CVE List - 2021 / October
Showing 201 - 300 of 1707 CVEs for October 2021 (Page 3 of 18)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-35492 | 2021-10-05 | Wowza Streaming Engine through 4.8.11+5 could allow an authenticated, remote... |
| CVE-2021-41286 | 2021-10-05 | Omikron MultiCash Desktop 4.00.008.SP5 relies on a client-side authentication mechanism.... |
| CVE-2021-41114 | 2021-10-05 | HTTP Host Header Injection in Request Handling in Typo3 |
| CVE-2021-41113 | 2021-10-05 | Cross-Site-Request-Forgery in Backend URI Handling in Typo3 |
| CVE-2021-35497 | 2021-10-05 | TIBCO FTL unvalidated SAN in client certificates |
| CVE-2021-39226 | 2021-10-05 | Snapshot authentication bypass in grafana |
| CVE-2021-41116 | 2021-10-05 | Command injection in composer on Windows |
| CVE-2021-41120 | 2021-10-05 | Unauthorized access to Credit card form in sylius/paypal-plugin |
| CVE-2021-3319 | 2021-10-05 | DOS: Incorrect 802154 Frame Validation for Omitted Source / Dest Addresses |
| CVE-2021-3436 | 2021-10-05 | BT: Possible to overwrite an existing bond during keys distribution phase when the identity address of the bond is known |
| CVE-2021-3510 | 2021-10-05 | Zephyr JSON decoder incorrectly decodes array of array |
| CVE-2021-3581 | 2021-10-05 | Buffer Access with Incorrect Length Value in zephyr |
| CVE-2021-3625 | 2021-10-05 | Buffer overflow in Zephyr USB DFU DNLOAD |
| CVE-2021-41124 | 2021-10-05 | Splash authentication credentials potentially leaked to target websites in scrapy-splash |
| CVE-2020-21503 | 2021-10-05 | waimai Super Cms 20150505 has a logic flaw allowing attackers... |
| CVE-2020-21504 | 2021-10-05 | waimai Super Cms 20150505 contains a cross-site scripting (XSS) vulnerability... |
| CVE-2020-21505 | 2021-10-05 | waimai Super Cms 20150505 contains a cross-site scripting (XSS) vulnerability... |
| CVE-2020-21506 | 2021-10-05 | waimai Super Cms 20150505 contains a cross-site scripting (XSS) vulnerability... |
| CVE-2021-33849 | 2021-10-05 | A Cross-Site Scripting (XSS) attack can cause arbitrary code (JavaScript)... |
| CVE-2021-31986 | 2021-10-05 | User controlled parameters related to SMTP notifications are not correctly... |
| CVE-2021-31987 | 2021-10-05 | A user controlled parameter related to SMTP test functionality is... |
| CVE-2021-31988 | 2021-10-05 | A user controlled parameter related to SMTP test functionality is... |
| CVE-2021-41122 | 2021-10-05 | Bounds check missing for decimal args in Vyper |
| CVE-2021-36178 | 2021-10-06 | A insufficiently protected credentials in Fortinet FortiSDNConnector version 1.1.7 and... |
| CVE-2021-36170 | 2021-10-06 | An information disclosure vulnerability [CWE-200] in FortiAnalyzerVM and FortiManagerVM versions... |
| CVE-2020-15941 | 2021-10-06 | A path traversal vulnerability [CWE-22] in FortiClientEMS versions 6.4.1 and... |
| CVE-2021-36175 | 2021-10-06 | An improper neutralization of input vulnerability [CWE-79] in FortiWebManager versions... |
| CVE-2021-24019 | 2021-10-06 | An insufficient session expiration vulnerability [CWE- 613] in FortiClientEMS versions... |
| CVE-2021-24021 | 2021-10-06 | An improper neutralization of input vulnerability [CWE-79] in FortiAnalyzer versions... |
| CVE-2021-3848 | 2021-10-06 | An arbitrary file creation by privilege escalation vulnerability in Trend... |
| CVE-2021-33602 | 2021-10-06 | Denial-of-Service (DoS) Vulnerability |
| CVE-2020-19003 | 2021-10-06 | An issue in Gate One 1.2.0 allows attackers to bypass... |
| CVE-2021-28702 | 2021-10-06 | PCI devices with RMRRs not deassigned correctly Certain PCI devices... |
