Weekly Vulnerabilities Reports > December 27, 2021 to January 2, 2022
Overview
236 new vulnerabilities reported during this period, including 57 critical vulnerabilities and 90 high severity vulnerabilities. This weekly summary report vulnerabilities in 206 products from 139 vendors including Debian, Fedoraproject, Trendnet, Netgear, and Oracle. Vulnerabilities are notably categorized as "Out-of-bounds Write", "Cross-site Scripting", "Use of Uninitialized Resource", "Missing Authentication for Critical Function", and "Use of Hard-coded Credentials".
- 170 reported vulnerabilities are remotely exploitables.
- 57 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
- 173 reported vulnerabilities are exploitable by an anonymous user.
- Debian has the most reported vulnerabilities, with 22 reported vulnerabilities.
- Thekelleys has the most reported critical vulnerabilities, with 7 reported vulnerabilities.
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
EXPLOITABLE
EXPLOITABLE
AVAILABLE
ANONYMOUSLY
WEB APPLICATION
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
57 Critical Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2021-12-30 | CVE-2021-20151 | Trendnet | Session Fixation vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 contains a flaw in the session management for the device. | 10.0 |
2022-01-02 | CVE-2022-0080 | Mruby | Unspecified vulnerability in Mruby mruby is vulnerable to Heap-based Buffer Overflow | 9.8 |
2022-01-01 | CVE-2021-45951 | Thekelleys | Out-of-bounds Write vulnerability in Thekelleys Dnsmasq 2.86 Dnsmasq 2.86 has a heap-based buffer overflow in check_bad_address (called from check_for_bogus_wildcard and FuzzCheckForBogusWildcard). | 9.8 |
2022-01-01 | CVE-2021-45952 | Thekelleys | Out-of-bounds Write vulnerability in Thekelleys Dnsmasq 2.86 Dnsmasq 2.86 has a heap-based buffer overflow in dhcp_reply (called from dhcp_packet and FuzzDhcp). | 9.8 |
2022-01-01 | CVE-2021-45953 | Thekelleys | Out-of-bounds Write vulnerability in Thekelleys Dnsmasq 2.86 Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from hash_questions and fuzz_util.c). | 9.8 |
2022-01-01 | CVE-2021-45954 | Thekelleys | Out-of-bounds Write vulnerability in Thekelleys Dnsmasq 2.86 Dnsmasq 2.86 has a heap-based buffer overflow in extract_name (called from answer_auth and FuzzAuth). | 9.8 |
2022-01-01 | CVE-2021-45955 | Thekelleys | Out-of-bounds Write vulnerability in Thekelleys Dnsmasq 2.86 Dnsmasq 2.86 has a heap-based buffer overflow in resize_packet (called from FuzzResizePacket and fuzz_rfc1035.c) because of the lack of a proper bounds check upon pseudo header re-insertion. | 9.8 |
2022-01-01 | CVE-2021-45956 | Thekelleys | Out-of-bounds Write vulnerability in Thekelleys Dnsmasq 2.86 Dnsmasq 2.86 has a heap-based buffer overflow in print_mac (called from log_packet and dhcp_reply). | 9.8 |
2022-01-01 | CVE-2021-45957 | Thekelleys | Out-of-bounds Write vulnerability in Thekelleys Dnsmasq 2.86 Dnsmasq 2.86 has a heap-based buffer overflow in answer_request (called from FuzzAnswerTheRequest and fuzz_rfc1035.c). | 9.8 |
2021-12-30 | CVE-2021-20149 | Trendnet | Incorrect Authorization vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 does not have sufficient access controls for the WAN interface. | 9.8 |
2021-12-30 | CVE-2021-20155 | Trendnet | Use of Hard-coded Credentials vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 makes use of hardcoded credentials. | 9.8 |
2021-12-30 | CVE-2021-20158 | Trendnet | Missing Authentication for Critical Function vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 contains an authentication bypass vulnerability. | 9.8 |
2021-12-30 | CVE-2021-45427 | Emerson | Path Traversal vulnerability in Emerson Xweb300D EVO Firmware 3.0.7 Emerson XWEB 300D EVO 3.0.7--3ee403 is affected by: unauthenticated arbitrary file deletion due to path traversal. | 9.8 |
2021-12-29 | CVE-2021-36722 | Emuse Eservices Envoice Project | SQL Injection vulnerability in Emuse - Eservices / Envoice Project Emuse - Eservices / Envoice Emuse - eServices / eNvoice SQL injection can be used in various ways ranging from bypassing login authentication or dumping the whole database to full RCE on the affected endpoints. | 9.8 |
2021-12-29 | CVE-2021-38687 | Qnap | Unspecified vulnerability in Qnap Surveillance Station A stack buffer overflow vulnerability has been reported to affect QNAP NAS running Surveillance Station. | 9.8 |
2021-12-28 | CVE-2020-7878 | 4NB | Insufficient Verification of Data Authenticity vulnerability in 4NB Videooffice X2.9 An arbitrary file download and execution vulnerability was found in the VideoOffice X2.9 and earlier versions (CVE-2020-7878). | 9.8 |
2021-12-28 | CVE-2020-7883 | Wowsoft | Download of Code Without Integrity Check vulnerability in Wowsoft Printchaser 2.2021.804.1 Printchaser v2.2021.804.1 and earlier versions contain a vulnerability, which could allow remote attacker to download and execute remote file by setting the argument, variable in the activeX module. | 9.8 |
2021-12-28 | CVE-2021-45814 | Nettemp | SQL Injection vulnerability in Nettemp NNT 5.1 Nettmp NNT 5.1 is affected by a SQL injection vulnerability. | 9.8 |
2021-12-28 | CVE-2019-20082 | Asus | Classic Buffer Overflow vulnerability in Asus Rt-N53 Firmware 3.0.0.4.376.3754 ASUS RT-N53 3.0.0.4.376.3754 devices have a buffer overflow via a long lan_dns1_x or lan_dns2_x parameter to Advanced_LAN_Content.asp. | 9.8 |
2021-12-28 | CVE-2021-37400 | Idec | Insufficiently Protected Credentials vulnerability in Idec products An attacker may obtain the user credentials from the communication between the PLC and the software. | 9.8 |
2021-12-28 | CVE-2021-37401 | Idec | Insufficiently Protected Credentials vulnerability in Idec products An attacker may obtain the user credentials from file servers, backup repositories, or ZLD files saved in SD cards. | 9.8 |
2021-12-27 | CVE-2020-21237 | 8Cms | Improper Restriction of Excessive Authentication Attempts vulnerability in 8Cms Ljcms 1.11 An issue in the user login box of LJCMS v1.11 allows attackers to hijack user accounts via brute force attacks. | 9.8 |
2021-12-27 | CVE-2020-21238 | Chshcms | Improper Restriction of Excessive Authentication Attempts vulnerability in Chshcms Cscms 4.0 An issue in the user login box of CSCMS v4.0 allows attackers to hijack user accounts via brute force attacks. | 9.8 |
2021-12-27 | CVE-2021-45890 | Authguard Project | Improper Authentication vulnerability in Authguard Project Authguard basic/BasicAuthProvider.java in AuthGuard before 0.9.0 allows authentication via an inactive identifier. | 9.8 |
2021-12-27 | CVE-2021-45232 | Apache | Missing Authentication for Critical Function vulnerability in Apache Apisix Dashboard In Apache APISIX Dashboard before 2.10.1, the Manager API uses two frameworks and introduces framework `droplet` on the basis of framework `gin`, all APIs and authentication middleware are developed based on framework `droplet`, but some API directly use the interface of framework `gin` thus bypassing the authentication. | 9.8 |
