|
195331
|
6.5 |
MEDIUM
Network
|
nodered
|
node-red
|
Node-Red is a low-code programming for event-driven applications built using nodejs. Node-RED 1.2.7 and earlier contains a Prototype Pollution vulnerability in the admin API. A badly formed request c…
|
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
|
CVE-2021-21297
|
2024-11-21 14:47 |
2021-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195332
|
7.8 |
HIGH
Local
|
adobe
|
bridge
|
Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bounds write vulnerability when parsing TTF files that could result in arbitrary code execution in the context of the current user. Ex…
|
-
|
CVE-2021-21066
|
2024-11-21 14:47 |
2021-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195333
|
7.8 |
HIGH
Local
|
adobe
|
bridge
|
Adobe Bridge version 11.0 (and earlier) is affected by an out-of-bounds write vulnerability when parsing TTF files that could result in arbitrary code execution in the context of the current user. Ex…
|
-
|
CVE-2021-21065
|
2024-11-21 14:47 |
2021-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195334
|
4.9 |
MEDIUM
Network
|
magento
|
upward_php
upward_connector
|
Magento UPWARD-php version 1.1.4 (and earlier) is affected by a Path traversal vulnerability in Magento UPWARD Connector version 1.1.2 (and earlier) due to the upload feature. An attacker could poten…
|
-
|
CVE-2021-21064
|
2024-11-21 14:47 |
2021-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195335
|
8.8 |
HIGH
Network
|
microsoft
fedoraproject
google
|
edge
edge_chromium
fedora
chrome
|
Use after free in Web Sockets in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-416
Use After Free
|
CVE-2021-21157
|
2024-11-21 14:47 |
2021-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195336
|
8.8 |
HIGH
Network
|
google
fedoraproject
|
chrome
fedora
|
Heap buffer overflow in V8 in Google Chrome prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted script.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21156
|
2024-11-21 14:47 |
2021-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195337
|
9.6 |
CRITICAL
Network
|
google
fedoraproject
|
chrome
fedora
|
Heap buffer overflow in Tab Strip in Google Chrome on Windows prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a c…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21155
|
2024-11-21 14:47 |
2021-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195338
|
9.6 |
CRITICAL
Network
|
google
fedoraproject
|
chrome
fedora
|
Heap buffer overflow in Tab Strip in Google Chrome prior to 88.0.4324.182 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21154
|
2024-11-21 14:47 |
2021-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195339
|
8.8 |
HIGH
Network
|
google
fedoraproject
|
chrome
fedora
|
Stack buffer overflow in GPU Process in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21153
|
2024-11-21 14:47 |
2021-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195340
|
8.8 |
HIGH
Network
|
google
fedoraproject
|
chrome
fedora
|
Heap buffer overflow in Media in Google Chrome on Linux prior to 88.0.4324.182 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21152
|
2024-11-21 14:47 |
2021-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
