|
197851
|
7.5 |
HIGH
Network
|
fibaro
|
home_center_2_firmware
home_center_lite_firmware
|
In Fibaro Home Center 2 and Lite devices in all versions provide a web based management interface over unencrypted HTTP protocol. Communication between the user and the device can be eavesdropped to …
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2021-20992
|
2024-11-21 14:47 |
2021-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197852
|
8.8 |
HIGH
Network
|
fibaro
|
home_center_2_firmware
home_center_lite_firmware
|
In Fibaro Home Center 2 and Lite devices with firmware version 4.540 and older an authenticated user can run commands as root user using a command injection vulnerability.
|
CWE-77
Command Injection
|
CVE-2021-20991
|
2024-11-21 14:47 |
2021-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197853
|
7.5 |
HIGH
Network
|
fibaro
|
home_center_2_firmware
home_center_lite_firmware
|
In Fibaro Home Center 2 and Lite devices with firmware version 4.600 and older an internal management service is accessible on port 8000 and some API endpoints could be accessed without authenticatio…
|
-
|
CVE-2021-20990
|
2024-11-21 14:47 |
2021-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197854
|
6.5 |
MEDIUM
Local
|
adobe
|
robohelp
|
Adobe Robohelp version 2020.0.3 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. An attacker with admin permissions to write to …
|
-
|
CVE-2021-21070
|
2024-11-21 14:47 |
2021-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197855
|
7.8 |
HIGH
Local
|
adobe
|
digital_editions
|
Adobe Digital Editions version 4.5.11.187245 (and earlier) is affected by a Privilege Escalation vulnerability during installation. An unauthenticated attacker could leverage this vulnerability to ac…
|
-
|
CVE-2021-21100
|
2024-11-21 14:47 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197856
|
5.5 |
MEDIUM
Local
|
adobe
|
bridge
|
Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Improper Authorization vulnerability in the Genuine Software Service. A low-privileged attacker could leverage t…
|
NVD-CWE-Other
|
CVE-2021-21096
|
2024-11-21 14:47 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197857
|
7.8 |
HIGH
Local
|
adobe
|
bridge
|
Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Out-of-bounds write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this v…
|
-
|
CVE-2021-21095
|
2024-11-21 14:47 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197858
|
7.8 |
HIGH
Local
|
adobe
|
bridge
|
Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Out-of-bounds write vulnerability when parsing a specially crafted file. An unauthenticated attacker could lever…
|
-
|
CVE-2021-21094
|
2024-11-21 14:47 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197859
|
7.8 |
HIGH
Local
|
adobe
|
bridge
|
Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21093
|
2024-11-21 14:47 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197860
|
7.8 |
HIGH
Local
|
adobe
|
bridge
|
Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21092
|
2024-11-21 14:47 |
2021-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