2021-12-27 | CVE-2018-25024 | Actix | Out-of-bounds Write vulnerability in Actix Actix-Web An issue was discovered in the actix-web crate before 0.7.15 for Rust. | 9.8 |
2021-12-27 | CVE-2018-25025 | Actix | Out-of-bounds Write vulnerability in Actix Actix-Web An issue was discovered in the actix-web crate before 0.7.15 for Rust. | 9.8 |
2021-12-27 | CVE-2018-25026 | Actix | Out-of-bounds Write vulnerability in Actix Actix-Web An issue was discovered in the actix-web crate before 0.7.15 for Rust. | 9.8 |
2021-12-27 | CVE-2020-36512 | Buffoon Project | Use of Uninitialized Resource vulnerability in Buffoon Project Buffoon 0.5.0 An issue was discovered in the buffoon crate through 2020-12-31 for Rust. | 9.8 |
2021-12-27 | CVE-2020-36513 | ACC Reader Project | Use of Uninitialized Resource vulnerability in ACC Reader Project ACC Reader 1.0.0/2.0.0 An issue was discovered in the acc_reader crate through 2020-12-27 for Rust. | 9.8 |
2021-12-27 | CVE-2020-36514 | ACC Reader Project | Use of Uninitialized Resource vulnerability in ACC Reader Project ACC Reader 1.0.0/2.0.0 An issue was discovered in the acc_reader crate through 2020-12-27 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45682 | Bronzedb Protocol Project | Use of Uninitialized Resource vulnerability in Bronzedb-Protocol Project Bronzedb-Protocol 0.1.0 An issue was discovered in the bronzedb-protocol crate through 2021-01-03 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45683 | Binjs IO Project | Use of Uninitialized Resource vulnerability in Binjs IO Project Binjs IO 0.2.1 An issue was discovered in the binjs_io crate through 2021-01-03 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45684 | Flumedb Project | Use of Uninitialized Resource vulnerability in Flumedb Project Flumedb 0.1.3/0.1.4/0.1.5 An issue was discovered in the flumedb crate through 2021-01-07 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45685 | Columnar Project | Use of Uninitialized Resource vulnerability in Columnar Project Columnar An issue was discovered in the columnar crate through 2021-01-07 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45686 | CSV Sniffer Project | Use of Uninitialized Resource vulnerability in Csv-Sniffer Project Csv-Sniffer 0.0.1/0.1.1 An issue was discovered in the csv-sniffer crate through 2021-01-05 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45687 | RAW Cpuid Project | Improper Input Validation vulnerability in Raw-Cpuid Project Raw-Cpuid An issue was discovered in the raw-cpuid crate before 9.1.1 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45688 | ASH Project | Use of Uninitialized Resource vulnerability in ASH Project ASH An issue was discovered in the ash crate before 0.33.1 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45689 | GFX Auxil Project | Use of Uninitialized Resource vulnerability in Gfx-Auxil Project Gfx-Auxil An issue was discovered in the gfx-auxil crate through 2021-01-07 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45690 | Messagepack RS Project | Use of Uninitialized Resource vulnerability in Messagepack-Rs Project Messagepack-Rs An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45691 | Messagepack RS Project | Use of Uninitialized Resource vulnerability in Messagepack-Rs Project Messagepack-Rs An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45692 | Messagepack RS Project | Use of Uninitialized Resource vulnerability in Messagepack-Rs Project Messagepack-Rs An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45693 | Messagepack RS Project | Use of Uninitialized Resource vulnerability in Messagepack-Rs Project Messagepack-Rs An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45695 | Mopa Project | Unspecified vulnerability in Mopa Project Mopa An issue was discovered in the mopa crate through 2021-06-01 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45696 | Sha2 Project | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Sha2 Project Sha2 0.9.7 An issue was discovered in the sha2 crate 0.9.7 before 0.9.8 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45697 | Nervos | Unspecified vulnerability in Nervos Molecule An issue was discovered in the molecule crate before 0.7.2 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45698 | Nervos | Unspecified vulnerability in Nervos CKB An issue was discovered in the ckb crate before 0.40.0 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45701 | Linuxfoundation | Use After Free vulnerability in Linuxfoundation Tremor-Script An issue was discovered in the tremor-script crate before 0.11.6 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45703 | Tectonic XDV Project | Use of Uninitialized Resource vulnerability in Tectonic XDV Project Tectonic XDV An issue was discovered in the tectonic_xdv crate before 0.1.12 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45705 | Nanorand Project | Unspecified vulnerability in Nanorand Project Nanorand An issue was discovered in the nanorand crate before 0.6.1 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45706 | Zeroize Derive Project | Incomplete Cleanup vulnerability in Zeroize Derive Project Zeroize Derive An issue was discovered in the zeroize_derive crate before 1.1.1 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45707 | NIX Project | Out-of-bounds Write vulnerability in NIX Project NIX An issue was discovered in the nix crate 0.16.0 and later before 0.20.2, 0.21.x before 0.21.2, and 0.22.x before 0.22.2 for Rust. | 9.8 |
2021-12-27 | CVE-2021-45709 | Crypto2 Project | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Crypto2 Project Crypto2 An issue was discovered in the crypto2 crate through 2021-10-08 for Rust. | 9.8 |
2021-12-29 | CVE-2021-35034 | Zyxel | Insufficient Session Expiration vulnerability in Zyxel Nbg6604 Firmware An insufficient session expiration vulnerability in the CGI program of the Zyxel NBG6604 firmware could allow a remote attacker to access the device if the correct token can be intercepted. | 9.1 |
2021-12-28 | CVE-2020-22057 | Evga | Unspecified vulnerability in Evga Precision XOC 6.2.7 The WinRin0x64.sys and WinRing0.sys low-level drivers in EVGA Precision XOC version v6.2.7 were discovered to be configured with the default security descriptor which allows attackers to access sensitive components and data. | 9.1 |
2021-12-27 | CVE-2020-20944 | Qibosoft | Path Traversal vulnerability in Qibosoft 7.0 An issue in /admin/index.php?lfj=mysql&action=del of Qibosoft v7 allows attackers to arbitrarily delete files. | 9.1 |
2021-12-27 | CVE-2021-43845 | Teluu Debian | PJSIP is a free and open source multimedia communication library. | 9.1 |
90 High Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2022-01-01 | CVE-2021-45960 | Libexpat Project Tenable Debian Siemens Netapp | Incorrect Calculation vulnerability in multiple products In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory). | 8.8 |
