Lista CVE - 2021 / Gennaio
Visualizzazione 801 - 900 di 1514 CVE per Gennaio 2021 (Pagina 9 di 16)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2021-23836 | 2021-01-15 | An issue was discovered in flatCore before 2.0.0 build 139.... |
| CVE-2021-23837 | 2021-01-15 | An issue was discovered in flatCore before 2.0.0 build 139.... |
| CVE-2021-23838 | 2021-01-15 | An issue was discovered in flatCore before 2.0.0 build 139.... |
| CVE-2019-16961 | 2021-01-15 | SolarWinds Web Help Desk 12.7.0 allows XSS via a Schedule... |
| CVE-2020-35733 | 2021-01-15 | An issue was discovered in Erlang/OTP before 23.2.2. The ssl... |
| CVE-2021-22168 | 2021-01-15 | A regular expression denial of service issue has been discovered... |
| CVE-2021-22171 | 2021-01-15 | Insufficient validation of authentication parameters in GitLab Pages for GitLab... |
| CVE-2021-22167 | 2021-01-15 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2021-22166 | 2021-01-15 | An attacker could cause a Prometheus denial of service in... |
| CVE-2020-26414 | 2021-01-15 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2020-35748 | 2021-01-15 | Cross-site scripting (XSS) vulnerability in models/list-table.php in the FV Flowplayer... |
| CVE-2020-35749 | 2021-01-15 | Directory traversal vulnerability in class-simple_job_board_resume_download_handler.php in the Simple Board Job... |
| CVE-2020-16255 | 2021-01-15 | ownCloud (Core) before 10.5 allows XSS in login page 'forgot... |
| CVE-2021-0202 | 2021-01-15 | Junos OS: MX Series, EX9200 Series: Trio-based MPC memory leak when Integrated Routing and Bridging (IRB) interface is mapped to a VPLS instance or a Bridge-Domain |
| CVE-2021-0203 | 2021-01-15 | Junos OS: EX and QFX5K Series: Storm Control does not work as expected when Redundant Trunk Group is configured |
| CVE-2021-0204 | 2021-01-15 | Junos OS: dexp Local Privilege Escalation vulnerabilities in SUID binaries |
| CVE-2021-0205 | 2021-01-15 | Junos OS: MX Series: Dynamic filter fails to match IPv6 prefix |
| CVE-2021-0206 | 2021-01-15 | Junos OS: NFX Series, SRX Series: PFE may crash upon receipt of specific packet when SSL Proxy is configured. |
| CVE-2021-0207 | 2021-01-15 | NFX250, NFX350, QFX5K Series, EX2300 Series, EX3400 Series, EX4300 Multigigabit, EX4600 Series: Certain genuine traffic received by the Junos OS device will be discarded instead of forwarded. |
| CVE-2021-0208 | 2021-01-15 | Junos OS and Junos OS Evolved: In bidirectional LSP configurations, on MPLS egress router RPD may core upon receipt of specific malformed RSVP packet. |
| CVE-2021-0209 | 2021-01-15 | Junos OS Evolved: Receipt of certain valid BGP update packets from BGP peers may cause RPD to core when using REGEX. |
| CVE-2021-0210 | 2021-01-15 | Junos OS: Privilege escalation in J-Web due to arbitrary command and code execution via information disclosure from another users active session |
| CVE-2021-0211 | 2021-01-15 | Junos OS and Junos OS Evolved: Upon receipt of a specific BGP FlowSpec message network traffic may be disrupted. |
| CVE-2021-0212 | 2021-01-15 | Contrail Networking: Administrator credentials are exposed in a plaintext file |
| CVE-2021-0215 | 2021-01-15 | Junos OS: EX Series, QFX Series, SRX Branch Series, MX Series: Memory leak in packet forwarding engine due to 802.1X authenticator port interface flaps |
| CVE-2021-0217 | 2021-01-15 | Junos OS: EX Series and QFX Series: Memory leak issue processing specific DHCP packets |
