|
196291
|
4.8 |
MEDIUM
Network
|
racom
|
m\!dge_firmware
|
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the error handling functionality of web pages.
|
CWE-79
Cross-site Scripting
|
CVE-2021-20068
|
2024-11-21 14:45 |
2021-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196292
|
5.3 |
MEDIUM
Network
|
racom
|
m\!dge_firmware
|
Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2021-20067
|
2024-11-21 14:45 |
2021-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196293
|
5.6 |
MEDIUM
Network
|
jsdom_project
|
jsdom
|
JSDom improperly allows the loading of local resources, which allows for local files to be manipulated by a malicious web page when script execution is enabled.
|
NVD-CWE-noinfo
|
CVE-2021-20066
|
2024-11-21 14:45 |
2021-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196294
|
9.8 |
CRITICAL
Network
|
sonicwall
|
sma_100_firmware
sma_200_firmware
sma_210_firmware
sma_400_firmware
sma_410_firmware
sma_500v
|
A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. T…
|
CWE-89
SQL Injection
|
CVE-2021-20016
|
2024-11-21 14:45 |
2021-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196295
|
5.0 |
MEDIUM
Local
|
oracle
|
zfs_storage_appliance
hyperion_infrastructure_technology
enterprise_manager_ops_center
|
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: RAS subsystems). The supported version that is affected is 8.8. Difficult to exploit vulnerability allows h…
|
NVD-CWE-noinfo
|
CVE-2021-1999
|
2024-11-21 14:45 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196296
|
3.8 |
LOW
Network
|
oracle
fedoraproject
netapp
|
mysql
fedora
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager
|
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privi…
|
NVD-CWE-noinfo
|
CVE-2021-1998
|
2024-11-21 14:45 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196297
|
8.1 |
HIGH
Network
|
oracle
|
hospitality_reporting_and_analytics
|
Vulnerability in the Oracle Hospitality Reporting and Analytics product of Oracle Food and Beverage Applications (component: Report). The supported version that is affected is 9.1.0. Easily exploitab…
|
NVD-CWE-noinfo
|
CVE-2021-1997
|
2024-11-21 14:45 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196298
|
2.4 |
LOW
Network
|
oracle
|
weblogic_server
hyperion_infrastructure_technology
agile_engineering_data_management
siebel_ui_framework
|
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulne…
|
NVD-CWE-noinfo
|
CVE-2021-1996
|
2024-11-21 14:45 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196299
|
6.5 |
MEDIUM
Network
|
oracle
|
weblogic_server
|
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulne…
|
NVD-CWE-noinfo
|
CVE-2021-1995
|
2024-11-21 14:45 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196300
|
9.8 |
CRITICAL
Network
|
oracle
|
weblogic_server
enterprise_repository
|
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulne…
|
NVD-CWE-noinfo
|
CVE-2021-1994
|
2024-11-21 14:45 |
2021-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
