|
198401
|
8.8 |
HIGH
Network
|
machform
|
machform
|
Machform prior to version 16 is vulnerable to cross-site request forgery due to a lack of CSRF tokens in place.
|
CWE-352
Origin Validation Error
|
CVE-2021-20102
|
2024-11-21 14:45 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198402
|
6.1 |
MEDIUM
Network
|
machform
|
machform
|
Machform prior to version 16 is vulnerable to HTTP host header injection due to improperly validated host headers. This could cause a victim to receive malformed content.
|
CWE-74
Injection
|
CVE-2021-20101
|
2024-11-21 14:45 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198403
|
6.7 |
MEDIUM
Local
|
tenable
|
nessus
|
Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows ex…
|
NVD-CWE-noinfo
|
CVE-2021-20100
|
2024-11-21 14:45 |
2021-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198404
|
6.7 |
MEDIUM
Local
|
tenable
|
nessus
|
Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows ex…
|
NVD-CWE-noinfo
|
CVE-2021-20099
|
2024-11-21 14:45 |
2021-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198405
|
7.5 |
HIGH
Network
|
sonicwall
|
sonicos
sonicosv
|
A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-20019
|
2024-11-21 14:45 |
2021-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198406
|
7.5 |
HIGH
Network
|
wibu
siemens
|
codemeter
pss_cape
sicam_230_firmware
|
A denial of service vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to crash the CodeMeter Runtime Server.
|
CWE-125
Out-of-bounds Read
|
CVE-2021-20094
|
2024-11-21 14:45 |
2021-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198407
|
9.1 |
CRITICAL
Network
|
wibu
siemens
|
codemeter
pss_cape
sicam_230_firmware
sinema_remote_connect_server
simatic_information_server
sinec_infrastructure_network_services
simatic_pcs_neo
simit_simulation_platform
s…
|
A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to disclose heap memory contents or crash the CodeMeter R…
|
CWE-125
Out-of-bounds Read
|
CVE-2021-20093
|
2024-11-21 14:45 |
2021-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198408
|
7.5 |
HIGH
Network
|
sonicwall
|
sonicos
|
A buffer overflow vulnerability in SonicOS allows a remote attacker to cause a Denial of Service (DoS) by sending a specially crafted request. This vulnerability affects SonicOS Gen5, Gen6, Gen7 plat…
|
CWE-120
Classic Buffer Overflow
|
CVE-2021-20027
|
2024-11-21 14:45 |
2021-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198409
|
7.2 |
HIGH
Network
|
zohocorp
|
manageengine_servicedesk_plus
|
Incomplete List of Disallowed Inputs in ManageEngine ServiceDesk Plus before version 11205 allows a remote, authenticated attacker to execute arbitrary commands with SYSTEM privileges.
|
NVD-CWE-Other
|
CVE-2021-20081
|
2024-11-21 14:45 |
2021-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198410
|
7.5 |
HIGH
Network
|
qualcomm
|
aqt1000_firmware
ar8031_firmware
ar8035_firmware
ar9380_firmware
csr8811_firmware
csra6620_firmware
csra6640_firmware
csrb31024_firmware
ipq4018_firmware
ipq4028_firmware
Reachable assertion is possible while processing peer association WLAN message from host and nonstandard incoming packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Co…
|
CWE-617
Reachable Assertion
|
CVE-2021-1937
|
2024-11-21 14:45 |
2021-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