| CVE-2021-0218 | 2021-01-15 | Junos OS: Command injection vulnerability in license-check daemon |
| CVE-2021-0219 | 2021-01-15 | Junos OS: Command injection vulnerability in 'request system software' CLI command |
| CVE-2021-0220 | 2021-01-15 | Junos Space: Shared secrets stored in recoverable format and directly exposed through the UI |
| CVE-2021-0221 | 2021-01-15 | Junos OS: QFX Series: Traffic loop Denial of Service (DoS) upon receipt of specific IP multicast traffic |
| CVE-2021-0222 | 2021-01-15 | Junos OS: Upon receipt of certain protocol packets with invalid payloads a self-propagating Denial of Service may occur. |
| CVE-2021-0223 | 2021-01-15 | Junos OS: telnetd.real Local Privilege Escalation vulnerabilities in SUID binaries |
| CVE-2021-21237 | 2021-01-15 | Git LFS can execute a Git binary from the current directory on Windows |
| CVE-2020-24641 | 2021-01-15 | In Aruba AirWave Glass before 1.3.3, there is a Server-Side... |
| CVE-2020-24638 | 2021-01-15 | Multiple authenticated remote command executions are possible in Airwave Glass... |
| CVE-2020-24639 | 2021-01-15 | There is a vulnerability caused by unsafe Java deserialization that... |
| CVE-2020-24640 | 2021-01-15 | There is a vulnerability caused by insufficient input validation that... |
| CVE-2021-21244 | 2021-01-15 | Pre-Auth SSTI via Bean validation message tampering |
| CVE-2021-21243 | 2021-01-15 | Pre-Auth Unsafe Deserialization on KubernetesResource |
| CVE-2021-21242 | 2021-01-15 | Pre-Auth Unsafe Deserialization on AttachmentUploadServet |
| CVE-2021-21251 | 2021-01-15 | ZipSlip Arbitrary File Upload |
| CVE-2021-21250 | 2021-01-15 | Post-Auth External Entity Expansion (XXE) |
| CVE-2021-21248 | 2021-01-15 | Post-Auth Arbitrary Code execution via Groovy script injection |
| CVE-2021-21249 | 2021-01-15 | Post-Auth Unsafe Yaml deserialization |
| CVE-2021-21247 | 2021-01-15 | Post-Auth Unsafe Deserialization on BasePage (AJAX) |
| CVE-2021-21246 | 2021-01-15 | Pre-Auth Access token leak |
| CVE-2021-21245 | 2021-01-15 | Pre-Auth Arbitrary File Upload |
| CVE-2021-3162 | 2021-01-15 | Docker Desktop Community before 2.5.0.0 on macOS mishandles certificate checking,... |
| CVE-2020-25533 | 2021-01-15 | An issue was discovered in Malwarebytes before 4.0 on macOS.... |
| CVE-2021-3113 | 2021-01-17 | Netsia SEBA+ through 0.16.1 build 70-e669dcd7 allows remote attackers to... |
| CVE-2020-15864 | 2021-01-17 | An issue was discovered in Quali CloudShell 9.3. An XSS... |
| CVE-2020-29446 | 2021-01-18 | Affected versions of Atlassian Fisheye & Crucible allow remote attackers... |
| CVE-2021-3166 | 2021-01-18 | An issue was discovered on ASUS DSL-N14U-B1 1.1.2.3_805 devices. An... |
| CVE-2021-25295 | 2021-01-18 | OpenCATS through 0.9.5-3 has multiple Cross-site Scripting (XSS) issues. |
| CVE-2021-25294 | 2021-01-18 | OpenCATS through 0.9.5-3 unsafely deserializes index.php?m=activity requests, leading to remote... |
| CVE-2021-25178 | 2021-01-18 | An issue was discovered in Open Design Alliance Drawings SDK... |
| CVE-2021-25177 | 2021-01-18 | An issue was discovered in Open Design Alliance Drawings SDK... |
| CVE-2021-25176 | 2021-01-18 | An issue was discovered in Open Design Alliance Drawings SDK... |
| CVE-2021-25175 | 2021-01-18 | An issue was discovered in Open Design Alliance Drawings SDK... |
| CVE-2021-25174 | 2021-01-18 | An issue was discovered in Open Design Alliance Drawings SDK... |
| CVE-2021-25173 | 2021-01-18 | An issue was discovered in Open Design Alliance Drawings SDK... |
