Show filters
179,139 Total Results
Displaying 91-100 of 10,000
Refine your search criteria for more targeted results.
Sort by:
Attacker Value
High

CVE-2022-21882

Disclosure Date: January 11, 2022 (last updated February 23, 2025)
Win32k Elevation of Privilege Vulnerability
Attack Vector: LocalPrivileges: LowUser Interaction: None
5
2
Attacker Value
High

CVE-2021-42237

Disclosure Date: November 05, 2021 (last updated February 23, 2025)
Sitecore XP 7.5 Initial Release to Sitecore XP 8.2 Update-7 is vulnerable to an insecure deserialization attack where it is possible to achieve remote command execution on the machine. No authentication or special configuration is required to exploit this vulnerability.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
6
1
Attacker Value
High

CVE-2021-36955

Disclosure Date: September 15, 2021 (last updated November 28, 2024)
Windows Common Log File System Driver Elevation of Privilege Vulnerability
5
2
Attacker Value
Very High

CVE-2021-40539

Disclosure Date: September 07, 2021 (last updated February 23, 2025)
Zoho ManageEngine ADSelfService Plus version 6113 and prior is vulnerable to REST API authentication bypass with resultant remote code execution.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
5
2
Attacker Value
Unknown

CVE-2021-34484

Disclosure Date: August 12, 2021 (last updated November 28, 2024)
Windows User Profile Service Elevation of Privilege Vulnerability
5
2
Attacker Value
High

CVE-2021-33771

Disclosure Date: July 14, 2021 (last updated February 23, 2025)
Windows Kernel Elevation of Privilege Vulnerability
5
2
Attacker Value
Unknown

CVE-2021-33742

Disclosure Date: June 08, 2021 (last updated February 22, 2025)
Windows MSHTML Platform Remote Code Execution Vulnerability
5
2
Attacker Value
Very High

CVE-2021-21975

Disclosure Date: March 31, 2021 (last updated June 05, 2021)
Server Side Request Forgery in vRealize Operations Manager API (CVE-2021-21975) prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API can perform a Server Side Request Forgery attack to steal administrative credentials.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
5
1
Attacker Value
High

CVE-2021-25281

Disclosure Date: February 27, 2021 (last updated February 22, 2025)
An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor eauth credentials for the wheel_async client. Thus, an attacker can remotely run any wheel modules on the master.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
4
2
Attacker Value
High

CVE-2021-1732

Disclosure Date: February 25, 2021 (last updated February 22, 2025)
Windows Win32k Elevation of Privilege Vulnerability
6
1
View More Topics  < Previous  Next >