Remotely alerts

CVE-2021-30837

on Oct. 20, 2021, 10:11 p.m.

A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An application may be able to execute arbitrary code with kernel privileges.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-30838

on Feb. 11, 2022, 3:19 p.m.

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to execute arbitrary code with system privileges on devices with an Apple Neural Engine.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-30810

on Oct. 20, 2021, 10:10 p.m.

An authorization issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An attacker in physical proximity may be able to force a user onto a malicious Wi-Fi network during device setup.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-30815

on Oct. 20, 2021, 10 p.m.

A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. A local attacker may be able to view contacts from the lock screen.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-30819

on Feb. 11, 2022, 2:41 p.m.

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 15 and iPadOS 15. Processing a maliciously crafted USD file may disclose memory contents.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-30820

on Oct. 20, 2021, 9:56 p.m.

A logic issue was addressed with improved state management. This issue is fixed in iOS 14.8 and iPadOS 14.8. A remote attacker may be able to cause arbitrary code execution.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-30826

on March 25, 2022, 6:18 p.m.

A logic issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. In certain situations, the baseband would fail to enable integrity and ciphering protection.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-30825

on Feb. 22, 2022, 2:43 p.m.

This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15. A local attacker may be able to cause unexpected application termination or arbitrary code execution.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-30811

on Feb. 11, 2022, 2:42 p.m.

This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8. A local attacker may be able to read sensitive information.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-37737

on Oct. 20, 2021, 9:44 p.m.

A remote SQL injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released patches for ClearPass Policy Manager that address this security vulnerability.

Learn more

Tags:  Vendor Advisory

CVE-2021-37736

on Oct. 20, 2021, 9:43 p.m.

A remote authentication bypass vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released patches for ClearPass Policy Manager that address this security vulnerability.

Learn more

Tags:  Vendor Advisory

CVE-2021-39358

on Oct. 30, 2021, 2:15 a.m.

In GNOME libgfbgraph through 0.2.4, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync objects it creates, leaving users vulnerable to network MITM attacks. NOTE: this is similar to CVE-2016-20011.

Learn more

Tags:  Issue TrackingVendor Advisory

CVE-2021-41148

on Oct. 21, 2021, 5:14 p.m.

Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments. Prior to version 11.16.99.173 of Community Edition and versions 11.16-6 and 11.15-8 of Enterprise Edition, an attacker with the ability to add one the CI widget to its personal dashboard could execute arbitrary SQL queries. …

Learn more

Tags:  Vendor Advisory

CVE-2021-38562

on Oct. 21, 2021, 5 p.m.

Best Practical Request Tracker (RT) 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm.

Learn more

Tags:  Vendor Advisory

CVE-2021-36097

on Oct. 21, 2021, 4:45 p.m.

Agents are able to lock the ticket without the "Owner" permission. Once the ticket is locked, it could be moved to the queue where the agent has "rw" permissions and gain a full control. This issue affects: OTRS AG OTRS 8.0.x version: 8.0.16 and prior versions.

Learn more

Tags:  Vendor Advisory

CVE-2021-38297

on April 1, 2022, 8:09 p.m.

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.

Learn more

Tags:  Mailing ListRelease NotesThird Party AdvisoryPatchVendor AdvisoryBroken Link

CVE-2020-7322

on May 3, 2022, 1:04 p.m.

Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local users to gain access to sensitive information via incorrectly logging of sensitive information in debug logs.

Learn more

Tags:  Vendor Advisory

CVE-2021-35496

on Nov. 23, 2021, 9:46 p.m.

The XMLA Connections component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server for AWS Marketplace, TIBCO JasperReports Server for ActiveMatrix BPM, and TIBCO JasperReports Server for Microsoft Azure contains a difficult to …

Learn more

Tags:  Vendor Advisory

CVE-2020-14310

on Oct. 19, 2021, 1:19 p.m.

There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn't verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font …

Learn more

Tags:  Issue TrackingVendor Advisory

CVE-2021-35495

on Oct. 19, 2021, 1:16 p.m.

