|
195521
|
6.5 |
MEDIUM
Network
|
zte
|
zxhn_h168n_firmware
zxhn_h108n_firmware
|
Some ZTE products have CSRF vulnerability. Because some pages lack CSRF random value verification, attackers could perform illegal authorization operations by constructing messages.This affects: ZXHN…
|
CWE-352
CWE-330
Origin Validation Error
Use of Insufficiently Random Values
|
CVE-2021-21729
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195522
|
6.5 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 Synaps…
|
CWE-20
Improper Input Validation
|
CVE-2021-21393
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195523
|
6.3 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 reques…
|
CWE-601
Open Redirect
|
CVE-2021-21392
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195524
|
7.8 |
HIGH
Local
|
dell
|
peripheral_manager
|
Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with pr…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2021-21545
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195525
|
9.8 |
CRITICAL
Network
|
dell
|
storage_resource_manager
storage_monitoring_and_reporting
|
Dell SRM versions prior to 4.5.0.1 and Dell SMR versions prior to 4.5.0.1 contain an Untrusted Deserialization Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerabil…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2021-21524
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195526
|
6.5 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 Synaps…
|
CWE-20
Improper Input Validation
|
CVE-2021-21394
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195527
|
5.3 |
MEDIUM
Network
|
zte
|
zxa10_c300m_firmware
|
A ZTE product has a configuration error vulnerability. Because a certain port is open by default, an attacker can consume system processing resources by flushing a large number of packets to the port…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2021-21728
|
2024-11-21 14:48 |
2021-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195528
|
8.8 |
HIGH
Network
|
demon1a
|
discord-recon
|
Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server re…
|
CWE-78
OS Command
|
CVE-2021-21433
|
2024-11-21 14:48 |
2021-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195529
|
6.5 |
MEDIUM
Network
|
go-vela
|
vela
|
Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golang. An authentication mechanism added in version 0.7.0 enables some malicious user to obtain secrets…
|
CWE-862
Missing Authorization
|
CVE-2021-21432
|
2024-11-21 14:48 |
2021-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195530
|
8.1 |
HIGH
Network
|
mirahezebots
|
channelmgnt
|
sopel-channelmgnt is a channelmgnt plugin for sopel. In versions prior to 2.0.1, on some IRC servers, restrictions around the removal of the bot using the kick/kickban command could be bypassed when …
|
NVD-CWE-Other
|
CVE-2021-21431
|
2024-11-21 14:48 |
2021-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
