|
194551
|
7.5 |
HIGH
Network
|
endian_trait_project
|
endian_trait
|
An issue was discovered in the endian_trait crate through 2021-01-04 for Rust. A double drop can occur when a user-provided Endian impl panics.
|
CWE-415
Double Free
|
CVE-2021-29929
|
2024-11-21 15:01 |
2021-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194552
|
4.8 |
MEDIUM
Network
|
course_registration_management_system_project
|
course_registration_management_system
|
CourseMS (aka Course Registration Management System) 2.1 is affected by cross-site scripting (XSS). When an attacker with access to an Admin account creates a Job Title in the Site area (aka the admi…
|
CWE-79
Cross-site Scripting
|
CVE-2021-29663
|
2024-11-21 15:01 |
2021-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194553
|
7.5 |
HIGH
Network
|
data\
netapp
|
\
snapcenter
|
The Data::Validate::IP module through 0.29 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypa…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2021-29662
|
2024-11-21 15:01 |
2021-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194554
|
8.8 |
HIGH
Network
|
vscode-rufo_project
|
vscode-rufo
|
The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder.
|
NVD-CWE-Other
|
CVE-2021-29658
|
2024-11-21 15:01 |
2021-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194555
|
5.5 |
MEDIUM
Local
|
linux
fedoraproject
debian
|
linux_kernel
fedora
debian_linux
|
An issue was discovered in the Linux kernel before 5.11.11. The netfilter subsystem allows attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/…
|
NVD-CWE-noinfo
|
CVE-2021-29650
|
2024-11-21 15:01 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194556
|
5.5 |
MEDIUM
Local
|
linux
fedoraproject
|
linux_kernel
fedora
|
An issue was discovered in the Linux kernel before 5.11.11. The user mode driver (UMD) has a copy_process() memory leak, related to a lack of cleanup steps in kernel/usermode_driver.c and kernel/bpf/…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2021-29649
|
2024-11-21 15:01 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194557
|
5.5 |
MEDIUM
Local
|
linux
fedoraproject
|
linux_kernel
fedora
|
An issue was discovered in the Linux kernel before 5.11.11. The BPF subsystem does not properly consider that resolved_ids and resolved_sizes are intentionally uninitialized in the vmlinux BPF Type F…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2021-29648
|
2024-11-21 15:01 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194558
|
5.5 |
MEDIUM
Local
|
linux
fedoraproject
debian
|
linux_kernel
fedora
debian_linux
|
An issue was discovered in the Linux kernel before 5.11.11. qrtr_recvmsg in net/qrtr/qrtr.c allows attackers to obtain sensitive information from kernel memory because of a partially uninitialized da…
|
CWE-909
Missing Initialization of Resource
|
CVE-2021-29647
|
2024-11-21 15:01 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194559
|
5.5 |
MEDIUM
Local
|
linux
fedoraproject
|
linux_kernel
fedora
|
An issue was discovered in the Linux kernel before 5.11.11. tipc_nl_retrieve_key in net/tipc/node.c does not properly validate certain data sizes, aka CID-0217ed2848e8.
|
NVD-CWE-noinfo
|
CVE-2021-29646
|
2024-11-21 15:01 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194560
|
5.3 |
MEDIUM
Network
|
gistpad_project
|
gistpad
|
GistPad before 0.2.7 allows a crafted workspace folder to change the URL for the Gist API, which leads to leakage of GitHub access tokens.
|
CWE-863
Incorrect Authorization
|
CVE-2021-29642
|
2024-11-21 15:01 |
2021-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