The Scheduler Connection component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server for AWS Marketplace, TIBCO JasperReports Server for ActiveMatrix BPM, and TIBCO JasperReports Server for Microsoft Azure contains an easily exploitable …

Learn more

Tags:  Vendor Advisory

CVE-2020-10731

on Oct. 19, 2021, 1 p.m.

A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This flaw causes sVirt, an important isolation mechanism, to be disabled for all running virtual machines.

Learn more

Tags:  Issue TrackingVendor Advisory

CVE-2021-41802

on Aug. 1, 2022, 10:15 p.m.

HashiCorp Vault and Vault Enterprise through 1.7.4 and 1.8.3 allowed a user with write permission to an entity alias ID sharing a mount accessor with another user to acquire this other user’s policies by merging their identities. Fixed in Vault and Vault Enterprise 1.7.5 and 1.8.4.

Learn more

Tags:  Vendor Advisory

CVE-2020-1653

on Oct. 19, 2021, 12:57 p.m.

On Juniper Networks Junos OS devices, a stream of TCP packets sent to the Routing Engine (RE) may cause mbuf leak which can lead to Flexible PIC Concentrator (FPC) crash or the system to crash and restart (vmcore). This issue can be trigged by IPv4 or IPv6 and it is caused only by TCP packets. …

Learn more

Tags:  Vendor Advisory

CVE-2021-35494

on Oct. 19, 2021, 12:55 p.m.

The Rest API component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server for AWS Marketplace, TIBCO JasperReports Server for ActiveMatrix BPM, and TIBCO JasperReports Server for Microsoft Azure contain a race condition …

Learn more

Tags:  Vendor Advisory

CVE-2020-1651

on Oct. 19, 2021, 12:54 p.m.

On Juniper Networks MX series, receipt of a stream of specific Layer 2 frames may cause a memory leak resulting in the packet forwarding engine (PFE) on the line card to crash and restart, causing traffic interruption. By continuously sending this stream of specific layer 2 frame, an attacker connected to the same broadcast domain …

Learn more

Tags:  Vendor Advisory

CVE-2020-2228

on Oct. 19, 2021, 12:52 p.m.

Jenkins Gitlab Authentication Plugin 1.5 and earlier does not perform group authorization checks properly, resulting in a privilege escalation vulnerability.

Learn more

Tags:  Vendor Advisory

CVE-2020-7284

on Oct. 19, 2021, 12:52 p.m.

Exposure of Sensitive Information in McAfee Network Security Management (NSM) prior to 10.1.7.7 allows local users to gain unauthorised access to the root account via execution of carefully crafted commands from the restricted command line interface (CLI).

Learn more

Tags:  Vendor Advisory

CVE-2019-3588

on Oct. 19, 2021, 12:44 p.m.

Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may allow unauthorized users to interact with the On-Access Scan Messages - Threat Alert Window when the Windows Login Screen is locked.

Learn more

Tags:  Vendor Advisory

CVE-2019-3585

on Oct. 19, 2021, 12:43 p.m.

Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may allow local users to interact with the On-Access Scan Messages - Threat Alert Window with elevated privileges via running McAfee Tray with elevated privileges.

Learn more

Tags:  Vendor Advisory

CVE-2020-1775

on Oct. 19, 2021, 12:40 p.m.

BCC recipients in mails sent from OTRS are visible in article detail on external interface. This issue affects OTRS: 8.0.3 and prior versions, 7.0.17 and prior versions.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2019-18945

on Oct. 19, 2021, 12:19 p.m.

Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to privilege escalation vulnerability.

Learn more

Tags:  Permissions RequiredRelease NotesVendor Advisory

CVE-2020-7925

on Oct. 19, 2021, 12:08 p.m.

Incorrect validation of user input in the role name parser may lead to use of uninitialized memory allowing an unauthenticated attacker to use a specially crafted request to cause a denial of service. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.0-rc12; v4.2 versions prior to 4.2.9.

