|
195271
|
7.5 |
HIGH
Network
|
apache
|
solr
|
When starting Apache Solr versions prior to 8.8.2, configured with the SaslZkACLProvider or VMParamsAllAndReadonlyDigestZkACLProvider and no existing security.json znode, if the optional read-only us…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2021-29262
|
2024-11-21 15:00 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195272
|
8.8 |
HIGH
Network
|
papoo
|
papoo
|
Certain Papoo products are affected by: Cross Site Request Forgery (CSRF) in the admin interface. This affects Papoo CMS Light through 21.02 and Papoo CMS Pro through 6.0.1. The impact is: gain privi…
|
CWE-352
Origin Validation Error
|
CVE-2021-29054
|
2024-11-21 15:00 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195273
|
9.8 |
CRITICAL
Network
|
genexis
|
platinum_4410_firmware
|
Genexis PLATINUM 4410 2.1 P4410-V2-1.28 devices allow remote attackers to execute arbitrary code via shell metacharacters to sys_config_valid.xgi, as demonstrated by the sys_config_valid.xgi?exeshell…
|
CWE-78
OS Command
|
CVE-2021-29003
|
2024-11-21 15:00 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195274
|
4.3 |
MEDIUM
Network
|
siren
|
federate
|
Siren Federate before 6.8.14-10.3.9, 6.9.x through 7.6.x before 7.6.2-20.2, 7.7.x through 7.9.x before 7.9.3-21.6, 7.10.x before 7.10.2-22.2, and 7.11.x before 7.11.2-23.0 can leak user information a…
|
NVD-CWE-noinfo
|
CVE-2021-28938
|
2024-11-21 15:00 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195275
|
8.6 |
HIGH
Network
|
outsystems
|
lifetime_management_console
platform_server
outsystems
|
The ECT Provider component in OutSystems Platform Server 10 before 10.0.1104.0 and 11 before 11.9.0 (and LifeTime management console before 11.7.0) allows SSRF for arbitrary outbound HTTP requests.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2021-29357
|
2024-11-21 15:00 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195276
|
8.1 |
HIGH
Network
|
tp-link
|
tl-wr802n_firmware
|
TP-Link TL-WR802N(US), Archer_C50v5_US v4_200 <= 2020.06 contains a buffer overflow vulnerability in the httpd process in the body message. The attack vector is: The attacker can get shell of the rou…
|
CWE-120
Classic Buffer Overflow
|
CVE-2021-29302
|
2024-11-21 15:00 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195277
|
9.8 |
CRITICAL
Network
|
rust-lang
fedoraproject
|
rust
fedora
|
In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect size due to an integer overflow. This bug can lead to a buffer overflow when a consumed Zip iterator is u…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2021-28879
|
2024-11-21 15:00 |
2021-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195278
|
7.5 |
HIGH
Network
|
rust-lang
fedoraproject
|
rust
fedora
|
In the standard library in Rust before 1.52.0, the Zip implementation calls __iterator_get_unchecked() more than once for the same index (under certain conditions) when next_back() and next() are use…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-28878
|
2024-11-21 15:00 |
2021-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195279
|
7.5 |
HIGH
Network
|
rust-lang
|
rust
|
In the standard library in Rust before 1.51.0, the Zip implementation calls __iterator_get_unchecked() for the same index more than once when nested. This bug can lead to a memory safety violation du…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-28877
|
2024-11-21 15:00 |
2021-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195280
|
5.3 |
MEDIUM
Network
|
rust-lang
fedoraproject
|
rust
fedora
|
In the standard library in Rust before 1.52.0, the Zip implementation has a panic safety issue. It calls __iterator_get_unchecked() more than once for the same index when the underlying iterator pani…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2021-28876
|
2024-11-21 15:00 |
2021-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
