerability in Apple products

A memory corruption issue was addressed with improved memory handling.

7.8
2021-10-19 CVE-2021-30825 Apple Unspecified vulnerability in Apple Ipados and Iphone OS

This issue was addressed with improved checks.

7.8
2021-10-19 CVE-2021-30827 Apple Improper Preservation of Permissions vulnerability in Apple mac OS X and Macos

A permissions issue existed.

7.8
2021-10-19 CVE-2021-30829 Apple Unspecified vulnerability in Apple mac OS X and Macos

A URI parsing issue was addressed with improved parsing.

7.8
2021-10-19 CVE-2021-30830 Apple Out-of-bounds Write vulnerability in Apple mac OS X and Macos

A memory corruption issue was addressed with improved memory handling.

7.8
2021-10-19 CVE-2021-30832 Apple Out-of-bounds Write vulnerability in Apple mac OS X and Macos

A memory corruption issue was addressed with improved state management.

7.8
2021-10-19 CVE-2021-30835 Apple Unspecified vulnerability in Apple products

This issue was addressed with improved checks.

7.8
2021-10-19 CVE-2021-30837 Apple Unspecified vulnerability in Apple Tvos

A memory consumption issue was addressed with improved memory handling.

7.8
2021-10-19 CVE-2021-30838 Apple Unspecified vulnerability in Apple Ipados and Iphone OS

A memory corruption issue was addressed with improved memory handling.

7.8
2021-10-19 CVE-2021-30841 Apple Unspecified vulnerability in Apple products

This issue was addressed with improved checks.

7.8
2021-10-19 CVE-2021-30842 Apple Unspecified vulnerability in Apple products

This issue was addressed with improved checks.

7.8
2021-10-19 CVE-2021-30843 Apple Unspecified vulnerability in Apple products

This issue was addressed with improved checks.

7.8
2021-10-19 CVE-2021-30846 Apple
Debian
Fedoraproject
Out-of-bounds Write vulnerability in multiple products

A memory corruption issue was addressed with improved memory handling.

7.8
2021-10-19 CVE-2021-30847 Apple Unspecified vulnerability in Apple products

This issue was addressed with improved checks.

7.8
2021-10-19 CVE-2021-30848 Apple Out-of-bounds Write vulnerability in Apple products

A memory corruption issue was addressed with improved memory handling.

7.8
2021-10-19 CVE-2021-30849 Apple Out-of-bounds Write vulnerability in Apple products

Multiple memory corruption issues were addressed with improved memory handling.

7.8
2021-10-19 CVE-2021-3872 VIM
Fedoraproject
Debian
vim is vulnerable to Heap-based Buffer Overflow
7.8
2021-10-18 CVE-2021-21796 Gonitro Use After Free vulnerability in Gonitro Nitro PRO 13.31.0.605/13.33.2.645

An exploitable use-after-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF.

7.8
2021-10-18 CVE-2021-21797 Gonitro Double Free vulnerability in Gonitro Nitro PRO 13.31.0.605/13.33.2.645

An exploitable double-free vulnerability exists in the JavaScript implementation of Nitro Pro PDF.

7.8
2021-10-18 CVE-2021-38426 Fatek Unspecified vulnerability in Fatek Winproladder 3.28/3.30

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an out-of-bounds write.

7.8
2021-10-18 CVE-2021-38430 Fatek Unspecified vulnerability in Fatek Winproladder 3.28/3.30

FATEK Automation WinProladder versions 3.30 and prior proper validation of user-supplied data when parsing project files, which could result in a stack-based buffer overflow.

7.8
2021-10-18 CVE-2021-38434 Fatek Unspecified vulnerability in Fatek Winproladder 3.28/3.30

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in an unexpected sign extension.

7.8
2021-10-18 CVE-2021-38436 Fatek Out-of-bounds Write vulnerability in Fatek Winproladder 3.28/3.30

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in a memory-corruption condition.

7.8
2021-10-18 CVE-2021-38438 Fatek Unspecified vulnerability in Fatek Winproladder 3.28/3.30

A use after free vulnerability in FATEK Automation WinProladder versions 3.30 and prior may be exploited when a valid user opens a malformed project file, which may allow arbitrary code execution.

7.8
2021-10-18 CVE-2021-38442 Fatek Out-of-bounds Write vulnerability in Fatek Winproladder 3.28/3.30

FATEK Automation WinProladder versions 3.30 and prior lacks proper validation of user-supplied data when parsing project files, which could result in a heap-corruption condition.

7.8
2021-10-18 CVE-2021-41152 Frentix Path Traversal vulnerability in Frentix Openolat

OpenOlat is a web-based e-learning platform for teaching, learning, assessment and communication, an LMS, a learning management system.

7.7
2021-10-22 CVE-2020-23038 Kumilabs Path Traversal vulnerability in Kumilabs Swift File Transfer

Swift File Transfer Mobile v1.1.2 and below was discovered to contain an information disclosure vulnerability in the path parameter.

7.5
2021-10-22 CVE-2020-23040 SKY File Project Path Traversal vulnerability in SKY File Project SKY File 2.1.0

Sky File v2.1.0 contains a directory traversal vulnerability in the FTP server which allows attackers to access sensitive data and files via 'null' path commands.

7.5
2021-10-22 CVE-2020-23061 Dropouts Path Traversal vulnerability in Dropouts Super Backup 2.0.5

Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain an issue in the path parameter of the `list` and `download` module which allows attackers to perform a directory traversal via a change to the path variable to request the local list command.

7.5
2021-10-22 CVE-2021-42836 Gjson Project Resource Exhaustion vulnerability in Gjson Project Gjson

GJSON before 1.9.3 allows a ReDoS (regular expression denial of service) attack.

7.5
2021-10-22 CVE-2021-38479 Auvesy Unspecified vulnerability in Auvesy Versiondog

Many API function codes receive raw pointers remotely from the user and trust these pointers as valid in-bound memory regions.

7.5
2021-10-21 CVE-2021-22034 Vmware Unspecified vulnerability in VMWare Vrealize Operations Tenant

Releases prior to VMware vRealize Operations Tenant App 8.6 contain an Information Disclosure Vulnerability.

7.5
2021-10-21 CVE-2021-23139 Trendmicro NULL Pointer Dereference vulnerability in Trendmicro products

A null pointer vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 could allow an attacker to crash the CGI program on affected installations.

7.5
2021-10-21 CVE-2021-34736 Cisco Improper Input Validation vulnerability in Cisco Unified Computing System

A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote attacker to cause the web-based management interface to unexpectedly restart.

7.5
2021-10-21 CVE-2021-40122 Cisco Improper Resource Shutdown or Release vulnerability in Cisco Meeting Server

A vulnerability in an API of the Call Bridge feature of Cisco Meeting Server could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

7.5
2021-10-20 CVE-2021-42765 Proof OF Stake Ethereum Project Unspecified vulnerability in Proof-Of-Stake Ethereum Project Proof-Of-Stake Ethereum

The Proof-of-Stake (PoS) Ethereum consensus protocol through 2021-10-19 allows an adversary to leverage network delay to cause a denial of service (indefinite stalling of consensus decisions).

7.5
2021-10-20 CVE-2021-21744 ZTE Unspecified vulnerability in ZTE Mf971R Firmware

ZTE MF971R product has a configuration file control vulnerability.

7.5
2021-10-20 CVE-2021-35560 Oracle
Netapp
Vulnerability in the Java SE product of Oracle Java SE (component: Deployment).
7.5
2021-10-20 CVE-2021-35572 Oracle Unspecified vulnerability in Oracle Outside in Technology 8.5.5

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters).

7.5
2021-10-20 CVE-2021-35573 Oracle Unspecified vulnerability in Oracle Outside in Technology 8.5.5

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters).

7.5
2021-10-20 CVE-2021-35574 Oracle Unspecified vulnerability in Oracle products

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters).

