|
195541
|
4.3 |
MEDIUM
Network
|
huawei
|
fusioncompute
|
There is an insufficient input validation vulnerability in FusionCompute 8.0.0. Due to the input validation is insufficient, an attacker can exploit this vulnerability to upload any files to the devi…
|
CWE-20
Improper Input Validation
|
CVE-2021-22358
|
2024-11-21 14:49 |
2021-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195542
|
9.8 |
CRITICAL
Network
|
vmware
|
vcenter_server
cloud_foundation
|
The vSphere Client (HTML5) contains a vulnerability in a vSphere authentication mechanism for the Virtual SAN Health Check, Site Recovery, vSphere Lifecycle Manager, and VMware Cloud Director Availab…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2021-21986
|
2024-11-21 14:49 |
2021-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195543
|
9.8 |
CRITICAL
Network
|
vmware
|
vcenter_server
cloud_foundation
|
The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in which is enabled by default in vCenter Server. A mali…
|
CWE-20
Improper Input Validation
|
CVE-2021-21985
|
2024-11-21 14:49 |
2021-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195544
|
9.8 |
CRITICAL
Network
|
apache
|
pulsar
|
If Apache Pulsar is configured to authenticate clients using tokens based on JSON Web Tokens (JWT), the signature of the token is not validated if the algorithm of the presented token is set to "none…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2021-22160
|
2024-11-21 14:49 |
2021-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195545
|
6.5 |
MEDIUM
Local
|
vmware
|
workstation
horizon_client
|
VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). A malicious act…
|
CWE-125
Out-of-bounds Read
|
CVE-2021-21989
|
2024-11-21 14:49 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195546
|
6.5 |
MEDIUM
Local
|
vmware
|
workstation
horizon_client
|
VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (JPEG2000 Parser). A maliciou…
|
CWE-125
Out-of-bounds Read
|
CVE-2021-21988
|
2024-11-21 14:49 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195547
|
6.5 |
MEDIUM
Local
|
vmware
|
workstation
horizon_client
|
VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). A malicious act…
|
CWE-125
Out-of-bounds Read
|
CVE-2021-21987
|
2024-11-21 14:49 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195548
|
6.5 |
MEDIUM
Network
|
huawei
|
manageone
|
There is a denial of service vulnerability in some versions of ManageOne. In specific scenarios, due to the insufficient verification of the parameter, an attacker may craft some specific parameter. …
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2021-22339
|
2024-11-21 14:49 |
2021-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195549
|
7.8 |
HIGH
Local
|
vmware
|
rabbitmq
|
RabbitMQ installers on Windows prior to version 3.8.16 do not harden plugin directory permissions, potentially allowing attackers with sufficient local filesystem permissions to add arbitrary plugins.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-22117
|
2024-11-21 14:49 |
2021-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195550
|
7.5 |
HIGH
Network
|
elastic
|
elastic_app_search
|
Elastic App Search versions after 7.11.0 and before 7.12.0 contain an XML External Entity Injection issue (XXE) in the App Search web crawler beta feature. Using this vector, an attacker whose websit…
|
CWE-611
XXE
|
CVE-2021-22140
|
2024-11-21 14:49 |
2021-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
