|
197441
|
7.3 |
HIGH
Local
|
redhat
|
keycloak
|
A flaw was found in keycloak. Directories can be created prior to the Java process creating them in the temporary directory, but with wider user permissions, allowing the attacker to have access to t…
|
-
|
CVE-2021-20202
|
2024-11-21 14:46 |
2021-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197442
|
7.5 |
HIGH
Network
|
samba
debian
fedoraproject
|
samba
debian_linux
fedora
|
A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the req…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-20277
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197443
|
7.5 |
HIGH
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to da…
|
NVD-CWE-Other
|
CVE-2021-20313
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197444
|
7.5 |
HIGH
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
A flaw was found in ImageMagick in versions 7.0.11, where an integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c may trigger undefined behavior via a crafted image file that is submitted by…
|
-
|
CVE-2021-20312
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197445
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero in sRGBTransformImage() in the MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that…
|
-
|
CVE-2021-20311
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197446
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero ConvertXYZToJzazbz() of MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is sub…
|
-
|
CVE-2021-20310
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197447
|
7.5 |
HIGH
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
A flaw was found in ImageMagick in versions before 7.0.11 and before 6.9.12, where a division by zero in WaveImage() of MagickCore/visual-effects.c may trigger undefined behavior via a crafted image …
|
-
|
CVE-2021-20309
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197448
|
6.1 |
MEDIUM
Network
|
ibm
|
cloud_pak_for_security
|
IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intende…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20577
|
2024-11-21 14:46 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197449
|
5.4 |
MEDIUM
Network
|
ibm
|
control_desk
|
IBM Control Desk 7.6.1.2 and 7.6.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality p…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20559
|
2024-11-21 14:46 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197450
|
9.1 |
CRITICAL
Network
|
ibm
|
cloud_pak_for_security
|
IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 could allow a user to obtain sensitive information or perform actions they should not have access to due to incorrect authorization mechanisms. I…
|
CWE-863
Incorrect Authorization
|
CVE-2021-20538
|
2024-11-21 14:46 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
