Risk 2021

Overview of the different risk assignments of different sources of the documented vulnerabilities.

IDTitleVulDBCVSSSecuniaXForceNessus
168567Cisco Unified Communications Manager & Presence Service path traversalmedium4.0---
168566Cisco Unified Communications Manager & Presence Service path traversalmedium4.0---
168565Cisco Unified Communications Manager IM & Presence Service path traversalmedium4.0---
168564Cisco StarOS IPv4 Packet memory leak [CVE-2021-1353]low5.0---
168563Cisco Umbrella Web UI allocation of resources [CVE-2021-1350]low5.0---
168562Cisco SD-WAN vManage Software Web-based Management Interface injectionmedium4.0---
168561Cisco Elastic Services Controller Health Monitor API resource consumptionlow5.0---
168560Cisco SD-WAN vManage Software Web-based Management Interface improper authorizationmedium6.5---
168559Cisco SD-WAN vManage Software Web-based Management Interface improper authorizationmedium6.5---
168558Cisco DNA Center Diagnostic privileges assignment [CVE-2021-1303]medium4.0---
168557Cisco SD-WAN vManage Software Web-based Management Interface improper authorizationmedium6.5---
168556Cisco SD-WAN memory corruption [CVE-2021-1301]high10.0---
168555Cisco SD-WAN memory corruption [CVE-2021-1300]high10.0---
168554Cisco SD-WAN command injection [CVE-2021-1299]medium6.8---
168553Cisco SD-WAN command injection [CVE-2021-1298]medium6.8---
168552Cisco Data Center Network Manager Web-based Management Interface cross site scriptinglow4.0---
168551Cisco Data Center Network Manager System Logs log file [CVE-2021-1283]low1.7---
168550Cisco Unified Communications Manager IM & Presence Service path traversalmedium4.0---
168549Cisco Advanced Malware Protection DLL uncontrolled search pathmedium6.8---
168548Cisco SD-WAN memory corruption [CVE-2021-1279]medium7.8---
168547Cisco SD-WAN memory corruption [CVE-2021-1278]medium7.8---
168546Cisco Data Center Network Manager API certificate validationmedium5.1---
168545Cisco Data Center Network Manager API certificate validationmedium5.1---
168544Cisco SD-WAN memory corruption [CVE-2021-1274]medium5.0---
168543Cisco SD-WAN memory corruption [CVE-2021-1273]medium7.8---
168542Cisco Data Center Network Manager Device Manager Application server-side request forgerymedium7.5---
168541Cisco Web Security Appliance Web-based Management Interface cross site scriptinglow4.0---
168540Cisco Data Center Network Manager Web-based Management Interface improper authorizationmedium6.5---
168539Cisco Data Center Network Manager Web-based Management Interface improper authorizationmedium6.5---
168538Cisco DNA Center API Call cleartext storage [CVE-2021-1265]low4.0---
168537Cisco DNA Center command injection [CVE-2021-1264]medium9.0---
168536Cisco SD-WAN command injection [CVE-2021-1263]medium6.8---
168535Cisco SD-WAN command injection [CVE-2021-1262]medium6.8---
168534Cisco SD-WAN command injection [CVE-2021-1261]medium6.8---
168533Cisco SD-WAN command injection [CVE-2021-1260]medium6.8---
168532Cisco SD-WAN vManage Software Web-based Management Interface path traversalmedium4.6---
168531Cisco DNA Center Web-based Management Interface cross-site request forgerylow5.0---
168530Cisco Data Center Network Manager REST API Endpoint improper authorizationmedium6.5---
168529Cisco Data Center Network Manager Web-based Management Interface cross site scriptinglow4.0---
168528Cisco Data Center Network Manager Web-based Management Interface cross site scriptinglow4.0---
168527Cisco Data Center Network Manager Web-based Management Interface cross site scriptinglow4.0---
168526Cisco Data Center Network Manager REST API Endpoint sql injectionmedium9.0---
168525Cisco Data Center Network Manager REST API Endpoint sql injectionmedium9.0---
168524Cisco SD-WAN memory corruption [CVE-2021-1241]medium7.5---
168523Cisco SD-WAN vManage Software CLI improper authorization [CVE-2021-1235]low1.7---
168522Cisco SD-WAN iperf Tool input validation [CVE-2021-1233]low1.4---
168521Cisco SD-WAN vManage Software Web-based Management Interface sql injectionmedium7.5---
168520Cisco Smart Software Manager Satellite Web-based Management Interface sql injectionmedium4.6---
168519Cisco Smart Software Manager Satellite hard-coded credentialslow1.7---
168518Cisco Smart Software Manager Satellite Web Management Interface redirectmedium6.5---
168517Cisco Smart Software Manager Satellite Web UI input validationhigh10.0---
168516Cisco Smart Software Manager Satellite Web UI input validationhigh10.0---
168515Cisco Smart Software Manager Satellite Web UI input validationhigh10.0---
168514Cisco Smart Software Manager Satellite Web UI input validationhigh10.0---
168513Cisco Smart Software Manager Satellite input validation [CVE-2021-1138]high10.0---
168512Cisco Data Center Network Manager REST API Endpoint improper authorizationmedium6.5---
168511Cisco Data Center Network Manager REST API Endpoint improper authorizationmedium6.5---
168510Cisco Email Security Appliance insertion of sensitive information into sent datalow5.0---
168509NVIDIA Shield TV NVHost null pointer dereferencelow2.3---
168508NVIDIA Shield TV NVDEC buffer overflow [CVE-2021-1068]medium5.2---
168507NVIDIA Shield TV RPMB Command Status unknown vulnerability [CVE-2021-1067]low4.9---
168506Check Point SmartConsole access control [CVE-2020-6024]medium4.3---
168505NEC ESMPRO Manager GetEuaLogDownloadAction path traversalmedium5.0---
168504CA ARCserve D2D xml external entity reference [CVE-2020-27858]low5.0---
168503Eclipse OpenJ9 UTF-8 Encoding stack-based overflow [CVE-2020-27221]medium5.2---
168502Weave Net unnecessary privileges [CVE-2020-26278]low4.0---
168501OpenMage Update path traversal [CVE-2020-26252]medium5.8---
168500Backdoor.Win32.Onalf Service Port 2020 improper authenticationmedium7.5---
168499Backdoor.Win32.Zxman Service Port 2048 improper authenticationmedium7.5---
168498Backdoor.Win32.WinShell.30 Service Port 5277 buffer overflowmedium7.5---
168497Keymaker Assets Endpoint join path traversalmedium4.0---
168496gin X-Forwarded-For Header Remote Privilege Escalation [CVE-2020-28483]medium6.0---
168495Akka com.softwaremill.akka-http-session cross-site request forgerylow4.0---
168494Dnsmasq rfc1035.c extract_name heap-based overflowmedium7.5---
168493Dnsmasq Pending Request security check for standard [CVE-2020-25686]low5.1---
168492Dnsmasq rfc1035.c extract_name heap-based overflowmedium7.5---
168491Dnsmasq RRSets Sort heap-based overflow [CVE-2020-25681]medium5.1---
168490Open-AudIT Web Interface information disclosure [CVE-2021-3130]low4.0---
168489PrestaShop sql injection [CVE-2021-3110]medium6.5---
168488Ardatan graphql-tools load-git.ts execSync command injectionmedium7.5---
168487Oracle Argus Safety Letters information disclosure [CVE-2021-2110]low4.0---
168486Oracle Argus Safety Case Form/Local Affiliate Form Remote Code Executionmedium7.5---
168485IBM Spectrum LSF/Spectrum LSF Suite LSF Job unknown vulnerabilitymedium6.8---
168484IBM Security Guardium sql injection [CVE-2020-4921]medium6.5---
168483IBM AIX/VIOS Local Privilege Escalation [CVE-2020-4887]low4.3---
168482IBM Security Guardium command injection [CVE-2020-4688]medium4.3---
168481Employee Performance Evaluation System Admin Portal cross site scriptinglow4.0---
168480Employee Performance Evaluation System cross site scripting [CVE-2020-35271]low4.0---
168479Vert.x Web Framework cross-site request forgery [CVE-2020-35217]low4.0---
168478Dnsmasq DNS Cache forward.c reply_query unknown vulnerabilitylow5.1---
168477Dnsmasq DNS Cache forward.c reply_query security check for standardlow5.1---
168476Dnsmasq DNSSEC rfc1035.c extract_name heap-based overflowlow2.6---
168475STM32Cube PKCS Padding information disclosure [CVE-2020-20949]low2.1---
168474X.Org Server XkbSetMap memory corruptionmedium5.2---
168473Oracle VM VirtualBox information disclosure [CVE-2021-2123]low1.4---
168472Oracle VM VirtualBox denial of service [CVE-2021-2130]medium4.3---
168471Oracle VM VirtualBox denial of service [CVE-2021-2127]medium4.3---
168470Oracle VM VirtualBox denial of service [CVE-2021-2073]medium4.3---
168469Oracle VM VirtualBox unknown vulnerability [CVE-2021-2125]medium2.9---
168468Oracle VM VirtualBox unknown vulnerability [CVE-2021-2131]medium4.3---
168467Oracle VM VirtualBox unknown vulnerability [CVE-2021-2126]medium4.3---
168466Oracle VM VirtualBox information disclosure [CVE-2021-2120]medium4.3---
168465Oracle VM VirtualBox information disclosure [CVE-2021-2119]medium4.3---
168464Oracle VM VirtualBox denial of service [CVE-2021-2124]medium4.3---
168463Oracle VM VirtualBox denial of service [CVE-2021-2121]medium4.3---
168462Oracle VM VirtualBox denial of service [CVE-2021-2112]medium4.3---
168461Oracle VM VirtualBox denial of service [CVE-2021-2111]medium4.3---
168460Oracle VM VirtualBox denial of service [CVE-2021-2086]medium4.3---
168459Oracle VM VirtualBox information disclosure [CVE-2021-2128]medium4.6---
168458Oracle VM VirtualBox unknown vulnerability [CVE-2021-2129]medium5.9---
168457Oracle VM VirtualBox Local Privilege Escalation [CVE-2021-2074]medium6.5---
168456Oracle Utilities Framework General Remote Code Execution [CVE-2020-2555]high10.0---
168455Oracle StorageTek Tape Analytics SW Tool information disclosurelow2.6---
168454Oracle ZFS Storage Appliance Kit RAS subsystems unknown vulnerabilitymedium3.7---
168453Oracle StorageTek Tape Analytics SW Tool jQuery unknown vulnerabilitymedium6.4---
168452Oracle ZFS Storage Appliance Kit Operating System Image Remote Code Executionhigh10.0---
168451Oracle Transportation Management Install unknown vulnerabilitymedium6.4---
168450Oracle Agile Product Lifecycle Management for Process Installation unknown vulnerabilitymedium6.4---
168449Oracle Agile PLM Security unknown vulnerability [CVE-2020-9281]medium6.4---
168448Oracle Agile Engineering Data Management Install Remote Code Executionmedium7.6---
168447Oracle Agile PLM Security Remote Code Execution [CVE-2020-14195]medium7.6---
168446Oracle Configurator UI Servlet unknown vulnerability [CVE-2021-2080]medium8.5---
168445Oracle Configurator UI Servlet unknown vulnerability [CVE-2021-2079]medium8.5---
168444Oracle Configurator UI Servlet unknown vulnerability [CVE-2021-2078]medium8.5---
168443Oracle Complex Maintenance, Repair, and Overhaul Dialog Box unknown vulnerabilitymedium8.5---
168442Oracle Complex Maintenance, Repair, and Overhaul Dialog Box unknown vulnerabilitymedium8.5---
168441Oracle Complex Maintenance, Repair, and Overhaul Dialog Box unknown vulnerabilitymedium8.5---
168440Oracle Siebel Core - Server BizLogic Script Integration - Scripting information disclosuremedium4.0---
168439Oracle Siebel Mobile App Open UI unknown vulnerability [CVE-2020-11022]medium6.4---
168438Oracle Siebel UI Framework EAI Local Privilege Escalation [CVE-2020-9484]medium6.0---
168437Oracle Siebel Core - Server Framework Search unknown vulnerabilitymedium7.5---
168436Oracle Retail Customer Management and Segmentation Foundation Promotions information disclosurelow2.6---
168435Oracle Retail Service Backbone RSB kernel information disclosuremedium4.6---
168434Oracle Retail Integration Bus RIB Kernal information disclosuremedium4.6---
168433Oracle Retail Financial Integration PeopleSoft Integration Bugs information disclosuremedium4.6---
168432Oracle Retail Bulk Data Integration BDI Job Scheduler information disclosuremedium4.6---
168431Oracle Retail Store Inventory Management SIM Integration unknown vulnerabilitymedium6.4---
168430Oracle Retail Order Broker Cloud Service Supplier Direct Fulfillment unknown vulnerabilitymedium6.4---
168429Oracle Retail Bulk Data Integration BDI Job Scheduler unknown vulnerabilitymedium6.4---
168428Oracle Retail Customer Management and Segmentation Foundation Internal Operations Remote Privilege Escalationmedium6.5---
168427Oracle Retail Service Backbone RSB kernel unknown vulnerabilitymedium5.6---
168426Oracle Retail Invoice Matching Security unknown vulnerabilitymedium5.6---
168425Oracle Retail Integration Bus RIB Kernal unknown vulnerabilitymedium5.6---
168424Oracle Retail Financial Integration PeopleSoft Integration unknown vulnerabilitymedium5.6---
168423Oracle Retail Assortment Planning Application Core unknown vulnerabilitymedium5.6---
168422Oracle Retail Order Broker System Administration Local Privilege Escalationmedium6.0---
168421Oracle Retail Service Backbone RSB kernel Remote Code Executionmedium7.5---
168420Oracle Retail Order Broker System Administration Remote Code Executionmedium7.5---
168419Oracle Retail Integration Bus RIB Kernal Remote Code Executionmedium7.5---
168418Oracle Retail Financial Integration PeopleSoft Integration Remote Code Executionmedium7.5---
168417Oracle Retail Store Inventory Management SIM Integration unknown vulnerabilitymedium7.8---
168416Oracle Retail Service Backbone RSB kernel unknown vulnerabilitymedium7.8---
168415Oracle Retail Order Broker System Administration unknown vulnerabilitymedium7.8---
168414Oracle Retail Integration Bus RIB Kernal unknown vulnerabilitymedium7.8---
168413Oracle Retail Integration Bus RIB Kernal unknown vulnerabilitymedium7.8---
168412Oracle Retail Financial Integration PeopleSoft Integration unknown vulnerabilitymedium7.8---
168411Oracle Retail Bulk Data Integration BDI Job Scheduler Remote Code Executionmedium7.6---
168410Oracle Retail Invoice Matching Posting Remote Code Executionmedium7.6---
168409Oracle Retail Order Broker System Administration Remote Privilege Escalationmedium9.0---
168408Oracle Retail Extract Transform and Load Mathematical Operators unknown vulnerabilityhigh9.4---
168407Oracle Retail Sales Audit Rule Wizards Remote Code Executionhigh10.0---
168406Oracle Retail Merchandising System Foundation Remote Code Executionhigh10.0---
168405Oracle Retail Customer Management and Segmentation Foundation Segment Remote Code Executionhigh10.0---
168404Oracle PeopleSoft Enterprise PeopleTools Security information disclosurelow2.6---
168403Oracle PeopleSoft Enterprise PeopleTools Rich Text Editor unknown vulnerabilitymedium6.4---
168402Oracle PeopleSoft Enterprise PeopleTools Portal unknown vulnerabilitymedium6.4---
168401Oracle PeopleSoft Enterprise HCM Human Resources Company Dir/Org Chart Viewer/Employee Snapshot unknown vulnerabilitymedium6.4---
168400Oracle PeopleSoft Enterprise FIN Payables Financial Sanctions information disclosuremedium6.8---