Learn more

Tags:  Issue TrackingVendor Advisory

CVE-2020-25699

on Oct. 19, 2021, 12:07 p.m.

In moodle, insufficient capability checks could lead to users with the ability to course restore adding additional capabilities to roles within that course. Versions affected: 3.9 to 3.9.2, 3.8 to 3.8.5, 3.7 to 3.7.8, 3.5 to 3.5.14 and earlier unsupported versions. This is fixed in moodle 3.9.3, 3.8.6, 3.7.9, 3.5.15, and 3.10.

Learn more

Tags:  Vendor Advisory

CVE-2020-25689

on Oct. 19, 2021, 12:06 p.m.

A memory leak flaw was found in WildFly in all versions up to 21.0.0.Final, where host-controller tries to reconnect in a loop, generating new connections which are not properly closed while not able to connect to domain-controller. This flaw allows an attacker to cause an Out of memory (OOM) issue, leading to a denial of …

Learn more

Tags:  ExploitIssue TrackingPatchVendor Advisory

CVE-2020-1678

on Oct. 19, 2021, 12:05 p.m.

On Juniper Networks Junos OS and Junos OS Evolved platforms with EVPN configured, receipt of specific BGP packets causes a slow memory leak. If the memory is exhausted the rpd process might crash. If the issue occurs, the memory leak could be seen by executing the "show task memory detail | match policy | match …

Learn more

Tags:  Vendor Advisory

CVE-2020-1677

on Oct. 19, 2021, 12:04 p.m.

When SAML authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly handle child elements in SAML responses, allowing a remote attacker to modify a valid SAML response without invalidating its cryptographic signature to bypass SAML authentication security controls. This issue affects all Juniper Networks Mist Cloud UI versions prior to September 2 2020.

Learn more

Tags:  Vendor Advisory

CVE-2020-1777

on Oct. 19, 2021, 12:04 p.m.

Agent names that participates in a chat conversation are revealed in certain parts of the external interface as well as in chat transcriptions inside the tickets, when system is configured to mask real agent names. This issue affects OTRS; 7.0.21 and prior versions, 8.0.6 and prior versions.

Learn more

Tags:  Vendor Advisory

CVE-2021-41546

on Oct. 19, 2021, 11:59 a.m.

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501 (All versions < V2.14.1), RUGGEDCOM ROX RX1510 (All versions < V2.14.1), RUGGEDCOM ROX RX1511 (All versions < V2.14.1), RUGGEDCOM ROX RX1512 (All versions < V2.14.1), …

Learn more

Tags:  Vendor Advisory

CVE-2021-37199

on Oct. 19, 2021, 11:55 a.m.

A vulnerability has been identified in SINUMERIK 808D (All versions), SINUMERIK 828D (All versions < V4.95). Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial-of-service in the device.

Learn more

Tags:  Vendor Advisory

CVE-2021-42252

on Dec. 3, 2021, 3:07 a.m.

An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-42009

on Oct. 19, 2021, 1:18 a.m.

An authenticated Apache Traffic Control Traffic Ops user with Portal-level privileges can send a request with a specially-crafted email subject to the /deliveryservices/request Traffic Ops endpoint to send an email, from the Traffic Ops server, with an arbitrary body to an arbitrary email address. Apache Traffic Control 5.1.x users should upgrade to 5.1.3 or 6.0.0. …

Learn more

Tags:  Mailing ListVendor Advisory

CVE-2021-27395

on Oct. 19, 2021, 1:11 a.m.

A vulnerability has been identified in SIMATIC Process Historian 2013 and earlier (All versions), SIMATIC Process Historian 2014 (All versions < SP3 Update 6), SIMATIC Process Historian 2019 (All versions), SIMATIC Process Historian 2020 (All versions). An interface in the software that is used for critical functionalities lacks authentication, which could allow a malicious user …

Learn more

Tags:  Vendor Advisory

CVE-2021-37726

on Nov. 24, 2021, 9:31 p.m.

