Show filters
181,205 Total Results
Displaying 141-150 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
Very High

CVE-2021-39144

Disclosure Date: August 23, 2021 (last updated February 23, 2025)
XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may allow a remote attacker has sufficient rights to execute commands of the host only by manipulating the processed input stream. No user is affected, who followed the recommendation to setup XStream's security framework with a whitelist limited to the minimal required types. XStream 1.4.18 uses no longer a blacklist by default, since it cannot be secured for general purpose.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
4
1
Attacker Value
High

CVE-2021-33909

Disclosure Date: July 20, 2021 (last updated February 23, 2025)
fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.
Attack Vector: LocalPrivileges: LowUser Interaction: None
3
3
Attacker Value
Very High

CVE-2021-34473

Disclosure Date: July 14, 2021 (last updated February 23, 2025)
Microsoft Exchange Server Remote Code Execution Vulnerability
4
2
Attacker Value
Moderate

CVE-2021-3438

Disclosure Date: May 20, 2021 (last updated February 22, 2025)
A potential buffer overflow in the software drivers for certain HP LaserJet products and Samsung product printers could lead to an escalation of privilege.
Attack Vector: LocalPrivileges: LowUser Interaction: None
3
3
Attacker Value
Very High

CVE-2021-28799

Disclosure Date: April 22, 2021 (last updated February 22, 2025)
An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 (Hybrid Backup Sync. ) If exploited, the vulnerability allows remote attackers to log in to a device. This issue affects: QNAP Systems Inc. HBS 3 versions prior to v16.0.0415 on QTS 4.5.2; versions prior to v3.0.210412 on QTS 4.3.6; versions prior to v3.0.210411 on QTS 4.3.4; versions prior to v3.0.210411 on QTS 4.3.3; versions prior to v16.0.0419 on QuTS hero h4.5.1; versions prior to v16.0.0419 on QuTScloud c4.5.1~c4.5.4. This issue does not affect: QNAP Systems Inc. HBS 2 . QNAP Systems Inc. HBS 1.3 .
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
4
1
Attacker Value
High

CVE-2021-26411

Disclosure Date: March 11, 2021 (last updated February 22, 2025)
Internet Explorer Memory Corruption Vulnerability
4
2
Attacker Value
High

CVE-2021-26897

Disclosure Date: March 11, 2021 (last updated November 28, 2024)
Windows DNS Server Remote Code Execution Vulnerability
5
1
Attacker Value
Low

CVE-2021-24074

Disclosure Date: February 25, 2021 (last updated November 28, 2024)
Windows TCP/IP Remote Code Execution Vulnerability
4
2
Attacker Value
Unknown

CVE-2021-21017

Disclosure Date: February 09, 2021 (last updated February 22, 2025)
Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by a heap-based buffer overflow vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
4
2
Attacker Value
High

CVE-2020-4006

Disclosure Date: November 23, 2020 (last updated February 22, 2025)
VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector address have a command injection vulnerability.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
4
2
View More Topics  < Previous  Next >