Exploits 07/21/2021info

Type »

The moderation team is working with the threat intelligence team to categorize software that is affected by security vulnerabilities. This helps to illustrate the assignment of these categories to determine the most affected software types.

Remediation »

Vendors and researchers are eager to find countermeasures to mitigate security vulnerabilities. These can be distinguished between multiple forms and levels of remediation which influence risks differently.

Exploitability »

Researcher and attacker which are looking for security vulnerabilities try to exploit them for academic purposes or personal gain. The level and quality of exploitability can be distinguished to determine simplicity and strength of attacks.

Lang »

The automatization and the exploitation of a security vulnerability is called an exploit. It is possible to determine the popularity and availability of programming languages used for creating such exploits.

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

Exploit 0-day »

The moderation team is working with the threat intelligence team to determine prices for exploits. Our unique algorithm is used to identify the 0-day prices for an exploit, before it got distributed or became public. Calculated prices are aligned to prices disclosed by vulnerability broker and compared to prices we see on exploit markets.

Exploit Today »

The 0-day prices do not consider time-relevant factors. The today price does reflect price impacts like disclosure of vulnerability details, alternative exploits, availability of countermeasures. These dynamic aspects might decrease the exploit prices over time. Under certain circumstances this happens very fast.

Published0dayTodayTrVulnerabilityExpLangURLCTICVE
07/21/2021$25k-$100k$0-$5kLinux Kernel Filesystem Layer out-of-bounds writeProof-of-Concept
 
Link0.24CVE-2021-33909
07/21/2021$5k-$25k$5k-$25kApple macOS FontParser Remote Code ExecutionNot Defined
 
 
0.03CVE-2021-30788
07/21/2021$5k-$25k$5k-$25kApple macOS WebKit use after freeNot Defined
 
 
0.00CVE-2021-30795
07/21/2021$5k-$25k$5k-$25kApple macOS CoreAudio memory corruptionNot Defined
 
 
0.03CVE-2021-30775
07/21/2021$5k-$25k$5k-$25kApple macOS FontParser stack-based overflowNot Defined
 
 
0.03CVE-2021-30759
07/21/2021$5k-$25k$5k-$25kApple macOS ImageIO buffer overflowNot Defined
 
 
0.03CVE-2021-30785
07/21/2021$5k-$25k$5k-$25kApple macOS WebKit Remote Code ExecutionNot Defined
 
 
0.10CVE-2021-30797
07/21/2021$5k-$25k$5k-$25kApple macOS AppKit Remote Code ExecutionNot Defined
 
 
0.00CVE-2021-30790
07/21/2021$5k-$25k$5k-$25kApple macOS FontParser integer overflowNot Defined
 
 
0.00CVE-2021-30760
07/21/2021$5k-$25k$5k-$25kApple macOS ImageIO Remote Code ExecutionNot Defined
 
 
0.07CVE-2021-30779
07/21/2021$5k-$25k$5k-$25kApple macOS libxml2 use after freeNot Defined
 
 
0.03CVE-2021-3518
07/21/2021$5k-$25k$5k-$25kApple macOS Model I/O out-of-bounds writeNot Defined
 
 
0.00CVE-2021-30792
07/21/2021$5k-$25k$5k-$25kApple macOS WebKit memory corruptionNot Defined
 
 
0.00CVE-2021-30799
07/21/2021$5k-$25k$0-$5kApple macOS WebKit type confusionNot Defined
 
 
0.00CVE-2021-30758
07/21/2021$5k-$25k$0-$5kApple macOS Intel Graphics Driver memory corruptionNot Defined
 
 
0.03CVE-2021-30787
07/21/2021$5k-$25k$0-$5kApple macOS CVMS out-of-bounds writeNot Defined
 
 
0.03CVE-2021-30780
07/21/2021$5k-$25k$0-$5kApple macOS Intel Graphics Driver out-of-bounds writeNot Defined
 
 
0.03CVE-2021-30765
07/21/2021$5k-$25k$0-$5kApple macOS AMD Kernel memory corruptionNot Defined
 
 
0.03CVE-2021-30805
07/21/2021$5k-$25k$0-$5kApple macOS AVEVideoEncoder memory corruptionNot Defined
 
 
0.03CVE-2021-30748
07/21/2021$5k-$25k$0-$5kApple macOS CoreServices Local Privilege EscalationNot Defined
 
 
0.07CVE-2021-30772
07/21/2021$5k-$25k$0-$5kApple macOS Crash Reporter Local Privilege EscalationNot Defined
 
