|
195161
|
7.8 |
HIGH
Local
|
schneider-electric
|
ecostruxure_process_expert
ecostruxure_control_expert
remoteconnect
|
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal) vulnerability exists that could cause malicious script to be deployed in an unauthorized location and may resul…
|
-
|
CVE-2021-22797
|
2024-11-21 14:50 |
2022-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195162
|
9.8 |
CRITICAL
Network
|
schneider-electric
|
struxureware_data_center_expert
|
A CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote code execution when performed over the network. Affect…
|
-
|
CVE-2021-22795
|
2024-11-21 14:50 |
2022-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195163
|
9.8 |
CRITICAL
Network
|
schneider-electric
|
struxureware_data_center_expert
|
A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code execution. Affected Product: StruxureWare Data Center Expert …
|
-
|
CVE-2021-22794
|
2024-11-21 14:50 |
2022-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195164
|
5.5 |
MEDIUM
Local
|
google
|
data_transfer_project
|
On unix-like systems, the system temporary directory is shared between all users on that system. The root cause is File.createTempFile creates files in the the system temporary directory with world r…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2021-22572
|
2024-11-21 14:50 |
2022-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195165
|
5.5 |
MEDIUM
Local
|
google
|
sa360_webquery_to_bigquery_exporter
|
A local attacker could read files from some other users' SA360 reports stored in the /tmp folder during staging process before the files are loaded in BigQuery. We recommend upgrading to version 1.0.…
|
CWE-276
Incorrect Default Permissions
|
CVE-2021-22571
|
2024-11-21 14:50 |
2022-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195166
|
7.6 |
HIGH
Adjacent
|
schneider-electric
|
ritto_wiser_door
|
A CWE-200: Information Exposure vulnerability exists which could allow a session hijack when the door panel is communicating with the door. Affected Product: Ritto Wiser Door (All versions)
|
NVD-CWE-noinfo
|
CVE-2021-22783
|
2024-11-21 14:50 |
2022-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195167
|
7.5 |
HIGH
Network
|
huawei
|
magic_ui
emui
harmonyos
|
There is a DoS vulnerability in smartphones. Successful exploitation of this vulnerability may affect service availability.
|
NVD-CWE-noinfo
|
CVE-2021-22489
|
2024-11-21 14:50 |
2022-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195168
|
9.8 |
CRITICAL
Network
|
huawei
|
harmonyos
|
The interface of a certain HarmonyOS module has an integer overflow vulnerability. Successful exploitation of this vulnerability may lead to heap memory overflow.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2021-22480
|
2024-11-21 14:50 |
2022-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195169
|
5.5 |
MEDIUM
Local
|
huawei
|
harmonyos
|
The interface of a certain HarmonyOS module has an invalid address access vulnerability. Successful exploitation of this vulnerability may lead to kernel crash.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-22479
|
2024-11-21 14:50 |
2022-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195170
|
5.5 |
MEDIUM
Local
|
huawei
|
harmonyos
|
The interface of a certain HarmonyOS module has a UAF vulnerability. Successful exploitation of this vulnerability may lead to information leakage.
|
CWE-416
Use After Free
|
CVE-2021-22478
|
2024-11-21 14:50 |
2022-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
