|
195151
|
5.5 |
MEDIUM
Local
|
huawei
|
ese620x_vess_firmware
|
There is an out-of-bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a function that handles an internal message contains …
|
CWE-125
Out-of-bounds Read
|
CVE-2021-22366
|
2024-11-21 14:49 |
2021-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195152
|
3.3 |
LOW
Local
|
huawei
|
ese620x_vess_firmware
|
There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to th…
|
CWE-125
Out-of-bounds Read
|
CVE-2021-22365
|
2024-11-21 14:49 |
2021-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195153
|
7.8 |
HIGH
Local
|
huawei
|
ecns280_firmware
ese620x_vess_firmware
|
There is an improper authorization vulnerability in eCNS280 V100R005C00, V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200. A file access is not authorized correctly. Attacker with lo…
|
NVD-CWE-Other
|
CVE-2021-22361
|
2024-11-21 14:49 |
2021-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195154
|
5.5 |
MEDIUM
Local
|
vmware
|
tools
|
VMware Tools for Windows (11.x.y prior to 11.3.0) contains a denial-of-service vulnerability in the VM3DMP driver. A malicious actor with local user privileges in the Windows guest operating system, …
|
NVD-CWE-noinfo
|
CVE-2021-21997
|
2024-11-21 14:49 |
2021-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195155
|
9.8 |
CRITICAL
Network
|
accusoft
|
imagegear
|
An improper array index validation vulnerability exists in the TIF IP_planar_raster_unpack functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to an out-of-bounds wr…
|
CWE-129
Improper Validation of Array Index
|
CVE-2021-21833
|
2024-11-21 14:49 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195156
|
9.8 |
CRITICAL
Network
|
accusoft
|
imagegear
|
An out-of-bounds write vulnerability exists in the JPG Handle_JPEG420 functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to memory corruption. An attacker can provi…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21824
|
2024-11-21 14:49 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195157
|
8.8 |
HIGH
Network
|
accusoft
|
imagegear
|
A memory corruption vulnerability exists in the PNG png_palette_process functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to a heap buffer overflow. An attacker ca…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-21808
|
2024-11-21 14:49 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195158
|
6.5 |
MEDIUM
Network
|
gitlab
|
gitlab
|
A denial of service vulnerability in GitLab CE/EE affecting all versions since 11.8 allows an attacker to create a recursive pipeline relationship and exhaust resources.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2021-22181
|
2024-11-21 14:49 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195159
|
9.8 |
CRITICAL
Network
|
gitlab
|
gitlab
|
When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab affecting all versions starting from 10.5 was possible to exploit for an unauthen…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2021-22175
|
2024-11-21 14:49 |
2021-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195160
|
5.4 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored XSS in blob viewer of notebooks.
|
CWE-79
Cross-site Scripting
|
CVE-2021-22220
|
2024-11-21 14:49 |
2021-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