2021-12-30 | CVE-2021-20132 | Dlink | Use of Hard-coded Credentials vulnerability in Dlink Dir-2640-Us Firmware 1.01/1.01B04/1.11B02 Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 use default hard-coded credentials, which can allow a remote attacker to gain administrative access to the zebra or ripd those services. | 8.8 |
2021-12-30 | CVE-2021-20159 | Trendnet | OS Command Injection vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 is vulnerable to command injection. | 8.8 |
2021-12-30 | CVE-2021-20160 | Trendnet | OS Command Injection vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 contains a command injection vulnerability in the smb functionality of the device. | 8.8 |
2021-12-30 | CVE-2021-20165 | Trendnet | Cross-Site Request Forgery (CSRF) vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 does not properly implement csrf protections. | 8.8 |
2021-12-30 | CVE-2021-20166 | Netgear | Classic Buffer Overflow vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 contains a buffer overrun vulnerability. | 8.8 |
2021-12-30 | CVE-2021-20170 | Netgear | Use of Hard-coded Credentials vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 makes use of hardcoded credentials. | 8.8 |
2021-12-30 | CVE-2021-20173 | Netgear | OS Command Injection vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 contains a command injection vulnerability in update functionality of the device. | 8.8 |
2021-12-30 | CVE-2021-45732 | Netgear | Use of Hard-coded Credentials vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 makes use of a hardcoded credential. | 8.8 |
2021-12-30 | CVE-2021-45379 | Glewlwyd Project | Improper Authentication vulnerability in Glewlwyd Project Glewlwyd Glewlwyd 2.0.0, fixed in 2.6.1 is affected by an incorrect access control vulnerability. | 8.8 |
2021-12-29 | CVE-2021-43876 | Microsoft | Unspecified vulnerability in Microsoft Sharepoint Enterprise Server and Sharepoint Server Microsoft SharePoint Elevation of Privilege Vulnerability | 8.8 |
2021-12-28 | CVE-2018-17875 | Poly | Unspecified vulnerability in Poly Trio 8800 Firmware A remote code execution issue in the ping command on Poly Trio 8800 5.7.1.4145 devices allows remote authenticated users to execute commands via unspecified vectors. | 8.8 |
2021-12-27 | CVE-2020-21236 | Damicms | Cross-Site Request Forgery (CSRF) vulnerability in Damicms 6.0.0 A vulnerability in /damicms-master/admin.php?s=/Article/doedit of DamiCMS v6.0 allows attackers to compromise and impersonate user accounts via obtaining a user's session cookie. | 8.8 |
2021-12-27 | CVE-2021-45896 | Nokia | Unspecified vulnerability in Nokia Fastmile Firmware 3Tg00118Abad52 Nokia FastMile 3TG00118ABAD52 devices allow privilege escalation by an authenticated user via is_ctc_admin=1 to login_web_app.cgi and use of Import Config File. | 8.8 |
2021-12-27 | CVE-2020-20945 | Qibosoft | Cross-Site Request Forgery (CSRF) vulnerability in Qibosoft 7.0 A Cross-Site Request Forgery (CSRF) in /admin/index.php?lfj=member&action=editmember of Qibosoft v7 allows attackers to arbitrarily add administrator accounts. | 8.8 |
2021-12-27 | CVE-2021-32993 | Philips | Unspecified vulnerability in Philips products IntelliBridge EC 40 and 60 Hub (C.00.04 and prior) contains hard-coded credentials, such as a password or a cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. | 8.8 |
2021-12-27 | CVE-2021-33017 | Philips | Unspecified vulnerability in Philips products The standard access path of the IntelliBridge EC 40 and 60 Hub (C.00.04 and prior) requires authentication, but the product has an alternate path or channel that does not require authentication. | 8.8 |
2021-12-27 | CVE-2021-43857 | Gerapy | Unspecified vulnerability in Gerapy Gerapy is a distributed crawler management framework. | 8.8 |
2021-12-27 | CVE-2021-45335 | Avast | Incorrect Default Permissions vulnerability in Avast Antivirus Sandbox component in Avast Antivirus prior to 20.4 has an insecure permission which could be abused by local user to control the outcome of scans, and therefore evade detection or delete arbitrary system files. | 8.8 |
2021-12-27 | CVE-2021-45336 | Avast | Unspecified vulnerability in Avast Antivirus Privilege escalation vulnerability in the Sandbox component of Avast Antivirus prior to 20.4 allows a local sandboxed code to gain elevated privileges by using system IPC interfaces which could lead to exit the sandbox and acquire SYSTEM privileges. | 8.8 |
2021-12-27 | CVE-2021-45337 | Avast | Unspecified vulnerability in Avast Antivirus Privilege escalation vulnerability in the Self-Defense driver of Avast Antivirus prior to 20.8 allows a local user with SYSTEM privileges to gain elevated privileges by "hollowing" process wsc_proxy.exe which could lead to acquire antimalware (AM-PPL) protection. | 8.8 |
2021-12-30 | CVE-2021-20134 | Dlink | Path Traversal vulnerability in Dlink Dir-2640-Us Firmware 1.01/1.01B04/1.11B02 Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that allows a remote, authenticated attacker to set an arbitrary file on the router's filesystem as the log file used by either Quagga service (zebra or ripd). | 8.4 |
2021-12-28 | CVE-2021-20873 | Yappli | Missing Authorization vulnerability in Yappli Yappli is an application development platform which provides the function to access a requested URL using Custom URL Scheme. | 8.1 |
2021-12-27 | CVE-2021-21751 | ZTE | Unspecified vulnerability in ZTE Zxin10 CMS ZTE BigVideo analysis product has an input verification vulnerability. | 8.1 |
2021-12-27 | CVE-2021-45704 | Metrics Util Project | Out-of-bounds Write vulnerability in Metrics-Util Project Metrics-Util An issue was discovered in the metrics-util crate before 0.7.0 for Rust. | 8.1 |
2021-12-27 | CVE-2021-45710 | Tokio | Race Condition vulnerability in Tokio An issue was discovered in the tokio crate before 1.8.4, and 1.9.x through 1.13.x before 1.13.1, for Rust. | 8.1 |
2021-12-30 | CVE-2021-20167 | Netgear | Command Injection vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 contains a command injection vulnerability. | 8.0 |
2021-12-28 | CVE-2021-35031 | Zyxel | OS Command Injection vulnerability in Zyxel products A vulnerability in the TFTP client of Zyxel GS1900 series firmware, XGS1210 series firmware, and XGS1250 series firmware, which could allow an authenticated LAN user to execute arbitrary OS commands via the GUI of the vulnerable device. | 8.0 |
2022-01-01 | CVE-2021-44852 | Biostar | Unspecified vulnerability in Biostar Racing GT EVO 2.1.1905.1700 An issue was discovered in BS_RCIO64.sys in Biostar RACING GT Evo 2.1.1905.1700. | 7.8 |
2022-01-01 | CVE-2021-45926 | Mdbtools Project | Out-of-bounds Write vulnerability in Mdbtools Project Mdbtools 0.9.2 MDB Tools (aka mdbtools) 0.9.2 has a stack-based buffer overflow (at 0x7ffd0c689be0) in mdb_numeric_to_string (called from mdb_xfer_bound_data and _mdb_attempt_bind). | 7.8 |