| CVE-2021-0682 | 2021-10-06 | In sendAccessibilityEvent of NotificationManagerService.java, there is a possible disclosure of... |
| CVE-2021-0688 | 2021-10-06 | In lockNow of PhoneWindowManager.java, there is a possible lock screen... |
| CVE-2021-0595 | 2021-10-06 | In lockAllProfileTasks of RootWindowContainer.java, there is a possible way to... |
| CVE-2021-0686 | 2021-10-06 | In getDefaultSmsPackage of RoleManagerService.java, there is a possible way to... |
| CVE-2021-0692 | 2021-10-06 | In sendBroadcastToInstaller of FirstScreenBroadcast.java, there is a possible activity launch... |
| CVE-2021-0684 | 2021-10-06 | In TouchInputMapper::sync of TouchInputMapper.cpp, there is a possible out of... |
| CVE-2021-0598 | 2021-10-06 | In onCreate of ConfirmConnectActivity.java, there is a possible pairing of... |
| CVE-2021-0644 | 2021-10-06 | In conditionallyRemoveIdentifiers of SubscriptionController.java, there is a possible way to... |
| CVE-2021-0690 | 2021-10-06 | In ih264d_mark_err_slice_skip of ih264d_parse_pslice.c, there is a possible out of... |
| CVE-2021-0695 | 2021-10-06 | In get_sock_stat of xt_qtaguid.c, there is a possible out of... |
| CVE-2021-0693 | 2021-10-06 | In openFile of HeapDumpProvider.java, there is a possible way to... |
| CVE-2021-0683 | 2021-10-06 | In runTraceIpcStop of ActivityManagerShellCommand.java, there is a possible deletion of... |
| CVE-2021-0691 | 2021-10-06 | In the SELinux policy configured in system_app.te, there is a... |
| CVE-2021-0687 | 2021-10-06 | In ellipsize of Layout.java, there is a possible ANR due... |
| CVE-2021-0636 | 2021-10-06 | When extracting the incorrectly formatted avi file, the memory is... |
| CVE-2021-0635 | 2021-10-06 | When extracting the incorrectly formatted flv file, the memory is... |
| CVE-2021-0689 | 2021-10-06 | In RGB_to_BGR1_portable of SkSwizzler_opts.h, there is a possible out of... |
| CVE-2021-0685 | 2021-10-06 | In ParsedIntentInfo of ParsedIntentInfo.java, there is a possible parcel serialization/deserialization... |
| CVE-2021-0681 | 2021-10-06 | In system properties, there is a possible information disclosure due... |
| CVE-2021-0680 | 2021-10-06 | In system properties, there is a possible information disclosure due... |
| CVE-2021-20264 | 2021-10-06 | An insecure modification flaw in the /etc/passwd file was found... |
| CVE-2021-39350 | 2021-10-06 | FV Flowplayer Video Player <= 7.5.0.727 - 7.5.2.727 Reflected Cross-Site Scripting |
| CVE-2021-39351 | 2021-10-06 | WP Bannerize 2.0.0 - 4.0.2 - Authenticated SQL Injection |
| CVE-2021-25467 | 2021-10-06 | Assuming system privilege is gained, possible buffer overflow vulnerabilities in... |
| CVE-2021-25468 | 2021-10-06 | A possible guessing and confirming a byte memory vulnerability in... |
| CVE-2021-25469 | 2021-10-06 | A possible stack-based buffer overflow vulnerability in Widevine trustlet prior... |
| CVE-2021-25470 | 2021-10-06 | An improper caller check logic of SMC call in TEEGRIS... |
| CVE-2021-25471 | 2021-10-06 | A lack of replay attack protection in Security Mode Command... |
| CVE-2021-25472 | 2021-10-06 | An improper access control vulnerability in BluetoothSettingsProvider prior to SMR... |
| CVE-2021-25473 | 2021-10-06 | Assuming a shell privilege is gained, an improper exception handling... |
| CVE-2021-25474 | 2021-10-06 | Assuming a shell privilege is gained, an improper exception handling... |
| CVE-2021-25475 | 2021-10-06 | A possible heap-based buffer overflow vulnerability in DSP kernel driver... |