 
0.03CVE-2021-30774
07/21/2021$5k-$25k$0-$5kApple macOS Intel Graphics Driver out-of-bounds writeNot Defined
 
 
0.00CVE-2021-30766
07/21/2021$5k-$25k$0-$5kApple macOS Kernel state issueNot Defined
 
 
0.00CVE-2021-30793
07/21/2021$5k-$25k$0-$5kApple macOS CoreStorage injectionNot Defined
 
 
0.00CVE-2021-30777
07/21/2021$5k-$25k$5k-$25kLinux Kernel hso.c hso_free_net_device use after freeNot Defined
 
 
0.03CVE-2021-37159
07/21/2021$5k-$25k$0-$5kApple macOS Audio Local Privilege EscalationNot Defined
 
 
0.00CVE-2021-30781
07/21/2021$5k-$25k$0-$5kApple macOS Kext Management Local Privilege EscalationNot Defined
 
 
0.03CVE-2021-30778
07/21/2021$5k-$25k$0-$5kApple macOS CoreText out-of-bounds readNot Defined
 
 
0.00CVE-2021-30789
07/21/2021$5k-$25k$0-$5kIBM Cloud Pak System Self Service Console information disclosureNot Defined
 
 
0.03CVE-2021-20478
07/21/2021$5k-$25k$0-$5kApple macOS Model I/O out-of-bounds readNot Defined
 
 
0.00CVE-2021-30791
07/21/2021$5k-$25k$0-$5kApple macOS IOKit behavioral workflowNot Defined
 
 
0.03CVE-2021-30784
07/21/2021$5k-$25k$0-$5kApple macOS CoreServices access controlNot Defined
 
 
0.00CVE-2021-30783
07/21/2021$5k-$25k$0-$5kApple macOS dyld sandboxNot Defined
 
 
0.03CVE-2021-30768
07/21/2021$5k-$25k$0-$5kApple macOS Identity Services permissionNot Defined
 
 
0.14CVE-2021-30803
07/21/2021$5k-$25k$0-$5kApple macOS Sandbox access controlNot Defined
 
 
0.00CVE-2021-30782
07/21/2021$5k-$25k$0-$5kApple macOS TCC state issueNot Defined
 
 
0.03CVE-2021-30798
07/21/2021$5k-$25k$0-$5kApple macOS CoreGraphics race conditionNot Defined
 
 
0.00CVE-2021-30786
07/21/2021$5k-$25k$0-$5kTrend Micro Apex One permissionNot Defined
 
 
0.03CVE-2021-32463
07/21/2021$5k-$25k$0-$5kTYPO3 debug log fileNot Defined
 
 
0.07CVE-2021-32767
07/21/2021$5k-$25k$0-$5kApple macOS Model I/O denial of serviceNot Defined
 
 
0.03CVE-2021-30796
07/21/2021$5k-$25k$0-$5kApple macOS CoreAudio denial of serviceNot Defined
 
 
0.05CVE-2021-30776
07/21/2021$0-$5k$0-$5ksystemd unit-name.c alloca allocation of resourcesNot Defined
 
 
0.04CVE-2021-33910
07/21/2021$0-$5k$0-$5kTYPO3 Page Preview cross site scriptingNot Defined
 
 
0.03CVE-2021-32667
07/21/2021$0-$5k$0-$5kTYPO3 Error Message cross site scriptingNot Defined
 
 
0.03CVE-2021-32668
07/21/2021$0-$5k$0-$5kTYPO3 Grid cross site scriptingNot Defined
 
 
0.03CVE-2021-32669
07/21/2021$0-$5k$0-$5kNVIDIA Virtual GPU Manager vGPU Privilege EscalationNot Defined
 
 
0.03CVE-2021-1098
07/21/2021$0-$5k$0-$5kNVIDIA Virtual GPU Manager Services buffer overflowNot Defined
 
 
0.05CVE-2021-1097
07/21/2021$0-$5k$0-$5kNVIDIA Virtual GPU Manager stack-based overflowNot Defined
 
 
0.00CVE-2021-1099
07/21/2021$0-$5k$0-$5kFortinet FortiMail user sessionNot Defined
 
 
0.00CVE-2021-26095
07/21/2021$0-$5k$0-$5kTeradici PCoIP Software Client OpenSSL untrusted search pathNot Defined
 
 
0.03CVE-2021-25699

Do you want to use VulDB in your project?

Use the official API to access entries easily!