2022-01-01 | CVE-2021-45927 | Mdbtools Project | Out-of-bounds Write vulnerability in Mdbtools Project Mdbtools 0.9.2 MDB Tools (aka mdbtools) 0.9.2 has a stack-based buffer overflow (at 0x7ffd6e029ee0) in mdb_numeric_to_string (called from mdb_xfer_bound_data and _mdb_attempt_bind). | 7.8 |
2021-12-31 | CVE-2021-4192 | VIM Fedoraproject Debian Apple | vim is vulnerable to Use After Free | 7.8 |
2021-12-30 | CVE-2021-20172 | Netgear | Incorrect Permission Assignment for Critical Resource vulnerability in Netgear Genie Installer All known versions of the Netgear Genie Installer for macOS contain a local privilege escalation vulnerability. | 7.8 |
2021-12-29 | CVE-2021-4187 | VIM Fedoraproject Apple | vim is vulnerable to Use After Free | 7.8 |
2021-12-28 | CVE-2020-22061 | Superantispyware | Unspecified vulnerability in Superantispyware 8.0.0.1050 SUPERAntispyware v8.0.0.1050 was discovered to contain an issue in the component saskutil64.sys. | 7.8 |
2021-12-28 | CVE-2021-43554 | Fatek | Out-of-bounds Write vulnerability in Fatek Winproladder 3.28/3.30 FATEK WinProladder Versions 3.30_24518 and prior are vulnerable to an out-of-bounds write while processing project files, which may allow an attacker to execute arbitrary code. | 7.8 |
2021-12-28 | CVE-2021-43556 | Fatek | Out-of-bounds Write vulnerability in Fatek Winproladder 3.28/3.30 FATEK WinProladder Versions 3.30_24518 and prior are vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code. | 7.8 |
2021-12-28 | CVE-2021-35032 | Zyxel | OS Command Injection vulnerability in Zyxel products A vulnerability in the 'libsal.so' of the Zyxel GS1900 series firmware version 2.60 could allow an authenticated local user to execute arbitrary OS commands via a crafted function call. | 7.8 |
2021-12-28 | CVE-2021-45907 | Gif2Apng Project | Out-of-bounds Write vulnerability in Gif2Apng Project Gif2Apng 1.9 An issue was discovered in gif2apng 1.9. | 7.8 |
2021-12-28 | CVE-2021-45908 | Gif2Apng Project | Out-of-bounds Write vulnerability in Gif2Apng Project Gif2Apng 1.9 An issue was discovered in gif2apng 1.9. | 7.8 |
2021-12-28 | CVE-2021-45909 | Gif2Apng Project Debian | Out-of-bounds Write vulnerability in multiple products An issue was discovered in gif2apng 1.9. | 7.8 |
2021-12-28 | CVE-2021-45910 | Gif2Apng Project Debian | Out-of-bounds Write vulnerability in multiple products An issue was discovered in gif2apng 1.9. | 7.8 |
2021-12-28 | CVE-2021-45911 | Gif2Apng Project Debian | Out-of-bounds Write vulnerability in multiple products An issue was discovered in gif2apng 1.9. | 7.8 |
2021-12-27 | CVE-2021-21750 | ZTE | Improper Privilege Management vulnerability in ZTE Zxin10 CMS ZTE BigVideo Analysis product has a privilege escalation vulnerability. | 7.8 |
2021-12-27 | CVE-2021-23244 | Oppo | Unspecified vulnerability in Oppo Coloros 11 ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in whitelist is not installed, attacker can disguise app with the same package name to obtain dangerous permission. | 7.8 |
2021-12-27 | CVE-2021-45338 | Avast | Unspecified vulnerability in Avast Antivirus Multiple privilege escalation vulnerabilities in Avast Antivirus prior to 20.4 allow a local user to gain elevated privileges by calling unnecessarily powerful internal methods of the main antivirus service which could lead to the (1) arbitrary file delete, (2) write and (3) reset security. | 7.8 |
2021-12-27 | CVE-2021-45339 | Avast | Incorrect Authorization vulnerability in Avast Antivirus Privilege escalation vulnerability in Avast Antivirus prior to 20.4 allows a local user to gain elevated privileges by "hollowing" trusted process which could lead to the bypassing of Avast self-defense. | 7.8 |
2021-12-27 | CVE-2021-4173 | VIM Fedoraproject Apple | vim is vulnerable to Use After Free | 7.8 |
2022-01-01 | CVE-2021-41819 | Ruby Lang Redhat Debian Suse Opensuse Fedoraproject | Reliance on Cookies without Validation and Integrity Checking vulnerability in multiple products CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. | 7.5 |
2022-01-01 | CVE-2021-41817 | Ruby Lang Redhat Fedoraproject Debian Suse Opensuse | Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. | 7.5 |
2022-01-01 | CVE-2021-44716 | Golang Debian Netapp | Resource Exhaustion vulnerability in multiple products net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests. | 7.5 |
2021-12-30 | CVE-2021-20154 | Trendnet | Cleartext Transmission of Sensitive Information vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 contains an security flaw in the web interface. | 7.5 |
2021-12-30 | CVE-2021-20157 | Trendnet | Unspecified vulnerability in Trendnet Tew-827Dru Firmware It is possible for an unauthenticated, malicious user to force the device to reboot due to a hidden administrative command. | 7.5 |
2021-12-30 | CVE-2021-20174 | Netgear | Cleartext Transmission of Sensitive Information vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the web interface. | 7.5 |
2021-12-30 | CVE-2021-20175 | Netgear | Cleartext Transmission of Sensitive Information vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 does not utilize secure communication methods to the SOAP interface. | 7.5 |
2021-12-30 | CVE-2021-45077 | Netgear | Cleartext Storage of Sensitive Information vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 stores sensitive information in plaintext. | 7.5 |
2021-12-30 | CVE-2021-4181 | Wireshark Fedoraproject Debian Oracle | Out-of-bounds Read vulnerability in multiple products Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4182 | Wireshark Fedoraproject Oracle | Infinite Loop vulnerability in multiple products Crash in the RFC 7468 dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4184 | Wireshark Fedoraproject Debian Oracle | Infinite Loop vulnerability in multiple products Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4185 | Wireshark Fedoraproject Debian Oracle | Infinite Loop vulnerability in multiple products Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4186 | Wireshark Fedoraproject | NULL Pointer Dereference vulnerability in multiple products Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4190 | Wireshark Fedoraproject | Excessive Iteration vulnerability in multiple products Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted capture file | 7.5 |
2021-12-30 | CVE-2021-4188 | Mruby | NULL Pointer Dereference vulnerability in Mruby mruby is vulnerable to NULL Pointer Dereference | 7.5 |
2021-12-29 | CVE-2021-23727 | Celeryproject Fedoraproject | Command Injection vulnerability in multiple products This affects the package celery before 5.2.2. | 7.5 |
2021-12-29 | CVE-2021-45885 | Stormshield | Insufficient Session Expiration vulnerability in Stormshield Network Security 4.2.2/4.2.3 An issue was discovered in Stormshield Network Security (SNS) 4.2.2 through 4.2.7 (fixed in 4.2.8). | 7.5 |
2021-12-29 | CVE-2021-36723 | Emuse Eservices Envoice Project | Information Exposure vulnerability in Emuse - Eservices / Envoice Project Emuse - Eservices / Envoice Emuse - eServices / eNvoice Exposure Of Private Personal Information due to lack of identification mechanisms and predictable IDs an attacker can scrape all the files on the service. | 7.5 |