7.5
2021-10-20 CVE-2021-35583 Oracle
Netapp
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Windows).
7.5
2021-10-19 CVE-2021-3454 Zephyrproject Reachable Assertion vulnerability in Zephyrproject Zephyr 2.4.0/2.5.0/2.5.1

Truncated L2CAP K-frame causes assertion failure.

7.5
2021-10-19 CVE-2021-3455 Zephyrproject Use After Free vulnerability in Zephyrproject Zephyr 2.4.0/2.5.0/2.5.1

Disconnecting L2CAP channel right after invalid ATT request leads freeze.

7.5
2021-10-19 CVE-2021-31378 Juniper Missing Release of Resource after Effective Lifetime vulnerability in Juniper Junos

In broadband environments, including but not limited to Enhanced Subscriber Management, (CHAP, PPP, DHCP, etc.), on Juniper Networks Junos OS devices where RADIUS servers are configured for managing subscriber access and a subscriber is logged in and then requests to logout, the subscriber may be forced into a "Terminating" state by an attacker who is able to send spoofed messages appearing to originate from trusted RADIUS server(s) destined to the device in response to the subscriber's request.

7.5
2021-10-19 CVE-2021-32663 Combodo Unspecified vulnerability in Combodo Itop 2.7.0

iTop is an open source web based IT Service Management tool.

7.5
2021-10-19 CVE-2021-37136 Netty
Quarkus
Oracle
Netapp
Debian
Resource Exhaustion vulnerability in multiple products

The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affects the allocation size used during decompression).

7.5
2021-10-19 CVE-2021-37137 Netty
Oracle
Quarkus
Netapp
Debian
Resource Exhaustion vulnerability in multiple products

The Snappy frame decoder function doesn't restrict the chunk length which may lead to excessive memory usage.

7.5
2021-10-19 CVE-2020-29622 Apple Race Condition vulnerability in Apple mac OS X

A race condition was addressed with additional validation.

7.5
2021-10-19 CVE-2021-30826 Apple Unspecified vulnerability in Apple Ipados and Iphone OS

A logic issue was addressed with improved state management.

7.5
2021-10-19 CVE-2021-30844 Apple Memory Leak vulnerability in Apple mac OS X and Macos

A logic issue was addressed with improved state management.

7.5
2021-10-19 CVE-2021-3869 Stanford XXE vulnerability in Stanford Corenlp

corenlp is vulnerable to Improper Restriction of XML External Entity Reference

7.5
2021-10-19 CVE-2021-36512 Synchro Use of Uninitialized Resource vulnerability in Synchro Bulletin Board System

An issue was discovered in function scanallsubs in src/sbbs3/scansubs.cpp in Synchronet BBS, which may allow attackers to view sensitive information due to an uninitialized value.

7.5
2021-10-19 CVE-2021-42261 Revisorlab Path Traversal vulnerability in Revisorlab Video Management System

Revisor Video Management System (VMS) before 2.0.0 has a directory traversal vulnerability.

7.5
2021-10-18 CVE-2021-36513 Signalwire Missing Initialization of Resource vulnerability in Signalwire Freeswitch

An issue was discovered in function sofia_handle_sip_i_notify in sofia.c in SignalWire freeswitch before 1.10.6, may allow attackers to view sensitive information due to an uninitialized value.

7.5
2021-10-18 CVE-2021-41990 Strongswan
Debian
Fedoraproject
Siemens
Integer Overflow or Wraparound vulnerability in multiple products

The gmp plugin in strongSwan before 5.9.4 has a remote integer overflow via a crafted certificate with an RSASSA-PSS signature.

7.5
2021-10-18 CVE-2021-41991 Strongswan
Debian
Fedoraproject
Siemens
Integer Overflow or Wraparound vulnerability in multiple products

The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different certificates to fill the cache and later trigger the replacement of cache entries.

7.5
2021-10-18 CVE-2021-38562 Bestpractical
Fedoraproject
Debian
Information Exposure Through Discrepancy vulnerability in multiple products

Best Practical Request Tracker (RT) 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm.

7.5
2021-10-18 CVE-2021-41611 Squid Cache
Fedoraproject
Improper Certificate Validation vulnerability in multiple products

An issue was discovered in Squid 5.0.6 through 5.1.x before 5.2.

7.5
2021-10-19 CVE-2021-38464 Inhandnetworks Inadequate Encryption Strength vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 have inadequate encryption strength, which may allow an attacker to intercept the communication and steal sensitive information or hijack the session.

7.4
2021-10-22 CVE-2020-23045 Macs CMS Project SQL Injection vulnerability in Macs CMS Project Macs CMS 1.1.4F

Macrob7 Macs Framework Content Management System - 1.14f was discovered to contain a SQL injection vulnerability via the 'roleId' parameter of the `editRole` and `deletUser` modules.

7.2
2021-10-22 CVE-2021-34362 Qnap Command Injection vulnerability in Qnap Media Streaming Add-On

A command injection vulnerability has been reported to affect QNAP device running Media Streaming add-on.

7.2
2021-10-21 CVE-2021-39352 Catchplugins Unspecified vulnerability in Catchplugins Catch Themes Demo Import

The Catch Themes Demo Import WordPress plugin is vulnerable to arbitrary file uploads via the import functionality found in the ~/inc/CatchThemesDemoImport.php file, in versions up to and including 1.7, due to insufficient file type validation.

7.2
2021-10-19 CVE-2021-30358 Checkpoint OS Command Injection vulnerability in Checkpoint Mobile Access Portal Agent

Mobile Access Portal Native Applications who's path is defined by the administrator with environment variables may run applications from other locations by the Mobile Access Portal Agent.

7.2
2021-10-19 CVE-2021-38484 Inhandnetworks Unrestricted Upload of File with Dangerous Type vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 do not have a filter or signature check to detect or prevent an upload of malicious files to the server, which may allow an attacker, acting as an administrator, to upload malicious files.

7.2
2021-10-18 CVE-2021-24754 Mainwp SQL Injection vulnerability in Mainwp Child Reports

The MainWP Child Reports WordPress plugin before 2.0.8 does not validate or sanitise the order parameter before using it in a SQL statement in the admin dashboard, leading to an SQL injection issue

7.2
2021-10-22 CVE-2020-23060 Tonec Out-of-bounds Write vulnerability in Tonec Internet Download Manager 6.37.11.1

Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Export/Import function.

7.1
2021-10-22 CVE-2021-38469 Auvesy Unspecified vulnerability in Auvesy Versiondog

Many of the services used by the affected product do not specify full paths for the DLLs they are loading.

7.1
2021-10-21 CVE-2021-41127 Rasa Unspecified vulnerability in Rasa

Rasa is an open source machine learning framework to automate text-and voice-based conversations.

7.1
2021-10-21 CVE-2021-42716 Nothings
Fedoraproject
Classic Buffer Overflow vulnerability in multiple products

An issue was discovered in stb stb_image.h 2.27.

7.1
2021-10-21 CVE-2021-34743 Cisco Cross-Site Request Forgery (CSRF) vulnerability in Cisco Webex Meetings

A vulnerability in the application integration feature of Cisco Webex Software could allow an unauthenticated, remote attacker to authorize an external application to integrate with and access a user's account without that user's express consent.

7.1
2021-10-20 CVE-2021-1985 Qualcomm Out-of-bounds Read vulnerability in Qualcomm products

Possible buffer over read due to lack of data length check in QVR Service configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

7.1
2021-10-20 CVE-2021-30297 Qualcomm Classic Buffer Overflow vulnerability in Qualcomm products

Possible out of bound read due to improper validation of packet length while handling data transfer in VR service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables

7.1
2021-10-20 CVE-2021-30306 Qualcomm Out-of-bounds Read vulnerability in Qualcomm products

Possible buffer over read due to improper buffer allocation for file length passed from user space in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.1

189 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2021-10-22 CVE-2021-0703 Google Use After Free vulnerability in Google Android 11.0

In SecondStageMain of init.cpp, there is a possible use after free due to incorrect shared_ptr usage.

