|
194651
|
5.5 |
MEDIUM
Local
|
intel
|
wi-fi_6_ax411_firmware
wi-fi_6_ax211_firmware
wi-fi_6_ax210_firmware
wi-fi_6_ax201_firmware
wi-fi_6_ax200_firmware
wireless-ac_9560_firmware
wireless-ac_9462_firmware
wireless-ac…
|
Improper buffer restrictions in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.120 may allow an authenticated user to potentially enable denia…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2021-26257
|
2024-11-21 14:55 |
2022-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194652
|
7.8 |
HIGH
Local
|
intel
|
killer_control_center
|
Improper access control for the Intel(R) Killer(TM) Control Center software before version 2.4.3337.0 may allow an authorized user to potentially enable escalation of privilege via local access.
|
NVD-CWE-Other
|
CVE-2021-26258
|
2024-11-21 14:55 |
2022-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194653
|
8.1 |
HIGH
Network
|
splunk
|
splunk
|
A potential vulnerability in Splunk Enterprise's implementation of DUO MFA allows for bypassing the MFA verification in Splunk Enterprise versions before 8.1.6. The potential vulnerability impacts Sp…
|
NVD-CWE-noinfo
|
CVE-2021-26253
|
2024-11-21 14:55 |
2022-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194654
|
7.1 |
HIGH
Network
|
kubernetes
|
ingress-nginx
|
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use .metadata.annotations in an Ingress object (in the networking.k8s.io or extensions API …
|
CWE-20
Improper Input Validation
|
CVE-2021-25746
|
2024-11-21 14:55 |
2022-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194655
|
8.1 |
HIGH
Network
|
kubernetes
|
ingress-nginx
|
A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the spec.rules[].http.paths[].path field of an Ingress object (in the networking.k8s.io…
|
CWE-20
Improper Input Validation
|
CVE-2021-25745
|
2024-11-21 14:55 |
2022-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194656
|
8.8 |
HIGH
Network
|
fortinet
|
fortiauthenticator
|
An improper neutralization of special elements used in an OS command vulnerability in the command line interpreter of FortiAuthenticator before 6.3.1 may allow an authenticated attacker to execute un…
|
CWE-78
OS Command
|
CVE-2021-26116
|
2024-11-21 14:55 |
2022-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194657
|
7.5 |
HIGH
Network
|
fortinet
|
fortiwan
|
A use of a one-way hash with a predictable salt vulnerability [CWE-760] in FortiWAN before 4.5.9 may allow an attacker who has previously come in possession of the password file to potentially guess …
|
CWE-916
Use of Password Hash With Insufficient Computational Effort
|
CVE-2021-26113
|
2024-11-21 14:55 |
2022-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194658
|
7.8 |
HIGH
Local
|
fortinet
|
fortimanager
fortianalyzer
fortiportal
|
Multiple OS command injection (CWE-78) vulnerabilities in the command line interface of FortiManager 6.2.7 and below, 6.4.5 and below and all versions of 6.2.x, 6.0.x and 5.6.x, FortiAnalyzer 6.2.7 a…
|
CWE-78
OS Command
|
CVE-2021-26104
|
2024-11-21 14:55 |
2022-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194659
|
9.8 |
CRITICAL
Network
|
fortinet
|
fortiwan
|
Multiple improper neutralization of special elements used in an SQL command vulnerabilities in FortiWAN before 4.5.9 may allow an unauthenticated attacker to execute unauthorized code or commands via…
|
CWE-89
SQL Injection
|
CVE-2021-26114
|
2024-11-21 14:55 |
2022-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194660
|
9.8 |
CRITICAL
Network
|
fortinet
|
fortiwan
|
Multiple stack-based buffer overflow vulnerabilities [CWE-121] both in network daemons and in the command line interpreter of FortiWAN before 4.5.9 may allow an unauthenticated attacker to potentiall…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-26112
|
2024-11-21 14:55 |
2022-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