2021-12-29 | CVE-2021-38688 | Qnap | Unspecified vulnerability in Qnap Qfile An improper authentication vulnerability has been reported to affect Android App Qfile. | 7.5 |
2021-12-28 | CVE-2021-42583 | Foxcpp | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Foxcpp Maddy A Broken or Risky Cryptographic Algorithm exists in Max Mazurov Maddy before 0.5.2, which is an unnecessary risk that may result in the exposure of sensitive information. | 7.5 |
2021-12-27 | CVE-2021-45884 | Brave | Information Exposure vulnerability in Brave In Brave Desktop 1.17 through 1.33 before 1.33.106, when CNAME-based adblocking and a proxying extension with a SOCKS fallback are enabled, additional DNS requests are issued outside of the proxying extension using the system's DNS settings, resulting in information disclosure. | 7.5 |
2021-12-27 | CVE-2020-20948 | Jeecg | Exposure of Resource to Wrong Sphere vulnerability in Jeecg 3.8 An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files via modification of the "localPath" variable. | 7.5 |
2021-12-27 | CVE-2021-4161 | Moxa | Unspecified vulnerability in Moxa products The affected products contain vulnerable firmware, which could allow an attacker to sniff the traffic and decrypt login credential details. | 7.5 |
2021-12-27 | CVE-2021-24998 | Simple JWT Login Project | Use of Insufficiently Random Values vulnerability in Simple JWT Login Project Simple JWT Login The Simple JWT Login WordPress plugin before 3.3.0 can be used to create new WordPress user accounts with a randomly generated password. | 7.5 |
2021-12-27 | CVE-2018-25023 | Servo | Use of Uninitialized Resource vulnerability in Servo Smallvec An issue was discovered in the smallvec crate before 0.6.13 for Rust. | 7.5 |
2021-12-27 | CVE-2018-25027 | Libpulse Binding Project | Use After Free vulnerability in Libpulse-Binding Project Libpulse-Binding 1.0.5/1.1.0/1.2.0 An issue was discovered in the libpulse-binding crate before 1.2.1 for Rust. | 7.5 |
2021-12-27 | CVE-2018-25028 | Libpulse Binding Project | Use After Free vulnerability in Libpulse-Binding Project Libpulse-Binding 1.0.5/1.1.0/1.2.0 An issue was discovered in the libpulse-binding crate before 1.2.1 for Rust. | 7.5 |
2021-12-27 | CVE-2019-25054 | Pnet Project | Missing Initialization of Resource vulnerability in Pnet Project Pnet An issue was discovered in the pnet crate before 0.27.2 for Rust. | 7.5 |
2021-12-27 | CVE-2019-25055 | Libpulse Binding Project | Unspecified vulnerability in Libpulse-Binding Project Libpulse-Binding An issue was discovered in the libpulse-binding crate before 2.6.0 for Rust. | 7.5 |
2021-12-27 | CVE-2020-36511 | Bite Project | Use of Uninitialized Resource vulnerability in Bite Project Bite An issue was discovered in the bite crate through 2020-12-31 for Rust. | 7.5 |
2021-12-27 | CVE-2021-45680 | VEC Const Project | Out-of-bounds Write vulnerability in Vec-Const Project Vec-Const An issue was discovered in the vec-const crate before 2.0.0 for Rust. | 7.5 |
2021-12-27 | CVE-2021-45681 | Derive COM Impl Project | Out-of-bounds Write vulnerability in Derive-Com-Impl Project Derive-Com-Impl 0.1.0/0.1.1 An issue was discovered in the derive-com-impl crate before 0.1.2 for Rust. | 7.5 |
2021-12-27 | CVE-2021-45694 | Rdiff Project | Use of Uninitialized Resource vulnerability in Rdiff Project Rdiff 0.1.0/0.1.1/0.1.2 An issue was discovered in the rdiff crate through 2021-02-03 for Rust. | 7.5 |
2021-12-27 | CVE-2021-45699 | Nervos | Allocation of Resources Without Limits or Throttling vulnerability in Nervos CKB An issue was discovered in the ckb crate before 0.40.0 for Rust. | 7.5 |
2021-12-27 | CVE-2021-45700 | Nervos | Unspecified vulnerability in Nervos CKB An issue was discovered in the ckb crate before 0.40.0 for Rust. | 7.5 |
2021-12-27 | CVE-2021-45702 | Linuxfoundation | Use After Free vulnerability in Linuxfoundation Tremor-Script An issue was discovered in the tremor-script crate before 0.11.6 for Rust. | 7.5 |
2021-12-27 | CVE-2021-45708 | Abomonation Project | Exposure of Resource to Wrong Sphere vulnerability in Abomonation Project Abomonation An issue was discovered in the abomonation crate through 2021-10-17 for Rust. | 7.5 |
2021-12-27 | CVE-2021-45711 | Simple Asn1 Project | Improper Input Validation vulnerability in Simple Asn1 Project Simple Asn1 0.6.0 An issue was discovered in the simple_asn1 crate 0.6.0 before 0.6.1 for Rust. | 7.5 |
2021-12-30 | CVE-2021-44466 | Leap | Incorrect Permission Assignment for Critical Resource vulnerability in Leap Bitmask Riseup VPN 0.21.6 Bitmask Riseup VPN 0.21.6 contains a local privilege escalation flaw due to improper access controls. | 7.3 |
2021-12-29 | CVE-2021-25991 | IF ME | Unspecified vulnerability in If-Me Ifme In Ifme, versions v5.0.0 to v7.32 are vulnerable against an improper access control, which makes it possible for admins to ban themselves leading to their deactivation from Ifme account and complete loss of admin access to Ifme. | 7.3 |
2021-12-27 | CVE-2021-24753 | Starfish | SQL Injection vulnerability in Starfish Rich Review The Rich Reviews by Starfish WordPress plugin before 1.9.6 does not properly validate the orderby GET parameter of the pending reviews page before using it in a SQL statement, leading to an authenticated SQL injection issue | 7.2 |
2022-01-01 | CVE-2021-45972 | Giftrans Project Debian | Improper Validation of Specified Quantity in Input vulnerability in multiple products The giftrans function in giftrans 1.12.2 contains a stack-based buffer overflow because a value inside the input file determines the amount of data to write. | 7.1 |
89 Medium Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2021-12-30 | CVE-2021-20153 | Trendnet | Link Following vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 contains a symlink vulnerability in the bittorrent functionality. | 6.8 |
2021-12-30 | CVE-2021-20161 | Trendnet | Missing Authentication for Critical Function vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 does not have sufficient protections for the UART functionality. | 6.8 |
2021-12-30 | CVE-2021-20168 | Netgear | Improper Authentication vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 does not have sufficient protections to the UART interface. | 6.8 |
2021-12-30 | CVE-2021-20169 | Netgear | Cleartext Transmission of Sensitive Information vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 does not utilize secure communications to the web interface. | 6.8 |
2021-12-30 | CVE-2021-23147 | Netgear | Improper Authentication vulnerability in Netgear R6700 Firmware 1.0.4.120 Netgear Nighthawk R6700 version 1.0.4.120 does not have sufficient protections for the UART console. | 6.8 |
2021-12-28 | CVE-2021-44832 | Apache Oracle Cisco Fedoraproject Debian | Improper Input Validation vulnerability in multiple products Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the target LDAP server. | 6.6 |