6.8
2021-10-18 CVE-2021-42055 Asus Incorrect Default Permissions vulnerability in Asus Ux582Lr Firmware 302

ASUSTek ZenBook Pro Due 15 UX582 laptop firmware through 203 has Insecure Permissions that allow attacks by a physically proximate attacker.

6.8
2021-10-22 CVE-2020-28964 Tonec Out-of-bounds Write vulnerability in Tonec Internet Download Manager 6.37.11.1

Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Search function.

6.7
2021-10-22 CVE-2021-35230 Solarwinds Path Traversal vulnerability in Solarwinds Kiwi Cattools 3.6.0(Serviceedition)

As a result of an unquoted service path vulnerability present in the Kiwi CatTools Installation Wizard, a local attacker could gain escalated privileges by inserting an executable into the path of the affected service or uninstall entry.

6.7
2021-10-21 CVE-2021-42327 Linux
Fedoraproject
Netapp
Out-of-bounds Write vulnerability in multiple products

dp_link_settings_write in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs.c in the Linux kernel through 5.14.14 allows a heap-based buffer overflow by an attacker who can write a string to the AMD GPU display drivers debug filesystem.

6.7
2021-10-20 CVE-2021-42739 Linux
Fedoraproject
Debian
Starwindsoftware
Oracle
Out-of-bounds Write vulnerability in multiple products

The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking.

6.7
2021-10-22 CVE-2020-36488 SKY File Project Path Traversal vulnerability in SKY File Project SKY File 2.1.0

An issue in the FTP server of Sky File v2.1.0 allows attackers to perform directory traversal via `/null//` path commands.

6.5
2021-10-22 CVE-2021-42536 Emerson Exposure of Resource to Wrong Sphere vulnerability in Emerson products

The affected product is vulnerable to a disclosure of peer username and password by allowing all users access to read global variables.

6.5
2021-10-22 CVE-2021-38455 Auvesy Unspecified vulnerability in Auvesy Versiondog

The affected product’s OS Service does not verify any given parameter.

6.5
2021-10-22 CVE-2021-38465 Auvesy Allocation of Resources Without Limits or Throttling vulnerability in Auvesy Versiondog

The webinstaller is a Golang web server executable that enables the generation of an Auvesy image agent.

6.5
2021-10-21 CVE-2021-41168 Reddit Algorithmic Complexity vulnerability in Reddit Snudown

Snudown is a reddit-specific fork of the Sundown Markdown parser used by GitHub, with Python integration added.

6.5
2021-10-21 CVE-2021-28496 Arista Insufficiently Protected Credentials vulnerability in Arista EOS

On systems running Arista EOS and CloudEOS with the affected release version, when using shared secret profiles the password configured for use by BiDirectional Forwarding Detection (BFD) will be leaked when displaying output over eAPI or other JSON outputs to other authenticated users on the device.

6.5
2021-10-21 CVE-2021-35512 Zohocorp Server-Side Request Forgery (SSRF) vulnerability in Zohocorp Manageengine Applications Manager 15.2

An SSRF issue was discovered in Zoho ManageEngine Applications Manager build 15200.

6.5
2021-10-21 CVE-2021-39126 Atlassian Cross-Site Request Forgery (CSRF) vulnerability in Atlassian Jira Data Center and Jira Server

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to modify various resources via a Cross-Site Request Forgery (CSRF) vulnerability, following an Information Disclosure vulnerability in the referrer headers which discloses a user's CSRF token.

6.5
2021-10-21 CVE-2021-40123 Cisco Incorrect Default Permissions vulnerability in Cisco Identity Services Engine

A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative read-only privileges to download files that should be restricted.

6.5
2021-10-20 CVE-2021-35609 Oracle Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.57/8.58/8.59

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: SQR).

6.5
2021-10-20 CVE-2021-35553 Oracle Unspecified vulnerability in Oracle Peoplesoft Enterprise CS Student Records 9.2

Vulnerability in the PeopleSoft Enterprise CS Student Records product of Oracle PeopleSoft (component: Class Search).

6.5
2021-10-20 CVE-2021-35582 Oracle Unspecified vulnerability in Oracle Applications Manager

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: View Reports).

6.5
2021-10-19 CVE-2021-41150 Amazon Path Traversal vulnerability in Amazon Tough

Tough provides a set of Rust libraries and tools for using and generating the update framework (TUF) repositories.

6.5
2021-10-19 CVE-2021-0297 Juniper Improper Handling of Exceptional Conditions vulnerability in Juniper Junos OS Evolved 20.3/20.4/21.1

A vulnerability in the processing of TCP MD5 authentication in Juniper Networks Junos OS Evolved may allow a BGP or LDP session configured with MD5 authentication to succeed, even if the peer does not have TCP MD5 authentication enabled.

6.5
2021-10-19 CVE-2021-31370 Juniper Unspecified vulnerability in Juniper Junos

An Incomplete List of Disallowed Inputs vulnerability in Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on QFX5000 Series and EX4600 Series allows an adjacent unauthenticated attacker which sends a high rate of specific multicast traffic to cause control traffic received from the network to be dropped.

6.5
2021-10-19 CVE-2021-3746 Libtpms Project
Fedoraproject
Redhat
A flaw was found in the libtpms code that may cause access beyond the boundary of internal buffers.
6.5
2021-10-19 CVE-2021-20836 Omron Out-of-bounds Read vulnerability in Omron Cx-Supervisor 4.0.0.13/4.0.0.16

Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening a specially crafted SCS project files.

6.5
2021-10-18 CVE-2021-24595 WP Cookie Choice Project Unspecified vulnerability in WP Cookie Choice Project WP Cookie Choice 1.1.0

The Wp Cookie Choice WordPress plugin through 1.1.0 is lacking any CSRF check when saving its options, and do not escape them when outputting them in attributes.

6.5
2021-10-18 CVE-2021-24642 Scroll Banner Project Unspecified vulnerability in Scroll Banner Project Scroll Banner 1.0

The Scroll Baner WordPress plugin through 1.0 does not have CSRF check in place when saving its settings, nor perform any sanitisation, escaping or validation on them.

6.5
2021-10-18 CVE-2021-24675 Onedesigns Unspecified vulnerability in Onedesigns ONE User Avatar

The One User Avatar WordPress plugin before 2.3.7 does not check for CSRF when updating the Avatar in page where the [avatar_upload] shortcode is embed.

6.5
2021-10-18 CVE-2021-24735 Tipsandtricks HQ Unspecified vulnerability in Tipsandtricks-Hq Compact WP Audio Player

The Compact WP Audio Player WordPress plugin before 1.9.7 does not implement nonce checks, which could allow attackers to make a logged in admin change the "Disable Simultaneous Play" setting via a CSRF attack.

6.5
2021-10-21 CVE-2021-35225 Solarwinds Unspecified vulnerability in Solarwinds Network Performance Monitor

Each authenticated Orion Platform user in a MSP (Managed Service Provider) environment can view and browse all NetPath Services from all that MSP's customers.

6.4
2021-10-20 CVE-2021-35590 Oracle
Netapp
Out-of-bounds Write vulnerability in multiple products

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General).

6.3
2021-10-20 CVE-2021-35592 Oracle
Netapp
Improper Validation of Array Index vulnerability in multiple products

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General).

6.3
2021-10-20 CVE-2021-35593 Oracle
Netapp
Out-of-bounds Write vulnerability in multiple products

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General).

6.3
2021-10-20 CVE-2021-35594 Oracle
Netapp
Improper Validation of Array Index vulnerability in multiple products

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General).

6.3
2021-10-20 CVE-2021-35598 Oracle
Netapp
Improper Validation of Array Index vulnerability in multiple products

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General).

6.3
2021-10-22 CVE-2020-23041 Dropouts Cross-site Scripting vulnerability in Dropouts AIR Share 1.2

Dropouts Technologies LLP Air Share v1.2 was discovered to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` exception-handling.

