Lista CVE - 2021 / Settembre
Visualizzazione 1101 - 1200 di 1899 CVE per Settembre 2021 (Pagina 12 di 19)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2020-21125 | 2021-09-15 | An arbitrary file creation vulnerability in UReport 2.2.9 allows attackers... |
| CVE-2020-21126 | 2021-09-15 | MetInfo 7.0.0 contains a Cross-Site Request Forgery (CSRF) via admin/?n=admin&c=index&a=doSaveInfo. |
| CVE-2020-21127 | 2021-09-15 | MetInfo 7.0.0 contains a SQL injection vulnerability via admin/?n=logs&c=index&a=dodel. |
| CVE-2021-40238 | 2021-09-15 | A Cross Site Scriptiong (XSS) vulnerability exists in the admin... |
| CVE-2021-3795 | 2021-09-15 | Inefficient Regular Expression Complexity in sindresorhus/semver-regex |
| CVE-2021-37412 | 2021-09-15 | The TechRadar app 1.1 for Confluence Server allows XSS via... |
| CVE-2021-27045 | 2021-09-15 | A maliciously crafted PDF file in Autodesk Navisworks 2019, 2020,... |
| CVE-2021-27046 | 2021-09-15 | A Memory Corruption vulnerability for PDF files in Autodesk Navisworks... |
| CVE-2021-40155 | 2021-09-15 | A maliciously crafted DWG file in Autodesk Navisworks 2019, 2020,... |
| CVE-2021-40156 | 2021-09-15 | A maliciously crafted DWG file in Autodesk Navisworks 2019, 2020,... |
| CVE-2021-39210 | 2021-09-15 | Autologin cookie accessible by scripts |
| CVE-2021-39211 | 2021-09-15 | Disclosure of GLPI and server information in telemetry endpoint |
| CVE-2021-39213 | 2021-09-15 | IP restriction on GLPI API Bypass with custom header injection |
| CVE-2021-40966 | 2021-09-15 | A Stored XSS exists in TinyFileManager All version up to... |
| CVE-2021-40965 | 2021-09-15 | A Cross-Site Request Forgery (CSRF) vulnerability exists in TinyFileManager all... |
| CVE-2021-40964 | 2021-09-15 | A Path Traversal vulnerability exists in TinyFileManager all version up... |
| CVE-2021-39205 | 2021-09-15 | DOM-based XSS/Content Spoofing via Prototype Pollution |
| CVE-2021-39215 | 2021-09-15 | Authentication Bypass: Forged Tokens Allow Access to Arbitrary Rooms |
| CVE-2021-28901 | 2021-09-15 | Multiple cross-site scripting (XSS) vulnerabilities exist in SITA Software Azur... |
| CVE-2021-20433 | 2021-09-15 | IBM Security Guardium 11.3 could allow a an authenticated user... |
| CVE-2021-29750 | 2021-09-15 | IBM QRadar SIEM 7.3 and 7.4 uses weaker than expected... |
| CVE-2021-29773 | 2021-09-15 | IBM Security Guardium 10.6 and 11.3 could allow a remote... |
| CVE-2021-33690 | 2021-09-15 | Server-Side Request Forgery (SSRF) vulnerability has been detected in the... |
| CVE-2021-33696 | 2021-09-15 | SAP BusinessObjects Business Intelligence Platform (Crystal Report), versions - 420,... |
| CVE-2021-33692 | 2021-09-15 | SAP Cloud Connector, version - 2.0, allows the upload of... |
| CVE-2021-33695 | 2021-09-15 | Potentially, SAP Cloud Connector, version - 2.0 communication with the... |
| CVE-2021-33697 | 2021-09-15 | Under certain conditions, SAP BusinessObjects Business Intelligence Platform (SAPUI5), versions... |
| CVE-2021-33693 | 2021-09-15 | SAP Cloud Connector, version - 2.0, allows an authenticated administrator... |
| CVE-2021-33691 | 2021-09-15 | NWDI Notification Service versions - 7.31, 7.40, 7.50, does not... |
| CVE-2021-33694 | 2021-09-15 | SAP Cloud Connector, version - 2.0, does not sufficiently encode... |
| CVE-2021-33700 | 2021-09-15 | SAP Business One, version - 10.0, allows a local attacker... |