2022-01-01 | CVE-2021-43333 | Datalogic | Missing Authentication for Critical Function vulnerability in Datalogic DXU The Datalogic DXU service on (for example) DL-Axist devices does not require authentication for configuration changes or disclosure of configuration settings. | 6.5 |
2022-01-01 | CVE-2021-45931 | Harfbuzz Project Fedoraproject | Out-of-bounds Write vulnerability in multiple products HarfBuzz 2.9.0 has an out-of-bounds write in hb_bit_set_invertible_t::set (called from hb_sparseset_t<hb_bit_set_invertible_t>::set and hb_set_copy). | 6.5 |
2022-01-01 | CVE-2021-45940 | Libbpf Project | Out-of-bounds Write vulnerability in Libbpf Project Libbpf 0.6.0/0.6.1 libbpf 0.6.0 and 0.6.1 has a heap-based buffer overflow (4 bytes) in __bpf_object__open (called from bpf_object__open_mem and bpf-object-fuzzer.c). | 6.5 |
2022-01-01 | CVE-2021-45941 | Libbpf Project | Out-of-bounds Write vulnerability in Libbpf Project Libbpf 0.6.0/0.6.1 libbpf 0.6.0 and 0.6.1 has a heap-based buffer overflow (8 bytes) in __bpf_object__open (called from bpf_object__open_mem and bpf-object-fuzzer.c). | 6.5 |
2022-01-01 | CVE-2021-45950 | GNU | Out-of-bounds Write vulnerability in GNU Libredwg LibreDWG 0.12.4.4313 through 0.12.4.4367 has an out-of-bounds write in dwg_free_BLOCK_private (called from dwg_free_BLOCK and dwg_free_object). | 6.5 |
2021-12-30 | CVE-2021-20152 | Trendnet | Missing Authentication for Critical Function vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 lacks proper authentication to the bittorrent functionality. | 6.5 |
2021-12-30 | CVE-2021-20156 | Trendnet | Improper Verification of Cryptographic Signature vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 contains an improper access control configuration that could allow for a malicious firmware update. | 6.5 |
2021-12-30 | CVE-2020-29292 | Iball | Cross-Site Request Forgery (CSRF) vulnerability in Iball Wrd12En Firmware 1.0.0 iBall WRD12EN 1.0.0 devices allow cross-site request forgery (CSRF) attacks as demonstrated by enabling DNS settings or modifying the range for IP addresses. | 6.5 |
2021-12-29 | CVE-2021-35035 | Zyxel | Cleartext Storage of Sensitive Information vulnerability in Zyxel Nbg6604 Firmware A cleartext storage of sensitive information vulnerability in the Zyxel NBG6604 firmware could allow a remote, authenticated attacker to obtain sensitive information from the configuration file. | 6.5 |
2021-12-28 | CVE-2021-40579 | Online Enrollment Management System Project | Authorization Bypass Through User-Controlled Key vulnerability in Online Enrollment Management System Project Online Enrollment Management System 1.0 https://www.sourcecodester.com/ Online Enrollment Management System in PHP and PayPal Free Source Code 1.0 is affected by: Incorrect Access Control. | 6.5 |
2021-12-27 | CVE-2021-43548 | Philips | Unspecified vulnerability in Philips Patient Information Center IX C.02/C.03 Patient Information Center iX (PIC iX) Versions C.02 and C.03 receives input or data, but does not validate or incorrectly validates that the input has the properties required to process the data safely and correctly. | 6.5 |
2021-12-27 | CVE-2021-43550 | Philips | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Philips Efficia CM Firmware and Patient Information Center IX The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the exposure of sensitive information, which affects the communications between Patient Information Center iX (PIC iX) Versions C.02 and C.03 and Efficia CM Series Revisions A.01 to C.0x and 4.0. | 6.5 |
2021-12-27 | CVE-2021-24997 | WP Guppy | Unspecified vulnerability in Wp-Guppy WP Guppy The WP Guppy WordPress plugin before 1.3 does not have any authorisation in some of the REST API endpoints, allowing any user to call them and could lead to sensitive information disclosure, such as usernames and chats between users, as well as be able to send messages as an arbitrary user | 6.5 |
2022-01-01 | CVE-2021-44896 | Dmproadmap Project | Cross-site Scripting vulnerability in Dmproadmap Project Dmproadmap DMP Roadmap before 3.0.4 allows XSS. | 6.1 |
2021-12-30 | CVE-2021-20133 | Dlink | Path Traversal vulnerability in Dlink Dir-2640-Us Firmware 1.01/1.01B04/1.11B02 Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an absolute path traversal vulnerability that allows a remote, authenticated attacker to set the "message of the day" banner to any file on the system, allowing them to read all or some of the contents of those files. | 6.1 |
2021-12-30 | CVE-2021-38876 | IBM | Cross-site Scripting vulnerability in IBM I 7.2/7.3/7.4 IBM i 7.2, 7.3, and 7.4 is vulnerable to cross-site scripting. | 6.1 |
2021-12-30 | CVE-2021-45815 | Quectel | Cross-site Scripting vulnerability in Quectel Uc20 Firmware 6.3.14 Quectel UC20 UMTS/HSPA+ UC20 6.3.14 is affected by a Cross Site Scripting (XSS) vulnerability. | 6.1 |
2021-12-30 | CVE-2021-45818 | Safarimontage | Injection vulnerability in Safarimontage Safari Montage 8.7.32 SAFARI Montage 8.7.32 is affected by a CRLF injection vulnerability which can lead to HTTP response splitting. | 6.1 |
2021-12-29 | CVE-2021-4176 | Livehelperchat | Unspecified vulnerability in Livehelperchat Live Helper Chat livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 6.1 |
2021-12-29 | CVE-2021-38680 | Qnap | Unspecified vulnerability in Qnap Kazoo Server 4.10.12/4.10.9 A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Kazoo Server. | 6.1 |
2021-12-28 | CVE-2021-45812 | Nuuo | Cross-site Scripting vulnerability in Nuuo Nvrsolo Firmware 3.9.1 NUUO Network Video Recorder NVRsolo 3.9.1 is affected by a Cross Site Scripting (XSS) vulnerability. | 6.1 |
2021-12-28 | CVE-2021-45813 | Slican | Cross-site Scripting vulnerability in Slican Webcti 1.012015 SLICAN WebCTI 1.01 2015 is affected by a Cross Site Scripting (XSS) vulnerability. | 6.1 |
2021-12-28 | CVE-2021-45903 | Salesagility | Cross-site Scripting vulnerability in Salesagility Suitecrm A persistent cross-site scripting (XSS) issue in the web interface of SuiteCRM before 7.10.35, and 7.11.x and 7.12.x before 7.12.2, allows a remote attacker to introduce arbitrary JavaScript via attachments upload, a different vulnerability than CVE-2021-39267 and CVE-2021-39268. | 6.1 |
2021-12-28 | CVE-2021-45425 | Safarimontage | Cross-site Scripting vulnerability in Safarimontage Safari Montage 8.3/8.5 Reflected Cross Site Scripting (XSS) in SAFARI Montage versions 8.3 and 8.5 allows remote attackers to execute JavaScript codes. | 6.1 |
2021-12-27 | CVE-2021-45895 | Netgen | Cross-site Scripting vulnerability in Netgen Tags Bundle Netgen Tags Bundle 3.4.x before 3.4.11 and 4.0.x before 4.0.15 allows XSS in the Tags Admin interface. | 6.1 |
2021-12-27 | CVE-2021-35232 | Solarwinds | Use of Hard-coded Credentials vulnerability in Solarwinds Webhelpdesk Hard coded credentials discovered in SolarWinds Web Help Desk product. | 6.1 |
