Topics

Sort by:
Attacker Value
Moderate

CVE-2021-35501

Disclosure Date: June 25, 2021 (last updated July 02, 2021)
PandoraFMS <=7.54 allows Stored XSS by placing a payload in the name field of a visual console. When a user or an administrator visits the console, the XSS payload will be executed.
Attacker Value
Very High

Webmin password_change.cgi Command Injection

Disclosure Date: August 16, 2019 (last updated February 28, 2020)
An issue was discovered in Webmin through 1.920. The parameter old in password_change.cgi contains a command injection vulnerability.
26
Attacker Value
Unknown

CVE-2021-35479

Last updated June 24, 2021
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
1
Attacker Value
Unknown

CVE-2020-36239

Last updated January 27, 2021
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
1
Attacker Value
Very High

CVE-2021-34527 "PrintNightmare"

Disclosure Date: July 02, 2021 (last updated July 14, 2021)
Windows Print Spooler Remote Code Execution Vulnerability
Attacker Value
High

CVE-2021-33771

Disclosure Date: July 14, 2021 (last updated July 17, 2021)
Windows Kernel Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-31979, CVE-2021-34514.
Attacker Value
High

CVE-2021-31979

Disclosure Date: July 14, 2021 (last updated July 17, 2021)
Windows Kernel Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-33771, CVE-2021-34514.
Attacker Value
Low

CVE-2021-35975

Last updated June 30, 2021
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
1
Attacker Value
Unknown

CVE-2021-31206

Disclosure Date: July 14, 2021 (last updated July 17, 2021)
Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31196, CVE-2021-34473.
Attacker Value
High

CVE-2021-34448

Disclosure Date: July 16, 2021 (last updated July 23, 2021)
Scripting Engine Memory Corruption Vulnerability