6.1
2021-10-22 CVE-2020-23042 Dropouts Cross-site Scripting vulnerability in Dropouts Super Backup 2.0.5

Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` module.

6.1
2021-10-22 CVE-2020-23046 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component tpl.php via the `filename`, `mid`, `userid`, and `templet' parameters.

6.1
2021-10-22 CVE-2020-23047 Macs CMS Project Cross-site Scripting vulnerability in Macs CMS Project Macs CMS 1.1.4F

Macrob7 Macs Framework Content Management System - 1.14f was discovered to contain a cross-site scripting (XSS) vulnerability in the search input field of the search module.

6.1
2021-10-22 CVE-2020-23048 Seeddms Cross-site Scripting vulnerability in Seeddms

SeedDMS Content Management System v6.0.7 contains a persistent cross-site scripting (XSS) vulnerability in the component AddEvent.php via the name and comment parameters.

6.1
2021-10-22 CVE-2020-23051 User Registration Login AND User Management System With Admin Panel Project Cross-site Scripting vulnerability in User Registration & Login and User Management System With Admin Panel Project User Registration & Login and User Management System With Admin Panel 2.0

Phpgurukul User Registration & User Management System v2.0 was discovered to contain multiple stored cross-site scripting (XSS) vulnerabilities via the firstname and lastname parameters of the registration form & loginsystem input fields.

6.1
2021-10-22 CVE-2020-23054 User Agent Switcher AND Manager Project Cross-site Scripting vulnerability in User-Agent Switcher and Manager Project User-Agent Switcher and Manager 0.3.5

A cross-site scripting (XSS) vulnerability in NSK User Agent String Switcher Service v0.3.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the user agent input field.

6.1
2021-10-22 CVE-2020-36486 Swiftfiletransfer Cross-site Scripting vulnerability in Swiftfiletransfer Swift File Transfer 1.1.2

Swift File Transfer Mobile v1.1.2 and below was discovered to contain a cross-site scripting (XSS) vulnerability via the 'path' parameter of the 'list' and 'download' exception-handling.

6.1
2021-10-22 CVE-2020-36494 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component mychannel_edit.php via the `filename`, `mid`, `userid`, and `templet' parameters.

6.1
2021-10-22 CVE-2020-36495 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component file_manage_view.php via the `filename`, `mid`, `userid`, and `templet' parameters.

6.1
2021-10-22 CVE-2020-36496 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component sys_admin_user_edit.php via the `filename`, `mid`, `userid`, and `templet' parameters.

6.1
2021-10-22 CVE-2020-36497 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component makehtml_homepage.php via the `filename`, `mid`, `userid`, and `templet' parameters.

6.1
2021-10-22 CVE-2020-36502 Swiftfiletransfer Cross-site Scripting vulnerability in Swiftfiletransfer Swift File Transfer 1.1.2

Swift File Transfer Mobile v1.1.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the devicename parameter which allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered as the device name itself.

6.1
2021-10-22 CVE-2021-29835 IBM Cross-site Scripting vulnerability in IBM Business Automation Workflow

IBM Business Automation Workflow 18.0, 19.0, 20.0, and 21.0 is vulnerable to cross-site scripting.

6.1
2021-10-22 CVE-2021-42534 Trane Unspecified vulnerability in Trane Tracer SC Firmware

The affected product’s web application does not properly neutralize the input during webpage generation, which could allow an attacker to inject code in the input forms.

6.1
2021-10-22 CVE-2021-31682 Automatedlogic Cross-site Scripting vulnerability in Automatedlogic Webctrl

The login portal for the Automated Logic WebCTRL/WebCTRL OEM web application contains a vulnerability that allows for reflected XSS attacks due to the operatorlocale GET parameter not being sanitized.

6.1
2021-10-22 CVE-2021-41747 Csdn Cross-site Scripting vulnerability in Csdn APP 4.10.0

Cross-Site Scripting (XSS) vulnerability exists in Csdn APP 4.10.0, which can be exploited by attackers to obtain sensitive information such as user cookies.

6.1
2021-10-21 CVE-2021-36869 Ivorysearch Cross-site Scripting vulnerability in Ivorysearch Ivory Search

Reflected Cross-Site Scripting (XSS) vulnerability in WordPress Ivory Search plugin (versions <= 4.6.6).

6.1
2021-10-21 CVE-2021-28975 Wpmailster Cross-site Scripting vulnerability in Wpmailster WP Mailster 1.6.18

WP Mailster 1.6.18.0 allows XSS when a victim opens a mail server's details in the mst_servers page, for a crafted server_host, server_name, or connection_parameter parameter.

6.1
2021-10-21 CVE-2021-34738 Cisco Cross-site Scripting vulnerability in Cisco Identity Services Engine

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an attacker to conduct a cross-site scripting (XSS) attack against a user of the interface.

6.1
2021-10-20 CVE-2021-38896 IBM Cross-site Scripting vulnerability in IBM Qradar Advisor 2.5.0/2.5.1/2.6.1

IBM QRadar Advisor 2.5 through 2.6.1 is vulnerable to cross-site scripting.

6.1
2021-10-20 CVE-2021-21746 ZTE Cross-site Scripting vulnerability in ZTE Mf971R Firmware

ZTE MF971R product has reflective XSS vulnerability.

6.1
2021-10-20 CVE-2021-21747 ZTE Cross-site Scripting vulnerability in ZTE Mf971R Firmware

ZTE MF971R product has reflective XSS vulnerability.

6.1
2021-10-20 CVE-2021-25969 Tuzitio Cross-site Scripting vulnerability in Tuzitio Camaleon CMS

In Camaleon CMS application, versions 0.0.1 to 2.6.0 are vulnerable to stored XSS, that allows an unauthenticated attacker to store malicious scripts in the comments section of the post.

6.1
2021-10-20 CVE-2021-35595 Oracle Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.57/8.58/8.59

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Business Interlink).

6.1
2021-10-20 CVE-2021-35568 Oracle Unspecified vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.57/8.58/8.59

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Rich Text Editor).

6.1
2021-10-20 CVE-2021-35580 Oracle Unspecified vulnerability in Oracle Applications Manager

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: View Reports).

6.1
2021-10-19 CVE-2021-35323 Bludit Cross-site Scripting vulnerability in Bludit 3.13.1

Cross Site Scripting (XSS) vulnerability exists in bludit 3-13-1 via the username in admin/login.

6.1
2021-10-19 CVE-2021-33988 Microweber Cross-site Scripting vulnerability in Microweber 1.2.7

Cross Site Scripting (XSS).

6.1
2021-10-19 CVE-2021-26589 HPE Incorrect Permission Assignment for Critical Resource vulnerability in HPE products

A potential security vulnerability has been identified in HPE Superdome Flex Servers.

6.1
2021-10-19 CVE-2011-1497 Rubyonrails Unspecified vulnerability in Rubyonrails Rails

A cross-site scripting vulnerability flaw was found in the auto_link function in Rails before version 3.0.6.

6.1
2021-10-19 CVE-2021-38466 Inhandnetworks Unspecified vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 do not perform sufficient input validation on client requests from the help page.

6.1
2021-10-19 CVE-2021-3863 Snipeitapp Cross-site Scripting vulnerability in Snipeitapp Snipe-It

snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

6.1
2021-10-18 CVE-2021-42650 Portainer Cross-site Scripting vulnerability in Portainer

Cross Site Scripting (XSS vulnerability exists in Portainer before 2.9.1 via the node input box in Custom Templates.

6.1
2021-10-18 CVE-2021-24617 Gamepress Project Unspecified vulnerability in Gamepress Project Gamepress

The GamePress WordPress plugin through 1.1.0 does not escape the op_edit POST parameter before outputting it back in multiple Game Option pages, leading to Reflected Cross-Site Scripting issues

6.1
2021-10-18 CVE-2020-8291 Rocket Chat Cross-site Scripting vulnerability in Rocket.Chat

A link preview rendering issue in Rocket.Chat versions before 3.9 could lead to potential XSS attacks.