2021-12-27 | CVE-2021-38961 | IBM | Cross-site Scripting vulnerability in IBM products IBM OPENBMC OP910 is vulnerable to cross-site scripting. | 6.1 |
2021-12-27 | CVE-2021-24797 | Tickera | Unspecified vulnerability in Tickera The Tickera WordPress plugin before 3.4.8.3 does not properly sanitise and escape the Name fields of booked Events before outputting them in the Orders admin dashboard, which could allow unauthenticated users to perform Cross-Site Scripting attacks against admins. | 6.1 |
2021-12-27 | CVE-2021-24967 | Themehunk | Unspecified vulnerability in Themehunk Contact Form & Lead Form Elementor Builder The Contact Form & Lead Form Elementor Builder WordPress plugin before 1.6.4 does not sanitise and escape some lead values, which could allow unauthenticated users to perform Cross-Site Scripting attacks against logged in admin viewing the inserted Leads | 6.1 |
2021-12-27 | CVE-2021-24979 | Strangerstudios | Unspecified vulnerability in Strangerstudios Paid Memberships PRO The Paid Memberships Pro WordPress plugin before 2.6.6 does not escape the s parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting | 6.1 |
2021-12-27 | CVE-2021-24980 | Gwolle Guestbook Project | Unspecified vulnerability in Gwolle Guestbook Project Gwolle Guestbook The Gwolle Guestbook WordPress plugin before 4.2.0 does not sanitise and escape the gwolle_gb_user_email parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting issue in an admin page | 6.1 |
2021-12-27 | CVE-2021-24984 | Wpfront | Unspecified vulnerability in Wpfront User Role Editor The WPFront User Role Editor WordPress plugin before 3.2.1.11184 does not sanitise and escape the changes-saved parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting | 6.1 |
2022-01-01 | CVE-2021-45928 | Libjxl Project | Out-of-bounds Write vulnerability in Libjxl Project Libjxl libjxl b02d6b9, as used in libvips 8.11 through 8.11.2 and other products, has an out-of-bounds write in jxl::ModularFrameDecoder::DecodeGroup (called from jxl::FrameDecoder::ProcessACGroup and jxl::ThreadPool::RunCallState<jxl::FrameDecoder::ProcessSections). | 5.5 |
2022-01-01 | CVE-2021-45930 | QT Fedoraproject Debian | Out-of-bounds Write vulnerability in multiple products Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps<QPainterPath::Element>::growAppend (called from QPainterPath::addPath and QPathClipper::intersect). | 5.5 |
2022-01-01 | CVE-2021-45932 | Wolfssl | Out-of-bounds Write vulnerability in Wolfssl Wolfmqtt 1.9 wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow (4 bytes) in MqttDecode_Publish (called from MqttClient_DecodePacket and MqttClient_HandlePacket). | 5.5 |
2022-01-01 | CVE-2021-45933 | Wolfssl | Out-of-bounds Write vulnerability in Wolfssl Wolfmqtt 1.9 wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow (8 bytes) in MqttDecode_Publish (called from MqttClient_DecodePacket and MqttClient_HandlePacket). | 5.5 |
2022-01-01 | CVE-2021-45934 | Wolfssl | Out-of-bounds Write vulnerability in Wolfssl Wolfmqtt 1.9 wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from MqttClient_HandlePacket and MqttClient_WaitType). | 5.5 |
2022-01-01 | CVE-2021-45935 | Grok Project | Out-of-bounds Write vulnerability in Grok Project Grok 9.5.0 Grok 9.5.0 has a heap-based buffer overflow in openhtj2k::T1OpenHTJ2K::decompress (called from std::__1::__packaged_task_func<std::__1::__bind<grk::T1DecompressScheduler::deco and std::__1::packaged_task<int). | 5.5 |
2022-01-01 | CVE-2021-45936 | Wolfssl | Out-of-bounds Write vulnerability in Wolfssl Wolfmqtt 1.9 wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttDecode_Disconnect (called from MqttClient_DecodePacket and MqttClient_WaitType). | 5.5 |
2022-01-01 | CVE-2021-45937 | Wolfssl | Out-of-bounds Write vulnerability in Wolfssl Wolfmqtt 1.9 wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from MqttClient_WaitType and MqttClient_Connect). | 5.5 |
2022-01-01 | CVE-2021-45938 | Wolfssl | Out-of-bounds Write vulnerability in Wolfssl Wolfmqtt 1.9 wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from MqttClient_WaitType and MqttClient_Unsubscribe). | 5.5 |
2022-01-01 | CVE-2021-45939 | Wolfssl | Out-of-bounds Write vulnerability in Wolfssl Wolfmqtt 1.9 wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from MqttClient_WaitType and MqttClient_Subscribe). | 5.5 |
2022-01-01 | CVE-2021-45942 | Openexr Fedoraproject Debian | Out-of-bounds Write vulnerability in multiple products OpenEXR 3.1.x before 3.1.4 has a heap-based buffer overflow in Imf_3_1::LineCompositeTask::execute (called from IlmThread_3_1::NullThreadPoolProvider::addTask and IlmThread_3_1::ThreadPool::addGlobalTask). | 5.5 |
2022-01-01 | CVE-2021-45943 | Osgeo Debian Fedoraproject Oracle | Out-of-bounds Write vulnerability in multiple products GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile (called from PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment). | 5.5 |
2022-01-01 | CVE-2021-45929 | Wasm3 Project | Out-of-bounds Write vulnerability in Wasm3 Project Wasm3 0.5.0 Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from CompileElseBlock and Compile_If). | 5.5 |
2022-01-01 | CVE-2021-45944 | Artifex Debian | Use After Free vulnerability in multiple products Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampled_data_sample (called from sampled_data_continue and interp). | 5.5 |
2022-01-01 | CVE-2021-45946 | Wasm3 Project | Out-of-bounds Write vulnerability in Wasm3 Project Wasm3 0.5.0 Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from Compile_LoopOrBlock and CompileBlockStatements). | 5.5 |
2022-01-01 | CVE-2021-45947 | Wasm3 Project | Out-of-bounds Write vulnerability in Wasm3 Project Wasm3 0.5.0 Wasm3 0.5.0 has an out-of-bounds write in Runtime_Release (called from EvaluateExpression and InitDataSegments). | 5.5 |
2022-01-01 | CVE-2021-45948 | Assimp | Out-of-bounds Write vulnerability in Assimp 5.1.0/5.1.1 Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow in _m3d_safestr (called from m3d_load and Assimp::M3DWrapper::M3DWrapper). | 5.5 |
2022-01-01 | CVE-2021-45949 | Artifex Debian | Out-of-bounds Write vulnerability in multiple products Ghostscript GhostPDL 9.50 through 9.54.0 has a heap-based buffer overflow in sampled_data_finish (called from sampled_data_continue and interp). | 5.5 |
2022-01-01 | CVE-2021-45958 | Ultrajson Project Debian Fedoraproject | Out-of-bounds Write vulnerability in multiple products UltraJSON (aka ujson) through 5.1.0 has a stack-based buffer overflow in Buffer_AppendIndentUnchecked (called from encode). | 5.5 |
2021-12-31 | CVE-2021-4193 | VIM Fedoraproject Debian Apple | vim is vulnerable to Out-of-bounds Read | 5.5 |
2021-12-30 | CVE-2021-20171 | Netgear | Cleartext Storage of Sensitive Information vulnerability in Netgear Rax43 Firmware 1.0.3.96 Netgear RAX43 version 1.0.3.96 stores sensitive information in plaintext. | 5.5 |
2021-12-30 | CVE-2021-4183 | Wireshark Fedoraproject Oracle | Out-of-bounds Read vulnerability in multiple products Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file | 5.5 |