168399Oracle PeopleSoft Enterprise HCM Human Resources Global Payroll for Switzerland unknown vulnerabilitymedium6.8---
168398Oracle PeopleSoft Enterprise PeopleTools Elastic Search Remote Code Executionmedium7.6---
168397Oracle PeopleSoft Enterprise PeopleTools Portal Local Privilege Escalationmedium7.2---
168396Oracle MySQL Server InnoDB information disclosure [CVE-2021-2042]low1.4---
168395Oracle MySQL Server Privileges information disclosure [CVE-2021-2019]low3.3---
168394Oracle MySQL Client C API information disclosure [CVE-2021-2007]low2.6---
168393Oracle MySQL Server Optimizer unknown vulnerability [CVE-2021-1998]low4.7---
168392Oracle MySQL Client C API unknown vulnerability [CVE-2021-2010]medium3.6---
168391Oracle MySQL Server Information Schema information disclosuremedium4.0---
168390Oracle MySQL Server DML denial of service [CVE-2021-2088]medium4.3---
168389Oracle MySQL Server DML denial of service [CVE-2021-2087]medium4.3---
168388Oracle MySQL Server DML denial of service [CVE-2021-2056]medium4.6---
168387Oracle MySQL Server DDL denial of service [CVE-2021-2061]medium4.6---
168386Oracle MySQL Server Components Services denial of service [CVE-2021-2038]medium4.6---
168385Oracle MySQL Server InnoDB denial of service [CVE-2021-2022]medium4.6---
168384Oracle MySQL Server Stored Procedure denial of service [CVE-2021-2081]medium6.1---
168383Oracle MySQL Server Stored Procedure denial of service [CVE-2021-2072]medium6.1---
168382Oracle MySQL Server Roles denial of service [CVE-2021-2009]medium6.1---
168381Oracle MySQL Server Privileges denial of service [CVE-2021-2012]medium6.1---
168380Oracle MySQL Server Replication denial of service [CVE-2021-2002]medium6.1---
168379Oracle MySQL Server PAM Auth Plugin denial of service [CVE-2021-2014]medium6.1---
168378Oracle MySQL Server Optimizer denial of service [CVE-2021-2065]medium6.1---
168377Oracle MySQL Server Optimizer denial of service [CVE-2021-2076]medium6.1---
168376Oracle MySQL Server Optimizer denial of service [CVE-2021-2070]medium6.1---
168375Oracle MySQL Server Optimizer denial of service [CVE-2021-2060]medium6.1---
168374Oracle MySQL Server Optimizer denial of service [CVE-2021-2055]medium6.1---
168373Oracle MySQL Server Optimizer denial of service [CVE-2021-2036]medium6.1---
168372Oracle MySQL Server Optimizer denial of service [CVE-2021-2031]medium6.1---
168371Oracle MySQL Server Optimizer denial of service [CVE-2021-2030]medium6.1---
168370Oracle MySQL Server Optimizer denial of service [CVE-2021-2021]medium6.1---
168369Oracle MySQL Server Optimizer denial of service [CVE-2021-2016]medium6.1---
168368Oracle MySQL Server Optimizer denial of service [CVE-2021-2001]medium6.1---
168367Oracle MySQL Server Locking denial of service [CVE-2021-2058]medium6.1---
168366Oracle MySQL Server DDL denial of service [CVE-2021-2122]medium6.1---
168365Oracle MySQL Server InnoDB denial of service [CVE-2021-2028]medium6.1---
168364Oracle MySQL Server InnoDB unknown vulnerability [CVE-2021-2048]medium5.3---
168363Oracle MySQL Client C API denial of service [CVE-2021-2006]medium4.9---
168362Oracle MySQL Workbench denial of service [CVE-2020-1971]medium5.4---
168361Oracle MySQL Client C API denial of service [CVE-2021-2011]medium5.4---
168360Oracle MySQL Server Optimizer denial of service [CVE-2021-2024]medium6.8---
168359Oracle MySQL Server Optimizer denial of service [CVE-2021-2020]medium6.8---
168358Oracle MySQL Enterprise Monitor Service Manager information disclosuremedium6.8---
168357Oracle MySQL Enterprise Monitor Service Manager unknown vulnerabilitymedium5.6---
168356Oracle MySQL Server Stored Procedure denial of service [CVE-2021-2046]medium6.1---
168355Oracle MySQL Enterprise Monitor Service Manager Remote Code Executionmedium7.5---
168354Oracle MySQL Workbench denial of service [CVE-2020-13871]medium7.8---
168353Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security information disclosuremedium5.0---
168352Oracle JD Edwards EnterpriseOne Tools Web Runtime unknown vulnerabilitymedium6.4---
168351Oracle JD Edwards EnterpriseOne Tools E1 Dev Platform Tech - Cloud unknown vulnerabilitymedium6.4---
168350Oracle JD Edwards EnterpriseOne Orchestrator E1 IOT Orchestrator Security unknown vulnerabilitymedium6.4---
168349Oracle JD Edwards EnterpriseOne Tools Enterprise Infrastructure SEC denial of servicemedium7.8---
168348Oracle Java SE Libraries information disclosure [CVE-2020-14803]medium5.0---
168347Oracle Insurance Insbridge Rating and Underwriting Framework Administrator IBFA unknown vulnerabilitymedium6.4---
168346Oracle Insurance Rules Palette Architecture unknown vulnerabilitymedium5.6---
168345Oracle Insurance Policy Administration Architecture unknown vulnerabilitymedium5.6---
168344Oracle Hyperion Infrastructure Technology Common Security information disclosuremedium4.6---
168343Oracle Hyperion Financial Reporting Installation unknown vulnerabilitymedium6.4---
168342Oracle Hyperion Infrastructure Technology Installation/Configuration unknown vulnerabilitymedium5.6---
168341Oracle Hyperion Infrastructure Technology Installation/Configuration denial of servicemedium7.8---
168340Oracle Hyperion Infrastructure Technology Common Security Remote Code Executionmedium7.6---
168339Oracle Hyperion Infrastructure Technology Installation/Configuration Remote Code Executionhigh10.0---
168338Oracle Hyperion Infrastructure Technology Common Security Remote Code Executionhigh10.0---
168337Oracle GraalVM Enterprise Edition Java unknown vulnerabilitymedium5.4---
168336Oracle GraalVM Enterprise Edition Node denial of service [CVE-2020-8277]medium7.8---
168335Oracle WebLogic Server Web Services information disclosure [CVE-2021-1996]low3.3---
168334Oracle GoldenGate Application Adapters information disclosurelow2.6---
168333Oracle Data Integrator Install/config/upgrade information disclosurelow2.6---
168332Oracle WebLogic Server Core Components denial of service [CVE-2021-2033]medium4.0---
168331Oracle Business Intelligence Enterprise Edition BI Platform Security information disclosuremedium5.0---
168330Oracle Data Integrator Centralized Thirdparty Jars information disclosuremedium5.0---
168329Oracle Business Intelligence Enterprise Edition Analytics Web Dashboards unknown vulnerabilitymedium5.5---
168328Oracle WebLogic Server Centralized Thirdparty Jars denial of servicemedium5.4---
168327Oracle Data Integrator Install/config/upgrade unknown vulnerabilitymedium5.4---
168326Oracle WebLogic Server Sample apps unknown vulnerability [CVE-2020-11022]medium6.4---
168325Oracle WebCenter Sites unknown vulnerability [CVE-2020-11022]medium6.4---
168324Oracle Enterprise Data Quality General unknown vulnerabilitymedium6.4---
168323Oracle Business Intelligence Enterprise Edition Analytics Server unknown vulnerabilitymedium6.4---
168322Oracle WebLogic Server Web Services unknown vulnerability [CVE-2021-1995]medium6.8---
168321Oracle WebLogic Server Sample apps unknown vulnerability [CVE-2020-5421]medium5.6---
168320Oracle GoldenGate Application Adapters unknown vulnerabilitymedium5.6---
168319Oracle Data Integrator Rest Service unknown vulnerability [CVE-2018-9019]medium6.4---
168318Oracle Adaptive Access Manager Install/Config unknown vulnerabilitymedium6.1---
168317Oracle WebLogic Server Console Remote Privilege Escalation [CVE-2021-2109]medium8.3---
168316Oracle WebLogic Server Console Remote Code Execution [CVE-2019-10086]medium7.5---
168315Oracle WebCenter Portal Security Framework Remote Code Executionmedium7.5---
168314Oracle Real-Time Decision Server Platform Installation Remote Code Executionmedium7.5---
168313Oracle Fusion Middleware MapViewer Install Remote Code Executionmedium7.5---
168312Oracle Endeca Information Discovery Integrator Integrator ETL Remote Code Executionmedium7.5---
168311Oracle Data Integrator Install/config/upgrade Remote Code Executionmedium7.5---
168310Oracle Real-Time Decision Server Platform Installation unknown vulnerabilitymedium6.8---
168309Oracle Managed File Transfer MFT Runtime Server denial of servicemedium7.8---
168308Oracle Enterprise Repository Security Subsystem information disclosuremedium7.8---
168307Oracle Enterprise Repository Security Subsystem unknown vulnerabilitymedium7.8---
168306Oracle Enterprise Repository Security Subsystem unknown vulnerabilitymedium7.8---
168305Oracle Enterprise Data Quality General denial of service [CVE-2017-12626]medium7.8---
168304Oracle Data Integrator Runtime Java agent for ODI denial of servicemedium7.8---
168303Oracle BI Publisher Web Server unknown vulnerability [CVE-2021-2062]medium7.5---
168302Oracle BI Publisher E-Business Suite - XDO Remote Privilege Escalationmedium8.0---
168301Oracle BI Publisher E-Business Suite - XDO Remote Privilege Escalationmedium8.0---
168300Oracle BI Publisher BI Publisher Security Remote Privilege Escalationmedium8.0---
168299Oracle BI Publisher Administration Remote Privilege Escalationmedium8.0---
168298Oracle Business Intelligence Enterprise Edition Installation Remote Code Executionmedium7.6---
168297Oracle Business Intelligence Enterprise Edition Analytics Web General unknown vulnerabilitymedium8.5---
168296Oracle Outside In Technology Outside In Filters Remote Code Executionmedium9.0---
168295Oracle Outside In Technology Outside In Filters Remote Code Executionmedium9.0---
168294Oracle Outside In Technology Outside In Filters Remote Code Executionmedium9.0---
168293Oracle Outside In Technology Outside In Filters Remote Code Executionmedium9.0---
168292Oracle Endeca Information Discovery Integrator Integrator ETL Remote Privilege Escalationmedium9.0---
168291Oracle Real-Time Decision Server Decision Studio unknown vulnerabilityhigh9.4---
168290Oracle WebLogic Server Samples Remote Code Execution [CVE-2021-2075]high10.0---
168289Oracle WebLogic Server Core Components Remote Code Executionhigh10.0---
168288Oracle WebLogic Server Core Components Remote Code Executionhigh10.0---
168287Oracle WebLogic Server Core Components Remote Code Executionhigh10.0---
168286Oracle WebLogic Server Web Services Remote Code Execution [CVE-2021-1994]high10.0---
168285Oracle WebLogic Server Core Components Remote Code Executionhigh10.0---
168284Oracle WebCenter Portal Portlet Services Remote Code Executionhigh10.0---
168283Oracle Enterprise Repository Security Subsystem Remote Code Executionhigh10.0---
168282Oracle Enterprise Data Quality General Remote Code Executionhigh10.0---
168281Oracle Enterprise Data Quality General Remote Code Executionhigh10.0---
168280Oracle Data Integrator Runtime Java agent for ODI Remote Code Executionhigh10.0---
168279Oracle Data Integrator Install/config/upgrade Remote Code Executionhigh10.0---
168278Oracle Coherence Core Components Remote Code Execution [CVE-2020-14756]high10.0---
168277Oracle Business Process Management Suite Installer Remote Code Executionhigh10.0---
168276Oracle BAM (Business Activity Monitoring) General Remote Code Executionhigh10.0---
168275Oracle Hospitality Reporting and Analytics Report unknown vulnerabilitymedium8.5---
168274Oracle Hospitality Simphony Simphony Server Remote Code Executionhigh10.0---
168273Oracle Financial Services Revenue Management and Billing On Demand Billing unknown vulnerabilitymedium4.0---
168272Oracle FLEXCUBE Universal Banking Infrastructure unknown vulnerabilitymedium6.4---
168271Oracle Banking Virtual Account Management Common Core unknown vulnerabilitymedium6.4---
168270Oracle Banking Trade Finance Process Management Dashboard unknown vulnerabilitymedium6.4---
168269Oracle Banking Supply Chain Finance unknown vulnerability [CVE-2019-11269]medium6.4---
168268Oracle Banking Payments Payments Core unknown vulnerability [CVE-2019-11269]medium6.4---
168267Oracle Banking Liquidity Management Common unknown vulnerabilitymedium6.4---
168266Oracle Banking Credit Facilities Process Management unknown vulnerabilitymedium6.4---
168265Oracle Banking Corporate Lending Process Management unknown vulnerabilitymedium6.4---
168264Oracle Financial Services Analytical Applications Infrastructure unknown vulnerabilitymedium5.6---
168263Oracle Banking Virtual Account Management Common Core information disclosuremedium6.8---
168262Oracle Banking Trade Finance Process Management Dashboard information disclosuremedium6.8---
168261Oracle Banking Supply Chain Finance information disclosure [CVE-2020-5408]medium6.8---
168260Oracle Banking Liquidity Management Common information disclosuremedium6.8---
168259Oracle Banking Credit Facilities Process Management information disclosuremedium6.8---
168258Oracle Banking Corporate Lending Process Management information disclosuremedium6.8---
168257Oracle Insurance Allocation Manager for Enterprise Profitability Remote Code Executionmedium7.5---
168256Oracle Financial Services Profitability Management Remote Code Executionmedium7.5---
168255Oracle Financial Services Market Risk Measurement and Management Remote Code Executionmedium7.5---
168254Oracle Financial Services Funds Transfer Pricing Remote Code Executionmedium7.5---
168253Oracle Financial Services Asset Liability Management Remote Code Executionmedium7.5---
168252Oracle Financial Services Analytical Applications Infrastructure Remote Code Executionmedium7.5---
168251Oracle FLEXCUBE Universal Banking Infrastructure information disclosuremedium7.8---
168250Oracle Financial Services Analytical Applications Infrastructure information disclosuremedium7.8---
168249Oracle Financial Services Analytical Applications Infrastructure unknown vulnerabilitymedium7.8---
168248Oracle Banking Virtual Account Management Common Core information disclosuremedium7.8---
168247Oracle Banking Trade Finance Process Management Dashboard information disclosuremedium7.8---
168246Oracle Banking Supply Chain Finance information disclosure [CVE-2019-12399]medium7.8---
168245Oracle Banking Platform Product Manufacturing information disclosuremedium7.8---
168244Oracle Banking Platform Party/Financials denial of service [CVE-2019-12402]medium7.8---
168243Oracle Banking Platform Installer unknown vulnerability [CVE-2020-11979]medium7.8---
168242Oracle Banking Payments Payments Core information disclosuremedium7.8---
168241Oracle Banking Liquidity Management Common information disclosuremedium7.8---
168240Oracle Banking Credit Facilities Process Management information disclosuremedium7.8---
168239Oracle Banking Corporate Lending Process Management information disclosuremedium7.8---
