|
196961
|
7.5 |
HIGH
Network
|
huawei
|
magic_ui
emui
harmonyos
|
There is a code injection vulnerability in smartphones. Successful exploitation of this vulnerability may affect service confidentiality.
|
CWE-94
Code Injection
|
CVE-2021-22395
|
2024-11-21 14:50 |
2022-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196962
|
9.1 |
CRITICAL
Network
|
huawei
|
magic_ui
emui
harmonyos
|
There is a buffer overflow vulnerability in smartphones. Successful exploitation of this vulnerability may cause DoS of the apps during Multi-Screen Collaboration.
|
CWE-120
Classic Buffer Overflow
|
CVE-2021-22394
|
2024-11-21 14:50 |
2022-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196963
|
7.5 |
HIGH
Network
|
schneider-electric
|
interactive_graphical_scada_system_data_collector
|
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in denial of service, due to missing length check on user-supplied data from a constructed message receive…
|
CWE-120
Classic Buffer Overflow
|
CVE-2021-22824
|
2024-11-21 14:50 |
2022-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196964
|
9.1 |
CRITICAL
Network
|
schneider-electric
|
interactive_graphical_scada_system_data_collector
|
A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of validation of network …
|
-
|
CVE-2021-22823
|
2024-11-21 14:50 |
2022-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196965
|
7.5 |
HIGH
Network
|
schneider-electric
|
spacelynk_firmware
wiser_for_knx_firmware
fellerlynk_firmware
|
A CWE-669: Incorrect Resource Transfer Between Spheres vulnerability exists that could cause data exfiltration and unauthorized access when accessing a malicious website. Affected Product: spaceLYnk …
|
-
|
CVE-2021-22806
|
2024-11-21 14:50 |
2022-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196966
|
9.1 |
CRITICAL
Network
|
schneider-electric
|
interactive_graphical_scada_system_data_collector
|
A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of validation of network …
|
-
|
CVE-2021-22805
|
2024-11-21 14:50 |
2022-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196967
|
7.5 |
HIGH
Network
|
schneider-electric
|
interactive_graphical_scada_system_data_collector
|
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause disclosure of arbitrary files being read in the context of the user running IGSS, due to mi…
|
-
|
CVE-2021-22804
|
2024-11-21 14:50 |
2022-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196968
|
9.8 |
CRITICAL
Network
|
schneider-electric
|
interactive_graphical_scada_system_data_collector
|
A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could lead to remote code execution through a number of paths, when an attacker, writes arbitrary files to folders…
|
-
|
CVE-2021-22803
|
2024-11-21 14:50 |
2022-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196969
|
9.8 |
CRITICAL
Network
|
schneider-electric
|
interactive_graphical_scada_system_data_collector
|
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in remote code execution due to missing length check on user supplied data, when a constructed message is …
|
-
|
CVE-2021-22802
|
2024-11-21 14:50 |
2022-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196970
|
9.8 |
CRITICAL
Network
|
schneider-electric
|
connexium_network_manager
|
A CWE-269: Improper Privilege Management vulnerability exists that could cause an arbitrary command execution when the software is configured with specially crafted event actions. Affected Product: C…
|
-
|
CVE-2021-22801
|
2024-11-21 14:50 |
2022-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
