|
197001
|
8.1 |
HIGH
Network
|
zte
|
zxcloud_irai_firmware
|
A CSRF vulnerability exists in the management page of a ZTE product.The vulnerability is caused because the management page does not fully verify whether the request comes from a trusted user. The at…
|
CWE-352
Origin Validation Error
|
CVE-2021-21731
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197002
|
9.8 |
CRITICAL
Network
|
zte
|
zxhn_h168n_firmware
|
A ZTE product is impacted by improper access control vulnerability. The attacker could exploit this vulnerability to access CLI by brute force attacks.This affects: ZXHN H168N V3.5.0_TY.T6
|
NVD-CWE-Other
|
CVE-2021-21730
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197003
|
6.5 |
MEDIUM
Network
|
zte
|
zxhn_h168n_firmware
zxhn_h108n_firmware
|
Some ZTE products have CSRF vulnerability. Because some pages lack CSRF random value verification, attackers could perform illegal authorization operations by constructing messages.This affects: ZXHN…
|
CWE-352
CWE-330
Origin Validation Error
Use of Insufficiently Random Values
|
CVE-2021-21729
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197004
|
6.5 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 Synaps…
|
CWE-20
Improper Input Validation
|
CVE-2021-21393
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197005
|
6.3 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 reques…
|
CWE-601
Open Redirect
|
CVE-2021-21392
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197006
|
7.8 |
HIGH
Local
|
dell
|
peripheral_manager
|
Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with pr…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2021-21545
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197007
|
9.8 |
CRITICAL
Network
|
dell
|
storage_resource_manager
storage_monitoring_and_reporting
|
Dell SRM versions prior to 4.5.0.1 and Dell SMR versions prior to 4.5.0.1 contain an Untrusted Deserialization Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerabil…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2021-21524
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197008
|
6.5 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 Synaps…
|
CWE-20
Improper Input Validation
|
CVE-2021-21394
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197009
|
5.3 |
MEDIUM
Network
|
zte
|
zxa10_c300m_firmware
|
A ZTE product has a configuration error vulnerability. Because a certain port is open by default, an attacker can consume system processing resources by flushing a large number of packets to the port…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2021-21728
|
2024-11-21 14:48 |
2021-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197010
|
8.8 |
HIGH
Network
|
demon1a
|
discord-recon
|
Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server re…
|
CWE-78
OS Command
|
CVE-2021-21433
|
2024-11-21 14:48 |
2021-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