| CVE-2021-25476 | 2021-10-06 | An information disclosure vulnerability in Widevine TA log prior to... |
| CVE-2021-25477 | 2021-10-06 | An improper error handling in Mediatek RRC Protocol stack prior... |
| CVE-2021-25478 | 2021-10-06 | A possible stack-based buffer overflow vulnerability in Exynos CP Chipset... |
| CVE-2021-25479 | 2021-10-06 | A possible heap-based buffer overflow vulnerability in Exynos CP Chipset... |
| CVE-2021-25480 | 2021-10-06 | A lack of replay attack protection in GUTI REALLOCATION COMMAND... |
| CVE-2021-25481 | 2021-10-06 | An improper error handling in Exynos CP booting driver prior... |
| CVE-2021-25482 | 2021-10-06 | SQL injection vulnerabilities in CMFA framework prior to SMR Oct-2021... |
| CVE-2021-25483 | 2021-10-06 | Lack of boundary checking of a buffer in livfivextractor library... |
| CVE-2021-25484 | 2021-10-06 | Improper authentication in InputManagerService prior to SMR Oct-2021 Release 1... |
| CVE-2021-25485 | 2021-10-06 | Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Oct-2021 Release... |
| CVE-2021-25486 | 2021-10-06 | Exposure of information vulnerability in ipcdump prior to SMR Oct-2021... |
| CVE-2021-25487 | 2021-10-06 | Lack of boundary checking of a buffer in set_skb_priv() of... |
| CVE-2021-29758 | 2021-10-06 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 could... |
| CVE-2021-25488 | 2021-10-06 | Lack of boundary checking of a buffer in recv_data() of... |
| CVE-2021-29760 | 2021-10-06 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 could... |
| CVE-2021-29761 | 2021-10-06 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 could... |
| CVE-2021-29764 | 2021-10-06 | IBM Sterling B2B Integrator 5.2.0.0 through 6.1.1.0 is vulnerable to... |
| CVE-2021-29798 | 2021-10-06 | IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.1.0 is... |
| CVE-2021-25489 | 2021-10-06 | Assuming radio permission is gained, missing input validation in modem... |
| CVE-2021-29836 | 2021-10-06 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0. through 6.1.1.0 is... |
| CVE-2021-29837 | 2021-10-06 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 is... |
| CVE-2021-29855 | 2021-10-06 | IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.1.1.0 is... |
| CVE-2021-29903 | 2021-10-06 | IBM Sterling B2B Integrator Standard Edition 5.2.6.0 through 6.1.1.0 is... |
| CVE-2021-25490 | 2021-10-06 | A keyblob downgrade attack in keymaster prior to SMR Oct-2021... |
| CVE-2021-38925 | 2021-10-06 | IBM Sterling B2B Integrator Standard Edition 5.2.0. 0 through 6.1.1.0... |
| CVE-2021-25491 | 2021-10-06 | A vulnerability in mfc driver prior to SMR Oct-2021 Release... |
| CVE-2021-41121 | 2021-10-06 | Memory corruption in Vyper |
| CVE-2021-25492 | 2021-10-06 | Lack of boundary checking of a buffer in libSPenBase library... |
| CVE-2021-25493 | 2021-10-06 | Lack of boundary checking of a buffer in libSPenBase library... |
| CVE-2021-25494 | 2021-10-06 | A possible buffer overflow vulnerability in libSPenBase library of Samsung... |
| CVE-2021-25495 | 2021-10-06 | A possible heap buffer overflow vulnerability in libSPenBase library of... |
| CVE-2021-25496 | 2021-10-06 | A possible buffer overflow vulnerability in maetd_dec_slice of libSPenBase library... |
| CVE-2021-25497 | 2021-10-06 | A possible buffer overflow vulnerability in maetd_cpy_slice of libSPenBase library... |
| CVE-2021-25498 | 2021-10-06 | A possible buffer overflow vulnerability in maetd_eco_cb_mode of libSPenBase library... |
| CVE-2021-25499 | 2021-10-06 | Intent redirection vulnerability in SamsungAccountSDKSigninActivity of Galaxy Store prior to... |