|
197781
|
8.8 |
HIGH
Network
|
blackberry
|
workspaces_server
|
An Authentication Bypass vulnerability in the SAML Authentication component of BlackBerry Workspaces Server (deployed with Appliance-X) version(s) 10.1, 9.1 and earlier could allow an attacker to pot…
|
CWE-287
Improper Authentication
|
CVE-2021-22155
|
2024-11-21 14:49 |
2021-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197782
|
6.1 |
MEDIUM
Network
|
vmware
|
workspace_one_unified_endpoint_management
|
VMware Workspace one UEM console (2102 prior to 21.2.0.8, 2101 prior to 21.1.0.14, 2011 prior to 20.11.0.27, 2010 prior to 20.10.0.16,2008 prior to 20.8.0.28, 2007 prior to 20.7.0.14,2006 prior to 20…
|
CWE-79
Cross-site Scripting
|
CVE-2021-21990
|
2024-11-21 14:49 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197783
|
8.8 |
HIGH
Network
|
foxitsoftware
|
foxit_reader
|
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.3.37598. A specially crafted PDF document can trigger the reuse of previously free memory, …
|
CWE-416
Use After Free
|
CVE-2021-21822
|
2024-11-21 14:49 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197784
|
9.8 |
CRITICAL
Network
|
vmware
|
vrealize_business_for_cloud
|
VMware vRealize Business for Cloud 7.x prior to 7.6.0 contains a remote code execution vulnerability due to an unauthorised end point. A malicious actor with network access may exploit this issue cau…
|
CWE-862
Missing Authorization
|
CVE-2021-21984
|
2024-11-21 14:49 |
2021-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197785
|
5.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2. When querying the repository branches through API, GitLab was ignoring a query parameter and returning a consid…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2021-22210
|
2024-11-21 14:49 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197786
|
7.5 |
HIGH
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.8. GitLab was not properly validating authorisation tokens which resulted in GraphQL mutation being executed.
|
CWE-863
Incorrect Authorization
|
CVE-2021-22209
|
2024-11-21 14:49 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197787
|
4.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab affecting versions starting with 13.5 up to 13.9.7. Improper permission check could allow the change of timestamp for issue creation or update.
|
NVD-CWE-Other
|
CVE-2021-22208
|
2024-11-21 14:49 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197788
|
4.9 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab affecting all versions starting from 11.6. Pull mirror credentials are exposed that allows other maintainers to be able to view the credentials in plain-text,
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2021-22206
|
2024-11-21 14:49 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197789
|
4.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7. GitLab Dependency Proxy, under certain circumstances, can impersonate a user resulting in possibly incorrect ac…
|
CWE-863
Incorrect Authorization
|
CVE-2021-22211
|
2024-11-21 14:49 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197790
|
7.5 |
HIGH
Network
|
huawei
|
cloudengine_12800_firmware
cloudengine_5800_firmware
cloudengine_6800_firmware
cloudengine_7800_firmware
|
There is a pointer double free vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. When a function is called, the same memory pointer is copi…
|
CWE-415
Double Free
|
CVE-2021-22332
|
2024-11-21 14:49 |
2021-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