| CVE-2021-33705 | 2021-09-15 | The SAP NetWeaver Portal, versions - 7.10, 7.11, 7.20, 7.30,... |
| CVE-2021-33698 | 2021-09-15 | SAP Business One, version - 10.0, allows an attacker with... |
| CVE-2021-33701 | 2021-09-15 | DMIS Mobile Plug-In or SAP S/4HANA, versions - DMIS 2011_1_620,... |
| CVE-2021-33704 | 2021-09-15 | The Service Layer of SAP Business One, version - 10.0,... |
| CVE-2021-40862 | 2021-09-15 | HashiCorp Terraform Enterprise up to v202108-1 contained an API endpoint... |
| CVE-2021-37909 | 2021-09-15 | CHANGING Inc. TSSServiSignAdapter Windows Versions - Improper Input Validation |
| CVE-2021-37912 | 2021-09-15 | HGiga OAKlouds - Command Injection-1 |
| CVE-2021-37913 | 2021-09-15 | HGiga OAKlouds - Command Injection-2 |
| CVE-2016-20012 | 2021-09-15 | OpenSSH through 8.7 allows remote attackers, who have a suspicion... |
| CVE-2020-21321 | 2021-09-15 | emlog v6.0 contains a Cross-Site Request Forgery (CSRF) via /admin/link.php?action=addlink,... |
| CVE-2020-21322 | 2021-09-15 | An arbitrary file upload vulnerability in Feehi CMS v2.0.8 and... |
| CVE-2021-40639 | 2021-09-15 | Improper access control in Jfinal CMS 5.1.0 allows attackers to... |
| CVE-2021-40881 | 2021-09-15 | An issue in the BAT file parameters of PublicCMS v4.0... |
| CVE-2021-33044 | 2021-09-15 | The identity authentication bypass vulnerability found in some Dahua products... |
| CVE-2020-21480 | 2021-09-15 | An arbitrary file write vulnerability in RGCMS v1.06 allows attackers... |
| CVE-2020-21481 | 2021-09-15 | An arbitrary file upload vulnerability in RGCMS v1.06 allows attackers... |
| CVE-2020-21482 | 2021-09-15 | A cross-site scripting (XSS) vulnerability in RGCMS v1.06 allows attackers... |
| CVE-2020-21483 | 2021-09-15 | An arbitrary file upload vulnerability in Jizhicms v1.5 allows attackers... |
| CVE-2021-33045 | 2021-09-15 | The identity authentication bypass vulnerability found in some Dahua products... |
| CVE-2020-21529 | 2021-09-16 | fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline... |
| CVE-2020-21531 | 2021-09-16 | fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index... |
| CVE-2020-21532 | 2021-09-16 | fig2dev 3.2.7b contains a global buffer overflow in the setfigfont... |
| CVE-2020-21594 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the put_epel_hv_fallback... |
| CVE-2020-21595 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the mc_luma... |
| CVE-2020-21596 | 2021-09-16 | libde265 v1.0.4 contains a global buffer overflow in the decode_CABAC_bit... |
| CVE-2020-21597 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the mc_chroma... |
| CVE-2020-21598 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the ff_hevc_put_unweighted_pred_8_sse... |
| CVE-2020-21599 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the de265_image::available_zscan... |
| CVE-2020-21600 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_pred_avg_16_fallback... |
| CVE-2020-21601 | 2021-09-16 | libde265 v1.0.4 contains a stack buffer overflow in the put_qpel_fallback... |
| CVE-2020-21602 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_bipred_16_fallback... |
| CVE-2020-21603 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the put_qpel_0_0_fallback_16... |
| CVE-2020-21604 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow fault in the... |