6.1
2021-10-18 CVE-2021-22942 Rubyonrails Open Redirect vulnerability in Rubyonrails Rails

A possible open redirect vulnerability in the Host Authorization middleware in Action Pack >= 6.0.0 that could allow attackers to redirect users to a malicious website.

6.1
2021-10-18 CVE-2021-42565 Myfactory Cross-site Scripting vulnerability in Myfactory FMS 7.1911

myfactory.FMS before 7.1-912 allows XSS via the UID parameter.

6.1
2021-10-18 CVE-2021-42566 Myfactory Cross-site Scripting vulnerability in Myfactory FMS 7.1911

myfactory.FMS before 7.1-912 allows XSS via the Error parameter.

6.1
2021-10-20 CVE-2021-35589 Oracle Unspecified vulnerability in Oracle Solaris 11

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Device drivers).

6.0
2021-10-22 CVE-2020-23036 Medianavi Insufficiently Protected Credentials vulnerability in Medianavi Smacom 1.2

MEDIA NAVI Inc SMACom v1.2 was discovered to contain an insecure session validation vulnerability in the session handling of the `password` authentication parameter of the wifi photo transfer module.

5.9
2021-10-19 CVE-2021-31386 Juniper Unspecified vulnerability in Juniper Junos

A Protection Mechanism Failure vulnerability in the J-Web HTTP service of Juniper Networks Junos OS allows a remote unauthenticated attacker to perform Person-in-the-Middle (PitM) attacks against the device.

5.9
2021-10-22 CVE-2021-38451 Auvesy Unspecified vulnerability in Auvesy Versiondog

The affected product’s proprietary protocol CSC allows for calling numerous function codes.

5.7
2021-10-20 CVE-2021-35601 Oracle Unspecified vulnerability in Oracle Peoplesoft Enterprise CS SA Integration Pack 9.0/9.2

Vulnerability in the PeopleSoft Enterprise CS SA Integration Pack product of Oracle PeopleSoft (component: Students Administration).

5.7
2021-10-20 CVE-2021-35606 Oracle Unspecified vulnerability in Oracle Peoplesoft Enterprise CS Campus Community 9.0/9.2

Vulnerability in the PeopleSoft Enterprise CS Campus Community product of Oracle PeopleSoft (component: Notification Framework).

5.7
2021-10-18 CVE-2021-24752 Catchplugins Cross-Site Request Forgery (CSRF) vulnerability in Catchplugins products

Multiple Plugins from the CatchThemes vendor do not perform capability and CSRF checks in the ctp_switch AJAX action, which could allow any authenticated users, such as Subscriber to change the Essential Widgets WordPress plugin before 1.9, To Top WordPress plugin before 2.3, Header Enhancement WordPress plugin before 1.5, Generate Child Theme WordPress plugin before 1.6, Essential Content Types WordPress plugin before 1.9, Catch Web Tools WordPress plugin before 2.7, Catch Under Construction WordPress plugin before 1.4, Catch Themes Demo Import WordPress plugin before 1.6, Catch Sticky Menu WordPress plugin before 1.7, Catch Scroll Progress Bar WordPress plugin before 1.6, Social Gallery and Widget WordPress plugin before 2.3, Catch Infinite Scroll WordPress plugin before 1.9, Catch Import Export WordPress plugin before 1.9, Catch Gallery WordPress plugin before 1.7, Catch Duplicate Switcher WordPress plugin before 1.6, Catch Breadcrumb WordPress plugin before 1.7, Catch IDs WordPress plugin before 2.4's configurations.

5.7
2021-10-22 CVE-2021-42556 Rasa Path Traversal vulnerability in Rasa X

Rasa X before 0.42.4 allows Directory Traversal during archive extraction.

5.5
2021-10-22 CVE-2021-0643 Google Missing Authorization vulnerability in Google Android 10.0/11.0/12.0

In getAllSubInfoList of SubscriptionController.java, there is a possible way to retrieve a long term identifier without the correct permissions due to a missing permission check.

5.5
2021-10-22 CVE-2021-0651 Google Improper Input Validation vulnerability in Google Android 10.0/11.0/9.0

In loadLabel of PackageItemInfo.java, there is a possible way to DoS a device by having a long label in an app due to incorrect input validation.

5.5
2021-10-22 CVE-2021-0702 Google Unspecified vulnerability in Google Android 11.0

In RevertActiveSessions of apexd.cpp, there is a possible way to share the wrong file due to an unintentional MediaStore downgrade.

5.5
2021-10-22 CVE-2021-0706 Google Missing Authorization vulnerability in Google Android 10.0/11.0

In startListening of PluginManagerImpl.java, there is a possible way to disable arbitrary app components due to a missing permission check.

5.5
2021-10-21 CVE-2021-42715 Nothings
Fedoraproject
Debian
Infinite Loop vulnerability in multiple products

An issue was discovered in stb stb_image.h 1.33 through 2.27.

5.5
2021-10-20 CVE-2021-35604 Oracle
Netapp
Fedoraproject
Mariadb
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
5.5
2021-10-20 CVE-2021-35612 Oracle
Netapp
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
5.5
2021-10-20 CVE-2021-35551 Oracle Unspecified vulnerability in Oracle Database 12.2.0.1/19C/21C

Vulnerability in the RDBMS Security component of Oracle Database Server.

5.5
2021-10-20 CVE-2021-1968 Qualcomm Improper Input Validation vulnerability in Qualcomm products

Improper validation of kernel buffer address while copying information back to user buffer can lead to kernel memory information exposure to user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

5.5
2021-10-20 CVE-2021-1969 Qualcomm Improper Input Validation vulnerability in Qualcomm products

Improper validation of kernel buffer address while copying information back to user buffer can lead to kernel memory information exposure to user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

5.5
2021-10-19 CVE-2021-27001 Netapp Unspecified vulnerability in Netapp Clustered Data Ontap

Clustered Data ONTAP versions 9.x prior to 9.5P18, 9.6P16, 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to a vulnerability which could allow an authenticated privileged local attacker to arbitrarily modify Compliance-mode WORM data prior to the end of the retention period.

5.5
2021-10-19 CVE-2021-30811 Apple Unspecified vulnerability in Apple products

This issue was addressed with improved checks.

5.5
2021-10-19 CVE-2021-30819 Apple Out-of-bounds Read vulnerability in Apple Ipados and Macos

An out-of-bounds read was addressed with improved input validation.

5.5
2021-10-19 CVE-2021-30828 Apple Unspecified vulnerability in Apple mac OS X and Macos

This issue was addressed with improved checks.

5.5
2021-10-19 CVE-2021-30845 Apple Out-of-bounds Read vulnerability in Apple Macos

An out-of-bounds read was addressed with improved bounds checking.

5.5
2021-10-19 CVE-2021-30850 Apple Unspecified vulnerability in Apple mac OS X and Tvos

An access issue was addressed with improved access restrictions.

5.5
2021-10-18 CVE-2010-2496 Clusterlabs Improper Authentication vulnerability in Clusterlabs Cluster Glue and Pacemaker

stonith-ng in pacemaker and cluster-glue passed passwords as commandline parameters, making it possible for local attackers to gain access to passwords of the HA stack and potentially influence its operations.

5.5
2021-10-22 CVE-2020-23039 Newsoftwares Cross-site Scripting vulnerability in Newsoftwares Folder Lock 3.4.5

Folder Lock v3.4.5 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the Create Folder function under the 'create' module.

5.4
2021-10-22 CVE-2020-23044 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component file_pic_view.php via the `activepath`, `keyword`, `tag`, `fmdo=x&filename`, `CKEditor` and `CKEditorFuncNum` parameters.

5.4
2021-10-22 CVE-2020-23049 Fork CMS Cross-site Scripting vulnerability in Fork-Cms Fork CMS 5.8.0

Fork CMS Content Management System v5.8.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the `Displayname` field when using the `Add`, `Edit` or `Register' functions.