A remote buffer overflow vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 8.7.x.x: 8.7.0.0 through 8.7.1.2. Aruba has released patches for Aruba Instant (IAP) that address this security vulnerability.

Learn more

Tags:  Vendor Advisory

CVE-2021-37727

on Nov. 24, 2021, 9:38 p.m.

A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.20 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below; Aruba Instant 8.6.x.x: 8.6.0.11 and below; Aruba Instant 8.7.x.x: 8.7.1.3 and below. Aruba has released patches for Aruba Instant (IAP) that address this security vulnerability.

Learn more

Tags:  Vendor Advisory

CVE-2021-37730

on Nov. 24, 2021, 9:38 p.m.

A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.20 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below; Aruba Instant 8.6.x.x: 8.6.0.11 and below; Aruba Instant 8.7.x.x: 8.7.1.3 and below. Aruba has released patches for Aruba Instant (IAP) that address this …

Learn more

Tags:  Vendor Advisory

CVE-2021-38178

on Oct. 19, 2021, 12:50 a.m.

The software logistics system of SAP NetWeaver AS ABAP and ABAP Platform versions - 700, 701, 702, 710, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, enables a malicious user to transfer ABAP code artifacts or content, by-passing the established quality gates. By this vulnerability malicious code can reach quality and production, and …

Learn more

Tags:  Vendor Advisory

CVE-2021-38180

on Oct. 19, 2021, 12:47 a.m.

SAP Business One - version 10.0, allows an attacker to inject formulas when exporting data to Excel (CSV injection) due to improper sanitation during the data export. An attacker could thereby execute arbitrary commands on the victim's computer but only if the victim allows to execute macros while opening the file and the security settings …

Learn more

Tags:  Vendor Advisory

CVE-2021-38181

on Oct. 19, 2021, 12:31 a.m.

SAP NetWeaver AS ABAP and ABAP Platform - versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.

Learn more

Tags:  Vendor Advisory

CVE-2021-40495

on Oct. 19, 2021, 12:29 a.m.

There are multiple Denial-of Service vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755. An unauthorized attacker can use the public SICF service /sap/public/bc/abap to reduce the performance of SAP NetWeaver Application Server ABAP and ABAP Platform.

Learn more

Tags:  Vendor Advisory

CVE-2021-40496

on Nov. 28, 2021, 11:37 p.m.

SAP Internet Communication framework (ICM) - versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 785, allows an attacker with logon functionality, to exploit the authentication function by using POST and form field to repeat executions of the initial command by a GET request and exposing sensitive data. This vulnerability …

Learn more

Tags:  Vendor AdvisoryExploitThird Party Advisory

CVE-2021-40497

on Oct. 18, 2021, 9:05 p.m.

SAP BusinessObjects Analysis (edition for OLAP) - versions 420, 430, allows an attacker to exploit certain application endpoints to read sensitive data. These endpoints are normally exposed over the network and successful exploitation could lead to exposure of some system specific data like its version.

Learn more

Tags:  Vendor Advisory

CVE-2021-40498

on Oct. 18, 2021, 8:53 p.m.

A vulnerability has been identified in SAP SuccessFactors Mobile Application for Android - versions older than 2108, which allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service, which can lead to denial of service. The vulnerability is related to Android implementation methods that are widely used …

Learn more

Tags:  Vendor Advisory

CVE-2021-38915

on Oct. 18, 2021, 8:13 p.m.

IBM Data Risk Manager 2.0.6 stores user credentials in plain clear text which can be read by an authenticated user. IBM X-Force ID: 209947.

Learn more

Tags:  Vendor Advisory

CVE-2021-38862

on Oct. 18, 2021, 8:12 p.m.

IBM Data Risk Manager (iDNA) 2.0.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 207980.

Learn more

Tags:  VDB EntryVendor Advisory

CVE-2021-27003

on Oct. 18, 2021, 8 p.m.

