Show filters
181,124 Total Results
Displaying 101-110 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
High

CVE-2021-36955

Disclosure Date: September 15, 2021 (last updated November 28, 2024)
Windows Common Log File System Driver Elevation of Privilege Vulnerability
5
2
Attacker Value
Moderate

CVE-2021-40870

Disclosure Date: September 13, 2021 (last updated February 23, 2025)
An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922. Unrestricted upload of a file with a dangerous type is possible, which allows an unauthenticated user to execute arbitrary code via directory traversal.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
3
1
Attacker Value
Very High

CVE-2021-40539

Disclosure Date: September 07, 2021 (last updated February 23, 2025)
Zoho ManageEngine ADSelfService Plus version 6113 and prior is vulnerable to REST API authentication bypass with resultant remote code execution.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
5
2
Attacker Value
Unknown

CVE-2021-34484

Disclosure Date: August 12, 2021 (last updated November 28, 2024)
Windows User Profile Service Elevation of Privilege Vulnerability
5
2
Attacker Value
High

CVE-2021-33771

Disclosure Date: July 14, 2021 (last updated March 08, 2025)
Windows Kernel Elevation of Privilege Vulnerability
5
2
Attacker Value
Unknown

CVE-2021-33742

Disclosure Date: June 08, 2021 (last updated February 25, 2025)
Windows MSHTML Platform Remote Code Execution Vulnerability
5
2
Attacker Value
Very High

CVE-2021-21975

Disclosure Date: March 31, 2021 (last updated June 05, 2021)
Server Side Request Forgery in vRealize Operations Manager API (CVE-2021-21975) prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API can perform a Server Side Request Forgery attack to steal administrative credentials.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
5
1
Attacker Value
High

CVE-2021-25281

Disclosure Date: February 27, 2021 (last updated February 22, 2025)
An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor eauth credentials for the wheel_async client. Thus, an attacker can remotely run any wheel modules on the master.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
4
2
Attacker Value
High

CVE-2021-1732

Disclosure Date: February 25, 2021 (last updated February 22, 2025)
Windows Win32k Elevation of Privilege Vulnerability
6
1
Attacker Value
Moderate

CVE-2021-1636

Disclosure Date: January 12, 2021 (last updated February 22, 2025)
Microsoft SQL Elevation of Privilege Vulnerability
6
1
View More Topics  < Previous  Next >