168238Oracle FLEXCUBE Core Banking Securities Local Privilege Escalationmedium6.8---
168237Oracle Banking Liquidity Management Common unknown vulnerabilityhigh9.4---
168236Oracle FLEXCUBE Universal Banking Infrastructure Remote Code Executionhigh10.0---
168235Oracle Financial Services Market Risk Measurement and Management User Interface Remote Code Executionhigh10.0---
168234Oracle Financial Services Data Integration Hub User Interface Remote Code Executionhigh10.0---
168233Oracle Financial Services Analytical Applications Infrastructure Remote Code Executionhigh10.0---
168232Oracle Banking Virtual Account Management Common Core Remote Code Executionhigh10.0---
168231Oracle Banking Trade Finance Process Management Dashboard Remote Code Executionhigh10.0---
168230Oracle Banking Supply Chain Finance Remote Code Execution [CVE-2020-11612]high10.0---
168229Oracle Banking Payments Payments Core Remote Code Execution [CVE-2020-11612]high10.0---
168228Oracle Banking Liquidity Management Common Remote Code Executionhigh10.0---
168227Oracle Banking Extensibility Workbench Remote Code Executionhigh10.0---
168226Oracle Banking Extensibility Workbench Remote Code Executionhigh10.0---
168225Oracle Banking Credit Facilities Process Management Remote Code Executionhigh10.0---
168224Oracle Banking Corporate Lending Process Management Remote Code Executionhigh10.0---
168223Oracle Enterprise Manager Ops Center User Interface unknown vulnerabilitylow2.6---
168222Oracle Application Testing Suite Load Testing for Web Apps unknown vulnerabilitymedium6.4---
168221Oracle Enterprise Manager for Fusion Applications Topology Viewer denial of servicemedium7.8---
168220Oracle Application Testing Suite Load Testing for Web Apps Remote Code Executionhigh10.0---
168219Oracle Enterprise Manager Ops Center Control Proxy Remote Code Executionhigh10.0---
168218Oracle Enterprise Manager Base Platform Reporting Framework Remote Code Executionhigh10.0---
168217Oracle Enterprise Manager Base Platform Reporting Framework Remote Code Executionhigh10.0---
168216Oracle Enterprise Manager Base Platform Connector Framework Remote Code Executionhigh10.0---
168215Oracle User Management Proxy User Delegation information disclosuremedium4.0---
168214Oracle Installed Base APIs unknown vulnerability [CVE-2021-2023]medium5.0---
168213Oracle iStore Web interface information disclosure [CVE-2021-2059]medium5.0---
168212Oracle Common Applications Calendar Tasks unknown vulnerabilitymedium7.5---
168211Oracle Workflow Worklist unknown vulnerability [CVE-2021-2015]medium8.5---
168210Oracle Scripting Miscellaneous unknown vulnerability [CVE-2021-2091]medium8.5---
168209Oracle One-to-One Fulfillment Print Server unknown vulnerabilitymedium8.5---
168208Oracle Marketing Marketing Administration unknown vulnerabilitymedium8.5---
168207Oracle Marketing Marketing Administration unknown vulnerabilitymedium8.5---
168206Oracle Marketing Marketing Administration unknown vulnerabilitymedium8.5---
168205Oracle iSupport User Responsibilities unknown vulnerability [CVE-2021-2083]medium8.5---
168204Oracle iSupport Profile unknown vulnerability [CVE-2021-2097]medium8.5---
168203Oracle iStore Shopping Cart unknown vulnerability [CVE-2021-2096]medium8.5---
168202Oracle iStore Shopping Cart unknown vulnerability [CVE-2021-2082]medium8.5---
168201Oracle iStore Shopping Cart unknown vulnerability [CVE-2021-2077]medium8.5---
168200Oracle iStore Runtime Catalog unknown vulnerability [CVE-2021-2089]medium8.5---
168199Oracle Email Center Message Display unknown vulnerability [CVE-2021-2098]medium8.5---
168198Oracle Email Center Message Display unknown vulnerability [CVE-2021-2090]medium8.5---
168197Oracle Customer Interaction History Outcome-Result unknown vulnerabilitymedium8.5---
168196Oracle Customer Interaction History Outcome-Result unknown vulnerabilitymedium8.5---
168195Oracle Customer Interaction History Outcome-Result unknown vulnerabilitymedium8.5---
168194Oracle CRM Technical Foundation Preferences unknown vulnerabilitymedium8.5---
168193Oracle CRM Technical Foundation Preferences unknown vulnerabilitymedium8.5---
168192Oracle CRM Technical Foundation Preferences unknown vulnerabilitymedium8.5---
168191Oracle CRM Technical Foundation Preferences unknown vulnerabilitymedium8.5---
168190Oracle Common Applications Calendar Tasks unknown vulnerabilitymedium8.5---
168189Oracle Common Applications Calendar unknown vulnerability [CVE-2021-2114]medium8.5---
168188Oracle Common Applications CRM User Management Framework unknown vulnerabilitymedium8.5---
168187Oracle One-to-One Fulfillment Print Server unknown vulnerabilityhigh9.4---
168186Oracle One-to-One Fulfillment Print Server unknown vulnerabilityhigh9.4---
168185Oracle Scripting Miscellaneous Remote Code Execution [CVE-2021-2029]high10.0---
168184Oracle Primavera P6 Enterprise Project Portfolio Management Web access unknown vulnerabilitymedium5.6---
168183Oracle Primavera Gateway Admin unknown vulnerability [CVE-2020-5421]medium5.6---
168182Oracle Primavera Unifier Remote Code Execution [CVE-2019-10086]medium7.5---
168181Oracle Primavera Unifier Core/Config unknown vulnerability [CVE-2020-11979]medium7.8---
168180Oracle Primavera Gateway Admin unknown vulnerability [CVE-2020-11979]medium7.8---
168179Oracle Instantis EnterpriseTrack Dashboard module unknown vulnerabilitymedium7.8---
168178Oracle Primavera Unifier MPXJ Remote Code Execution [CVE-2020-25020]high10.0---
168177Oracle Communications Performance Intelligence Center Software OpenSSL information disclosuremedium5.4---
168176Oracle Communications Session Report Manager Spring Framework unknown vulnerabilitymedium5.6---
168175Oracle Enterprise Communications Broker DPDK Local Privilege Escalationmedium6.5---
168174Oracle SD-WAN Edge Apache Commons BeanUtils Remote Code Executionmedium7.5---
168173Oracle Communications Diameter Signaling Router IDIH Remote Code Executionmedium7.5---
168172Oracle Enterprise Communications Broker nghttp2 denial of servicemedium7.8---
168171Oracle Communications Application Session Controller Apache Batik unknown vulnerabilitymedium7.8---
168170Oracle Communications Operations Monitor In-Memeory DB for FDP-VSP denial of servicemedium6.8---
168169Oracle Communications Element Manager REST API Local Privilege Escalationmedium6.8---
168168Oracle Communications Application Session Controller Eclipse Jetty Local Privilege Escalationmedium6.8---
168167Oracle Communications Diameter Signaling Router IDIH Remote Code Executionmedium7.6---
168166Oracle Communications Operations Monitor ORMB DB Query in VSP Remote Code Executionhigh10.0---
168165Oracle Communications ASAP Apache Ant information disclosuremedium4.9---
168164Oracle Communications BRM Spring Framework unknown vulnerabilitymedium5.6---
168163Oracle Communications MetaSolv Solution Online Help Remote Code Executionmedium7.5---
168162Oracle Communications BRM Coherence Query Remote Code Executionmedium7.5---
168161Oracle Communications Network Charging and Control SQLite denial of servicemedium7.8---
168160Oracle Communications MetaSolv Solution Print Preview unknown vulnerabilitymedium7.8---
168159Oracle Communications Contacts Server REST API Remote Code Executionmedium7.6---
168158Oracle Communications Calendar Server REST API Remote Code Executionmedium7.6---
168157Oracle Database Server Unified Audit unknown vulnerability [CVE-2021-2000]low3.3---
168156Oracle Database Server Oracle Text denial of service [CVE-2021-2045]low2.1---
168155Oracle Database Server Java VM unknown vulnerability [CVE-2021-1993]medium4.9---
168154Oracle Database Server Oracle Application Express Survey Builder unknown vulnerabilitymedium5.5---
168153Oracle Database Server Oracle Application Express Opportunity Tracker unknown vulnerabilitymedium5.5---
168152Oracle Database Server RDBMS Sharding Remote Privilege Escalationmedium8.3---
168151Oracle Database Server Advanced Networking Option Remote Code Executionmedium7.6---
168150Oracle Database Server RDBMS Scheduler Remote Privilege Escalationmedium9.0---
168149XWiki SVG Document cross site scripting [CVE-2021-3137]low4.0---
168148Rocketgenius Gravity Forms Textarea cross site scripting [CVE-2020-27852]low4.0---
168147Rocketgenius Gravity Forms Poll/Quiz cross site scripting [CVE-2020-27851]low4.0---
168146Rocketgenius Gravity Forms Forms Import cross site scriptinglow4.0---
168145Nagios Log Server create_snapshot cross site scriptinglow4.0---
168144OpenEMR controller.php unrestricted uploadmedium4.9---
168143vTiger CRM libraries information disclosurelow2.3---
168142vTiger CRM index.php cross site scriptinglow4.0---
168141Medintux CCAM.php cross site scriptinglow4.0---
168140FHEM FileLog_logWrapper information disclosurelow2.3---
168139Tufin SecureChange cross site scripting [CVE-2020-13134]low3.3---
168138Tufin SecureChange cross site scripting [CVE-2020-13133]low5.0---
168137Apple iOS/iPadOS XPC Service launchd access controlmedium6.8---
168136Apple macOS XPC Service launchd access controlmedium6.8---
168135Laravel Iilluminate Database Package injection [CVE-2021-21263]medium7.5---
168134My AIA SG App logcat log file [CVE-2020-29598]low2.3---
168133Stockdio Historical Chart Plugin stockdio_chart_historical-wp.js postMessage cross site scriptinglow4.0---
168132SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE authentication replaymedium4.3---
168131SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE information disclosurelow3.3---
168130SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE improper authenticationmedium3.3---
168129SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE random valueslow3.3---
168128SOOIL Diabecare RS/AnyDana-i/AnyDana-A Bluetooth LE insufficiently protected credentialsmedium3.3---
168127SOOIL Diabecare RS/AnyDana-i/AnyDana-A Physician Menu hard-coded credentialsmedium4.6---
168126Simple DirectMedia Layer BMP File SDL_blit_N.c Blit_3or4_to_3or4__inversed_rgb heap-based overflowmedium5.2---
168125Simple DirectMedia Layer BMP File SDL_blit_copy.c SDL_BlitCopy integer overflowmedium4.9---
168124Apache Guacamole Connection History permission [CVE-2020-11997]medium5.2---
168123QEMU ATAPI Emulator out-of-bounds read [CVE-2020-29443]low2.3---
168122Backdoor.Win32.Whisper.b Service Port 113 rundll32.exe stack-based overflowmedium5.2---
168121Backdoor.Win32.Whirlpool.10 UDP Datagram user32.dll stack-based overflowmedium6.5---
168120Backdoor.Win32.Zombam.geq HTTP GET Request stack-based overflowmedium6.5---
168119FasterXML jackson-databind deserialization [CVE-2021-20190]low4.9---
168118NetApp Clustered Data ONTAP VMware vStorage Support unknown vulnerabilitylow4.1---
168117TinyCheck Installation hard-coded credentials [CVE-2020-35929]medium7.5---
168116SOOIL DiabecareRS/AnyDana-i/AnyDana-A Bluetooth LE authentication spoofinglow2.1---
168115SOOIL DiabecareRS/AnyDana-i/AnyDana-A Bluetooth LE inadequate encryptionlow2.1---
168114SOOIL DiabecareRS/AnyDana-i/AnyDana-A Bluetooth LE insufficiently protected credentialslow1.2---
168113MISP global_menu.ctp cross site scriptinglow4.0---
168112Files.com Fat Client improper authentication [CVE-2021-3183]medium5.8---
168111D-Link DCS-5220 buffer overflow [CVE-2021-3182]medium5.2---
168110Mutt Email Message rfc822.c memory allocationlow5.0---
168109MISP Galaxy Cluster Element index.ctp cross site scriptinglow4.0---
168108MISP Galaxy Cluster View view.ctp cross site scriptinglow4.0---
168107MISP Password weak password [CVE-2021-25323]medium5.8---
168106Micro Focus Application Lifecycle Management xml external entity referencemedium4.9---
168105IBM Planning Analytics TLS Communication certificate validationlow2.6---
168104IBM Planning Analytics unknown vulnerability [CVE-2020-4873]medium5.0---
168103IBM Planning Analytics information disclosure [CVE-2020-4871]low1.7---
168102Mautic Social Monitoring cross site scripting [CVE-2020-35129]low4.0---
168101Mautic Javascript File cross site scripting [CVE-2020-35128]low4.0---
168100fastify-csrf Package cookie without 'httponly' flag [CVE-2020-28482]medium5.1---
168099socket.io Packet CORS unknown vulnerability [CVE-2020-28481]medium7.5---
168098jointjs Package util.setByPath code injectionmedium7.5---
168097jointjs Package unsetByPath denial of servicelow2.6---
168096Zoho ManageEngine Applications Manager sql injection [CVE-2020-27733]medium6.5---
168095Pixelimity setting.php cross-site request forgerylow4.0---
168094CMS edit.php cross-site request forgerylow4.0---
168093Microchip Libraries for Applications PKCS information disclosurelow2.6---
168092gsap Package denial of service [CVE-2020-28478]low5.0---
168091immer Package denial of service [CVE-2020-28477]low5.0---
168090aws-sdk shared-ini-file-loader INI File Parser injection [CVE-2020-28472]medium7.5---
168089Linux Kernel NFS Export nfs3xdr.c no_subtree_check path traversal [Disputed]medium6.5---
168088Python callproc.c PyCArg_repr buffer overflowmedium7.5---
168087Hgiga EIP Online Registration sql injection [CVE-2021-22852]medium6.5---
168086Hgiga EIP Document Management Page sql injection [CVE-2021-22851]medium7.5---
168085HGiga EIP permission assignment [CVE-2021-22850]medium5.0---
168084GROWI cross site scripting [CVE-2021-20619]low4.0---
168083Atlassian Confluence Server/Data Center Avatar Upload denial of servicelow3.5---
168082McAfee Agent Update denial of service [CVE-2020-7343]low1.7---
168081Archive_Tar Tar.php pathname traversalmedium5.2---
168080Source Integration Plugin Private Project view.php access controlmedium6.5---
168079Email-Worm.Win32.Agent.gi Microsoft ASPI Manager aspimgr.exe buffer overflowmedium9.0---
168078Backdoor.Win32.NetBull.11.a Service Port 23444 infected.exe stack-based overflowmedium6.5---
168077Constructor.Win32.SMWG.c VBS Script sucke.vbs permissionmedium6.5---
168076Constructor.Win32.SMWG.a VBS Script sucke.vbs permissionmedium6.5---
168075Newfuture Trojan Fast_sms Server permissionmedium6.5---
168074tornado Package request smuggling [CVE-2020-28476]low5.1---
168073bottle Package request smuggling [CVE-2020-28473]low5.1---
168072OpenCATS cross site scripting [CVE-2021-25295]low4.0---
168071OpenCATS guzzlehttp DataGrid.php __destruct deserializationmedium6.0---
168070Open Design Alliance Drawings SDK DXF File stack-based overflowmedium5.2---
168069Open Design Alliance Drawings SDK DXF File null pointer dereferencelow2.3---
168068Open Design Alliance Drawings SDK DXF File null pointer dereferencelow2.3---
