|
196491
|
7.5 |
HIGH
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
A flaw was found in ImageMagick in versions 7.0.11, where an integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c may trigger undefined behavior via a crafted image file that is submitted by…
|
-
|
CVE-2021-20312
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196492
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero in sRGBTransformImage() in the MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that…
|
-
|
CVE-2021-20311
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196493
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero ConvertXYZToJzazbz() of MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is sub…
|
-
|
CVE-2021-20310
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196494
|
7.5 |
HIGH
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
A flaw was found in ImageMagick in versions before 7.0.11 and before 6.9.12, where a division by zero in WaveImage() of MagickCore/visual-effects.c may trigger undefined behavior via a crafted image …
|
-
|
CVE-2021-20309
|
2024-11-21 14:46 |
2021-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196495
|
6.1 |
MEDIUM
Network
|
ibm
|
cloud_pak_for_security
|
IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intende…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20577
|
2024-11-21 14:46 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196496
|
5.4 |
MEDIUM
Network
|
ibm
|
control_desk
|
IBM Control Desk 7.6.1.2 and 7.6.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality p…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20559
|
2024-11-21 14:46 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196497
|
9.1 |
CRITICAL
Network
|
ibm
|
cloud_pak_for_security
|
IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 could allow a user to obtain sensitive information or perform actions they should not have access to due to incorrect authorization mechanisms. I…
|
CWE-863
Incorrect Authorization
|
CVE-2021-20538
|
2024-11-21 14:46 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196498
|
9.8 |
CRITICAL
Network
|
getdata_project
debian
fedoraproject
|
getdata
debian_linux
fedora
|
A heap memory corruption problem (use after free) can be triggered in libgetdata v0.10.0 when processing maliciously crafted dirfile databases. This degrades the confidentiality, integrity and availa…
|
-
|
CVE-2021-20204
|
2024-11-21 14:46 |
2021-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196499
|
7.8 |
HIGH
Local
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2021-20401
|
2024-11-21 14:46 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196500
|
6.1 |
MEDIUM
Network
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentiall…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20397
|
2024-11-21 14:46 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
