Lista CVE - 2021 / Giugno
Visualizzazione 401 - 500 di 1691 CVE per Giugno 2021 (Pagina 5 di 17)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2021-31942 | 2021-06-08 | 3D Viewer Remote Code Execution Vulnerability |
| CVE-2021-31943 | 2021-06-08 | 3D Viewer Remote Code Execution Vulnerability |
| CVE-2021-31944 | 2021-06-08 | 3D Viewer Information Disclosure Vulnerability |
| CVE-2021-31945 | 2021-06-08 | Paint 3D Remote Code Execution Vulnerability |
| CVE-2021-31946 | 2021-06-08 | Paint 3D Remote Code Execution Vulnerability |
| CVE-2021-31948 | 2021-06-08 | Microsoft SharePoint Server Spoofing Vulnerability |
| CVE-2021-31950 | 2021-06-08 | Microsoft SharePoint Server Spoofing Vulnerability |
| CVE-2021-31949 | 2021-06-08 | Microsoft Outlook Remote Code Execution Vulnerability |
| CVE-2021-31951 | 2021-06-08 | Windows Kernel Elevation of Privilege Vulnerability |
| CVE-2021-31952 | 2021-06-08 | Windows Kernel-Mode Driver Elevation of Privilege Vulnerability |
| CVE-2021-31953 | 2021-06-08 | Windows Filter Manager Elevation of Privilege Vulnerability |
| CVE-2021-31954 | 2021-06-08 | Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| CVE-2021-31955 | 2021-06-08 | Windows Kernel Information Disclosure Vulnerability |
| CVE-2021-31956 | 2021-06-08 | Windows NTFS Elevation of Privilege Vulnerability |
| CVE-2021-31957 | 2021-06-08 | ASP.NET Core Denial of Service Vulnerability |
| CVE-2021-31958 | 2021-06-08 | Windows NTLM Elevation of Privilege Vulnerability |
| CVE-2021-31959 | 2021-06-08 | Scripting Engine Memory Corruption Vulnerability |
| CVE-2021-31960 | 2021-06-08 | Windows Bind Filter Driver Information Disclosure Vulnerability |
| CVE-2021-31962 | 2021-06-08 | Kerberos AppContainer Security Feature Bypass Vulnerability |
| CVE-2021-31963 | 2021-06-08 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
| CVE-2021-31964 | 2021-06-08 | Microsoft SharePoint Server Spoofing Vulnerability |
| CVE-2021-31965 | 2021-06-08 | Microsoft SharePoint Server Information Disclosure Vulnerability |
| CVE-2021-31966 | 2021-06-08 | Microsoft SharePoint Server Remote Code Execution Vulnerability |
| CVE-2021-31967 | 2021-06-08 | VP9 Video Extensions Remote Code Execution Vulnerability |
| CVE-2021-31968 | 2021-06-08 | Windows Remote Desktop Services Denial of Service Vulnerability |
| CVE-2021-31969 | 2021-06-08 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
| CVE-2021-31970 | 2021-06-08 | Windows TCP/IP Driver Security Feature Bypass Vulnerability |
| CVE-2021-31971 | 2021-06-08 | Windows HTML Platforms Security Feature Bypass Vulnerability |
| CVE-2021-31972 | 2021-06-08 | Event Tracing for Windows Information Disclosure Vulnerability |
| CVE-2021-31973 | 2021-06-08 | Windows GPSVC Elevation of Privilege Vulnerability |
| CVE-2021-31974 | 2021-06-08 | Server for NFS Denial of Service Vulnerability |
| CVE-2021-31975 | 2021-06-08 | Server for NFS Information Disclosure Vulnerability |
| CVE-2021-31976 | 2021-06-08 | Server for NFS Information Disclosure Vulnerability |
| CVE-2021-31977 | 2021-06-08 | Windows Hyper-V Denial of Service Vulnerability |
| CVE-2021-31978 | 2021-06-08 | Microsoft Defender Denial of Service Vulnerability |
| CVE-2021-31980 | 2021-06-08 | Microsoft Intune Management Extension Remote Code Execution Vulnerability |
| CVE-2021-31983 | 2021-06-08 | Paint 3D Remote Code Execution Vulnerability |
| CVE-2021-31985 | 2021-06-08 | Microsoft Defender Remote Code Execution Vulnerability |
| CVE-2021-33741 | 2021-06-08 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability |
| CVE-2021-33739 | 2021-06-08 | Microsoft DWM Core Library Elevation of Privilege Vulnerability |
| CVE-2021-33742 | 2021-06-08 | Windows MSHTML Platform Remote Code Execution Vulnerability |
| CVE-2021-27597 | 2021-06-09 | SAP NetWeaver AS for ABAP (RFC Gateway), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated attacker without specific knowledge of the... |
| CVE-2021-27606 | 2021-06-09 | SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker without specific knowledge... |
| CVE-2021-27607 | 2021-06-09 | SAP NetWeaver ABAP Server and ABAP Platform (Dispatcher), versions - KRNL32NUC - 7.22,7.22EXT, KRNL32UC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated attacker without... |
| CVE-2021-27620 | 2021-06-09 | SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to... |
| CVE-2021-27622 | 2021-06-09 | SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to... |
| CVE-2021-27623 | 2021-06-09 | SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to... |
| CVE-2021-27624 | 2021-06-09 | SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to... |