168067Open Design Alliance Drawings SDK DXF File null pointer dereferencelow2.3---
168066Open Design Alliance Drawings SDK DGN File memory corruptionlow2.7---
168065Open Design Alliance Drawings SDK DGN File denial of servicelow2.3---
168064Asus DSL-N14U-B1 Firmware Update Settings_DSL-N14U-B1.trx denial of servicelow2.3---
168063Atlassian FishEye/Crucible file access [CVE-2020-29446]low3.5---
168062Quali CloudShell Login Page cross site scripting [CVE-2020-15864]low4.0---
168061Netsia SEBA+ allActiveSession information disclosurelow2.6---
168060Backdoor.Win32.Mnets UDP Service buffer overflowmedium6.5---
168059Backdoor.Win32.Whgrx HTTP Host Header wsocx.dll buffer overflowmedium6.5---
168058Docker Desktop Community certificate validation [CVE-2021-3162]medium4.3---
168057OneDev KubernetesResource REST Endpoint path traversal [CVE-2021-21251]medium6.5---
168056OneDev XML Document XmlBuildSpecMigrator.migrate information disclosurelow4.0---
168055OneDev YAML Parser deserialization [CVE-2021-21249]medium6.5---
168054OneDev injection [CVE-2021-21248]medium6.5---
168053OneDev AJAX Event Listener improper authentication [CVE-2021-21247]medium6.5---
168052OneDev REST UserResource Endpoint {id} authorizationmedium5.0---
168051OneDev AttachmentUploadServlet request.getInputStream unrestricted uploadmedium7.5---
168050OneDev Bean Message injection [CVE-2021-21244]medium7.5---
168049OneDev Kubernetes REST Endpoint improper authentication [CVE-2021-21243]medium7.5---
168048OneDev AttachmentUploadServlet deserialization [CVE-2021-21242]medium7.5---
168047Git LFS git.exe untrusted search pathlow3.5---
168046Juniper Junos telnetd.real unnecessary privilegesmedium6.8---
168045Juniper Junos Protocol Packet denial of service [CVE-2021-0222]medium6.1---
168044Juniper Junos IRB Interface denial of service [CVE-2021-0221]medium6.1---
168043Juniper Junos Space Network Management Platform credentials storagelow2.6---
168042Juniper Junos Package Validation Subsystem command injectionmedium6.8---
168041Juniper Junos License-Check Daemon command injection [CVE-2021-0218]medium7.2---
168040Juniper Junos DHCP Packet memory corruption [CVE-2021-0217]medium7.3---
168039Juniper Junos 802.1X Authenticator Port Interface resource consumptionmedium6.1---
168038Juniper Networks Contrail information disclosure [CVE-2021-0212]low1.7---
168037Juniper Junos Routing Protocol denial of service [CVE-2021-0211]medium7.8---
168036Juniper Junos J-Web information disclosure [CVE-2021-0210]low5.0---
168035Juniper Junos BGP UPDATE uninitialized pointer [CVE-2021-0209]medium6.1---
168034Juniper Junos Routing Protocol denial of service [CVE-2021-0208]low3.3---
168033Juniper Junos denial of service [CVE-2021-0207]low5.0---
168032Juniper Junos Packet Forwarding Engine denial of service [CVE-2021-0206]medium7.8---
168031Juniper MX IDS 32 access controlmedium7.5---
168030Juniper Junos dexp information disclosure [CVE-2021-0204]low1.7---
168029Juniper EX/QFX5K RTG denial of service [CVE-2021-0203]low5.0---
168028Juniper EX9200 IRB Interface memory leak [CVE-2021-0202]low5.0---
168027Simple Board Job Plugin pathname traversal [CVE-2020-35749]medium4.0---
168026FV Flowplayer Video Player list-table.php fv_wp_fvvideoplayer_src cross site scriptinglow4.0---
168025Erlang OTP X.509 Certificate certificate validation [CVE-2020-35733]medium5.8---
168024Malwarebytes Launch Daemon posix_spawn race conditionlow4.0---
168023Aruba AirWave Glass server-side request forgery [CVE-2020-24641]medium5.8---
168022Aruba Airwave Glass Environment input validation [CVE-2020-24640]medium4.9---
168021Aruba Airwave Glass Java deserialization [CVE-2020-24639]medium4.9---
168020Aruba Airwave Glass glassadmin CLI Remote Privilege Escalationmedium8.3---
168019ownCloud Forgot Password cross site scripting [CVE-2020-16255]low4.0---
168018SolarWinds Web Help Desk Schedule Name cross site scripting [CVE-2019-16961]low4.0---
168017Backdoor.Win32.Nucleroot.t MaskPE xmllite.dll buffer overflowmedium4.3---
168016Backdoor.Win32.Nucleroot.bi MaskPE buffer overflowmedium4.3---
168015flatCore ACP Interface cross site scripting [CVE-2021-23838]low4.0---
168014flatCore ACP Interface sql injection [CVE-2021-23837]medium6.5---
168013flatCore ACP Interface cross site scripting [CVE-2021-23836]low4.0---
168012flatCore HTTP Request information disclosure [CVE-2021-23835]low3.3---
168011Envira Gallery Lite HTML cross site scriptinglow4.0---
168010Envira Gallery Lite cross site scripting [CVE-2020-35581]low4.0---
168009GitLab Community Edition/Enterprise Edition Package Name denial of servicelow4.0---
168008GitLab Community Edition/Enterprise Edition NuGet API denial of servicelow4.0---
168007GitLab Community Edition/Enterprise Edition Repository access controlmedium5.1---
168006GitLab Community Edition/Enterprise Edition HTTP Request denial of servicelow5.0---
168005GitLab Community Edition/Enterprise Edition Pages information disclosurelow4.0---
168004Backdoor.Win32.Ncx.bt Web Server buffer overflowmedium6.5---
168003Elasticsearch Async Search API information disclosure [CVE-2021-22132]low2.3---
168002Flatpak flatpak-portal Service injection [CVE-2021-21261]medium6.5---
168001Google Chrome HTML Page use after free [CVE-2020-6572]medium7.5---
168000Dell EMC Avamar Server Fitness Analyzer os command injectionmedium7.5---
167999Dell EMC Avamar Server PDM path traversal [CVE-2020-29494]medium5.8---
167998Dell EMC Avamar Server Fitness Analyzer sql injection [CVE-2020-29493]medium7.5---
167997Eclipse Hono AMQP/MQTT authorization [CVE-2020-27220]medium4.0---
167996Eclipse Hawkbit JSON Response cross site scripting [CVE-2020-27219]low5.0---
167995Google Chrome HTML Page cross site scripting [CVE-2020-16046]low5.0---
167994Google Chrome HTML Page use after free [CVE-2020-16045]medium7.5---
167993Apache Tomcat NTFS File System File.getCanonicalPath information disclosurelow3.5---
167992XMLBeans XML Parser xml external entity reference [CVE-2021-23926]medium5.2---
167991ZTE ZXV10 B860A Log information disclosure [CVE-2021-21722]low2.3---
167990acmailer/acmailer DB improper authentication [CVE-2021-20618]medium5.0---
167989acmailer/acmailer DB access control [CVE-2021-20617]medium6.5---
167988Bosch PRAESIDEO/PRAESENSA Web-based Management Interface cross site scriptinglow3.3---
167987Bosch PRAESIDEO/PRAESENSA Web-based Management Interface cross-site request forgerylow5.0---
167986SimplCommerce Bootbox.js html cross site scriptinglow4.0---
167985Fortinet FortiWeb httpd stack-based overflow [CVE-2020-29019]medium7.5---
167984Fortinet FortiWeb format string [CVE-2020-29018]medium6.5---
167983Fortinet FortiDeceptor Customization Page os command injectionmedium6.5---
167982Fortinet FortiWeb Request stack-based overflow [CVE-2020-29016]medium7.5---
167981Fortinet FortiWeb Authorization Header sql injection [CVE-2020-29015]medium5.1---
167980scullyio scully HTML Page JSON.stringify state issuemedium6.5---
167979TOTOLINK A702R Directory Indexing information disclosure [CVE-2020-27368]low2.7---
167978Skyworth GN542VF Configuration Page cross site scripting [CVE-2020-26733]low4.0---
167977Skyworth GN542VF Boa Session Cookie missing secure attributelow2.6---
167976Open-iSCSI tcmu-runner tcmur_cmd_handler.c xcopy_locate_udev pathname traversalmedium6.5---
167975Discourse 2FA improper authentication [CVE-2021-3138]medium5.8---
1679741C:Enterprise URL Parameter information disclosure [CVE-2021-3131]low3.5---
167973Palo-Alto PAN-OS log file [CVE-2021-3032]low3.3---
167972Palo-Alto PAN OS Ethernet Packet information disclosure [CVE-2021-3031]low3.3---
167971git-big-picture Branch Name unknown vulnerability [CVE-2021-3028]low4.9---
167970OWASP json-sanitizer JSON denial of service [CVE-2021-23900]low2.3---
167969OWASP json-sanitizer Script Tag cross site scripting [CVE-2021-23899]low4.0---
167968Bumblebee HP ALM Plugin Configuration File credentials storagelow2.3---
167967TICS Plugin cross site scripting [CVE-2021-21613]low4.0---
167966TraceTronic ECU-TEST Plugin Configuration File credentials storagelow2.3---
167965Jenkins Display Name cross site scripting [CVE-2021-21611]low4.0---
167964Jenkins Markup cross site scripting [CVE-2021-21610]low4.0---
167963Jenkins URL handler authorization [CVE-2021-21609]medium5.2---
167962Jenkins cross site scripting [CVE-2021-21608]low4.0---
167961Jenkins URL memory allocation [CVE-2021-21607]low2.7---
167960Jenkins XML File information disclosure [CVE-2021-21606]low2.3---
167959Jenkins Agent config.xml permissionmedium5.2---
167958Jenkins Old Data Monitor deserialization [CVE-2021-21604]medium5.2---
167957Jenkins Notification Bar cross site scripting [CVE-2021-21603]low4.0---
167956Jenkins File Browser link following [CVE-2021-21602]medium5.2---
167955jQuery Validation Plugin resource consumption [CVE-2021-21252]low5.0---
167954Adobe Bridge TTF File out-of-bounds write [CVE-2021-21013]medium7.5---
167953Adobe Bridge TTF File out-of-bounds write [CVE-2021-21012]medium7.5---
167952Adobe Captivate 2019 uncontrolled search path [CVE-2021-21011]medium4.3---
167951Adobe InCopy uncontrolled search path [CVE-2021-21010]medium4.3---
167950Adobe Campaign Classic server-side request forgery [CVE-2021-21009]medium5.0---
167949Adobe Animate uncontrolled search path [CVE-2021-21008]medium4.3---
167948Adobe Illustrator uncontrolled search path [CVE-2021-21007]medium4.3---
167947Adobe Photoshop Font File heap-based overflow [CVE-2021-21006]medium7.5---
167946Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167945Cisco WebEx Meetings/WebEx Meetings Server Host Key excessive authenticationlow2.1---
167944Cisco Webex Meetings Web-based Management Interface redirectmedium7.5---
167943Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167942Cisco FirePOWER Management Center Dashboard Widget xml entity expansionlow4.0---
167941Cisco AnyConnect Secure Mobility Client access control [CVE-2021-1258]low1.7---
167940Cisco Finesse Web-based Management Interface cross site scriptinglow5.0---
167939Cisco Finesse Web-based Management Interface cross site scriptinglow5.0---
167938Cisco WebEx Teams Messaging Interface clickjacking [CVE-2021-1242]low5.0---
167937Cisco Proximity Desktop DLL Loader uncontrolled search path [CVE-2021-1240]medium4.3---
167936Cisco FirePOWER Management Center Web-based Management Interface cross site scriptinglow3.3---
167935Cisco FirePOWER Management Center Web-based Management Interface cross site scriptinglow3.3---
167934Cisco AnyConnect Secure Mobility Client Network Access Manager/Web Security Agent uncontrolled search pathlow4.3---
167933Cisco Integrated Services Router Snort Application Detection Engine control flowlow2.6---
167932Cisco Unified Communications Manager Audit Logging log file [CVE-2021-1226]low4.0---
167931Cisco Integrated Services Router TCP Fast Open protection mechanismlow5.0---
167930Cisco Integrated Services Router Snort protection mechanism [CVE-2021-1223]low5.0---
167929Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167928Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167927Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167926Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167925Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167924Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167923Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167922Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167921Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167920Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167919Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167918Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167917Apache Operating System Web-based Management Interface stack-based overflowmedium8.3---
167916Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167915Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167914Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167913Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167912Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167911Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167910Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167909Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167908Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167907Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167906Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167905Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167904Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167903Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167902Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167901Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167900Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167899Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167898Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167897Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167896Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167895Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167894Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167893Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167892Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167891Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167890Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167889Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167888Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167887Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167886Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167885Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167884Apache Operating System Web-based Management Interface stack-based overflowmedium8.3---
167883Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167882Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167881Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167880Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167879Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167878Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167877Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167876Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167875Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167874Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167873Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167872Cisco Small Business Web-based Management Interface stack-based overflowmedium8.3---