| CVE-2020-28473 | 2021-01-18 | Web Cache Poisoning |
| CVE-2020-7343 | 2021-01-18 | Improper Authorization vulnerability in MA |
| CVE-2020-36192 | 2021-01-18 | An issue was discovered in the Source Integration plugin before... |
| CVE-2020-36193 | 2021-01-18 | Tar.php in Archive_Tar through 1.4.11 allows write operations with Directory... |
| CVE-2020-14409 | 2021-01-19 | SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow... |
| CVE-2020-14410 | 2021-01-19 | SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer... |
| CVE-2021-3177 | 2021-01-19 | Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr... |
| CVE-2020-29450 | 2021-01-19 | Affected versions of Atlassian Confluence Server and Data Center allow... |
| CVE-2021-20619 | 2021-01-19 | Cross-site scripting vulnerability in GROWI (v4.2 Series) versions prior to... |
| CVE-2021-3178 | 2021-01-19 | fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is... |
| CVE-2021-22850 | 2021-01-19 | HGiga OAKloud Portal - Security Misconfiguration |
| CVE-2021-22851 | 2021-01-19 | HGiga OAKloud Portal - SQL injection -1 |
| CVE-2021-22852 | 2021-01-19 | HGiga OAKloud Portal - SQL injection -2 |
| CVE-2020-28477 | 2021-01-19 | Prototype Pollution |
| CVE-2020-28478 | 2021-01-19 | Prototype Pollution |
| CVE-2020-28472 | 2021-01-19 | Prototype Pollution |
| CVE-2020-23522 | 2021-01-19 | Pixelimity 1.0 has cross-site request forgery via the admin/setting.php data... |
| CVE-2020-20950 | 2021-01-19 | Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in... |
| CVE-2020-35129 | 2021-01-19 | Mautic before 3.2.4 is affected by stored XSS. An attacker... |
| CVE-2020-35128 | 2021-01-19 | Mautic before 3.2.4 is affected by stored XSS. An attacker... |
| CVE-2020-23342 | 2021-01-19 | A CSRF vulnerability exists in Anchor CMS 0.12.7 anchor/views/users/edit.php that... |
| CVE-2021-3181 | 2021-01-19 | rfc822.c in Mutt through 2.0.4 allows remote attackers to cause... |
| CVE-2021-3182 | 2021-01-19 | D-Link DCS-5220 devices have a buffer overflow. NOTE: This vulnerability... |
| CVE-2020-28481 | 2021-01-19 | Insecure Defaults |
| CVE-2020-28480 | 2021-01-19 | Prototype Pollution |
| CVE-2020-28479 | 2021-01-19 | Denial of Service (DoS) |
| CVE-2020-28482 | 2021-01-19 | Cross-site Request Forgery (CSRF) |
| CVE-2021-3183 | 2021-01-19 | Files.com Fat Client 3.3.6 allows authentication bypass because the client... |
| CVE-2020-4871 | 2021-01-19 | IBM Planning Analytics 2.0 allows web pages to be stored... |
| CVE-2020-4873 | 2021-01-19 | IBM Planning Analytics 2.0 could allow an attacker to obtain... |
| CVE-2020-4881 | 2021-01-19 | IBM Planning Analytics 2.0 could allow a remote attacker to... |
| CVE-2021-25325 | 2021-01-19 | MISP 2.4.136 has XSS via galaxy cluster element values to... |
| CVE-2021-25324 | 2021-01-19 | MISP 2.4.136 has Stored XSS in the galaxy cluster view... |
| CVE-2021-25323 | 2021-01-19 | The default setting of MISP 2.4.136 did not enable the... |
| CVE-2020-27733 | 2021-01-19 | Zoho ManageEngine Applications Manager before 14 build 14880 allows an... |
| CVE-2021-22498 | 2021-01-19 | XML External Entity Injection vulnerability in Micro Focus Application Lifecycle... |
| CVE-2021-3184 | 2021-01-19 | MISP 2.4.136 has XSS via a crafted URL to the... |
| CVE-2020-27270 | 2021-01-19 | SOOIL Developments CoLtd DiabecareRS, AnyDana-i ,AnyDana-A, communication protocol of the... |
| CVE-2020-27272 | 2021-01-19 | SOOIL Developments CoLtd DiabecareRS, AnyDana-i, AnyDana-A, The communication protocol of... |