|
196901
|
4.9 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab affecting all versions starting from 11.6. Pull mirror credentials are exposed that allows other maintainers to be able to view the credentials in plain-text,
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2021-22206
|
2024-11-21 14:49 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196902
|
4.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7. GitLab Dependency Proxy, under certain circumstances, can impersonate a user resulting in possibly incorrect ac…
|
CWE-863
Incorrect Authorization
|
CVE-2021-22211
|
2024-11-21 14:49 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196903
|
7.5 |
HIGH
Network
|
huawei
|
cloudengine_12800_firmware
cloudengine_5800_firmware
cloudengine_6800_firmware
cloudengine_7800_firmware
|
There is a pointer double free vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. When a function is called, the same memory pointer is copi…
|
CWE-415
Double Free
|
CVE-2021-22332
|
2024-11-21 14:49 |
2021-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196904
|
6.5 |
MEDIUM
Adjacent
|
huawei
|
p30_firmware
|
There is an out of bounds write vulnerability in Huawei Smartphone HUAWEI P30 versions 9.1.0.131(C00E130R1P21) when processing a message. An unauthenticated attacker can exploit this vulnerability by…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-22330
|
2024-11-21 14:49 |
2021-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196905
|
7.5 |
HIGH
Network
|
huawei
|
p30_firmware
|
There is a JavaScript injection vulnerability in certain Huawei smartphones. A module does not verify some inputs sufficiently. Attackers can exploit this vulnerability by sending a malicious applica…
|
CWE-74
Injection
|
CVE-2021-22331
|
2024-11-21 14:49 |
2021-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196906
|
6.5 |
MEDIUM
Network
|
huawei
|
p30_firmware
|
There is an arbitrary memory write vulnerability in Huawei smart phone when processing file parsing. Due to insufficient validation of the input files, successful exploit could cause certain service …
|
CWE-787
Out-of-bounds Write
|
CVE-2021-22327
|
2024-11-21 14:49 |
2021-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196907
|
6.5 |
MEDIUM
Network
|
wireshark
fedoraproject
oracle
debian
|
wireshark
fedora
zfs_storage_appliance_kit
debian_linux
|
Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12 allows denial of service via packet injection or crafted capture file
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2021-22207
|
2024-11-21 14:49 |
2021-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196908
|
10.0 |
CRITICAL
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote com…
|
CWE-94
Code Injection
|
CVE-2021-22205
|
2024-11-21 14:49 |
2021-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196909
|
7.8 |
HIGH
Local
|
exiftool_project
debian
fedoraproject
|
exiftool
debian_linux
fedora
|
Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image
|
CWE-94
Code Injection
|
CVE-2021-22204
|
2024-11-21 14:49 |
2021-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196910
|
5.4 |
MEDIUM
Network
|
gitlab
|
gitlab
|
An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used.
|
CWE-79
Cross-site Scripting
|
CVE-2021-22199
|
2024-11-21 14:49 |
2021-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