5.4
2021-10-22 CVE-2020-23052 Catalyst Cross-site Scripting vulnerability in Catalyst Mahara 19.10.2

Catalyst IT Ltd Mahara CMS v19.10.2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component groupfiles.php via the Number (Nombre) and Description (Descripción) parameters.

5.4
2021-10-22 CVE-2020-23055 Lancom Systems Cross-site Scripting vulnerability in Lancom-Systems Lcos 10.12/10.20/10.32

ANCOM WLAN Controller (Wireless Series & Hotspot) WLC-1000 & WLC-4006 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the /authen/start/ module via the userid and password parameters.

5.4
2021-10-22 CVE-2020-28955 Sugarcrm Cross-site Scripting vulnerability in Sugarcrm 6.5.18

SugarCRM v6.5.18 was discovered to contain a cross-site scripting (XSS) vulnerability in the Create Employee module.

5.4
2021-10-22 CVE-2020-28956 Sugarcrm Cross-site Scripting vulnerability in Sugarcrm 6.5.18

Multiple cross-site scripting (XSS) vulnerabilities in the Sales module of SugarCRM v6.5.18 allows attackers to execute arbitrary web scripts or HTML via crafted payloads entered into the primary address state or alternate address state input fields.

5.4
2021-10-22 CVE-2020-28957 Froxlor Cross-site Scripting vulnerability in Froxlor 0.10.16

Multiple cross-site scripting (XSS) vulnerabilities in the Customer Add module of Foxlor v0.10.16 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the name, firstname, or username input fields.

5.4
2021-10-22 CVE-2020-28961 Perfexcrm Cross-site Scripting vulnerability in Perfexcrm Perfex CRM 2.4.4

Perfex CRM v2.4.4 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the component ./clients/client via the company name parameter.

5.4
2021-10-22 CVE-2020-28968 Draytek Cross-site Scripting vulnerability in Draytek products

Draytek VigorAP 1000C contains a stored cross-site scripting (XSS) vulnerability in the RADIUS Setting - RADIUS Server Configuration module.

5.4
2021-10-22 CVE-2020-36489 Dropouts Cross-site Scripting vulnerability in Dropouts AIR Share 1.2

Dropouts Technologies LLP Air Share v1.2 was discovered to contain a cross-site scripting (XSS) vulnerability in the devicename parameter.

5.4
2021-10-22 CVE-2020-36490 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component file_manage_view.php via the `activepath`, `keyword`, `tag`, `fmdo=x&filename`, `CKEditor` and `CKEditorFuncNum` parameters.

5.4
2021-10-22 CVE-2020-36491 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component tags_main.php via the `activepath`, `keyword`, `tag`, `fmdo=x&filename`, `CKEditor` and `CKEditorFuncNum` parameters.

5.4
2021-10-22 CVE-2020-36492 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component select_media.php via the `activepath`, `keyword`, `tag`, `fmdo=x&filename`, `CKEditor` and `CKEditorFuncNum` parameters.

5.4
2021-10-22 CVE-2020-36493 Dedecms Cross-site Scripting vulnerability in Dedecms 7.5

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component media_main.php via the `activepath`, `keyword`, `tag`, `fmdo=x&filename`, `CKEditor` and `CKEditorFuncNum` parameters.

5.4
2021-10-22 CVE-2020-36498 Macrob7 Macs Framework Content Management System Project Cross-site Scripting vulnerability in Macrob7 Macs Framework Content Management System Project Macrob7 Macs Framework Content Management System 1.14F

Macrob7 Macs Framework Content Management System - 1.14f contains a cross-site scripting (XSS) vulnerability in the account reset function, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the e-mail input field.

5.4
2021-10-22 CVE-2020-36499 Taotesting Cross-site Scripting vulnerability in Taotesting TAO Assessment Platform 3.3.0

TAO Open Source Assessment Platform v3.3.0 RC02 was discovered to contain a cross-site scripting (XSS) vulnerability in the content parameter of the Rubric Block (Add) module.

5.4
2021-10-22 CVE-2020-36501 Sugarcrm Cross-site Scripting vulnerability in Sugarcrm 6.5.18

Multiple cross-site scripting (XSS) vulnerabilities in the Support module of SugarCRM v6.5.18 allows attackers to execute arbitrary web scripts or HTML via crafted payloads entered into the primary address state or alternate address state input fields.

5.4
2021-10-22 CVE-2021-31834 Mcafee Cross-site Scripting vulnerability in Mcafee Epolicy Orchestrator

Stored Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to inject arbitrary web script or HTML via multiple parameters where the administrator's entries were not correctly sanitized.

5.4
2021-10-21 CVE-2021-27746 Hcltechsw Cross-site Scripting vulnerability in Hcltechsw Connections 6.0

"HCL Connections Security Update for Reflected Cross-Site Scripting (XSS) Vulnerability"

5.4
2021-10-21 CVE-2021-41791 Alfresco Cross-site Scripting vulnerability in Alfresco Community Share

An issue was discovered in Hyland org.alfresco:share through 7.0.0.2 and org.alfresco:community-share through 7.0.

5.4
2021-10-20 CVE-2021-35616 Oracle Unspecified vulnerability in Oracle Transportation Management 6.4.3

Vulnerability in the Oracle Transportation Management product of Oracle Supply Chain (component: UI Infrastructure).

5.4
2021-10-20 CVE-2021-35571 Oracle Unspecified vulnerability in Oracle Peoplesoft Enterprise CS Academic Advisement 9.2

Vulnerability in the PeopleSoft Enterprise CS Academic Advisement product of Oracle PeopleSoft (component: Advising Notes).

5.4
2021-10-19 CVE-2021-31355 Juniper Cross-site Scripting vulnerability in Juniper Junos

A persistent cross-site scripting (XSS) vulnerability in the captive portal graphical user interface of Juniper Networks Junos OS may allow a remote authenticated user to inject web script or HTML and steal sensitive data and credentials from a web administration session, possibly tricking a follow-on administrative user to perform administrative actions on the device.

5.4
2021-10-19 CVE-2021-31373 Juniper Cross-site Scripting vulnerability in Juniper Junos

A persistent Cross-Site Scripting (XSS) vulnerability in Juniper Networks Junos OS on SRX Series, J-Web interface may allow a remote authenticated user to inject persistent and malicious scripts.

5.4
2021-10-19 CVE-2021-29912 IBM Cross-site Scripting vulnerability in IBM Security Risk Manager on Cp4S 1.7.0.0

IBM Security Risk Manager on CP4S 1.7.0.0 is vulnerable to cross-site scripting.

5.4
2021-10-19 CVE-2021-36832 Icegram Cross-site Scripting vulnerability in Icegram Engage

WordPress Popups, Welcome Bar, Optins and Lead Generation Plugin – Icegram (versions <= 2.0.2) vulnerable at "Headline" (&message_data[16][headline]) input.

5.4
2021-10-19 CVE-2021-3851 Firefly III Open Redirect vulnerability in Firefly-Iii Firefly III

firefly-iii is vulnerable to URL Redirection to Untrusted Site

5.4
2021-10-19 CVE-2021-3879 Snipeitapp Cross-site Scripting vulnerability in Snipeitapp Snipe-It

snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

5.4
2021-10-19 CVE-2021-25968 Alkacon Cross-site Scripting vulnerability in Alkacon Opencms

In “OpenCMS”, versions 10.5.0 to 11.0.2 are affected by a stored XSS vulnerability that allows low privileged application users to store malicious scripts in the Sitemap functionality.

5.4
2021-10-18 CVE-2021-41156 Timetracker Project Cross-site Scripting vulnerability in Timetracker Project Timetracker

anuko/timetracker is an, open source time tracking system.

5.4
2021-10-18 CVE-2021-29878 IBM Cross-site Scripting vulnerability in IBM Business Automation Workflow

IBM Business Automation Workflow 18.0, 19.0, 20.0, and 21.0 is vulnerable to cross-site scripting.

