|
197771
|
9.8 |
CRITICAL
Network
|
nxp
|
mqx
|
NXP MQX Versions 5.1 and prior are vulnerable to integer overflow in mem_alloc, _lwmem_alloc and _partition functions. This unverified memory assignment can lead to arbitrary memory allocation, resul…
|
-
|
CVE-2021-22680
|
2024-11-21 14:50 |
2022-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197772
|
7.3 |
HIGH
Network
|
google
|
oauth_client_library_for_java
|
The vulnerability is that IDToken verifier does not verify if token is properly signed. Signature verification makes sure that the token's payload comes from valid provider, not from someone else. An…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2021-22573
|
2024-11-21 14:50 |
2022-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197773
|
7.8 |
HIGH
Local
|
google
|
fuchsia
|
The Security Team discovered an integer overflow bug that allows an attacker with code execution to issue memory cache invalidation operations on pages that they don’t own, allowing them to control k…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2021-22556
|
2024-11-21 14:50 |
2022-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197774
|
7.8 |
HIGH
Local
|
schneider-electric
|
ecostruxure_process_expert
ecostruxure_control_expert
remoteconnect
|
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal) vulnerability exists that could cause malicious script to be deployed in an unauthorized location and may resul…
|
-
|
CVE-2021-22797
|
2024-11-21 14:50 |
2022-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197775
|
9.8 |
CRITICAL
Network
|
schneider-electric
|
struxureware_data_center_expert
|
A CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote code execution when performed over the network. Affect…
|
-
|
CVE-2021-22795
|
2024-11-21 14:50 |
2022-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197776
|
9.8 |
CRITICAL
Network
|
schneider-electric
|
struxureware_data_center_expert
|
A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code execution. Affected Product: StruxureWare Data Center Expert …
|
-
|
CVE-2021-22794
|
2024-11-21 14:50 |
2022-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197777
|
5.5 |
MEDIUM
Local
|
google
|
data_transfer_project
|
On unix-like systems, the system temporary directory is shared between all users on that system. The root cause is File.createTempFile creates files in the the system temporary directory with world r…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2021-22572
|
2024-11-21 14:50 |
2022-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197778
|
5.5 |
MEDIUM
Local
|
google
|
sa360_webquery_to_bigquery_exporter
|
A local attacker could read files from some other users' SA360 reports stored in the /tmp folder during staging process before the files are loaded in BigQuery. We recommend upgrading to version 1.0.…
|
CWE-276
Incorrect Default Permissions
|
CVE-2021-22571
|
2024-11-21 14:50 |
2022-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197779
|
7.6 |
HIGH
Adjacent
|
schneider-electric
|
ritto_wiser_door
|
A CWE-200: Information Exposure vulnerability exists which could allow a session hijack when the door panel is communicating with the door. Affected Product: Ritto Wiser Door (All versions)
|
NVD-CWE-noinfo
|
CVE-2021-22783
|
2024-11-21 14:50 |
2022-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197780
|
7.5 |
HIGH
Network
|
huawei
|
magic_ui
emui
harmonyos
|
There is a DoS vulnerability in smartphones. Successful exploitation of this vulnerability may affect service availability.
|
NVD-CWE-noinfo
|
CVE-2021-22489
|
2024-11-21 14:50 |
2022-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
