CWE:
 

Tytuł
Data
Autor
High
ASUS RT-AC66U Remote Root Shell Exploit - acsd param command
28.07.2013
Jacob Holcomb/Gimppy a...
High
Adobe ColdFusion 9 / 10 Remote Root
08.05.2013
HTP
High
Cisco Security Agent Web Management Interface Bug Lets Remote Users Execute Arbitrary Code
14.04.2011
Gerry Eisenhaur
High
Sun Java Applet2ClassLoader Remote Code Execution Exploit
18.03.2011
metasploit
High
RSA, The Security Division of EMC, announces a fix for potential security vulnerability in RSA Access Manager Server
18.03.2011
EMC Product Security R...
High
FreeBSD <= 6.4 Netgraph Local Privledge Escalation Exploit
11.03.2011
zx2c4
High
Citrix Access Gateway Command Execution
07.03.2011
metasploit
High
HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code
15.01.2011
HP
Med.
Palm webOS Camera Application, Unauthorized WriteAccess
03.11.2010
HP
Med.
Palm webOS, Code execution vulnerability in Palm webOSservice API
03.11.2010
HP
High
Palm webOS, webOS Doc Viewer, Execution of ArbitraryCode
03.11.2010
HP
High
HP Insight Control Server Migration for Windows, Remote Cross Site Scripting (XSS), Privilege Escalation, Unauthorized Access
03.11.2010
HP
High
Firefox 3.6.8 - 3.6.11 Interleaving document.write and appendChild Exploit (From the Wild)
03.11.2010
unknown
High
Firefox Interleaving document.write and appendChild Denial of Service
03.11.2010
Daniel Veditz
High
HP ProCurve Access Points, Access Controllers, andMobility Controllers, Privilege Escalation
20.10.2010
HP Software Security R...
Low
RSA, The Security Division of EMC, informs about potential security vulnerability in RSA enVision&#174; versions prior to 3.7 SP
11.08.2010
EMC Product Security R...
High
Micrologix 1100 and 1400 controllers multiple vulnerabilities
18.01.2010
Eyal Udassin from C4
Low
Android Denial Of Service Issues
16.10.2009
Andrea Barisani
High
Siemens Gigaset SE361 Wlan - Remote Reboot
24.09.2009
crashbrz
Low
Exploiting Chrome and Opera\'s inbuilt ATOM/RSS reader with Script Execution and more
22.09.2009
Inferno
High
Accellion File Transfer - SPAM Engine Vulnerabilities
24.08.2009
Eric BEAULIEU
Low
Crashing ZoneAlarm 8.0.020.000 by Checkpoint (Component : TrueVector)
24.08.2009
quakerdoomer
High
Solaris 9 PortBind XDR-DECODE taddr2uaddr() Remote DoS Exploit
22.10.2008
Federico L. Bossi Boni...
Med.
Adobe Acrobat 9 ActiveX Remote Denial of Service Exploit
17.09.2008
Jeremy Brown
Low
DiskCryptor Security Model bypass exploiting wrong BIOS API usage
05.09.2008
iViZ Security Advisori...
High
HPSBMA02362 SSRT080044, SSRT080045 rev.1 - HP OpenView Network Node Manager (OV
04.09.2008
HP Software Security R...
Med.
IE 5.22 on Mac Transmitting HTTP Referer from Secure Page
18.07.2008
Thor Larholm


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2021-09-10
Medium
CVE-2021-37423

Vendor: Zohocorp
Software: Manageengine...
 

 
Zoho ManageEngine ADSelfService Plus 6111 and prior is vulnerable to linked applications takeover.

 
2021-09-08
Medium
CVE-2021-39122

Vendor: Atlassian
Software: Data center
 

 
Affected versions of Atlassian Jira Server and Data Center allow anonymous remote attackers to view users' emails via an Information Disclosure vulnerability in the /rest/api/2/search endpoint. The affected versions are before version 8.5.13, from version 8.6.0 before 8.13.5, and from version 8.14.0 before 8.15.1.

 
Low
CVE-2021-39121

Vendor: Atlassian
Software: Data center
 

 
Affected versions of Atlassian Jira Server and Data Center allow authenticated remote attackers to enumerate the keys of private Jira projects via an Information Disclosure vulnerability in the /rest/api/latest/projectvalidate/key endpoint. The affected versions are before version 8.5.18, from version 8.6.0 before 8.13.10, and from version 8.14.0 before 8.18.2.

 
Low
CVE-2021-39116

Vendor: Atlassian
Software: Data center
 

 
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the GIF Image Reader component. The affected versions are before version 8.19.0.

 
Low
CVE-2021-30718

Vendor: Apple
Software: Macos
 

 
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.4. A non-privileged user may be able to modify restricted settings.

 
Low
CVE-2021-30716

Vendor: Apple
Software: Mac os x
 

 
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An attacker in a privileged network position may be able to perform denial of service.

 
Medium
CVE-2021-30715

Vendor: Apple
Software: Ipados
 

 
A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously crafted message may lead to a denial of service.

 
Medium
CVE-2021-30712

Vendor: Apple
Software: Mac os x
 

 
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.

 
Medium
CVE-2021-30677

Vendor: Apple
Software: Ipados
 

 
This issue was addressed with improved environment sanitization. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur 11.4, watchOS 7.5. A malicious application may be able to break out of its sandbox.

 
Medium
CVE-2021-30676

Vendor: Apple
Software: Mac os x
 

 
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A local user may be able to cause unexpected system termination or read kernel memory.

 

 


Copyright 2021, cxsecurity.com

 

Back to Top