5.4
2021-10-18 CVE-2021-32609 Apache Cross-site Scripting vulnerability in Apache Superset

Apache Superset up to and including 1.1 does not sanitize titles correctly on the Explore page.

5.4
2021-10-18 CVE-2021-24412 Bplugins Unspecified vulnerability in Bplugins Html5 Audio Player

The Html5 Audio Player – Audio Player for WordPress plugin before 2.1.3 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode

5.4
2021-10-18 CVE-2021-24413 Bplugins Unspecified vulnerability in Bplugins Easy Twitter Feed 1.0/1.1

The Easy Twitter Feed WordPress plugin before 1.2 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode

5.4
2021-10-18 CVE-2021-24415 Bplugins Unspecified vulnerability in Bplugins Polo Video Gallery 1.0/1.1/1.2

The Polo Video Gallery – Best wordpress video gallery plugin WordPress plugin through 1.2 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode

5.4
2021-10-18 CVE-2021-24416 Bplugins Unspecified vulnerability in Bplugins Streamcast Radio Player 1.0/1.1/2.0.0

The StreamCast – Radio Player for WordPress plugin before 2.1.1 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode

5.4
2021-10-18 CVE-2021-24615 Wechat Reward Project Unspecified vulnerability in Wechat Reward Project Wechat Reward 1.7

The Wechat Reward WordPress plugin through 1.7 does not sanitise or escape its QR settings, nor has any CSRF check in place, allowing attackers to make a logged in admin change the settings and perform Cross-Site Scripting attacks.

5.4
2021-10-18 CVE-2021-24672 Onedesigns Unspecified vulnerability in Onedesigns ONE User Avatar

The One User Avatar WordPress plugin before 2.3.7 does not escape the link and target attributes of its shortcode, allowing users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks

5.4
2021-10-18 CVE-2021-24732 Dearhive Cross-site Scripting vulnerability in Dearhive Dearflip

The PDF Flipbook, 3D Flipbook WordPress – DearFlip WordPress plugin before 1.7.10 does not escape the class attribute of its shortcode before outputting it back in an attribute, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks

5.4
2021-10-18 CVE-2021-24734 Tipsandtricks HQ Unspecified vulnerability in Tipsandtricks-Hq Compact WP Audio Player

The Compact WP Audio Player WordPress plugin before 1.9.7 does not escape some of its shortcodes attributes, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks.

5.4
2021-10-18 CVE-2021-24743 Secondlinethemes Unspecified vulnerability in Secondlinethemes Podcast Subscribe Buttons

The Podcast Subscribe Buttons WordPress plugin before 1.4.2 allows users with any role capable of editing or adding posts to perform stored XSS.

5.4
2021-10-18 CVE-2021-24760 PDF Viewer Block FOR Gutenberg Project Cross-site Scripting vulnerability in PDF Viewer Block for Gutenberg Project PDF Viewer Block for Gutenberg

The Gutenberg PDF Viewer Block WordPress plugin before 1.0.1 does not sanitise and escape its block, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks.

5.4
2021-10-21 CVE-2021-41792 Alfresco Server-Side Request Forgery (SSRF) vulnerability in Alfresco products

An issue was discovered in Hyland org.alfresco:alfresco-content-services through 6.2.2.18 and org.alfresco:alfresco-transform-services through 1.3.

5.3
2021-10-21 CVE-2021-39127 Atlassian Unspecified vulnerability in Atlassian products

Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to the query component JQL endpoint via a Broken Access Control vulnerability (BAC) vulnerability.

5.3
2021-10-20 CVE-2021-42762 Webkitgtk
Wpewebkit
Fedoraproject
Debian
BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace.
5.3
2021-10-20 CVE-2021-35552 Oracle Unspecified vulnerability in Oracle Weblogic Server 12.2.1.3.0/12.2.1.4.0/14.1.1.0.0

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Diagnostics).

5.3
2021-10-20 CVE-2021-35554 Oracle Unspecified vulnerability in Oracle Trade Management

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite (component: Quotes).

5.3
2021-10-19 CVE-2021-31375 Juniper Unspecified vulnerability in Juniper Junos

An Improper Input Validation vulnerability in routing process daemon (RPD) of Juniper Networks Junos OS devices configured with BGP origin validation using Resource Public Key Infrastructure (RPKI), allows an attacker to send a specific BGP update which may cause RPKI policy-checks to be bypassed.

5.3
2021-10-19 CVE-2021-38476 Inhandnetworks Information Exposure Through Discrepancy vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 authentication process response indicates and validates the existence of a username.

5.3
2021-10-18 CVE-2021-24677 Find MY Blocks Project Unspecified vulnerability in Find MY Blocks Project Find MY Blocks

The Find My Blocks WordPress plugin before 3.4.0 does not have authorisation checks in its REST API, which could allow unauthenticated users to enumerate private posts' titles.

5.3
2021-10-20 CVE-2021-25972 Tuzitio Server-Side Request Forgery (SSRF) vulnerability in Tuzitio Camaleon CMS

In Camaleon CMS, versions 2.1.2.0 to 2.6.0, are vulnerable to Server-Side Request Forgery (SSRF) in the media upload feature, which allows admin users to fetch media files from external URLs but fails to validate URLs referencing to localhost or other internal servers.

4.9
2021-10-20 CVE-2021-35569 Oracle Unspecified vulnerability in Oracle Applications Manager

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: Diagnostics).

4.9
2021-10-19 CVE-2021-38911 IBM Cleartext Storage of Sensitive Information vulnerability in IBM Security Risk Manager on Cp4S 1.7.2.0

IBM Security Risk Manager on CP4S 1.7.0.0 stores user credentials in plain clear text which can be read by a an authenticatedl privileged user.

4.9
2021-10-18 CVE-2021-41151 Linuxfoundation Path Traversal vulnerability in Linuxfoundation Backstage

Backstage is an open platform for building developer portals.

4.9
2021-10-22 CVE-2021-31835 Mcafee Cross-site Scripting vulnerability in Mcafee Epolicy Orchestrator

Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to inject arbitrary web script or HTML via a specific parameter where the administrator's entries were not correctly sanitized.

4.8
2021-10-21 CVE-2021-41169 Sulu Unspecified vulnerability in Sulu

Sulu is an open-source PHP content management system based on the Symfony framework.

4.8
2021-10-21 CVE-2021-39328 Presstigers Unspecified vulnerability in Presstigers Simple JOB Board

The Simple Job Board WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping on the $job_board_privacy_policy_label variable echo'd out via the ~/admin/settings/class-simple-job-board-settings-privacy.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 2.9.4.

4.8
2021-10-21 CVE-2021-39348 Thimpress Cross-site Scripting vulnerability in Thimpress Learnpress

The LearnPress WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping on the $custom_profile parameter found in the ~/inc/admin/views/backend-user-profile.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 4.1.3.1.

4.8
2021-10-21 CVE-2021-39354 Sandhillsdev Unspecified vulnerability in Sandhillsdev Easy Digital Downloads

The Easy Digital Downloads WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the $start_date and $end_date parameters found in the ~/includes/admin/payments/class-payments-table.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.11.2.

4.8
2021-10-21 CVE-2021-39356 Content Staging Project Unspecified vulnerability in Content Staging Project Content Staging

The Content Staging WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and escaping via several parameters that are echo'd out via the ~/templates/settings.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 2.0.1.

4.8
2021-10-21 CVE-2021-39357 Zeen101 Unspecified vulnerability in Zeen101 Leaky Paywall

The Leaky Paywall WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via the ~/class.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 4.16.5.

4.8
2021-10-21 CVE-2021-34760 Cisco Cross-site Scripting vulnerability in Cisco Telepresence Management Suite

A vulnerability in the web-based management interface of Cisco TelePresence Management Suite (TMS) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface.

4.8
2021-10-21 CVE-2021-34789 Cisco Cross-site Scripting vulnerability in Cisco Tetration

A vulnerability in the web-based management interface of Cisco Tetration could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack on an affected system.