Clustered Data ONTAP versions prior to 9.5P18, 9.6P15, 9.7P14, 9.8P5 and 9.9.1 are missing an X-Frame-Options header which could allow a clickjacking attack.

Learn more

Tags:  Vendor Advisory

CVE-2021-25738

on Aug. 1, 2022, 12:10 p.m.

Loading specially-crafted yaml with the Kubernetes Java Client library can lead to code execution.

Learn more

Tags:  Mailing ListThird Party AdvisoryVDB EntryVendor Advisory

CVE-2021-38345

on July 5, 2022, 3:03 p.m.

The Brizy Page Builder plugin <= 2.3.11 for WordPress used an incorrect authorization check that allowed any logged-in user accessing any endpoint in the wp-admin directory to modify the content of any existing post or page created with the Brizy editor. An identical issue was found by another researcher in Brizy <= 1.0.125 and fixed …

Learn more

Tags:  Vendor Advisory

CVE-2021-25634

on Oct. 18, 2021, 7:29 p.m.

LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid. An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to modify a digitally signed ODF document to insert an additional signing time timestamp …

Learn more

Tags:  Vendor Advisory

CVE-2021-40499

on Oct. 18, 2021, 6:37 p.m.

Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.

Learn more

Tags:  Vendor Advisory

CVE-2021-37732

on Nov. 24, 2021, 9:37 p.m.

A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba Instant 8.5.x.x: 8.5.0.11 and below; Aruba Instant 8.6.x.x: 8.6.0.6 and below; Aruba Instant 8.7.x.x: 8.7.1.0 and below. Aruba has released patches for Aruba Instant (IAP) that address this …

Learn more

Tags:  Vendor Advisory

CVE-2021-25633

on Oct. 18, 2021, 6:13 p.m.

LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid. An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to create a digitally signed ODF document, by manipulating the documentsignatures.xml or macrosignatures.xml stream …

Learn more

Tags:  Vendor Advisory

CVE-2021-37123

on Oct. 18, 2021, 6:09 p.m.

There is an improper authentication vulnerability in Hero-CT060 before 1.0.0.200. The vulnerability is due to that when an user wants to do certain operation, the software does not insufficiently validate the user's identity. Successful exploit could allow the attacker to do certain operations which the user are supposed not to do.

Learn more

Tags:  Vendor Advisory

CVE-2021-37734

on Nov. 24, 2021, 9:37 p.m.

A remote unauthorized read access to files vulnerability was discovered in Aruba Instant version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.19 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below; Aruba Instant 8.6.x.x: 8.6.0.11 and below; Aruba Instant 8.7.x.x: 8.7.1.3 and below; Aruba Instant 8.8.x.x: 8.8.0.0 and below. Aruba has released patches for Aruba Instant …

Learn more

Tags:  Vendor Advisory

CVE-2021-33736

on Oct. 18, 2021, 5:53 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-26588

on Oct. 18, 2021, 5:52 p.m.

A potential security vulnerability has been identified in HPE 3PAR StoreServ, HPE Primera Storage and HPE Alletra 9000 Storage array firmware. An unauthenticated user could remotely exploit the low complexity issue to execute code as administrator. This vulnerability impacts completely the confidentiality, integrity, availability of the array. HPE has made the following software updates and …

Learn more

Tags:  Vendor Advisory

CVE-2021-33735

on Oct. 18, 2021, 5:52 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-37735

on Nov. 24, 2021, 9:37 p.m.

A remote denial of service vulnerability was discovered in Aruba Instant version(s): Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba Instant 8.5.x.x: 8.5.0.10 and below; Aruba Instant 8.6.x.x: 8.6.0.4 and below. Aruba has released patches for Aruba Instant (IAP) that address this security vulnerability.

Learn more

Tags:  Vendor Advisory

CVE-2020-11738

on Dec. 15, 2021, 3:59 p.m.

The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-20603

on Oct. 18, 2021, 5 p.m.