167871Apache Operating System Web-based Management Interface stack-based overflowmedium8.3---
167870Cisco Small Business Web-based Management Interface cross site scriptinglow3.3---
167869Cisco Small Business Web-based Management Interface cross site scriptinglow3.3---
167868Cisco Small Business Web-based Management Interface cross site scriptinglow3.3---
167867Cisco Small Business Web-based Management Interface cross site scriptinglow3.3---
167866Cisco Small Business Web-based Management Interface cross site scriptinglow3.3---
167865Cisco Small Business Web-based Management Interface cross site scriptinglow3.3---
167864Cisco Small Business Web-based Management Interface cross site scriptinglow3.3---
167863Cisco Small Business Web-based Management Interface cross site scriptinglow3.3---
167862Cisco Small Business Web-based Management Interface command injectionmedium8.3---
167861Cisco Small Business Web-based Management Interface command injectionmedium8.3---
167860Cisco Small Business Web-based Management Interface command injectionmedium8.3---
167859Cisco Small Business Web-based Management Interface command injectionmedium8.3---
167858Apache Operating System Web-based Management Interface command injectionmedium8.3---
167857Cisco StarOS SFTP symlink [CVE-2021-1145]medium4.0---
167856Cisco Connected Mobile Experiences Password authorization [CVE-2021-1144]medium6.5---
167855Cisco Connected Mobile Experiences API GET Request authorizationmedium6.5---
167854Cisco Video Surveillance 8000 Discovery Protocol Packet memory corruptionmedium3.3---
167853Cisco DNA Center Web-based Management Interface cross site scriptinglow4.0---
167852Cisco Enterprise NFV Infrastructure Software Web-based Management Interface cross site scriptinglow4.0---
167851Cisco FirePOWER Management Center credentials storage [CVE-2021-1126]low1.7---
167850Huawei SMC Module access control [CVE-2020-9209]medium5.2---
167849Huawei P30 Broadcast Message Local Privilege Escalation [CVE-2020-9203]low4.3---
167848Huawei Smartphone out-of-bounds write [CVE-2020-9145]medium4.3---
167847Huawei Smartphone heap-based overflow [CVE-2020-9144]medium5.2---
167846Huawei Smartphone improper authentication [CVE-2020-9143]medium3.3---
167845Huawei Smartphone Update heap-based overflow [CVE-2020-9142]medium5.2---
167844Huawei Smartphone information disclosure [CVE-2020-9141]low2.3---
167843Huawei Smartphone buffer overflow [CVE-2020-9140]medium5.2---
167842Huawei Smartphone memory corruption [CVE-2020-9139]medium5.2---
167841Huawei Smartphone Update heap-based overflow [CVE-2020-9138]medium5.2---
167840IBM Security Guardium Insights credentials storage [CVE-2020-4604]low0.8---
167839IBM Security Guardium Insights credentials storage [CVE-2020-4602]low1.4---
167838IBM Security Guardium Insights information exposure [CVE-2020-4600]low5.0---
167837IBM Security Guardium Insights information exposure [CVE-2020-4599]low5.0---
167836IBM Security Guardium Insights Cookie missing secure attributelow2.6---
167835IBM Security Guardium Insights inadequate encryption [CVE-2020-4596]low2.6---
167834IBM Security Guardium Insights inadequate encryption [CVE-2020-4595]low2.6---
167833IBM Security Guardium Insights inadequate encryption [CVE-2020-4594]low2.6---
167832PHPFusion Shoutbox Message cross-site request forgery [CVE-2020-35687]low5.5---
167831Nagios XI Manage Plugins Page unrestricted upload [CVE-2020-35578]medium5.8---
167830Loxone Miniserver improper authentication [CVE-2020-27488]medium5.8---
167829PTC Kepware KEPServerEX OPC UA Message use after free [CVE-2020-27267]low2.7---
167828PTC Kepware KEPServerEX OPC UA Message stack-based overflow [CVE-2020-27265]medium6.5---
167827PTC Kepware KEPServerEX OPC UA Message heap-based overflow [CVE-2020-27263]medium5.2---
167826Coturn Loopback Interface confused deputy [CVE-2020-26262]medium7.5---
167825zoujingli ThinkAdmin Update.php deserializationmedium6.0---
167824Huawei Secospace USG9500 DHCP Message Parser out-of-bounds readlow3.3---
167823Huawei CloudEngine PIM Message out-of-bounds read [CVE-2020-1865]low2.7---
167822Ubuntu Linux DCCP Socket use after free [CVE-2020-16119]medium6.0---
167821Combodo iTop Console Breadcrumb cross site scripting [CVE-2020-15221]low4.0---
167820Combodo iTop session expiration [CVE-2020-15220]medium5.1---
167819Combodo iTop User Portal information exposure [CVE-2020-15219]low4.0---
167818Combodo iTop Admin Page session expiration [CVE-2020-15218]low4.0---
167817Xiaomi AX1800/RM1800 ddns command injection [CVE-2020-14102]medium8.3---
167816Xiaomi AX1800/RM1800 Web Management Interface information disclosurelow2.3---
167815Xiaomi AX1800/RM1800 Time denial of service [CVE-2020-14098]low2.7---
167814Xiaomi Redmi AX6 Nginx Configuration improper authorization [CVE-2020-14097]medium5.2---
167813IBM Security Guardium Data Encryption permission [CVE-2019-4702]medium4.6---
167812IBM Security Guardium Data Encryption URL information disclosurelow4.0---
167811IBM Security Guardium Data Encryption inadequate encryption [CVE-2019-4160]low2.6---
167810remote-login-service crypt.c credentials storagelow4.0---
167809Backdoor.Win32.Ketch.a Server Response buffer overflowmedium7.5---
167808Backdoor.Win32.Ketch.i HTTP Response buffer overflowmedium7.5---
167807SKYSEA Client View DLL untrusted search path [CVE-2021-20616]medium4.9---
167806NEC UNIVERGE SV8500/UNIVERGE SV9500 System Maintenance improper authenticationmedium7.5---
167805NEC UNIVERGE SV8500/UNIVERGE SV9500 URL denial of service [CVE-2020-5685]low2.3---
167804NEC Express5800-T110j improper authentication [CVE-2020-5633]medium7.5---
167803JupyterHub Admin Panel user cross-site request forgerylow4.0---
167802Sound Research DCHU Model Software Component Modules SECOMN Service unknown vulnerabilitylow4.9---
167801Linux Kernel LIO SCSI target_core_xcopy.c pathname traversalmedium6.5---
167800Mozilla Thunderbird SCTP Packet use after free [CVE-2020-16044]medium7.5---
167799QEMU megasas-gen2 SCSI Host Bus Adapter Emulation megasas.c megasas_command_cancelled denial of servicelow2.7---
167798QEMU USB xHCI Controller Emulation hcd-xhci.c xhci_ring_chain_length denial of servicelow2.3---
167797Kubernetes Java Client Pod path traversal [CVE-2020-8570]medium5.2---
167796Mubu Local Privilege Escalation [CVE-2021-3134]low4.3---
167795Elementor Contact Form DB Plugin Admin Page cross-site request forgerylow4.0---
167794Ignition Debug Mode file_put_contents Remote Code Executionmedium6.8---
167793OX Software OX App Suite Subject cross site scripting [CVE-2021-23936]low4.0---
167792OX Software OX App Suite Appointment cross site scripting [CVE-2021-23935]low4.0---
167791OX Software OX App Suite Contact cross site scripting [CVE-2021-23934]low4.0---
167790OX Software OX App Suite Note cross site scripting [CVE-2021-23933]low4.0---
167789OX Software OX App Suite Inline Image cross site scripting [CVE-2021-23932]low4.0---
167788OX Software OX App Suite Binary File cross site scripting [CVE-2021-23931]low4.0---
167787OX Software OX App Suite Conversion API cross site scriptinglow4.0---
167786OX Software OX App Suite HTML Document cross site scripting [CVE-2021-23929]low5.0---
167785OX Software OX App Suite Query String cross site scripting [CVE-2021-23928]low4.0---
167784OX Software OX App Suite PUT Request server-side request forgerymedium5.2---
167783Joomla! Image cross site scripting [CVE-2021-23125]low4.0---
167782Joomla! Attribute cross site scripting [CVE-2021-23124]low4.0---
167781Joomla! ACL or information disclosurelow2.3---
167780CLA-Assistant API Endpoint access control [CVE-2021-21471]medium6.5---
167779SAP EPM Add-in for Microsoft Office xml external entity referencelow3.5---
167778SAP NetWeaver Master Data Management information disclosure [CVE-2021-21469]low2.6---
167777SAP Business Warehouse Database Interface improper authorizationmedium4.0---
167776SAP Banking Services Generic Market Data improper authorizationmedium4.0---
167775SAP Business Warehouse/BW4HANA ABAP Report injection [CVE-2021-21466]medium6.5---
167774SAP Business Warehouse Database Interface sql injection [CVE-2021-21465]medium6.5---
167773SAP 3D Visual Enterprise Viewer PCX File denial of service [CVE-2021-21464]low5.0---
167772SAP 3D Visual Enterprise Viewer PCX File out-of-bounds read [CVE-2021-21463]low5.0---
167771SAP 3D Visual Enterprise Viewer PCX File out-of-bounds writemedium5.0---
167770SAP 3D Visual Enterprise Viewer BMP File out-of-bounds writemedium5.0---
167769SAP 3D Visual Enterprise Viewer dib File out-of-bounds writemedium5.0---
167768SAP 3D Visual Enterprise Viewer IFF File out-of-bounds writemedium5.0---
167767SAP 3D Visual Enterprise Viewer IFF File memory corruption [CVE-2021-21458]medium7.5---
167766SAP 3D Visual Enterprise Viewer IFF File memory corruption [CVE-2021-21457]medium7.5---
167765SAP 3D Visual Enterprise Viewer dib File out-of-bounds writemedium5.0---
167764SAP 3D Visual Enterprise Viewer dib File out-of-bounds writemedium5.0---
167763SAP 3D Visual Enterprise Viewer RLE File out-of-bounds writemedium5.0---
167762SAP 3D Visual Enterprise Viewer RLE File denial of service [CVE-2021-21453]low5.0---
167761SAP 3D Visual Enterprise Viewer GIF File denial of service [CVE-2021-21452]low5.0---
167760SAP 3D Visual Enterprise Viewer SGI File denial of service [CVE-2021-21451]low5.0---
167759SAP 3D Visual Enterprise Viewer PSD File denial of service [CVE-2021-21450]low5.0---
167758SAP 3D Visual Enterprise Viewer IFF File denial of service [CVE-2021-21449]low5.0---
167757SAP GUI improper authorization [CVE-2021-21448]low1.7---
167756SAP BusinessObjects Business Intelligence Platform Input Control cross site scriptinglow4.0---
167755SAP NetWeaver AS ABAP denial of service [CVE-2021-21446]low4.0---
167754SAP Commerce Cloud HTTP Response cross site scripting [CVE-2021-21445]low4.0---
167753IBM API Connect Web UI cross site scripting [CVE-2020-4838]low4.0---
167752IBM Workload Automation Path information disclosure [CVE-2020-4674]low4.0---
167751IBM Workload Automation HTML Comment information disclosure [CVE-2020-4673]low4.0---
167750Combodo iTop Ajax Endpoint information disclosure [CVE-2020-4079]low4.0---
167749RailsAdmin Nested Form cross site scripting [CVE-2020-36190]low4.0---
167748ClusterLabs crmsh crm History code injection [CVE-2020-35459]medium4.3---
167747ClusterLabs Hawk Cookie code injection [CVE-2020-35458]medium7.5---
167746Siemens SCALANCE X-300/SCALANCE X-408/SIPLUS NET Factory Reset hard-coded keylow1.8---
167745Siemens SCALANCE X-200/SCALANCE X-200IRT C-PLUG hard-coded keylow1.8---
167744Siemens Opcenter Execution Core insufficiently protected credentialslow1.7---
167743Siemens Solid Edge DFT File Parser out-of-bounds write [CVE-2020-28386]medium5.2---
167742Siemens Solid Edge PAR File Parser stack-based overflow [CVE-2020-28384]medium5.2---
167741Siemens JT2Go//Solid Edge/Teamcenter Visualization PAR File Parser out-of-bounds writemedium5.2---
167740Siemens Solid Edge PAR File Parser out-of-bounds write [CVE-2020-28382]medium5.2---
167739Siemens Solid Edge PAR File Parser out-of-bounds write [CVE-2020-28381]medium5.2---
167738TIBCO EBX Add-on xml external entity reference [CVE-2020-27148]medium6.5---
167737Siemens JT2Go/Teamcenter Visualization CG4 File out-of-bounds readlow2.7---
167736Siemens JT2Go/Teamcenter Visualization SGI File out-of-bounds writemedium5.2---
167735Siemens JT2Go/Teamcenter Visualization PCX File heap-based overflowmedium5.2---
167734Siemens JT2Go/Teamcenter Visualization CGM File stack-based overflowmedium5.2---
167733Siemens JT2Go/Teamcenter Visualization CGM File stack-based overflowmedium5.2---
167732Siemens JT2Go/Teamcenter Visualization ASM File null pointer dereferencelow5.0---
167731Siemens JT2Go/Teamcenter Visualization ASM File type confusionmedium4.9---
167730Siemens JT2Go//Solid Edge/Teamcenter Visualization PAR File stack-based overflowmedium5.2---
167729Siemens JT2Go/Teamcenter Visualization PAR File out-of-bounds writemedium5.2---
167728Siemens JT2Go/Teamcenter Visualization TGA File heap-based overflowmedium5.2---
167727Siemens JT2Go/Teamcenter Visualization JT File heap-based overflowmedium5.2---
167726Siemens JT2Go/Teamcenter Visualization RGB File heap-based overflowmedium5.2---
167725Siemens JT2Go/Teamcenter Visualization JT File out-of-bounds writemedium5.2---
167724Siemens JT2Go/Teamcenter Visualization PDF File out-of-bounds writemedium5.2---
167723Siemens JT2Go/Teamcenter Visualization CG4 File out-of-bounds writemedium5.2---
167722Siemens JT2Go/Teamcenter Visualization XML File xml external entity referencelow3.5---
167721Siemens JT2Go/Teamcenter Visualization JT File Parser type confusionmedium4.9---
167720REDCap ToDoList cross site scriptinglow4.0---
167719REDCap ToDoList sql injectionmedium6.5---
167718Heikkitoivonen M2Crypto RSA Decryption API information disclosurelow1.4---
167717Siemens SCALANCE X-200/SCALANCE X-200IRT Web Server heap-based overflowmedium5.2---
167716Siemens SCALANCE X-200/SCALANCE X-200IRT/SCALANCE X-300 Web Server heap-based overflowmedium5.2---
167715Siemens SCALANCE X-200/SCALANCE X-200IRT Integrated Web Server denial of servicelow2.9---
167714Red Hat Single Sign On Application Console information disclosurelow2.3---
167713HCL Commerce Remote Privilege Escalation [CVE-2020-14275]medium6.0---
167712HCL Commerce information disclosure [CVE-2020-14274]low3.5---
167711OpenText Carbonite Server Backup Portal Policy cross site scriptinglow4.0---
167710Backdoor.Win32.Kurbadur.a Service Port 21220 dataexchange.dll stack-based overflowmedium6.5---
167709Microsoft Windows Win32k Local Privilege Escalation [CVE-2021-1709]medium6.0---
167708Microsoft Windows WalletService Local Privilege Escalation [CVE-2021-1690]medium6.8---
167707Microsoft Windows WalletService Local Privilege Escalation [CVE-2021-1687]medium6.8---
167706Microsoft Windows WalletService Local Privilege Escalation [CVE-2021-1686]medium6.8---
167705Microsoft Windows WalletService Local Privilege Escalation [CVE-2021-1681]medium6.8---
167704Microsoft Windows WLAN Service Local Privilege Escalation [CVE-2021-1646]medium6.8---
167703Microsoft Windows Update Stack unknown vulnerability [CVE-2021-1694]medium6.8---
167702Microsoft Windows Runtime C++ Template Library Local Privilege Escalationmedium6.8---
167701Microsoft Windows RPC Runtime Local Privilege Escalation [CVE-2021-1702]medium6.8---