4.8
2021-10-21 CVE-2021-40121 Cisco Cross-site Scripting vulnerability in Cisco Identity Services Engine

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an attacker to conduct a cross-site scripting (XSS) attack against a user of the interface.

4.8
2021-10-19 CVE-2021-32664 Combodo Unspecified vulnerability in Combodo Itop 2.7.0

Combodo iTop is an open source web based IT Service Management tool.

4.8
2021-10-19 CVE-2021-39329 Ultimatemember Unspecified vulnerability in Ultimatemember Jobboardwp

The JobBoardWP WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the ~/includes/admin/class-metabox.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 1.0.7.

4.8
2021-10-19 CVE-2021-39343 MPL Publisher Project Unspecified vulnerability in Mpl-Publisher Project Mpl-Publisher 1.30.2

The MPL-Publisher WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the ~/libs/PublisherController.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 1.30.2.

4.8
2021-10-19 CVE-2021-39355 Indeed JOB Importer Project Unspecified vulnerability in Indeed-Job-Importer Project Indeed-Job-Importer

The Indeed Job Importer WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via several parameters found in the ~/indeed-job-importer/trunk/indeed-job-importer.php file which allowed attackers with administrative user access to inject arbitrary web scripts, in versions up to and including 1.0.5.

4.8
2021-10-19 CVE-2021-38468 Inhandnetworks Unspecified vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to stored cross-scripting, which may allow an attacker to hijack sessions of users connected to the system.

4.8
2021-10-19 CVE-2021-38482 Inhandnetworks Cross-site Scripting vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 website used to control the router is vulnerable to stored cross-site scripting, which may allow an attacker to hijack sessions of users connected to the system.

4.8
2021-10-18 CVE-2021-24516 Planso Unspecified vulnerability in Planso Forms 2.6.3

The PlanSo Forms WordPress plugin through 2.6.3 does not escape the title of its Form before outputting it in attributes, allowing high privilege users such as admin to set XSS payload in it, even when the unfiltered_html is disallowed, leading to an Authenticated Stored Cross-Site Scripting issue.

4.8
2021-10-18 CVE-2021-24612 Sociable Project Cross-site Scripting vulnerability in Sociable Project Sociable 4.3.4.1

The Sociable WordPress plugin through 4.3.4.1 does not sanitise or escape some of its settings before outputting them in the admins dashboard, allowing high privilege users to perform Cross-Site Scripting attacks against other users even when the unfiltered_html capability is disallowed

4.8
2021-10-18 CVE-2021-24622 Emarketdesign Unspecified vulnerability in Emarketdesign Customer Service Software & Support Ticket System

The Customer Service Software & Support Ticket System WordPress plugin before 5.10.4 does not sanitize or escape form fields before outputting it in the List, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

4.8
2021-10-18 CVE-2021-24702 Thimpress Unspecified vulnerability in Thimpress Learnpress

The LearnPress WordPress plugin before 4.1.3.1 does not properly sanitize or escape various inputs within course settings, which could allow high privilege users to perform Cross-Site Scripting attacks when the unfiltred_html capability is disallowed

4.8
2021-10-18 CVE-2021-24736 Tammersoft Cross-site Scripting vulnerability in Tammersoft Shared Files

The Easy Download Manager and File Sharing Plugin with frontend file upload – a better Media Library — Shared Files WordPress plugin before 1.6.57 does not sanitise and escape some of its settings before outputting them in attributes, which could lead to Stored Cross-Site Scripting issues.

4.8
2021-10-18 CVE-2021-24740 Themeum Cross-site Scripting vulnerability in Themeum Tutor LMS

The Tutor LMS WordPress plugin before 1.9.9 does not escape some of its settings before outputting them in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

4.8
2021-10-21 CVE-2021-35228 Solarwinds Cross-site Scripting vulnerability in Solarwinds Database Performance Analyzer 2021.3.7388

This vulnerability occurred due to missing input sanitization for one of the output fields that is extracted from headers on specific section of page causing a reflective cross site scripting attack.

4.7
2021-10-20 CVE-2021-35581 Oracle Unspecified vulnerability in Oracle Applications Manager

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite (component: View Reports).

4.7
2021-10-19 CVE-2021-38472 Inhandnetworks Improper Restriction of Rendered UI Layers or Frames vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 management portal does not contain an X-FRAME-OPTIONS header, which an attacker may take advantage of by sending a link to an administrator that frames the router’s management portal and could lure the administrator to perform changes.

4.7
2021-10-22 CVE-2020-23058 File Explorer Project Improper Authentication vulnerability in File Explorer Project File Explorer 1.4

An issue in the authentication mechanism in Nong Ge File Explorer v1.4 unauthenticated allows to access sensitive data.

4.6
2021-10-21 CVE-2021-29883 IBM Missing Encryption of Sensitive Data vulnerability in IBM Transformation Extender Advanced

IBM Standards Processing Engine (IBM Transformation Extender Advanced 9.0 and 10.0) does not set the secure attribute on authorization tokens or session cookies.

4.3
2021-10-21 CVE-2021-42096 GNU
Debian
Improper Restriction of Excessive Authentication Attempts vulnerability in multiple products

GNU Mailman before 2.1.35 may allow remote Privilege Escalation.

4.3
2021-10-20 CVE-2021-21743 ZTE Injection vulnerability in ZTE Mf971R Firmware

ZTE MF971R product has a CRLF injection vulnerability.

4.3
2021-10-20 CVE-2021-21745 ZTE Cross-Site Request Forgery (CSRF) vulnerability in ZTE Mf971R Firmware

ZTE MF971R product has a Referer authentication bypass vulnerability.

4.3
2021-10-20 CVE-2021-25971 Tuzitio Improper Handling of Exceptional Conditions vulnerability in Tuzitio Camaleon CMS

In Camaleon CMS, versions 2.0.1 to 2.6.0 are vulnerable to an Uncaught Exception.

4.3
2021-10-20 CVE-2021-35611 Oracle Improper Input Validation vulnerability in Oracle Sales Offline

Vulnerability in the Oracle Sales Offline product of Oracle E-Business Suite (component: Offline Template).

4.3
2021-10-20 CVE-2021-35557 Oracle Unspecified vulnerability in Oracle Database

Vulnerability in the Core RDBMS component of Oracle Database Server.

4.3
2021-10-20 CVE-2021-35558 Oracle Unspecified vulnerability in Oracle Database

Vulnerability in the Core RDBMS component of Oracle Database Server.

4.3
2021-10-20 CVE-2021-35584 Oracle
Netapp
Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: ndbcluster/plugin DDL).
4.3
2021-10-19 CVE-2021-30810 Apple Missing Authorization vulnerability in Apple products

An authorization issue was addressed with improved state management.

4.3
2021-10-18 CVE-2021-36097 Otrs Unspecified vulnerability in Otrs

Agents are able to lock the ticket without the "Owner" permission.

4.3

5 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2021-10-21 CVE-2020-14263 Hcltech Incorrect Permission Assignment for Critical Resource vulnerability in Hcltech Traveler Companion

"HCL Traveler Companion is vulnerable to an iOS weak cryptographic process vulnerability via the included MobileIron AppConnect SDK"

3.9
2021-10-20 CVE-2021-35613 Oracle
Netapp
Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General).
3.7
2021-10-19 CVE-2011-1075 Freebsd Race Condition vulnerability in Freebsd

FreeBSD's crontab calculates the MD5 sum of the previous and new cronjob to determine if any changes have been made before copying the new version in.

3.7
2021-10-18 CVE-2021-38440 Fatek Unspecified vulnerability in Fatek Winproladder 3.28/3.30

FATEK Automation WinProladder versions 3.30 and prior is vulnerable to an out-of-bounds read, which may allow an attacker to read unauthorized information.

3.3
2021-10-19 CVE-2021-30815 Apple Unspecified vulnerability in Apple Ipados and Iphone OS

A lock screen issue allowed access to contacts on a locked device.

2.4