|
195371
|
8.8 |
HIGH
Network
|
gpac
debian
|
gpac
debian_linux
|
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input using the “ctts”…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-21836
|
2024-11-21 14:49 |
2021-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195372
|
8.8 |
HIGH
Network
|
gpac
|
gpac
|
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input when decoding th…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-21835
|
2024-11-21 14:49 |
2021-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195373
|
8.8 |
HIGH
Network
|
gpac
debian
|
gpac
debian_linux
|
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input when decoding th…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-21834
|
2024-11-21 14:49 |
2021-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195374
|
7.5 |
HIGH
Network
|
huawei
|
s12700_firmware
s5700_firmware
s6700_firmware
s7700_firmware
|
There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages due to validating inputs insufficiently. Attackers can exploit this vulnerability by sending…
|
CWE-20
Improper Input Validation
|
CVE-2021-22357
|
2024-11-21 14:49 |
2021-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195375
|
7.5 |
HIGH
Network
|
huawei
|
cloudengine_12800_firmware
cloudengine_5800_firmware
cloudengine_6800_firmware
cloudengine_7800_firmware
|
There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft the specific packet. Successful exploit m…
|
NVD-CWE-noinfo
|
CVE-2021-22328
|
2024-11-21 14:49 |
2021-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195376
|
5.4 |
MEDIUM
Network
|
gitlab
|
gitlab
|
Improper authorization in GitLab EE affecting all versions since 13.4 allowed a user who previously had the necessary access to trigger deployments to protected environments under specific conditions…
|
CWE-863
Incorrect Authorization
|
CVE-2021-22253
|
2024-11-21 14:49 |
2021-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195377
|
6.5 |
MEDIUM
Network
|
gitlab
|
gitlab
|
A confusion between tag and branch names in GitLab CE/EE affecting all versions since 13.7 allowed a Developer to access protected CI variables which should only be accessible to Maintainers
|
NVD-CWE-Other
|
CVE-2021-22252
|
2024-11-21 14:49 |
2021-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195378
|
4.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
Improper validation of invited users' email address in GitLab EE affecting all versions since 12.2 allowed projects to add members with email address domain that should be blocked by group settings
|
CWE-863
Incorrect Authorization
|
CVE-2021-22251
|
2024-11-21 14:49 |
2021-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195379
|
4.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
A verbose error message in GitLab EE affecting all versions since 12.2 could disclose the private email address of a user invited to a group
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2021-22249
|
2024-11-21 14:49 |
2021-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195380
|
5.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
Improper authorization on the pipelines page in GitLab CE/EE affecting all versions since 13.12 allowed unauthorized users to view some pipeline information for public projects that have access to pi…
|
NVD-CWE-Other
|
CVE-2021-22248
|
2024-11-21 14:49 |
2021-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
