|
195821
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A denial of service vulnerability was found in n_tty_receive_char_special in drivers/tty/n_tty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop (…
|
-
|
CVE-2021-20219
|
2024-11-21 14:46 |
2021-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195822
|
8.8 |
HIGH
Network
|
strangerstudios
|
paid_memberships_pro
|
SQL injection vulnerability in the Paid Memberships Pro versions prior to 2.5.6 allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2021-20678
|
2024-11-21 14:46 |
2021-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195823
|
4.3 |
MEDIUM
Network
|
m-system
|
dl8-a_firmware
dl8-b_firmware
dl8-c_firmware
dl8-d_firmware
dl8-e_firmware
|
M-System DL8 series (type A (DL8-A) versions prior to Ver3.0, type B (DL8-B) versions prior to Ver3.0, type C (DL8-C) versions prior to Ver3.0, type D (DL8-D) versions prior to Ver3.0, and type E (DL…
|
CWE-863
Incorrect Authorization
|
CVE-2021-20676
|
2024-11-21 14:46 |
2021-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195824
|
6.5 |
MEDIUM
Network
|
m-system
|
dl8-a_firmware
dl8-b_firmware
dl8-c_firmware
dl8-d_firmware
dl8-e_firmware
|
M-System DL8 series (type A (DL8-A) versions prior to Ver3.0, type B (DL8-B) versions prior to Ver3.0, type C (DL8-C) versions prior to Ver3.0, type D (DL8-D) versions prior to Ver3.0, and type E (DL…
|
NVD-CWE-noinfo
|
CVE-2021-20675
|
2024-11-21 14:46 |
2021-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195825
|
4.3 |
MEDIUM
Network
|
cybozu
|
office
|
Improper access control vulnerability in Custom App of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attackers to bypass access restriction and obtain the date of Custom App via unspecified vec…
|
NVD-CWE-Other
|
CVE-2021-20634
|
2024-11-21 14:46 |
2021-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195826
|
4.3 |
MEDIUM
Network
|
cybozu
|
office
|
Improper access control vulnerability in Cabinet of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attackers to bypass access restriction and obtain the date of Cabinet via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2021-20633
|
2024-11-21 14:46 |
2021-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195827
|
4.3 |
MEDIUM
Network
|
cybozu
|
office
|
Improper access control vulnerability in Bulletin Board of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attackers to bypass access restriction and obtain the data of Bulletin Board via unspeci…
|
NVD-CWE-Other
|
CVE-2021-20632
|
2024-11-21 14:46 |
2021-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195828
|
6.5 |
MEDIUM
Network
|
cybozu
|
office
|
Improper input validation vulnerability in Custom App of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attacker to alter the data of Custom App via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2021-20631
|
2024-11-21 14:46 |
2021-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195829
|
4.3 |
MEDIUM
Network
|
cybozu
|
office
|
Improper access control vulnerability in Phone Messages of Cybozu Office 10.0.0 to 10.8.4 allows authenticated attackers to bypass access restriction and obtain the data of Phone Messages via unspeci…
|
NVD-CWE-Other
|
CVE-2021-20630
|
2024-11-21 14:46 |
2021-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195830
|
6.1 |
MEDIUM
Network
|
cybozu
|
office
|
Cross-site scripting vulnerability in E-mail of Cybozu Office 10.0.0 to 10.8.4 allows remote attackers to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20629
|
2024-11-21 14:46 |
2021-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
