Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2021-22897 |
|
Vulnerability in haxx (CVE-2021-22897)
vulnerability in haxx (CVE-2021-22897). Risk of unauthorized operations or information disclosure. Exploitable via ``CURLOPT_SSL_CIPHER_LIST``.
|
| CVE-2020-21843 |
|
Out-of-Bounds Write in c (CVE-2020-21843)
out-of-bounds write in c (CVE-2020-21843). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21834 |
|
A null pointer deference issue exists in GNU LibreDWG 0.10 via get_bmp ../../programs/dwgbmp.c:164.
A null pointer deference issue exists in GNU LibreDWG 0.10 via get_bmp ../../programs/dwgbmp.c:164.
|
| CVE-2020-21839 |
|
Vulnerability in c (CVE-2020-21839)
vulnerability in c (CVE-2020-21839). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-21840 |
|
Out-of-Bounds Write in c (CVE-2020-21840)
out-of-bounds write in c (CVE-2020-21840). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21827 |
|
Out-of-Bounds Write in c (CVE-2020-21827)
out-of-bounds write in c (CVE-2020-21827). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21814 |
|
Out-of-Bounds Write in c (CVE-2020-21814)
out-of-bounds write in c (CVE-2020-21814). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21815 |
|
Vulnerability in c (CVE-2020-21815)
vulnerability in c (CVE-2020-21815). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-21816 |
|
Out-of-Bounds Write in c (CVE-2020-21816)
out-of-bounds write in c (CVE-2020-21816). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21817 |
|
Vulnerability in c (CVE-2020-21817)
vulnerability in c (CVE-2020-21817). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-21818 |
|
Out-of-Bounds Write in c (CVE-2020-21818)
out-of-bounds write in c (CVE-2020-21818). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21819 |
|
Out-of-Bounds Write in c (CVE-2020-21819)
out-of-bounds write in c (CVE-2020-21819). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21813 |
|
Out-of-Bounds Write in c (CVE-2020-21813)
out-of-bounds write in c (CVE-2020-21813). Successful exploitation can lead to full system takeover.
|
| CVE-2021-29051 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29051)
cross-site scripting in liferay (CVE-2021-29051). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29052 |
|
Vulnerability in liferay (CVE-2021-29052)
vulnerability in liferay (CVE-2021-29052). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29048 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29048)
cross-site scripting in liferay (CVE-2021-29048). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29043 |
|
Vulnerability in liferay (CVE-2021-29043)
vulnerability in liferay (CVE-2021-29043). Confidential information can be exposed externally.
|
| CVE-2021-29044 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29044)
cross-site scripting in liferay (CVE-2021-29044). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29045 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29045)
cross-site scripting in liferay (CVE-2021-29045). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29053 |
|
SQL Injection in sqli (CVE-2021-29053)
SQL injection in sqli (CVE-2021-29053). Successful exploitation can lead to full system takeover.
|
| CVE-2021-29046 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29046)
cross-site scripting in liferay (CVE-2021-29046). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29041 |
|
Vulnerability in dos (CVE-2021-29041)
vulnerability in dos (CVE-2021-29041). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29040 |
|
Vulnerability in liferay (CVE-2021-29040)
vulnerability in liferay (CVE-2021-29040). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29047 |
|
Authentication Bypass in liferay (CVE-2021-29047)
authentication bypass in liferay (CVE-2021-29047). Data can be tampered with by attackers.
|
| CVE-2021-29039 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29039)
cross-site scripting in liferay (CVE-2021-29039). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-25660 |
|
Buffer Overflow in siemens (CVE-2021-25660)
vulnerability in siemens (CVE-2021-25660). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-25661 |
|
Vulnerability in siemens (CVE-2021-25661)
vulnerability in siemens (CVE-2021-25661). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-25662 |
|
Vulnerability in siemens (CVE-2021-25662)
vulnerability in siemens (CVE-2021-25662). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-27383 |
|
Buffer Overflow in siemens (CVE-2021-27383)
vulnerability in siemens (CVE-2021-27383). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-27384 |
|
Vulnerability in siemens (CVE-2021-27384)
vulnerability in siemens (CVE-2021-27384). Successful exploitation can lead to full system takeover.
|
| CVE-2021-27385 |
|
Vulnerability in siemens (CVE-2021-27385)
vulnerability in siemens (CVE-2021-27385). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-27386 |
|
Buffer Overflow in siemens (CVE-2021-27386)
vulnerability in siemens (CVE-2021-27386). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-25667 |
|
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE S...