Improper Input Validation vulnerability in GOT2000 series GT21 model GT2107-WTBD all versions, GT2107-WTSD all versions, GT2104-RTBD all versions, GT2104-PMBD all versions, GT2103-PMBD all versions, GOT SIMPLE series GS21 model GS2110-WTBD all versions, GS2107-WTBD all versions, GS2110-WTBD-N all versions, GS2107-WTBD-N all versions and LE7-40GU-L all versions allows a remote unauthenticated attacker to cause DoS condition of …

Learn more

Tags:  Vendor Advisory

CVE-2021-20604

on Oct. 18, 2021, 4:52 p.m.

Improper Input Validation vulnerability in GOT2000 series GT21 model GT2107-WTBD all versions, GT2107-WTSD all versions, GT2104-RTBD all versions, GT2104-PMBD all versions, GT2103-PMBD all versions, GOT SIMPLE series GS21 model GS2110-WTBD all versions, GS2107-WTBD all versions, GS2110-WTBD-N all versions, GS2107-WTBD-N all versions and LE7-40GU-L all versions allows a remote unauthenticated attacker to cause DoS condition of …

Learn more

Tags:  Vendor Advisory

CVE-2021-20605

on Oct. 18, 2021, 4:51 p.m.

Improper Input Validation vulnerability in GOT2000 series GT21 model GT2107-WTBD all versions, GT2107-WTSD all versions, GT2104-RTBD all versions, GT2104-PMBD all versions, GT2103-PMBD all versions, GOT SIMPLE series GS21 model GS2110-WTBD all versions, GS2107-WTBD all versions, GS2110-WTBD-N all versions, GS2107-WTBD-N all versions and LE7-40GU-L all versions allows a remote unauthenticated attacker to cause DoS condition of …

Learn more

Tags:  Vendor Advisory

CVE-2021-33734

on Oct. 18, 2021, 4 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33733

on Oct. 18, 2021, 3:08 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33732

on Oct. 18, 2021, 3:08 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33731

on Oct. 18, 2021, 3:07 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33730

on Oct. 18, 2021, 3:07 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33729

on Oct. 18, 2021, 3:05 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker that is able to import firmware containers to an affected system could execute arbitrary commands in the local database.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33728

on Oct. 18, 2021, 2:41 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to upload JSON objects that are deserialized to JAVA objects. Due to insecure deserialization of user-supplied content by the affected software, a privileged attacker could exploit this vulnerability by sending a crafted serialized Java object. An …

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33727

on Oct. 18, 2021, 2:29 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker could download the user profile of any user. With this, the attacker could leak confidential information of any user in the affected system.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33726

on Oct. 18, 2021, 2:28 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to download arbitrary files under a user controlled path and does not correctly check if the relative path is still within the intended target directory.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-39537

on Nov. 30, 2021, 10:42 p.m.

An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow.

Learn more

Tags:  ExploitMailing ListVendor Advisory

CVE-2021-33725

on Oct. 18, 2021, 2:15 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system allows to delete arbitrary files or directories under a user controlled path and does not correctly check if the relative path is still within the intended target directory.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-0583

on Oct. 18, 2021, 2 p.m.

In onCreate of BluetoothPairingDialog, there is a possible way to enable Bluetooth without user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10Android ID: A-182282956

Learn more

Tags:  Vendor Advisory

CVE-2021-33724

on Oct. 18, 2021, 1:53 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system contains an Arbitrary File Deletion vulnerability that possibly allows to delete an arbitrary file or directory under a user controlled path.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33723

on Oct. 18, 2021, 1:49 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker could change the user profile of any user without proper authorization. With this, the attacker could change the password of any user in the affected system.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33722

on Oct. 18, 2021, 1:41 p.m.

A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). The affected system has a Path Traversal vulnerability when exporting a firmware container. With this a privileged authenticated attacker could create arbitrary files on an affected system.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-31799

on May 10, 2022, 6:02 p.m.

In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-36934

on Oct. 18, 2021, 12:55 p.m.