167700Microsoft Windows RDP Remote Privilege Escalation [CVE-2021-1669]medium9.0---
167699Microsoft Windows RDP Core Remote Privilege Escalation [CVE-2021-1674]medium9.0---
167698Microsoft Windows Projected File System FS Filter Driver information disclosurelow4.6---
167697Microsoft Windows File System FS Filter Driver information disclosurelow4.6---
167696Microsoft Windows Projected File System FS Filter Driver information disclosurelow4.6---
167695Microsoft Windows Print Spooler Local Privilege Escalation [CVE-2021-1695]medium6.8---
167694Microsoft Windows NT Lan Manager Datagram Receiver Driver information disclosurelow1.7---
167693Microsoft Windows Multipoint Management Local Privilege Escalationmedium6.8---
167692Microsoft Windows LUAFV Local Privilege Escalation [CVE-2021-1706]medium6.8---
167691Microsoft Windows Kernel Local Privilege Escalation [CVE-2021-1682]medium6.0---
167690Microsoft Windows Installer Local Privilege Escalation [CVE-2021-1661]medium6.8---
167689Microsoft Windows InstallService Local Privilege Escalation [CVE-2021-1697]medium6.8---
167688Microsoft Windows Hyper-V Local Privilege Escalation [CVE-2021-1704]medium6.8---
167687Microsoft Windows Graphics information disclosure [CVE-2021-1696]low5.0---
167686Microsoft Windows GDI+ information disclosure [CVE-2021-1708]low4.0---
167685Microsoft Windows Fax Compose Form Remote Privilege Escalationmedium6.5---
167684Microsoft Windows Event Tracing Local Privilege Escalation [CVE-2021-1662]medium6.8---
167683Microsoft Windows Event Logging Service Local Privilege Escalationmedium6.8---
167682Microsoft Windows Docker information disclosure [CVE-2021-1645]low4.6---
167681Microsoft Windows DNS Query information disclosure [CVE-2021-1637]low4.6---
167680Microsoft Windows CryptoAPI denial of service [CVE-2021-1679]medium7.8---
167679Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1693]medium6.8---
167678Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1688]medium6.8---
167677Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1659]medium6.8---
167676Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1655]medium6.8---
167675Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1654]medium6.8---
167674Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1653]medium6.8---
167673Microsoft Windows CSC Service Local Privilege Escalation [CVE-2021-1652]medium6.8---
167672Microsoft Windows Bluetooth Local Privilege Escalation [CVE-2021-1638]low4.6---
167671Microsoft Windows Bluetooth information disclosure [CVE-2021-1684]low1.7---
167670Microsoft Windows Bluetooth information disclosure [CVE-2021-1683]low4.6---
167669Microsoft Windows AppX Deployment Extensions Local Privilege Escalationmedium6.8---
167668Microsoft Windows AppX Deployment Extensions Local Privilege Escalationmedium6.8---
167667Microsoft Windows modem.sys information disclosure [CVE-2021-1699]low1.7---
167666Microsoft Visual Studio Remote Code Execution [CVE-2020-26870]low5.1---
167665Microsoft Windows TPM Device Driver information disclosure [CVE-2021-1656]low4.6---
167664Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1701]medium9.0---
167663Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1700]medium9.0---
167662Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1673]medium9.0---
167661Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1671]medium9.0---
167660Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1667]medium9.0---
167659Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1666]medium9.0---
167658Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1664]medium9.0---
167657Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1660]medium9.0---
167656Microsoft Windows RPC Runtime Remote Privilege Escalation [CVE-2021-1658]medium9.0---
167655Microsoft Windows NTLM information disclosure [CVE-2021-1678]low5.0---
167654Microsoft Windows splwow64 Local Privilege Escalation [CVE-2021-1648]medium6.8---
167653Microsoft Word Remote Code Execution [CVE-2021-1716]medium7.5---
167652Microsoft Word Remote Code Execution [CVE-2021-1715]medium7.5---
167651Microsoft Windows Media Foundation Remote Code Execution [CVE-2021-1710]medium7.5---
167650Microsoft SharePoint Server unknown vulnerability [CVE-2021-1717]low5.5---
167649Microsoft SharePoint Server unknown vulnerability [CVE-2021-1641]low5.5---
167648Microsoft SharePoint Foundation Remote Privilege Escalation [CVE-2021-1718]medium9.0---
167647Microsoft SharePoint Server Remote Privilege Escalation [CVE-2021-1707]medium9.0---
167646Microsoft SharePoint Server Remote Privilege Escalation [CVE-2021-1719]medium9.0---
167645Microsoft SharePoint Server Remote Privilege Escalation [CVE-2021-1712]medium9.0---
167644Microsoft SQL Server Remote Privilege Escalation [CVE-2021-1636]medium9.0---
167643Microsoft Office Remote Code Execution [CVE-2021-1711]medium10.0---
167642Microsoft Excel Remote Code Execution [CVE-2021-1714]medium10.0---
167641Microsoft Excel Remote Code Execution [CVE-2021-1713]medium7.5---
167640Microsoft Edge memory corruption [CVE-2021-1705]medium7.5---
167639Microsoft Defender Remote Privilege Escalation [CVE-2021-1647]high9.0---
167638Microsoft Windows DTV-DVD Video Decoder Remote Code Executionmedium10.0---
167637Microsoft Windows Hyper-V denial of service [CVE-2021-1692]medium6.8---
167636Microsoft Windows Hyper-V denial of service [CVE-2021-1691]medium6.8---
167635Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-1643]medium9.3---
167634Microsoft HEVC Video Extensions Remote Code Execution [CVE-2021-1644]medium9.3---
167633Microsoft Windows GDI+ Remote Code Execution [CVE-2021-1665]medium10.0---
167632Microsoft Windows Diagnostics Hub Standard Collector Local Privilege Escalationmedium6.8---
167631Microsoft Windows Diagnostics Hub Standard Collector Local Privilege Escalationmedium6.8---
167630Microsoft Bot Framework SDK information disclosure [CVE-2021-1725]low4.6---
167629Microsoft Azure Kubernetes Service Pod Identity information disclosurelow4.6---
167628Microsoft Windows Active Template Library Local Privilege Escalationmedium6.8---
167627Microsoft ASP.NET Core/Visual Studio denial of service [CVE-2021-1723]medium7.8---
167626sudo sudoedit selinux_edit_copy_tfiles temp filemedium4.3---
167625sudo sudoedit personality sudo_edit.c race conditionlow1.0---
167624Pillow SGI RLE Image SGIRleDecode buffer overflowmedium5.2---
167623Pillow YCbCr File TiffDecode heap-based overflowmedium5.2---
167622Pillow PCX File PcxDecode buffer overflowmedium5.2---
167621OX Software OX App Suite App Loading appsuite cross site scriptinglow4.0---
167620OX Software OX App Suite GET Request server-side request forgerymedium5.2---
167619R Programming Language CRAN install.packages path traversalmedium5.2---
167618SaferVPN OpenSSL Configuration File access control [CVE-2020-26050]medium6.8---
167617Espressif ESP-IDF BluFi Provisioning blufi_prf.c btc_blufi_recv_handler buffer overflowmedium5.2---
167616Opera Mini Domain Name clickjacking [CVE-2021-23253]low5.0---
167615Flask-Security-Too login cross-site request forgerylow5.0---
167614Google Android tun.c tun_get_user memory corruptionmedium4.3---
167613Google Android SlicePermissionActivity.java onCreate information disclosurelow1.7---
167612Google Android ActivityManagerService.java enforceDumpPermissionForPackage information disclosurelow1.0---
167611Google Android Lockscreen keystore_keymaster_enforcement.h is_device_locked information disclosurelow1.7---
167610Google Android Bluetooth CompanionDeviceManagerService.java checkCallerIsSystemOr permissionmedium4.3---
167609Google Android SensorEventConnection.cpp appendEventsToCacheLocked out-of-bounds writemedium4.3---
167608Google Android Permission.java createOrUpdate permissionmedium4.3---
167607Google Android Bluetooth avrc_pars_tg.cc avrc_pars_vendor_cmd out-of-bounds writemedium7.5---
167606Google Android GrantCredentialsPermissionActivity.java onCreate permissionmedium4.3---
167605Google Android TextView LayoutUtils.cpp isWordBreakAfter denial of servicelow5.0---
167604Google Android WAVExtractor.cpp read out-of-bounds writemedium7.5---
167603Google Android ESQueue.cpp dequeueAccessUnitH264 out-of-bounds writemedium7.5---
167602Google Android LazyServiceRegistrar.cpp LazyServiceRegistrar use after freemedium4.3---
167601Google Android grantCredentialsPermissionActivity information disclosurelow1.7---
167600Google Android basicmbr.cc ReadLogicalParts out-of-bounds writemedium4.3---
167599Google Android PermissionManagerService.java updatePermissionSourcePackage permissionmedium4.3---
167598Google Android PermissionManagerService.java addAllPermissions permissionmedium4.3---
167597Google Android GlobalScreenshot.java information disclosurelow1.7---
167596Google Android StreamSetObserver.cpp dispatchGraphTerminationMessage use after freemedium4.3---
167595Google Android ged out-of-bounds write [CVE-2021-0301]medium6.8---
167594IBM MQ Appliance SNMP Query buffer overflow [CVE-2020-4869]medium4.6---
167593Cacti data_debug.php sql injectionmedium6.5---
167592AnyDesk Portable Mode gcapi.dll uncontrolled search pathmedium4.3---
167591Delta Industrial Automation CNCSoft-B Project File type confusionmedium7.5---
167590Delta Industrial Automation CNCSoft-B Project File out-of-bounds readmedium7.5---
167589Delta Industrial Automation CNCSoft-B null pointer dereferencemedium7.5---
167588Delta Industrial Automation CNCSoft-B Project File out-of-bounds writemedium7.5---
167587Delta Industrial Automation CNCSoft ScreenEditor Project File stack-based overflowmedium7.5---
167586Delta Industrial Automation DOPSoft Project File null pointer dereferencemedium7.5---
167585Delta Industrial Automation DOPSoft Project File out-of-bounds writemedium7.5---
167584Google Android Fingerprint AuthenticationClient.java onAuthenticated clickjackinglow4.3---
167583Redcarpet Quote cross site scripting [CVE-2020-26298]low4.0---
167582SmartBear Collaborator Server GWT API deserialization [CVE-2020-26118]medium6.5---
167581python-cryptography RSA Decryption API information disclosurelow1.8---
167580QNAP QTS/QuTS Hero command injection [CVE-2020-2508]medium5.8---
167579Live Networks liblivemedia RTSP PLAY Command buffer overflowmedium5.2---
167578node-sass certificate validation [CVE-2020-24025]medium5.8---
167577Microsoft Skype Library Validation Entitlement access controllow1.7---
167576Fork CMS Admin Console cross-site request forgery [CVE-2020-23960]low4.0---
167575WDJA CMS manage.php cross-site request forgerylow4.0---
167574zzcms Cookie sql injection [CVE-2020-23630]medium4.6---
167573Apache NetBeans HTML-Java API access control [CVE-2020-17534]medium5.2---
167572FreyrSCADA IEC-60879-5-104 Server Simulator Packet denial of servicelow2.3---
167571Google Android Bluetooth packet_fragmenter.cc reassemble_and_dispatch injectionmedium5.1---
167570360F5 deauth Frame denial of service [CVE-2019-3405]low2.3---
167569K7computing K7AntiVirus Premium K7TSMngr.exe buffer overflowmedium4.3---
167568K7computing K7AntiVirus Premium access control [CVE-2018-9332]medium4.3---
IDTitleVulDBCVSSSecuniaXForceNessus
167567K7computing K7AntiVirus Premium K7TSMngr.exe buffer overflowmedium4.3---
167566K7computing K7AntiVirus Premium K7TSMngr.exe buffer overflowmedium4.3---
167565K7computing K7AntiVirus Premium K7TSMngr.exe access controlmedium4.3---
167564K7computing K7AntiVirus Premium K7Sentry.sys access control [CVE-2018-8044]medium4.3---
167563K7computing K7AntiVirus Premium K7TSMngr.exe memory leaklow2.3---
167562K7computing K7AntiVirus Premium buffer overflow [CVE-2018-11010]medium5.2---
167561K7computing K7AntiVirus Premium buffer overflow [CVE-2018-11009]medium5.2---
167560K7computing K7AntiVirus Premium access control [CVE-2018-11008]medium5.2---
167559K7computing K7AntiVirus Premium memory leak [CVE-2018-11007]low2.3---
167558K7computing K7AntiVirus Premium access control [CVE-2018-11006]medium5.2---
167557K7computing K7AntiVirus Premium memory leak [CVE-2018-11005]low2.3---
167556Backdoor.Win32.Zombam.a HTTP GET Request buffer overflowmedium6.5---
167555Aleth Ethereum C++ Client JSON File config.json stack-based overflowmedium5.2---
167554jsoneditor Tree Mode injection [CVE-2020-23849]medium4.9---
167553JIZHICMS index cross site scriptinglow4.0---
167552JIZHICMS cross site scripting [CVE-2020-23643]low4.0---
167551GoGo protobuf unmarshal.go unknown vulnerability [CVE-2021-3121]low4.9---
167550EVOLUCARE ECS Imaging req_password_user.php sql injectionmedium6.5---
167549Apache Traffic Server Cache Option request smuggling [CVE-2020-17509]medium7.5---
167548Apache Traffic Server ESI Plugin information disclosure [CVE-2020-17508]low2.3---
167547Apache DolphinScheduler API Interface access control [CVE-2020-13922]medium5.2---
167546Apache Dubbo hashCode deserializationmedium6.0---
167545proxy.py AuthPlugin auth.py before_upstream_connection improper authorizationmedium5.2---
167544Quest Policy Authority BrowseDirs.do cross site scriptinglow4.0---
167543Quest Policy Authority index.jsp cross site scriptinglow4.0---
167542Quest Policy Authority index.jsp cross site scriptinglow4.0---
167541Quest Policy Authority Error.jsp cross site scriptinglow4.0---
167540Quest Policy Authority ReportPreview.do cross site scriptinglow4.0---
167539Quest Policy Authority Web Compliance Manager submitUser.jsp cross-site request forgerylow4.0---
167538Quest Policy Authority BrowseAssets.do cross site scriptinglow4.0---
167537Quest Policy Authority submitUser.jsp cross site scriptinglow4.0---
167536Quest Policy Authority index.jsp cross site scriptinglow4.0---
167535Quest Policy Authority Web Compliance Manager cConn.jsp cross site scriptinglow4.0---
167534Quest Policy Authority Web Compliance Manager initFile.jsp server-side request forgerylow2.7---
167533Quest Policy Authority FolderControl.jsp cross site scriptinglow4.0---
167532Quest Policy Authority Web Compliance Manager initFile.jsp cross site scriptinglow4.0---
167531Backdoor.Win32.Levelone.b HTTP OPTIONS Vector64.exe buffer overflowmedium7.5---
167530Backdoor.Win32.Levelone.a HTTP TRACE Request dllvector.exe buffer overflowmedium7.5---
167529Google Chrome Audio buffer overflow [CVE-2021-21116]medium7.5---
167528Google Chrome Safe Browsing use after free [CVE-2021-21115]medium5.1---
167527Google Chrome Audio use after free [CVE-2021-21114]medium7.5---
167526Google Chrome Skia buffer overflow [CVE-2021-21113]medium7.5---
