|
195891
|
8.8 |
HIGH
Network
|
contec
|
sv-cpt-mc310_firmware
|
SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to upload arbitrary files via unspecified vectors. If the file is PHP script, an attacker may execute arbitrary code.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2021-20659
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195892
|
9.8 |
CRITICAL
Network
|
contec
|
sv-cpt-mc310_firmware
|
SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to execute arbitrary OS commands with the web server privilege via unspecified vectors.
|
CWE-78
OS Command
|
CVE-2021-20658
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195893
|
5.4 |
MEDIUM
Network
|
contec
|
sv-cpt-mc310_firmware
|
Improper access control vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to obtain and/or alter the setting information without the access privilege v…
|
NVD-CWE-Other
|
CVE-2021-20657
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195894
|
4.3 |
MEDIUM
Network
|
contec
|
sv-cpt-mc310_firmware
|
Exposure of information through directory listing in SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to obtain the information inside the system, such as directories …
|
CWE-200
Information Exposure
|
CVE-2021-20656
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195895
|
5.3 |
MEDIUM
Local
|
redhat
|
satellite
|
A flaw was found in Red Hat Satellite. The BMC interface exposes the password through the API to an authenticated local attacker with view_hosts permission. The highest threat from this vulnerability…
|
-
|
CVE-2021-20256
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195896
|
6.5 |
MEDIUM
Network
|
redhat
|
3scale_api_management
|
A flaw was found in Red Hat 3scale API Management Platform 2. The 3scale backend does not perform preventive handling on user-requested date ranges in certain queries allowing a malicious authenticat…
|
-
|
CVE-2021-20252
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195897
|
7.8 |
HIGH
Local
|
linux
redhat
|
linux_kernel
enterprise_linux
openshift_container_platform
|
There is a vulnerability in the linux kernel versions higher than 5.2 (if kernel compiled with config params CONFIG_BPF_SYSCALL=y , CONFIG_BPF=y , CONFIG_CGROUPS=y , CONFIG_CGROUP_BPF=y , CONFIG_HARD…
|
-
|
CVE-2021-20194
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195898
|
8.8 |
HIGH
Network
|
redhat
|
openshift_container_platform
|
A privilege escalation flaw was found in openshift4/ose-docker-builder. The build container runs with high privileges using a chrooted environment instead of runc. If an attacker can gain access to t…
|
-
|
CVE-2021-20182
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195899
|
7.4 |
HIGH
Network
|
mbsync_project
debian
fedoraproject
|
mbsync
debian_linux
fedora
extra_packages_for_enterprise_linux
|
A flaw was found in mbsync before v1.3.5 and v1.4.1. Validations of the mailbox names returned by IMAP LIST/LSUB do not occur allowing a malicious or compromised server to use specially crafted mailb…
|
CWE-22
Path Traversal
|
CVE-2021-20247
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195900
|
4.3 |
MEDIUM
Network
|
postgresql
redhat
fedoraproject
|
postgresql
enterprise_linux
software_collections
fedora
|
A flaw was found in PostgreSQL in versions before 13.2. This flaw allows a user with SELECT privilege on one column to craft a special query that returns all columns of the table. The highest threat …
|
-
|
CVE-2021-20229
|
2024-11-21 14:46 |
2021-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