Windows Elevation of Privilege Vulnerability

Learn more

Tags:  PatchVendor Advisory

CVE-2021-33909

on March 1, 2022, 7:17 p.m.

fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.

Learn more

Tags:  Mailing ListPatchVendor Advisory

CVE-2020-27006

on Oct. 18, 2021, 12:53 p.m.

A vulnerability has been identified in JT2Go (All versions < V13.1.0.1), Teamcenter Visualization (All versions < V13.1.0.1). Affected applications lack proper validation of user-supplied data when parsing of PCT files. This could result in a memory corruption condition. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-12182)

Learn more

Tags:  Vendor Advisory

CVE-2020-27000

on Oct. 18, 2021, 12:51 p.m.

A vulnerability has been identified in JT2Go (All versions < V13.1.0.1), Teamcenter Visualization (All versions < V13.1.0.1). Affected applications lack proper validation of user-supplied data when parsing BMP files. This can result in a memory corruption condition. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-12018)

Learn more

Tags:  Vendor Advisory

CVE-2020-5138

on Oct. 18, 2021, 12:41 p.m.

A Heap Overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS) on the firewall SSLVPN service and leads to SonicOS crash. This vulnerability affected SonicOS Gen 5 version 5.9.1.7, 5.9.1.13, Gen 6 version 6.5.4.7, 6.5.1.12, 6.0.5.3, SonicOSv 6.5.4.v and Gen 7 version SonicOS 7.0.0.0.

Learn more

Tags:  Vendor Advisory

CVE-2020-7587

on Aug. 10, 2022, 8:15 p.m.

A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions < V11.3), Opcenter RD&L (V8.0), SIMATIC IT LMS (All versions < V2.6), SIMATIC IT Production Suite (All versions …

Learn more

Tags:  Vendor Advisory

CVE-2020-7510

on Oct. 18, 2021, 12:35 p.m.

A CWE-200: Information Exposure vulnerability exists in Easergy T300 (Firmware version 1.5.2 and older) which could allow attacker to obtain private keys.

Learn more

Tags:  Vendor Advisory

CVE-2020-10061

on Oct. 18, 2021, 12:35 p.m.

Improper handling of the full-buffer case in the Zephyr Bluetooth implementation can result in memory corruption. This issue affects: zephyrproject-rtos zephyr version 2.2.0 and later versions, and version 1.14.0 and later versions.

Learn more

Tags:  Vendor Advisory

CVE-2021-27002

on Oct. 18, 2021, 12:31 p.m.

NetApp Cloud Manager versions prior to 3.9.10 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to retrieve sensitive data via the web proxy.

Learn more

Tags:  PatchVendor Advisory

CVE-2021-35940

on Dec. 29, 2021, 2:11 p.m.

An out-of-bounds array read in the apr_time_exp*() functions was fixed in the Apache Portable Runtime 1.6.3 release (CVE-2017-12613). The fix for this issue was not carried forward to the APR 1.7.x branch, and hence version 1.7.0 regressed compared to 1.6.3 and is vulnerable to the same issue.

Learn more

Tags:  Mailing ListVendor Advisory

CVE-2021-38160

on Jan. 1, 2022, 5:58 p.m.

** DISPUTED ** In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in any existing use case; the length validation was added solely …

Learn more

Tags:  Release NotesVendor Advisory

CVE-2021-3035

on Oct. 18, 2021, 12:14 p.m.

An unsafe deserialization vulnerability in Bridgecrew Checkov by Prisma Cloud allows arbitrary code execution when processing a malicious terraform file. This issue impacts Checkov 2.0 versions earlier than Checkov 2.0.26. Checkov 1.0 versions are not impacted.

Learn more

Tags:  Vendor Advisory

CVE-2021-22148

on Oct. 18, 2021, 12:14 p.m.

Elastic Enterprise Search App Search versions before 7.14.0 was vulnerable to an issue where API keys were not bound to the same engines as their creator. This could lead to a less privileged user gaining access to unauthorized engines.

Learn more

Tags:  Vendor Advisory