167525Google Chrome Blink use after free [CVE-2021-21112]medium7.5---
167524Google Chrome Policy Enforcement sandbox [CVE-2021-21111]medium5.1---
167523Google Chrome HTML Page use after free [CVE-2021-21110]medium7.5---
167522Google Chrome Payments use after free [CVE-2021-21109]medium5.1---
167521Google Chrome Renderer Process use after free [CVE-2021-21108]medium5.1---
167520Google Chrome Renderer Process use after free [CVE-2021-21107]medium5.1---
167519Google Chrome Autofill use after free [CVE-2021-21106]medium7.5---
167518SonicWALL NetExtender Client unquoted search path [CVE-2020-5147]medium4.3---
167517SonicWall SMA100 HTTP POST os command injection [CVE-2020-5146]medium5.2---
167516IBM Spectrum Protect Plus VDAP Proxy information disclosure [CVE-2020-5022]low5.0---
167515IBM Spectrum Protect Plus Session password recovery [CVE-2020-5021]medium5.1---
167514IBM Spectrum Protect Plus clickjacking [CVE-2020-5020]low5.0---
167513IBM Spectrum Protect Plus HTTP Host Header cross site scriptinglow5.0---
167512IBM Spectrum Protect Plus URL information disclosure [CVE-2020-5018]low2.6---
167511IBM Spectrum Protect Plus permission [CVE-2020-5017]low3.3---
167510IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4733]low4.0---
167509IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4697]low4.0---
167508IBM Jazz Foundation Web UI cross site scripting [CVE-2020-4691]low4.0---
167507IBM Jazz Foundation information exposure [CVE-2020-4544]low4.0---
167506IBM Jazz Foundation information exposure [CVE-2020-4487]low4.0---
167505Cockpit JSON Data Database.php injectionmedium6.0---
167504Rocket.Chat Password Reset information disclosure [CVE-2020-28208]low2.3---
167503VideoLAN VLC Media Player MKV File send heap-based overflowmedium7.5---
167502Dell Inspiron 5675 UEFI BIOS memory corruption [CVE-2020-26186]low4.0---
167501Ceph mgr module cleartext storage [CVE-2020-25678]low1.4---
167500Barco NDN-210 Web Administration Panel ngpsystemcmd.php command injectionmedium5.8---
167499Barco NDN-210 Web Administration Panel split_card_cmd.php command injectionmedium6.5---
167498Barco TransForm N Web Administration Panel split_card_cmd.php command injectionmedium6.5---
167497Google Chrome Network Traffic access control [CVE-2020-16043]medium7.5---
167496Google Chrome HTML Page Remote Code Execution [CVE-2020-16036]medium7.5---
167495Google Chrome Remote Code Execution [CVE-2020-16035]low5.1---
167494Google Chrome WebRTC Local Privilege Escalation [CVE-2020-16034]low4.3---
167493Google Chrome UI unknown vulnerability [CVE-2020-16033]low5.0---
167492Google Chrome Omnibox clickjacking [CVE-2020-16032]low5.0---
167491Google Chrome Omnibox clickjacking [CVE-2020-16031]low5.0---
167490Google Chrome Blink cross site scripting [CVE-2020-16030]low5.0---
167489Google Chrome PDFium Remote Code Execution [CVE-2020-16029]medium7.5---
167488Google Chrome WebRTC heap-based overflow [CVE-2020-16028]medium7.5---
167487Google Chrome Developer Tools information disclosure [CVE-2020-16027]low5.0---
167486Google Chrome WebRTC use after free [CVE-2020-16026]medium7.5---
167485Google Chrome Clipboard heap-based overflow [CVE-2020-16025]medium7.5---
167484Google Chrome UI buffer overflow [CVE-2020-16024]medium7.5---
167483Google Chrome WebCodecs use after free [CVE-2020-16023]medium7.5---
167482Google Chrome Firewall Controls protection mechanism [CVE-2020-16022]medium7.5---
167481Google Chrome Image Burner access control [CVE-2020-16021]medium5.1---
167480Google Chrome cryptohome access control [CVE-2020-16020]medium5.1---
167479Google Chrome Filesystem protection mechanism [CVE-2020-16019]low5.1---
167478Google Chrome HTML Page use after free [CVE-2020-16018]medium7.5---
167477Google Chrome HTML Page sandbox [CVE-2020-16016]medium7.5---
167476Google Chrome HTML Page heap-based overflow [CVE-2020-16015]medium7.5---
167475Google Chrome PPAPI use after free [CVE-2020-16014]medium6.0---
167474Google Chrome information disclosure [CVE-2020-16012]low5.0---
167473Backdoor.Win32.Ketch.b HTTP GET Request watchb.tmp buffer overflowmedium6.5---
167472Concrete5 Express Entries Dashboard cross site scripting [CVE-2021-3111]low4.0---
167471NVIDIA vGPU Manager vGPU Plugin resource consumption [CVE-2021-1066]low4.0---
167470NVIDIA vGPU Manager vGPU Plugin input validation [CVE-2021-1065]medium6.5---
167469NVIDIA vGPU Manager vGPU Plugin null pointer dereference [CVE-2021-1064]medium6.5---
167468NVIDIA vGPU Manager vGPU Plugin buffer overflow [CVE-2021-1063]medium6.5---
167467NVIDIA vGPU Manager vGPU Plugin denial of service [CVE-2021-1062]medium6.5---
167466NVIDIA vGPU Manager vGPU Plugin use after free [CVE-2021-1061]medium6.5---
167465NVIDIA vGPU Software vGPU Plugin memory corruption [CVE-2021-1060]medium6.5---
167464NVIDIA vGPU Manager vGPU Plugin integer overflow [CVE-2021-1059]medium6.5---
167463NVIDIA vGPU Software vGPU Plugin denial of service [CVE-2021-1058]low4.0---
167462NVIDIA Virtual GPU Manager vGPU Plugin Remote Privilege Escalationmedium6.5---
167461NetApp Element OS Remote Code Execution [CVE-2020-8584]medium7.5---
167460buns Index File index.js install(requestedModule) injectionmedium7.5---
167459ts-process-promises process-promises.js injection [CVE-2020-7784]medium7.5---
167458Marvell QConvergeConsole GUI QCC tomcat-users.xml cleartext storagelow4.0---
167457Marvell QConvergeConsole GUI deleteEventLogFile path traversalmedium7.5---
167456IBM Engineering Requirements Quality Assistant On-Premises input validationmedium6.5---
167455IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scriptinglow4.0---
167454IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scriptinglow4.0---
167453IBM Engineering Requirements Quality Assistant On-Premises Web UI cross site scriptinglow4.0---
167452IBM Security Verify Privilege Manager xml external entity referencemedium4.3---
167451Innokas Yhtymä Oy Vital Signs Monitor VC150 cross site scriptinglow4.0---
167450Innokas Yhtymä Oy Vital Signs Monitor VC150 HL7 Segment injectionlow1.2---
167449pwntools Shellcraft Generator injection [CVE-2020-28468]medium5.1---
167448Invision Power Services Community Suite Download REST API files.php GETindex sql injectionmedium6.5---
167447AWBS Advanced Webhost Billing System cross-site request forgerylow4.0---
167446D-Link DSL-2888A One Touch Application passwd information disclosurelow3.5---
167445NVIDIA GPU Display Driver Kernel Mode Layer access control [CVE-2021-1056]medium4.3---
167444NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape access controlmedium4.3---
167443NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape improper authorizationlow1.7---
167442NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape memory corruptionmedium6.8---
167441NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape access controlmedium6.8---
167440NVIDIA GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape memory corruptionmedium6.8---
167439Mercusys Mercury X18G UPnP Server uhttpd.json pathname traversalmedium5.2---
167438Mercusys Mercury X18G Web Server passwd pathname traversallow2.7---
167437socket.io-parser Large Packet resource consumption [CVE-2020-36049]low2.3---
167436Engine.IO POST Request EventEmitter resource consumptionlow3.5---
167435PHPGurukul Hospital Management System dashboard.php access controlmedium5.2---
167434Barco TransForm NDN-210 Lite Web Administration Panel command injectionmedium7.5---
167433Gotenberg tini permission [CVE-2020-13452]medium5.2---
167432Gotenberg Office Rendering Engine unknown vulnerability [CVE-2020-13451]medium4.9---
167431Gotenberg File Upload pathname traversal [CVE-2020-13450]medium5.2---
167430Gotenberg Markdown Engine pathname traversal [CVE-2020-13449]low2.7---
167429Rock RMS unrestricted upload [CVE-2019-18643]medium6.5---
167428Rock RMS Profile Update resource injection [CVE-2019-18642]medium5.2---
167427Backdoor.Win32.NinjaSpy.c HTTP PUT cmd.dll buffer overflowmedium6.5---
167426Backdoor.Win32.Xtreme.yvp System.exe permissionmedium6.5---
167425Backdoor.Win32.Agent.dcbh 674_674.exe permissionmedium6.5---
167424Eaton easySoft E70 File type confusion [CVE-2020-6656]medium5.1---
167423Eaton easySoft E70 File out-of-bounds read [CVE-2020-6655]low2.1---
167422IBM Emptoris Strategic Supply Management inadequate encryptionlow2.6---
167421IBM Emptoris Contract Management information exposure [CVE-2020-4897]low5.0---
167420IBM Emptoris Sourcing HTTP Request injection [CVE-2020-4896]medium7.5---
167419IBM Emptoris Strategic Supply Management Web UI cross site scriptinglow4.0---
167418IBM Emptoris Strategic Supply Management HTTP GET Request information disclosurelow2.6---
167417IBM Emptoris Contract Management Web UI cross site scriptinglow4.0---
167416Linux Kernel infiniband hfi1 Driver use after free [CVE-2020-27835]medium4.6---
167415Red Hat JBoss Core Services httpd SSL Certificate certificate validationmedium4.3---
167414Liferay CMS Portal Calendar cross site scripting [CVE-2020-25476]low4.0---
167413Rockwell Automation RSLinx Classic Ethernet IP denial of servicelow2.3---
167412Foxit Reader/PhantomPDF Opcode proxyDoAction out-of-bounds readmedium7.5---
167411Foxit Reader/PhantomPDF out-of-bounds read [CVE-2018-20315]medium7.5---
167410Foxit Reader/PhantomPDF proxyCheckLicence out-of-bounds readmedium7.5---
167409Foxit Reader/PhantomPDF proxyPreviewAction out-of-bounds readmedium7.5---
167408Foxit Reader/PhantomPDF Opcode proxyDoAction out-of-bounds readmedium7.5---
167407Foxit Reader/PhantomPDF proxyCPDFAction out-of-bounds readmedium7.5---
167406Foxit Reader/PhantomPDF proxyDoAction out-of-bounds readmedium7.5---
167405Foxit Reader/PhantomPDF proxyGetAppEdition out-of-bounds readmedium7.5---
167404Foxit PDF ActiveX Permission command injection [CVE-2018-19418]medium7.5---
167403Portable Document Format Signature signature verification [CVE-2018-18689]low5.0---
167402Portable Document Format Signature signature verification [CVE-2018-18688]low5.0---
167401EVOLUCARE ECS Imaging showfile.php os command injectionmedium7.7---
167400NXP SmartMX/P5x/A7x CryptoLib power side-channel [CVE-2021-3011]low1.2---
167399Mozilla Firefox memory corruption [CVE-2020-35114]medium7.5---
167398Mozilla Firefox/Firefox ESR/Thunderbird memory corruption [CVE-2020-35113]medium7.5---
167397Mozilla Firefox/Firefox ESR/Thunderbird Extension uncontrolled search pathlow5.1---
167396Mozilla Firefox/Firefox ESR/Thunderbird Proxy information disclosurelow5.0---
167395MonoCMS Blog Access Control category.php access controlmedium6.5---
167394Mozilla Firefox Address Bar clickjacking [CVE-2020-26979]low5.0---
167393Mozilla Firefox/Firefox ESR/Thunderbird information disclosurelow5.0---
167392Mozilla Firefox URL Bar clickjacking [CVE-2020-26977]low5.0---
167391Mozilla Firefox Service Worker Remote Code Execution [CVE-2020-26976]medium7.5---
167390Mozilla Firefox session fixiation [CVE-2020-26975]medium4.3---
167389Mozilla Firefox/Firefox ESR/Thunderbird Table Wrapper heap-based overflowmedium7.5---
167388Mozilla Firefox/Firefox ESR/Thunderbird CSS unknown vulnerabilitylow4.9---
167387Mozilla Firefox IPC Actor use after free [CVE-2020-26972]medium7.5---
167386Mozilla Firefox/Firefox ESR/Thunderbird Video Driver heap-based overflowmedium7.5---
167385Restaurant Reservation System reservation.inc.php sql injectionmedium6.5---
167384Formstone upload-target.php cross site scriptinglow4.0---
167383CuteSoft Components Cute Editor for ASP.NET cross site scriptinglow4.0---
167382Quixplorer cross site scripting [CVE-2020-24902]low5.0---
167381Krpano Panorama Viewer JS Load krpano.html cross site scriptinglow4.0---
167380Krpano Panorama Viewer XML Load krpano.html cross site scriptinglow4.0---
167379CairoSVG Regular Expression resource consumption [CVE-2021-21236]low4.0---
167378Node.js Transfer-Encoding request smuggling [CVE-2020-8287]medium7.5---
167377Nextcloud Contacts SVG File cross site scripting [CVE-2020-8281]low4.0---
167376Nextcloud Contacts SVG cross site scripting [CVE-2020-8280]low4.0---
167375Citrix Secure Mail access control [CVE-2020-8275]low2.1---
167374Citrix Secure Mail code injection [CVE-2020-8274]medium5.8---
167373Node.js TLS Socket Write use after freemedium5.2---
167372actionpack Gem Developer Mode cross site scripting [CVE-2020-8264]low4.0---
167371MendixSSO OpenID Endpoint cross site scripting [CVE-2020-8160]low4.0---
167370FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36189]medium6.0---
167369FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36188]medium6.0---
167368FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36187]medium6.0---
167367FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36186]medium6.0---
167366FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36185]medium6.0---
167365FasterXML jackson-databind Remote Privilege Escalation [CVE-2020-36184]medium6.0---
167364FasterXML jackson-databind unknown vulnerability [CVE-2020-36183]low4.9---
167363FasterXML jackson-databind unknown vulnerability [CVE-2020-36182]low4.9---
167362FasterXML jackson-databind unknown vulnerability [CVE-2020-36181]low4.9---
167361FasterXML jackson-databind unknown vulnerability [CVE-2020-36180]low4.9---
167360FasterXML jackson-databind unknown vulnerability [CVE-2020-36179]low4.9---
167359TP-LINK TL-WR840N Web Interface oal_ipt_addBridgeIsolationRules os command injectionmedium5.8---
167358wolfSSL Digest rsa.c RsaPad_PSS out-of-bounds writemedium5.2---
167357iThemes Security Plugin Password Requirements weak password [CVE-2020-36176]low2.6---
167356Ninja Forms Plugin Email Validation unknown vulnerability [CVE-2020-36175]low4.9---
167355Ninja Forms Plugin Services Integration cross-site request forgerylow4.0---
167354Ninja Forms Plugin submissions-table Field cross site scriptinglow4.0---
167353Advanced Custom Fields Plugin Dropdown cross site scripting [CVE-2020-36172]low4.0---
167352Elementor Website Builder Plugin unrestricted upload [CVE-2020-36171]medium4.9---
167351Digisol DG-HR3400 NTP Server Name cross site scripting [CVE-2020-35262]low4.0---
167350Web-Sesame source code [CVE-2020-29041]low5.0---
167349Red Lion Crimson missing authentication [CVE-2020-27285]medium7.5---
167348Red Lion Crimson Messages information disclosure [CVE-2020-27283]low3.3---
167347Red Lion Crimson Packet null pointer dereference [CVE-2020-27279]low5.0---
167346Beetel 777VR1 NTP Server Name cross site scripting [CVE-2020-25498]low4.0---
