|
199021
|
4.3 |
MEDIUM
Network
|
xmldom_project
debian
|
xmldom
debian_linux
|
xmldom is a pure JavaScript W3C standard-based (XML DOM Level 2 Core) DOMParser and XMLSerializer module. xmldom versions 0.4.0 and older do not correctly preserve system identifiers, FPIs or namespa…
|
-
|
CVE-2021-21366
|
2024-11-21 14:48 |
2021-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199022
|
8.2 |
HIGH
Local
|
flatpak
debian
fedoraproject
|
flatpak
debian_linux
fedora
|
Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In Flatpack since version 0.9.4 and before version 1.10.2 has a vulnerability in the "file forward…
|
-
|
CVE-2021-21381
|
2024-11-21 14:48 |
2021-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199023
|
8.2 |
HIGH
Network
|
envoyproxy
|
envoy
|
Envoy is a cloud-native high-performance edge/middle/service proxy. In Envoy version 1.17.0 an attacker can bypass authentication by presenting a JWT token with an issuer that is not in the provider …
|
CWE-287
Improper Authentication
|
CVE-2021-21378
|
2024-11-21 14:48 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199024
|
5.5 |
MEDIUM
Local
|
smartbear
|
swagger-codegen
|
swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger defi…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-21364
|
2024-11-21 14:48 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199025
|
7.0 |
HIGH
Local
|
smartbear
|
swagger-codegen
|
swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger defi…
|
-
|
CVE-2021-21363
|
2024-11-21 14:48 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199026
|
6.5 |
MEDIUM
Network
|
teluu
debian
|
pjsip
debian_linux
|
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP version 2.10 and earl…
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2021-21375
|
2024-11-21 14:48 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199027
|
8.6 |
HIGH
Local
|
tenable
|
jira_cloud
|
Tenable for Jira Cloud is an open source project designed to pull Tenable.io vulnerability data, then generate Jira Tasks and sub-tasks based on the vulnerabilities' current state. It published in py…
|
-
|
CVE-2021-21371
|
2024-11-21 14:48 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199028
|
6.3 |
MEDIUM
Network
|
linuxfoundation
fedoraproject
|
containerd
fedora
|
In containerd (an industry-standard container runtime) before versions 1.3.10 and 1.4.4, containers launched through containerd's CRI implementation (through Kubernetes, crictl, or any other pod/cont…
|
-
|
CVE-2021-21334
|
2024-11-21 14:48 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199029
|
8.1 |
HIGH
Network
|
3mf
fedoraproject
debian
|
lib3mf
fedora
debian_linux
|
A use-after-free vulnerability exists in the NMR::COpcPackageReader::releaseZIP() functionality of 3MF Consortium lib3mf 2.0.0. A specially crafted 3MF file can lead to code execution. An attacker ca…
|
CWE-416
Use After Free
|
CVE-2021-21772
|
2024-11-21 14:48 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199030
|
6.1 |
MEDIUM
Network
|
sap
|
netweaver_application_server_java
|
SAP Netweaver Application Server Java (Applications based on WebDynpro Java) versions 7.00, 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allow an attacker to redirect users to a malicious site due to Re…
|
CWE-601
Open Redirect
|
CVE-2021-21491
|
2024-11-21 14:48 |
2021-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