| CVE-2021-27625 | 2021-06-09 | SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to... |
| CVE-2021-27626 | 2021-06-09 | SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to... |
| CVE-2021-27627 | 2021-06-09 | SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to... |
| CVE-2021-27628 | 2021-06-09 | SAP NetWeaver ABAP Server and ABAP Platform (Dispatcher), versions - KRNL32NUC - 7.22,7.22EXT, KRNL32UC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated attacker without... |
| CVE-2021-27629 | 2021-06-09 | SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker without specific knowledge... |
| CVE-2021-27630 | 2021-06-09 | SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker without specific knowledge... |
| CVE-2021-27631 | 2021-06-09 | SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker without specific knowledge... |
| CVE-2021-27632 | 2021-06-09 | SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker without specific knowledge... |
| CVE-2021-27633 | 2021-06-09 | SAP NetWeaver AS for ABAP (RFC Gateway), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated attacker without specific knowledge of the... |
| CVE-2021-27634 | 2021-06-09 | SAP NetWeaver AS for ABAP (RFC Gateway), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated attacker without specific knowledge of the... |
| CVE-2021-20728 | 2021-06-09 | Improper access control vulnerability in goo blog App for Android ver.1.2.25 and earlier and for iOS ver.1.3.3 and earlier allows a remote attacker to lead a user to access an... |
| CVE-2021-20730 | 2021-06-09 | Improper access control vulnerability in WSR-1166DHP3 firmware Ver.1.16 and prior and WSR-1166DHP4 firmware Ver.1.02 and prior allows an attacker to obtain configuration information via unspecified vectors. |
| CVE-2021-20731 | 2021-06-09 | WSR-1166DHP3 firmware Ver.1.16 and prior and WSR-1166DHP4 firmware Ver.1.02 and prior allow an attacker to execute arbitrary OS commands with root privileges via unspecified vectors. |
| CVE-2021-20732 | 2021-06-09 | The ATOM (ATOM - Smart life App for Android versions prior to 1.8.1 and ATOM - Smart life App for iOS versions prior to 1.8.2) does not verify server certificate... |
| CVE-2021-28169 | 2021-06-09 | For Eclipse Jetty versions <= 9.4.40, <= 10.0.2, <= 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF... |
| CVE-2020-11126 | 2021-06-09 | Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity,... |
| CVE-2020-11134 | 2021-06-09 | Possible stack out of bound write might happen due to time bitmap length and bit duration fields of the attributes like NAN ranging setup attribute inside a NAN management frame... |
| CVE-2020-11159 | 2021-06-09 | Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE length is less than length of frame pointer being accessed in Snapdragon Auto, Snapdragon Compute,... |
| CVE-2020-11160 | 2021-06-09 | Resource leakage issue during dci client registration due to reference count is not decremented if dci client registration fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT,... |
| CVE-2020-11161 | 2021-06-09 | Out-of-bounds memory access can occur while calculating alignment requirements for a negative width from external components in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon... |
| CVE-2020-11165 | 2021-06-09 | Memory corruption due to buffer overflow while copying the message provided by HLOS into buffer without validating the length of buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer... |
| CVE-2020-11178 | 2021-06-09 | Trusted APPS to overwrite the CPZ memory of another use-case as TZ only checks the physical address not overlapping with its memory and its RoT memory in Snapdragon Auto, Snapdragon... |
| CVE-2020-11182 | 2021-06-09 | Possible heap overflow while parsing NAL header due to lack of check of length of data received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon... |
| CVE-2020-11233 | 2021-06-09 | Time-of-check time-of-use race condition While processing partition entries due to newly created buffer was read again from mmc without validation in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial... |
| CVE-2020-11235 | 2021-06-09 | Buffer overflow might occur while parsing unified command due to lack of check of input data received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer... |
| CVE-2020-11238 | 2021-06-09 | Possible Buffer over-read in ARP/NS parsing due to lack of check of packet length received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon... |
| CVE-2020-11239 | 2021-06-09 | Use after free issue when importing a DMA buffer by using the CPU address of the buffer due to attachment is not cleaned up properly in Snapdragon Auto, Snapdragon Compute,... |
