|
194801
|
5.5 |
MEDIUM
Local
|
smartfoxserver
|
smartfoxserver
|
An issue was discovered in SmartFoxServer 2.17.0. Cleartext password disclosure can occur via /config/server.xml.
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2021-26550
|
2024-11-21 14:56 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194802
|
5.4 |
MEDIUM
Network
|
smartfoxserver
|
smartfoxserver
|
An XSS issue was discovered in SmartFoxServer 2.17.0. Input passed to the AdminTool console is not properly sanitized before being returned to the user. This can be exploited to execute arbitrary HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2021-26549
|
2024-11-21 14:56 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194803
|
6.5 |
MEDIUM
Adjacent
|
intel
debian
opensuse
|
connman
debian_linux
leap
|
gdhcp in ConnMan before 1.39 could be used by network-adjacent attackers to leak sensitive stack information, allowing further exploitation of bugs in gdhcp.
|
NVD-CWE-noinfo
|
CVE-2021-26676
|
2024-11-21 14:56 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194804
|
8.8 |
HIGH
Adjacent
|
intel
debian
opensuse
|
connman
debian_linux
leap
|
A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-26675
|
2024-11-21 14:56 |
2021-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194805
|
6.5 |
MEDIUM
Network
|
gradle
|
enterprise_test_distribution_agent
test_distribution
maven
|
A directory traversal issue was discovered in Gradle gradle-enterprise-test-distribution-agent before 1.3.2, test-distribution-gradle-plugin before 1.3.2, and gradle-enterprise-maven-extension before…
|
CWE-22
Path Traversal
|
CVE-2021-26719
|
2024-11-21 14:56 |
2021-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194806
|
7.8 |
HIGH
Local
|
hpe
|
baseboard_management_controller
|
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a command injection vulnerability in libifc.so uploadsshkey function.
|
CWE-77
Command Injection
|
CVE-2021-26576
|
2024-11-21 14:56 |
2021-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194807
|
9.1 |
CRITICAL
Network
|
cesanta
|
mongoose
|
The mg_tls_init function in Cesanta Mongoose HTTPS server 7.0 (compiled with OpenSSL support) is vulnerable to remote OOB write attack via connection request after exhausting memory pool.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-26530
|
2024-11-21 14:56 |
2021-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194808
|
9.1 |
CRITICAL
Network
|
cesanta
|
mongoose
|
The mg_tls_init function in Cesanta Mongoose HTTPS server 7.0 and 6.7-6.18 (compiled with mbedTLS support) is vulnerable to remote OOB write attack via connection request after exhausting memory pool.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-26529
|
2024-11-21 14:56 |
2021-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194809
|
9.1 |
CRITICAL
Network
|
cesanta
|
mongoose
|
The mg_http_serve_file function in Cesanta Mongoose HTTP server 7.0 is vulnerable to remote OOB write attack via connection request after exhausting memory pool.
|
CWE-787
Out-of-bounds Write
|
CVE-2021-26528
|
2024-11-21 14:56 |
2021-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194810
|
7.8 |
HIGH
Local
|
hpe
|
baseboard_management_controller
|
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so uploadsshkey function.
|
CWE-120
Classic Buffer Overflow
|
CVE-2021-26577
|
2024-11-21 14:56 |
2021-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
