|
194291
|
5.5 |
MEDIUM
Local
|
arista
|
metamako_operating_system
|
In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, user account passwords set in clear text could leak to users without any password. This issue affects…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2021-28499
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194292
|
7.8 |
HIGH
Local
|
arista
|
metamako_operating_system
|
In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, user enable passwords set in clear text could result in unprivileged users getting complete access to…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2021-28498
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194293
|
7.8 |
HIGH
Local
|
arista
|
metamako_operating_system
|
In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, the bash shell might be accessible to unprivileged users in situations wher…
|
NVD-CWE-Other
|
CVE-2021-28497
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194294
|
9.8 |
CRITICAL
Network
|
arista
|
metamako_operating_system
|
In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, user authentication can be bypassed when API access is enabled via the JSON…
|
CWE-287
Improper Authentication
|
CVE-2021-28495
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194295
|
8.8 |
HIGH
Network
|
arista
|
metamako_operating_system
|
In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, authentication is bypassed by unprivileged users who are accessing the Web …
|
CWE-287
Improper Authentication
|
CVE-2021-28494
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194296
|
7.8 |
HIGH
Local
|
arista
|
metamako_operating_system
|
In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, a user may be able to execute commands despite not having the privileges to…
|
CWE-287
Improper Authentication
|
CVE-2021-28493
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194297
|
8.8 |
HIGH
Network
|
adobe
|
after_effects
|
Adobe After Effects version 18.1 (and earlier) is affected by a potential Command injection vulnerability when chained with a development and debugging tool for JavaScript scripts. An unauthenticated…
|
-
|
CVE-2021-28571
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194298
|
4.3 |
MEDIUM
Network
|
adobe
|
media_encoder
|
Adobe Media Encoder version 15.1 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability …
|
-
|
CVE-2021-28569
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194299
|
6.5 |
MEDIUM
Local
|
adobe
|
genuine_service
|
Adobe Genuine Services version 7.1 (and earlier) is affected by an Insecure file permission vulnerability during installation process. A local authenticated attacker could leverage this vulnerability…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2021-28568
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194300
|
6.5 |
MEDIUM
Network
|
magento
|
magento
|
Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier) and 2.3.6-p1 (and earlier) are vulnerable to an Improper Authorization vulnerability in the customers module. Successful exploitation coul…
|
CWE-863
Incorrect Authorization
|
CVE-2021-28567
|
2024-11-21 14:59 |
2021-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
