|
197291
|
7.8 |
HIGH
Local
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2021-20401
|
2024-11-21 14:46 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197292
|
6.1 |
MEDIUM
Network
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentiall…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20397
|
2024-11-21 14:46 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197293
|
6.8 |
MEDIUM
Network
|
samba
fedoraproject
redhat
debian
|
samba
fedora
enterprise_linux
debian_linux
|
A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix group ids (gids). The code that performs this had a flaw that could allow it to read data beyo…
|
-
|
CVE-2021-20254
|
2024-11-21 14:46 |
2021-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197294
|
6.7 |
MEDIUM
Local
|
ibm
|
informix_dynamic_server
|
IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-20515
|
2024-11-21 14:46 |
2021-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197295
|
4.9 |
MEDIUM
Network
|
rpm
fedoraproject
|
rpm
fedora
|
A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system …
|
-
|
CVE-2021-20266
|
2024-11-21 14:46 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197296
|
6.5 |
MEDIUM
Network
|
mongodb
|
mongodb
|
A user authorized to performing a specific type of find query may trigger a denial of service. This issue affects MongoDB Server v4.4 versions prior to 4.4.4.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-20326
|
2024-11-21 14:46 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197297
|
7.8 |
HIGH
Local
|
gnu
|
binutils
|
A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbi…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-20294
|
2024-11-21 14:46 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197298
|
7.5 |
HIGH
Network
|
redhat
debian
|
ansible_engine
ansible_tower
ansible_automation_platform
debian_linux
|
A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. This …
|
CWE-200
Information Exposure
|
CVE-2021-20228
|
2024-11-21 14:46 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197299
|
5.4 |
MEDIUM
Network
|
ibm
|
content_navigator
|
IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potential…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20550
|
2024-11-21 14:46 |
2021-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197300
|
5.4 |
MEDIUM
Network
|
ibm
|
content_navigator
|
IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potential…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20549
|
2024-11-21 14:46 |
2021-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