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE SC-600 Family (All versions >= V2.0 and < V2.1.3), SCALANCE XB-200 (All versions < V4.1), SCALANCE XC...
|
| CVE-2021-22713 |
|
Buffer Overflow in schneider-electric (CVE-2021-22713)
vulnerability in schneider-electric (CVE-2021-22713). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-24913 |
|
SQL Injection in c (CVE-2020-24913)
SQL injection in c (CVE-2020-24913). Successful exploitation can lead to full system takeover.
|
| CVE-2020-24914 |
|
Unsafe Deserialization in qcubed (CVE-2020-24914)
vulnerability in qcubed (CVE-2020-24914). Successful exploitation can lead to full system takeover.
|
| CVE-2020-24036 |
|
Unsafe Deserialization in fork-cms (CVE-2020-24036)
vulnerability in fork-cms (CVE-2020-24036). Successful exploitation can lead to full system takeover.
|
| CVE-2020-24912 |
|
Cross-Site Scripting (XSS) in qcubed (CVE-2020-24912)
cross-site scripting in qcubed (CVE-2020-24912). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14491 |
|
Out-of-Bounds Write in platform/external/dnsmasq (CVE-2017-14491)
out-of-bounds write in platform/external/dnsmasq (CVE-2017-14491). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `11:2021-03-01` or later.
|
| CVE-2021-22702 |
|
Vulnerability in schneider-electric (CVE-2021-22702)
vulnerability in schneider-electric (CVE-2021-22702). Confidential information can be exposed externally.
|
| CVE-2021-22703 |
|
Vulnerability in schneider-electric (CVE-2021-22703)
vulnerability in schneider-electric (CVE-2021-22703). Confidential information can be exposed externally.
|
| CVE-2021-22701 |
|
Cross-Site Request Forgery (CSRF) in schneider-electric (CVE-2021-22701)
vulnerability in schneider-electric (CVE-2021-22701). Data can be tampered with by attackers.
|
| CVE-2021-25299 |
|
Cross-Site Scripting (XSS) in nagios (CVE-2021-25299)
cross-site scripting in nagios (CVE-2021-25299). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-15798 |
|
Vulnerability in siemens (CVE-2020-15798)
vulnerability in siemens (CVE-2020-15798). Successful exploitation can lead to full system takeover.
|
| CVE-2021-26117 |
|
Authentication Bypass in apache (CVE-2021-26117)
authentication bypass in apache (CVE-2021-26117). Data can be tampered with by attackers.
|
| CVE-2021-26118 |
|
Vulnerability in org.apache.activemq:artemis-openwire-protocol (CVE-2021-26118)
vulnerability in org.apache.activemq:artemis-openwire-protocol (CVE-2021-26118). Data can be tampered with by attackers. Mitigation: upgrade to `2.16.0` or later.
|
| CVE-2020-28874 |
|
Authentication Bypass in projectsend (CVE-2020-28874)
authentication bypass in projectsend (CVE-2020-28874). Data can be tampered with by attackers.
|
| CVE-2020-8554 |
|
Vulnerability in k8s.io/kubernetes (CVE-2020-8554)
vulnerability in k8s.io/kubernetes (CVE-2020-8554). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-20949 |
|
Vulnerability in st (CVE-2020-20949)
vulnerability in st (CVE-2020-20949). Confidential information can be exposed externally.
|
| CVE-2020-28707 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2020-28707)
cross-site scripting in wordpress (CVE-2020-28707). Risk of unauthorized operations or information disclosure.
|