|
200291
|
5.5 |
MEDIUM
Local
|
gnu
netapp
|
binutils
cloud_backup
ontap_select_deploy_administration_utility
|
A flaw was found in GNU Binutils 2.35.1, where there is a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c due to the number of symbols not calculated correctly. The high…
|
-
|
CVE-2021-20284
|
2024-11-21 14:46 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200292
|
7.0 |
HIGH
Local
|
rpm
redhat
fedoraproject
starwindsoftware
|
rpm
enterprise_linux
fedora
starwind_virtual_san
|
A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature …
|
-
|
CVE-2021-20271
|
2024-11-21 14:46 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200293
|
6.3 |
MEDIUM
Local
|
gnu
redhat
netapp
broadcom
|
binutils
enterprise_linux
cloud_backup
ontap_select_deploy_administration_utility
solidfire_\&_hci_management_node
brocade_fabric_operating_system_firmware
|
There is an open race window when writing output in the following utilities in GNU binutils version 2.35 and earlier:ar, objcopy, strip, ranlib. When these utilities are run as a privileged user (pre…
|
-
|
CVE-2021-20197
|
2024-11-21 14:46 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200294
|
3.3 |
LOW
Local
|
gnu
|
tar
|
A flaw was found in the src/list.c of tar 1.33 and earlier. This flaw allows an attacker who can submit a crafted input file to tar to cause uncontrolled consumption of memory. The highest threat fro…
|
CWE-125
CWE-401
Out-of-bounds Read
Missing Release of Memory after Effective Lifetime
|
CVE-2021-20193
|
2024-11-21 14:46 |
2021-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200295
|
3.1 |
LOW
Network
|
necplatforms
|
univerge_aspire_wx_firmware
univerge_aspire_ux_firmware
univerge_sv9100_firmware
sl2100_firmware
|
UNIVERGE Aspire series PBX (UNIVERGE Aspire WX from 1.00 to 3.51, UNIVERGE Aspire UX from 1.00 to 9.70, UNIVERGE SV9100 from 1.00 to 10.70, and SL2100 from 1.00 to 3.00) allows a remote authenticated…
|
NVD-CWE-noinfo
|
CVE-2021-20677
|
2024-11-21 14:46 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200296
|
7.5 |
HIGH
Network
|
privoxy
|
privoxy
|
A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a crafted CGI request may lead to denial of service. The highest threat from this vulnerability is to system a…
|
-
|
CVE-2021-20217
|
2024-11-21 14:46 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200297
|
7.5 |
HIGH
Network
|
privoxy
|
privoxy
|
A flaw was found in Privoxy in versions before 3.0.31. A memory leak that occurs when decompression fails unexpectedly may lead to a denial of service. The highest threat from this vulnerability is t…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2021-20216
|
2024-11-21 14:46 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200298
|
7.5 |
HIGH
Network
|
privoxy
|
privoxy
|
A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the show-status CGI handler when memory allocations fail can lead to a system crash.
|
-
|
CVE-2021-20215
|
2024-11-21 14:46 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200299
|
7.5 |
HIGH
Network
|
privoxy
|
privoxy
|
A flaw was found in Privoxy in versions before 3.0.29. Memory leaks in the client-tags CGI handler when client tags are configured and memory allocations fail can lead to a system crash.
|
-
|
CVE-2021-20214
|
2024-11-21 14:46 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200300
|
7.5 |
HIGH
Network
|
privoxy
|
privoxy
|
A flaw was found in Privoxy in versions before 3.0.29. Dereference of a NULL-pointer that could result in a crash if accept-intercepted-requests was enabled, Privoxy failed to get the request destina…
|
-
|
CVE-2021-20213
|
2024-11-21 14:46 |
2021-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
