|
199861
|
6.5 |
MEDIUM
Network
|
sap
|
netweaver_application_server_java
|
An unauthorized attacker may be able to entice an administrator to invoke telnet commands of an SAP NetWeaver Application Server for Java that allow the attacker to gain NTLM hashes of a privileged u…
|
NVD-CWE-noinfo
|
CVE-2021-21485
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199862
|
4.9 |
MEDIUM
Network
|
sap
|
solution_manager
|
Under certain conditions SAP Solution Manager, version - 720, allows a high privileged attacker to get access to sensitive information which has a direct serious impact beyond the exploitable compone…
|
NVD-CWE-noinfo
|
CVE-2021-21483
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199863
|
8.3 |
HIGH
Adjacent
|
sap
|
netweaver_master_data_management
|
SAP NetWeaver Master Data Management, versions - 710, 710.750, allows a malicious unauthorized user with access to the MDM Server subnet to find the password using a brute force method. If successful…
|
NVD-CWE-noinfo
|
CVE-2021-21482
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199864
|
8.1 |
HIGH
Network
|
zte
|
zxcloud_irai_firmware
|
A CSRF vulnerability exists in the management page of a ZTE product.The vulnerability is caused because the management page does not fully verify whether the request comes from a trusted user. The at…
|
CWE-352
Origin Validation Error
|
CVE-2021-21731
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199865
|
9.8 |
CRITICAL
Network
|
zte
|
zxhn_h168n_firmware
|
A ZTE product is impacted by improper access control vulnerability. The attacker could exploit this vulnerability to access CLI by brute force attacks.This affects: ZXHN H168N V3.5.0_TY.T6
|
NVD-CWE-Other
|
CVE-2021-21730
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199866
|
6.5 |
MEDIUM
Network
|
zte
|
zxhn_h168n_firmware
zxhn_h108n_firmware
|
Some ZTE products have CSRF vulnerability. Because some pages lack CSRF random value verification, attackers could perform illegal authorization operations by constructing messages.This affects: ZXHN…
|
CWE-352
CWE-330
Origin Validation Error
Use of Insufficiently Random Values
|
CVE-2021-21729
|
2024-11-21 14:48 |
2021-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199867
|
6.5 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 Synaps…
|
CWE-20
Improper Input Validation
|
CVE-2021-21393
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199868
|
6.3 |
MEDIUM
Network
|
matrix
fedoraproject
|
synapse
fedora
|
Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 reques…
|
CWE-601
Open Redirect
|
CVE-2021-21392
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199869
|
7.8 |
HIGH
Local
|
dell
|
peripheral_manager
|
Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with pr…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2021-21545
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199870
|
9.8 |
CRITICAL
Network
|
dell
|
storage_resource_manager
storage_monitoring_and_reporting
|
Dell SRM versions prior to 4.5.0.1 and Dell SMR versions prior to 4.5.0.1 contain an Untrusted Deserialization Vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerabil…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2021-21524
|
2024-11-21 14:48 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