167345SoftMaker Office TextMaker heap-based overflow [CVE-2020-13545]medium7.5---
167344SoftMaker Office TextMaker heap-based overflow [CVE-2020-13544]medium7.5---
167343Zoho ManageEngine Desktop Central New Custom Report injectionmedium4.9---
167342SolarWinds Web Help Desk Comments injection [CVE-2019-16954]medium6.5---
167341Limit Login Attempts Plugin excessive authentication [CVE-2012-10001]low2.6---
167340Proofpoint Insider Threat Management Windows Agent rcdsvc deserializationmedium9.0---
167339IBM WebSphere eXtreme Scale URL Parameter information disclosurelow2.6---
167338Ultimate Member Plugin Timestamp Field unknown vulnerabilitylow4.9---
167337clickhouse-driver Server Response buffer overflow [CVE-2020-26759]medium5.2---
167336Proofpoint Insider Threat Management Server WriteImage API deserializationmedium9.0---
167335Proofpoint Insider Threat Management Server ImportAlertRules deserializationmedium8.3---
167334Proofpoint Insider Threat Management Server WriteWindowMouseWithChunksV2 API deserializationmedium9.0---
167333Proofpoint Insider Threat Management Server WriteWindowMouse API deserializationmedium9.0---
167332Invision Power Services Community Suite Comments cross site scriptinglow4.0---
167331LG Mobile Device unknown vulnerability [CVE-2021-3022]medium4.9---
167330ISPConfig sql injection [CVE-2021-3021]medium6.5---
167329Samsung Mobile Device Mali GPU Driver out-of-bounds read [CVE-2021-22495]low2.3---
167328Samsung Note 20 Fingerprint Scanner unknown vulnerability [CVE-2021-22494]medium4.9---
167327Samsung Mobile Device quram Library memory corruption [CVE-2021-22493]medium5.2---
167326Samsung Mobile Device Bluetooth UART Driver buffer overflow [CVE-2021-22492]medium5.2---
167325kamadak-exif Exif Parser read_from_container infinite looplow5.0---
167324spring-boot-actuator-logview path traversal [CVE-2021-21234]medium6.5---
167323McAfee Network Security Management HTTP Request cross-site request forgerylow5.0---
167322HPE Integrated Lights-Out 4/Integrated Lights-Out 5 information disclosurelow3.5---
167321IBM API Connect cleartext transmission [CVE-2020-4899]low2.6---
167320IBM Sterling B2B Integrator Standard Edition access control [CVE-2020-4762]medium6.5---
167319IBM Sterling B2B Integrator Standard Edition information exposurelow5.0---
167318Veritas NetBackup/OpsCenter OpenSSL Library permission [CVE-2020-36169]medium9.0---
167317Veritas Resiliency Platform OpenSSL Library openssl.cnf permissionmedium9.0---
167316Veritas Backup Exec OpenSSL Library openssl.cnf permissionmedium9.0---
167315Veritas InfoScale OpenSSL Library openssl.cnf permissionmedium9.0---
167314Veritas Desktop and Laptop Option OpenSSL Library openssl.cnf permissionmedium9.0---
167313Veritas Enterprise Vault OpenSSL Library openssl.cnf permissionmedium9.0---
167312Veritas NetBackup/OpsCenter permission [CVE-2020-36163]medium6.5---
167311Veritas CloudPoint Windows Agent openssl.cnf permissionmedium6.5---
167310Veritas APTARE OpenSSL Engine permission [CVE-2020-36161]medium9.0---
167309Veritas System Recovery openssl.cnf access controlmedium6.5---
167308Veritas Desktop and Laptop Option Backup information disclosurelow5.0---
167307GJSON GET Call denial of service [CVE-2020-36067]low5.0---
167306GJSON denial of service [CVE-2020-36066]low5.0---
167305miniCMS post-edit.php pathname traversalmedium6.5---
167304miniCMS page_edit.php pathname traversalmedium4.0---
167303NXLog Community Edition fileop Module denial of service [CVE-2020-35488]low3.5---
167302Dell EMC Unisphere for PowerMax/PowerMax OS cross site scriptinglow4.0---
167301Dell EMC PowerStore cleartext storage [CVE-2020-29502]low0.8---
167300Dell EMC PowerStore cleartext storage [CVE-2020-29501]low0.8---
167299Dell EMC PowerStore cleartext storage [CVE-2020-29500]low0.8---
167298Dell EMC Unity/Unity XT/UnityVSA NAS Servers with NFS Export resource consumptionlow4.0---
167297Dell EMC Unity/Unity XT/UnityVSA cleartext storage [CVE-2020-29489]low0.8---
167296Broadcom CA Service Catalog Setup Utility denial of service [CVE-2020-29478]low5.0---
167295OrangeHRM Buzz Module BuzzDao.php sql injectionmedium6.5---
167294OpenJPEG Encoding pi.c out-of-bounds readmedium7.5---
167293OpenJPEG Encoding t2.c out-of-bounds writemedium7.5---
167292OpenJPEG Conversion Encoding out-of-bounds read [CVE-2020-27843]medium7.5---
167291OpenJPEG t2 Encoder null pointer dereference [CVE-2020-27842]low5.0---
167290OpenJPEG pi.c out-of-bounds readmedium7.5---
167289Dell EMC Unity/Unity XT/UnityVSA log file [CVE-2020-26199]low0.8---
167288Dell EMC Isilon OneFS/PowerScale OneFS SmartLock Compliance Mode Cluster privileges managementmedium6.8---
167287Fuel CMS cross site scripting [CVE-2020-26046]low4.0---
167286Fuel CMS sql injection [CVE-2020-26045]medium6.5---
167285Gigamon GigaVUE-OS inadequate encryption [CVE-2020-23250]low0.8---
167284Gigamon GigaVUE-OS cleartext storage [CVE-2020-23249]low1.7---
167283Mobile-911 Server access control [CVE-2020-13541]medium4.3---
167282Win-911 Enterprise Account Change Utility permission [CVE-2020-13540]medium4.3---
167281Win-911 Enterprise permission [CVE-2020-13539]medium4.3---
167280IBM Sterling B2B Integrator Standard Edition deserializationmedium9.0---
167279Viki Vera access control [CVE-2019-20484]medium5.2---
167278Viki Vera cross site scripting [CVE-2019-20483]low4.0---
167277Apache Flink REST Interface file access [CVE-2020-17519]low2.7---
167276Apache Flink REST path traversal [CVE-2020-17518]medium4.9---
167275ffay lanproxy config.properties pathname traversalmedium6.5---
167274ipeak Infosystems ibexwebCMS print.php sql injectionmedium7.5---
167273MikroTik RouterOS Hotspot Login Page cross site scripting [CVE-2021-3014]low4.0---
167272Dell Client Consumer/Client Commercial BIOS Password Reset password recoverylow3.7---
167271Linux Kernel SSID join.c mwifiex_cmd_802_11_ad_hoc_start memory corruptionhigh8.3---
167270Ultimate Member Plugin Registration access control [CVE-2020-36157]medium7.5---
167269Ultimate Member Plugin Profile Update profile.php access controlmedium6.5---
167268Ultimate Member Plugin wp_capabilities access controlmedium7.5---
167267Pearson VUE VTS Installer permission [CVE-2020-36154]medium4.3---
167266ASUS DSL-N17U Admin Interface Advanced_System_Content.asp improper authenticationmedium5.8---
167265Dell Wyse Management Suite redirect [CVE-2020-29498]medium7.5---
167264Dell Wyse Management Suite Device Tag cross site scripting [CVE-2020-29497]low4.0---
167263Dell Wyse Management Suite cross site scripting [CVE-2020-29496]low3.3---
167262Dell Wyse ThinOS default permission [CVE-2020-29492]medium7.5---
167261Dell Wyse ThinOS information disclosure [CVE-2020-29491]low5.0---
167260mdBook Search Query cross site scripting [CVE-2020-26297]low5.0---
167259Vela Configuration env os command injectionmedium7.5---
167258HtmlSanitizer cross site scripting [CVE-2020-26293]low5.0---
167257Creeper Interpreter source code [CVE-2020-26292]low5.1---
167256Dovecot lda/lmtp/imap input validation [CVE-2020-25275]medium4.9---
167255Dovecot IMAP unknown vulnerability [CVE-2020-24386]low4.9---
167254GNU C Library iconv encoding error [CVE-2019-25013]medium4.9---
167253Backdoor.Win32.Zombam.k HTTP GET Request httpserver.exe buffer overflowmedium6.5---
167252IBM Curam Social Program Management cross-site request forgerylow5.0---
167251IBM Cloud Pak System File Extension unrestricted upload [CVE-2020-4928]medium4.0---
167250IBM Cloud Pak System Logout user session [CVE-2020-4919]low5.1---
167249IBM Cloud Pak System Sell Service Console resource injectionlow1.4---
167248IBM Cloud Pak System cross-site request forgery [CVE-2020-4917]low5.0---
167247IBM Cloud Pak System Web UI cross site scripting [CVE-2020-4916]low3.3---
167246IBM Cloud Pak System HTTP Response information disclosure [CVE-2020-4913]low3.3---
167245IBM Cloud Pak System Self Service Console access control [CVE-2020-4912]medium5.8---
167244IBM Cloud Pak System Web UI cross site scripting [CVE-2020-4910]low3.3---
167243IBM Cloud Pak System Web UI cross site scripting [CVE-2020-4909]low3.3---
167242CSE Bookstore bookPerPub.php sql injectionmedium4.6---
167241GNU Binutils pef.c bfd_pef_parse_function_stubs null pointer dereferencelow5.0---
167240GNU Binutils pef.c bfd_pef_scan_start_address null pointer dereferencelow5.0---
167239GNU Binutils objdump pef.c null pointer dereferencelow5.0---
167238GNU Binutils tic4x-dis.c uninitialized resourcemedium7.5---
167237GNU Binutils PEF File Parser pef.c out-of-bounds readmedium7.5---
167236Veno File Manager pathname traversal [CVE-2020-22550]low2.7---
167235asciitable.js Prototype main code injectionmedium7.5---
167234Korzio djv Schema File cross site scripting [CVE-2020-28464]low4.0---
167233SolarWinds Web Help Desk CSV Template File cross site scriptinglow4.0---
167232SolarWinds Web Help Desk Ticket cross site scripting [CVE-2019-16956]low4.0---
167231Zend Framework Stream.php __destruct deserializationmedium6.0---
167230MK-AUTH cross-site request forgery [CVE-2021-21495]low4.0---
167229MK-AUTH logs_ajax.php cookie without 'httponly' flagmedium4.6---
167228FFmpeg Memset zero exr.c decode_frame out-of-bounds writemedium7.5---
167227Farm in Seal Finance breed access controlmedium5.2---
167226FFmpeg Extradata vividas.c track_header out-of-bounds writemedium7.5---
167225Fluent Bit flb_gzip.c flb_gzip_compress out-of-bounds writemedium5.2---
167224Loopring Vault Protocol sellTokenForLRC access controlmedium5.2---
167223MK-AUTH recibo.php information disclosurelow3.5---
167222Stable Yield Credit _deposit access controlmedium5.2---
167221PHP-Fusion login.php information exposurelow1.4---
167220DriverGenius ioctl Command denial of service [CVE-2020-28841]low5.2---
167219Backdoor:Win32.BNLite Service Port 5000 NBLF32.exe heap-based overflowmedium5.1---
167218Phorpiex permissionmedium4.6---
167217Trojan.Win32.Jorik.DMSpammer.sz HTTP Service Port 80 stat1.php memory corruptionmedium5.1---
167216HEUR:RiskTool.Win32.BitMiner.gen HTTP Service Port 8046 memory corruptionlow2.6---
167215Backdoor.Win32.Zombam.j HTTP Service Port 80 buffer overflowmedium5.1---
167214Backdoor:Win32/RemoteManipulator audiohd.exe permissionmedium4.6---
167213Backdoor:Win32.Adverbot IRC Connection null pointer dereferencelow2.6---
167212Trojan:Win32.Alyak.B HTTP Service Port 80 1.txt memory corruptionmedium5.0---
167211Email-Worm.Win32.Zhelatin.ago Service Port 80 buffer overflowmedium4.6---
167210Trojan.Win32.Bayrob.cgau chvlcpvyoh permissionmedium7.1---
167209Trojan.Win32.Barjac SMTP Connection buffer overflowmedium5.1---
167208Backdoor.Win32.Infexor.b HTTP Service Port 13 kernel32.dll.exe buffer overflowmedium5.1---
1672072019-02-ARTRADOWNLOADER Service Port 80 intel buffer overflowmedium4.6---
167206Trojan.Win32.Antavka.bz Temp permissionmedium4.6---
167205Google Go x-text language.ParseAcceptLanguage array indexlow2.3---
167204Google Go x-text language.ParseAcceptLanguage array indexlow2.3---
167203Seo Panel cross site scripting [CVE-2021-3002]low4.0---
167202zonote Notes cross site scripting [CVE-2020-35717]low4.0---
167201Tenda N300 F3 HTTP Response RouterCfm.cfg information disclosurelow5.0---
167200Quiz and Survey Master Plugin wp-config.php qsm_remove_file_fd_question denial of servicemedium6.4---
167199XCloner Backup and Restore Plugin cross-site request forgerylow5.0---
167198Quiz and Survey Master Plugin Content-Type Header plain unrestricted uploadmedium7.5---
167197XCloner Backup and Restore Plugin xcloner_restore.php write_file_action Remote Privilege Escalationmedium6.5---
167196PageLayer Plugin AJAX pagelayer_save_content improper authorizationmedium6.5---
167195All in One SEO Pack Plugin cross site scripting [CVE-2020-35946]low4.0---
167194Divi Builder Plugin/Divi Theme/Divi Extra Theme unrestricted uploadmedium6.5---
167193PageLayer Plugin pagelayer_settings_page cross-site request forgerylow5.0---
167192Team Showcase Plugin AJAX team_import_xml_layouts injectionmedium4.6---
167191Post Grid Plugin AJAX post_grid_import_xml_layouts injectionmedium4.6---
167190Team Showcase Plugin AJAX team_import_xml_layouts cross site scriptinglow2.1---
167189Post Grid Plugin AJAX post_grid_import_xml_layouts cross site scriptinglow2.1---
167188Advanced Access Manager Plugin POST Parameter access controlmedium4.6---
167187Advanced Access Manager Plugin REST API authenticate information disclosurelow4.0---
167186Newsletter Plugin tnpc_render cross site scriptinglow4.0---
167185Newsletter Plugin tpnc_render injectionmedium4.6---
167184Foxit Reader/PhantomPDF PDF Document Remote Code Execution [CVE-2020-35931]medium7.5---
167183Seo Panel websites.php cross site scriptinglow4.0---
167182qdPM actions.class.php executeExport injectionmedium4.9---
167181LimeSurvey Quota cross site scripting [CVE-2020-25799]low4.0---
167180LimeSurvey Add Participants cross site scripting [CVE-2020-25797]low3.3---
167179Oppo Smart Phone oppo_da9313.c proc_work_mode_write memory corruptionmedium5.2---
167178Oppo Smart Phone oppo_vooc.c proc_fastchg_fw_update_write memory corruptionmedium5.2---
167177Oppo Smart Phone oppo_mp2650.c mp2650_data_log_write memory corruptionmedium5.2---
167176Oppo Smart Phone oppo_charger.c charging_limit_current_write unknown vulnerabilitymedium4.9---
167175Webform Report Project Submission rss.xml information disclosurelow3.5---
167174NetBox GFM-rendered Field cross site scripting [CVE-2019-25011]low4.0---
167173KCFinder Integration Project uploader.php access controlmedium5.2---
167172QNAP QTS Directory file inclusion [CVE-2018-19945]low4.9---
167171QNAP QTS cleartext transmission [CVE-2018-19944]low2.6---
167170QNAP QTS/QuTS Hero/QuTScloud missing encryption [CVE-2018-19941]low2.3---
167169AES Encryption Project inadequate encryption [CVE-2017-20001]low1.4---
167168REST-JSON Project Session entropy [CVE-2016-20008]low1.4---
167167REST-JSON Project Session Name entropy [CVE-2016-20007]low1.4---
167166REST-JSON Project denial of service [CVE-2016-20006]low2.3---
167165REST-JSON Project User Registration access control [CVE-2016-20005]medium5.2---
167164REST-JSON Project Field access control [CVE-2016-20004]medium5.2---
167163REST-JSON Project information disclosure [CVE-2016-20003]low2.3---
167162REST-JSON Project Comment access control [CVE-2016-20002]medium5.2---
167161REST-JSON Project access control [CVE-2016-20001]medium5.2---

Interested in the pricing of exploits?

See the underground prices here!