|
195121
|
7.8 |
HIGH
Local
|
mcafee
|
total_protection
|
Arbitrary Process Execution vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and execute arbitrary code bypassing MTP self-defense.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-23874
|
2024-11-21 14:51 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195122
|
6.1 |
MEDIUM
Local
|
mcafee
|
total_protection
|
Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file deletion as the SYSTEM user potentially…
|
CWE-59
Link Following
|
CVE-2021-23873
|
2024-11-21 14:51 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195123
|
4.4 |
MEDIUM
Local
|
mcafee
|
endpoint_security
|
A Null Pointer Dereference vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows a local administrator to cause Windows to crash via a specific syste…
|
CWE-476
NULL Pointer Dereference
|
CVE-2021-23883
|
2024-11-21 14:51 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195124
|
4.4 |
MEDIUM
Local
|
mcafee
|
endpoint_security
|
Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows local administrators to prevent the installation of some ENS files by p…
|
NVD-CWE-Other
|
CVE-2021-23882
|
2024-11-21 14:51 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195125
|
4.4 |
MEDIUM
Local
|
mcafee
|
endpoint_security
|
Improper Access Control in attribute in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows authenticated local administrator user to perform an uninstallation of t…
|
NVD-CWE-Other
|
CVE-2021-23880
|
2024-11-21 14:51 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195126
|
5.0 |
MEDIUM
Local
|
mcafee
|
endpoint_security
|
Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows a local user to view ENS settings and cre…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2021-23878
|
2024-11-21 14:51 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195127
|
6.3 |
MEDIUM
Network
|
fusioncharts
|
apexcharts
|
The package apexcharts before 3.24.0 are vulnerable to Cross-site Scripting (XSS) via lack of sanitization of graph legend fields.
|
CWE-79
Cross-site Scripting
|
CVE-2021-23327
|
2024-11-21 14:51 |
2021-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195128
|
3.3 |
LOW
Local
|
squareup
|
connect_java_software_development_kit
|
This affects all versions of package com.squareup:connect. The method prepareDownloadFilecreates creates a temporary file with the permissions bits of -rw-r--r-- on unix-like systems. On unix-like sy…
|
NVD-CWE-noinfo
|
CVE-2021-23331
|
2024-11-21 14:51 |
2021-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195129
|
8.0 |
HIGH
Network
|
tibco
|
ebx
|
The TIBCO EBX Web Server component of TIBCO Software Inc.'s TIBCO EBX contains a vulnerability that theoretically allows a low privileged attacker with network access to execute a Stored Cross Site S…
|
CWE-79
Cross-site Scripting
|
CVE-2021-23271
|
2024-11-21 14:51 |
2021-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195130
|
9.8 |
CRITICAL
Network
|
bitovi
|
launchpad
|
All versions of package launchpad are vulnerable to Command Injection via stop.
|
CWE-78
OS Command
|
CVE-2021-23330
|
2024-11-21 14:51 |
2021-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
