|
199271
|
6.1 |
MEDIUM
Network
|
ibm
|
cloud_pak_for_security
|
IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intende…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20577
|
2024-11-21 14:46 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199272
|
5.4 |
MEDIUM
Network
|
ibm
|
control_desk
|
IBM Control Desk 7.6.1.2 and 7.6.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality p…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20559
|
2024-11-21 14:46 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199273
|
9.1 |
CRITICAL
Network
|
ibm
|
cloud_pak_for_security
|
IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 could allow a user to obtain sensitive information or perform actions they should not have access to due to incorrect authorization mechanisms. I…
|
CWE-863
Incorrect Authorization
|
CVE-2021-20538
|
2024-11-21 14:46 |
2021-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199274
|
9.8 |
CRITICAL
Network
|
getdata_project
debian
fedoraproject
|
getdata
debian_linux
fedora
|
A heap memory corruption problem (use after free) can be triggered in libgetdata v0.10.0 when processing maliciously crafted dirfile databases. This degrades the confidentiality, integrity and availa…
|
-
|
CVE-2021-20204
|
2024-11-21 14:46 |
2021-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199275
|
7.8 |
HIGH
Local
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar SIEM 7.3 and 7.4 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2021-20401
|
2024-11-21 14:46 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199276
|
6.1 |
MEDIUM
Network
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentiall…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20397
|
2024-11-21 14:46 |
2021-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199277
|
6.8 |
MEDIUM
Network
|
samba
fedoraproject
redhat
debian
|
samba
fedora
enterprise_linux
debian_linux
|
A flaw was found in samba. The Samba smbd file server must map Windows group identities (SIDs) into unix group ids (gids). The code that performs this had a flaw that could allow it to read data beyo…
|
-
|
CVE-2021-20254
|
2024-11-21 14:46 |
2021-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199278
|
6.7 |
MEDIUM
Local
|
ibm
|
informix_dynamic_server
|
IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-20515
|
2024-11-21 14:46 |
2021-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199279
|
4.9 |
MEDIUM
Network
|
rpm
fedoraproject
|
rpm
fedora
|
A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system …
|
-
|
CVE-2021-20266
|
2024-11-21 14:46 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199280
|
6.5 |
MEDIUM
Network
|
mongodb
|
mongodb
|
A user authorized to performing a specific type of find query may trigger a denial of service. This issue affects MongoDB Server v4.4 versions prior to 4.4.4.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-20326
|
2024-11-21 14:46 |
2021-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