2021-12-29 | CVE-2021-36724 | Forescout | Classic Buffer Overflow vulnerability in Forescout Secureconnector 11.0.4.1024 ForeScout - SecureConnector Local Service DoS - A low privilaged user which doesn't have permissions to shutdown the secure connector service writes a large amount of characters in the installationPath. | 5.5 |
2021-12-27 | CVE-2021-43552 | Philips | Unspecified vulnerability in Philips Patient Information Center IX B.02/C.02/C.03 The use of a hard-coded cryptographic key significantly increases the possibility encrypted data may be recovered from the Patient Information Center iX (PIC iX) Versions B.02, C.02, and C.03. | 5.5 |
2022-01-02 | CVE-2022-22293 | Dolibarr | Cross-site Scripting vulnerability in Dolibarr Erp/Crm 7.0.2 admin/limits.php in Dolibarr 7.0.2 allows HTML injection, as demonstrated by the MAIN_MAX_DECIMALS_TOT parameter. | 5.4 |
2021-12-30 | CVE-2021-43862 | Jquery Terminal Project | Cross-site Scripting vulnerability in Jquery.Terminal Project Jquery.Terminal jQuery Terminal Emulator is a plugin for creating command line interpreters in your applications. | 5.4 |
2021-12-30 | CVE-2021-43861 | Mermaid Project | Unspecified vulnerability in Mermaid Project Mermaid Mermaid is a Javascript based diagramming and charting tool that uses Markdown-inspired text definitions and a renderer to create and modify complex diagrams. | 5.4 |
2021-12-29 | CVE-2021-25993 | Requarks | Cross-site Scripting vulnerability in Requarks Wiki.Js In Requarks wiki.js, versions 2.0.0-beta.147 to 2.5.255 are affected by Stored XSS vulnerability, where a low privileged (editor) user can upload a SVG file that contains malicious JavaScript while uploading assets in the page. | 5.4 |
2021-12-29 | CVE-2021-4175 | Livehelperchat | Unspecified vulnerability in Livehelperchat Live Helper Chat livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 5.4 |
2021-12-29 | CVE-2021-25988 | IF ME | Cross-site Scripting vulnerability in If-Me Ifme In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability (notifications section) which can be directly triggered by sending an ally request to the admin. | 5.4 |
2021-12-29 | CVE-2021-25989 | IF ME | Cross-site Scripting vulnerability in If-Me Ifme In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability in the markdown editor. | 5.4 |
2021-12-29 | CVE-2021-25990 | IF ME | Cross-site Scripting vulnerability in If-Me Ifme In “ifme”, versions v7.22.0 to v7.31.4 are vulnerable against self-stored XSS in the contacts field as it allows loading XSS payloads fetched via an iframe. | 5.4 |
2021-12-28 | CVE-2021-4179 | Livehelperchat | Unspecified vulnerability in Livehelperchat Live Helper Chat livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 5.4 |
2021-12-27 | CVE-2021-45904 | Openwrt | Cross-site Scripting vulnerability in Openwrt 21.02.1 OpenWrt 21.02.1 allows XSS via the Port Forwards Add Name screen. | 5.4 |
2021-12-27 | CVE-2021-45905 | Openwrt | Cross-site Scripting vulnerability in Openwrt 21.02.1 OpenWrt 21.02.1 allows XSS via the Traffic Rules Name screen. | 5.4 |
2021-12-27 | CVE-2021-45906 | Openwrt | Cross-site Scripting vulnerability in Openwrt 21.02.1 OpenWrt 21.02.1 allows XSS via the NAT Rules Name screen. | 5.4 |
2021-12-27 | CVE-2020-20946 | Qibosoft | Cross-site Scripting vulnerability in Qibosoft 7.0 Qibosoft v7 contains a stored cross-site scripting (XSS) vulnerability in the component /admin/index.php?lfj=friendlink&action=add. | 5.4 |
2021-12-27 | CVE-2021-43855 | Requarks | Unspecified vulnerability in Requarks Wiki.Js Wiki.js is a wiki app built on node.js. | 5.4 |
2021-12-27 | CVE-2021-43856 | Requarks | Cross-site Scripting vulnerability in Requarks Wiki.Js Wiki.js is a wiki app built on Node.js. | 5.4 |
2021-12-27 | CVE-2021-24969 | Wpdownloadmanager | Unspecified vulnerability in Wpdownloadmanager Wordpress Download Manager The WordPress Download Manager WordPress plugin before 3.2.22 does not sanitise and escape Template data before outputting it in various pages (such as admin dashboard and frontend). | 5.4 |
2021-12-27 | CVE-2021-24988 | Wprssaggregator | Missing Authorization vulnerability in Wprssaggregator WP RSS Aggregator The WP RSS Aggregator WordPress plugin before 4.19.3 does not sanitise and escape data before outputting it in the System Info admin dashboard, which could lead to a Stored XSS issue due to the wprss_dismiss_addon_notice AJAX action missing authorisation and CSRF checks, allowing any authenticated users, such as subscriber to call it and set a malicious payload in the addon parameter. | 5.4 |
2021-12-30 | CVE-2021-20150 | Trendnet | Missing Authentication for Critical Function vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses information via redirection from the setup wizard. | 5.3 |
2021-12-28 | CVE-2021-4177 | Livehelperchat | Unspecified vulnerability in Livehelperchat Live Helper Chat livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information | 5.3 |
2021-12-30 | CVE-2021-20162 | Trendnet | Cleartext Storage of Sensitive Information vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 stores credentials in plaintext. | 4.9 |
2021-12-30 | CVE-2021-20163 | Trendnet | Insufficiently Protected Credentials vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 leaks information via the ftp web page. | 4.9 |
2021-12-30 | CVE-2021-20164 | Trendnet | Insufficiently Protected Credentials vulnerability in Trendnet Tew-827Dru Firmware 2.08B01 Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses credentials for the smb functionality of the device. | 4.9 |
2022-01-01 | CVE-2021-44717 | Golang Debian | Improper Resource Shutdown or Release vulnerability in multiple products Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion. | 4.8 |
2021-12-27 | CVE-2021-24902 | Typebot | Unspecified vulnerability in Typebot The Typebot | Build beautiful conversational forms WordPress plugin before 1.4.3 does not sanitise and escape the Publish ID setting, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed. | 4.8 |
2021-12-27 | CVE-2021-24992 | Buttonizer | Unspecified vulnerability in Buttonizer The Smart Floating / Sticky Buttons WordPress plugin before 2.5.5 does not sanitise and escape some parameter before outputting them in attributes and page, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed. | 4.8 |
2021-12-27 | CVE-2020-20943 | Qibosoft | Cross-Site Request Forgery (CSRF) vulnerability in Qibosoft 7.0 A Cross-Site Request Forgery (CSRF) in /member/post.php?job=postnew&step=post of Qibosoft v7 allows attackers to force victim users into arbitrarily publishing new articles via a crafted URL. | 4.3 |
2022-01-02 | CVE-2021-36751 | Encsecurity | Insufficient Verification of Data Authenticity vulnerability in Encsecurity Datavault ENC DataVault 7.2.3 and before, and OEM versions, use an encryption algorithm that is vulnerable to data manipulation (without knowledge of the key). | 4.2 |
0 Low Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|