| CVE-2020-11240 | 2021-06-09 | Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not enough storage is allocated for the copy of the user argument in... |
| CVE-2020-11241 | 2021-06-09 | Out of bound read will happen if EAPOL Key length is less than expected while processing NAN shared key descriptor attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer... |
| CVE-2020-11250 | 2021-06-09 | Use after free due to race condition when reopening the device driver repeatedly in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice... |
| CVE-2020-11256 | 2021-06-09 | Memory corruption due to lack of check of validation of pointer to buffer passed to trustzone in Snapdragon Wired Infrastructure and Networking |
| CVE-2020-11257 | 2021-06-09 | Memory corruption due to lack of validation of pointer arguments passed to TrustZone BSP in Snapdragon Wired Infrastructure and Networking |
| CVE-2020-11258 | 2021-06-09 | Memory corruption due to lack of validation of pointer arguments passed to Trustzone BSP in Snapdragon Wired Infrastructure and Networking |
| CVE-2020-11259 | 2021-06-09 | Memory corruption due to lack of validation of pointer arguments passed to Trustzone BSP in Snapdragon Wired Infrastructure and Networking |
| CVE-2020-11260 | 2021-06-09 | An improper free of uninitialized memory can occur in DIAG services in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile |
| CVE-2020-11261 | 2021-06-09 | Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon... |
| CVE-2020-11262 | 2021-06-09 | A race between command submission and destroying the context can cause an invalid context being added to the list leads to use after free issue. in Snapdragon Auto, Snapdragon Compute,... |
| CVE-2020-11265 | 2021-06-09 | Information disclosure issue due to lack of validation of pointer arguments passed to TZ BSP in Snapdragon Wired Infrastructure and Networking |
| CVE-2020-11266 | 2021-06-09 | Image address is dereferenced before validating its range which can cause potential QSEE information leakage in Snapdragon Wired Infrastructure and Networking |
| CVE-2020-11176 | 2021-06-09 | While processing server certificate from IPSec server, certificate validation for subject alternative name API can cause heap overflow which can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon... |
| CVE-2020-11267 | 2021-06-09 | Stack out-of-bounds write occurs while setting up a cipher device if the provided IV length exceeds the max limit value in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT,... |
| CVE-2020-11291 | 2021-06-09 | Possible buffer overflow while updating ikev2 parameters for delete payloads received during informational exchange due to lack of check of input validation for certain parameters received from the ePDG server... |
| CVE-2020-11292 | 2021-06-09 | Possible buffer overflow in voice service due to lack of input validation of parameters in QMI Voice API in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial... |
| CVE-2020-11298 | 2021-06-09 | While waiting for a response to a callback or listener request, non-secure clients can change permissions to shared memory buffers used by HLOS Invoke Call to secure kernel in Snapdragon... |
| CVE-2020-11304 | 2021-06-09 | Possible out of bound read in DRM due to improper buffer length check. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice... |
| CVE-2020-11306 | 2021-06-09 | Possible integer overflow in RPMB counter due to lack of length check on user provided data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon... |
| CVE-2021-1900 | 2021-06-09 | Possible use after free in Display due to race condition while creating an external display in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,... |
| CVE-2021-1937 | 2021-06-09 | Reachable assertion is possible while processing peer association WLAN message from host and nonstandard incoming packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT,... |
| CVE-2021-34364 | 2021-06-09 | The Refined GitHub browser extension before 21.6.8 might allow XSS via a link in a document. NOTE: github.com sends Content-Security-Policy headers to, in general, address XSS and other concerns. |
| CVE-2021-26313 | 2021-06-09 | AMD Speculative Code Store Bypass |
| CVE-2021-26314 | 2021-06-09 | AMD Speculative execution with Floating-Point Value Injection |
| CVE-2021-34370 | 2021-06-09 | Accela Civic Platform through 20.1 allows ssoAdapter/logoutAction.do successURL XSS. NOTE: the vendor states "there are configurable security flags and we are unable to reproduce them with the available information. |