| CVE-2020-21605 | 2021-09-16 | libde265 v1.0.4 contains a segmentation fault in the apply_sao_internal function,... |
| CVE-2020-21606 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow fault in the... |
| CVE-2021-39128 | 2021-09-16 | Affected versions of Atlassian Jira Server or Data Center using... |
| CVE-2021-40066 | 2021-09-16 | The access controls on the Mobility read-only API improperly validate... |
| CVE-2021-40067 | 2021-09-16 | The access controls on the Mobility read-write API improperly validate... |
| CVE-2020-14130 | 2021-09-16 | Some js interfaces in the Xiaomi community were exposed, causing... |
| CVE-2020-14109 | 2021-09-16 | There is command injection in the meshd program in the... |
| CVE-2020-14119 | 2021-09-16 | There is command injection in the addMeshNode interface of xqnetwork.lua,... |
| CVE-2020-14124 | 2021-09-16 | There is a buffer overflow in librsa.so called by getwifipwdurl... |
| CVE-2021-34571 | 2021-09-16 | Hard-coded Credentials in Enbra Wireless M-Bus devices |
| CVE-2021-34572 | 2021-09-16 | Insufficient Verification of Data Authenticity in Enbra EWM (replay attack) |
| CVE-2021-34573 | 2021-09-16 | Incorrect calculation in Enbra EWM does not report backflows or no flow events |
| CVE-2021-34576 | 2021-09-16 | Observable discrepancy in Kaden PICOFLUX AiR leaks water consumption |
| CVE-2021-27341 | 2021-09-16 | OpenSIS Community Edition version <= 7.6 is affected by a... |
| CVE-2021-27340 | 2021-09-16 | OpenSIS Community Edition version <= 7.6 is affected by a... |
| CVE-2021-39208 | 2021-09-16 | WriteEntryToDirectory used for an archive extraction is vulnerable to partial path traversal. |
| CVE-2021-34798 | 2021-09-16 | NULL pointer dereference in httpd core |
| CVE-2021-36160 | 2021-09-16 | mod_proxy_uwsgi out of bound read |
| CVE-2021-39239 | 2021-09-16 | XML External Entity (XXE) vulnerability |
| CVE-2021-39275 | 2021-09-16 | ap_escape_quotes buffer overflow |
| CVE-2021-40438 | 2021-09-16 | mod_proxy SSRF |
| CVE-2021-41079 | 2021-09-16 | Apache Tomcat DoS with unexpected TLS packet |
| CVE-2021-39214 | 2021-09-16 | Lacking Protection against HTTP Request Smuggling in mitmproxy |
| CVE-2021-29752 | 2021-09-16 | IBM Db2 11.2 and 11.5 contains an information disclosure vulnerability,... |
| CVE-2021-29763 | 2021-09-16 | IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect... |
| CVE-2021-29825 | 2021-09-16 | IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect... |
| CVE-2021-29842 | 2021-09-16 | IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0 and Liberty... |
| CVE-2021-40669 | 2021-09-16 | SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the... |
| CVE-2021-40670 | 2021-09-16 | SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the... |
| CVE-2020-21530 | 2021-09-16 | fig2dev 3.2.7b contains a segmentation fault in the read_objects function... |
| CVE-2020-21533 | 2021-09-16 | fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject... |
| CVE-2020-21534 | 2021-09-16 | fig2dev 3.2.7b contains a global buffer overflow in the get_line... |
| CVE-2020-21535 | 2021-09-16 | fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function... |
| CVE-2021-41314 | 2021-09-16 | Certain NETGEAR smart switches are affected by a \n injection... |
| CVE-2021-3803 | 2021-09-17 | Inefficient Regular Expression Complexity in fb55/nth-check |
| CVE-2021-3805 | 2021-09-17 | Prototype Pollution in mariocasciaro/object-path |