CVE List - 2021 / February
Showing 1201 - 1300 of 1455 CVEs for February 2021 (Page 13 of 15)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-14359 | 2021-02-23 | A vulnerability was found in all versions of Keycloak Gatekeeper,... |
| CVE-2021-3252 | 2021-02-23 | KACO New Energy XP100U Up to XP-JAVA 2.0 is affected... |
| CVE-2021-27550 | 2021-02-23 | Polaris Office v9.102.66 is affected by a divide-by-zero error in... |
| CVE-2020-28429 | 2021-02-23 | Command Injection |
| CVE-2020-4953 | 2021-02-23 | IBM Planning Analytics 2.0 could allow a remote authenticated attacker... |
| CVE-2021-25630 | 2021-02-23 | "loolforkit" is a privileged program that is supposed to be... |
| CVE-2020-7847 | 2021-02-23 | The ipTIME NAS product allows an arbitrary file upload vulnerability... |
| CVE-2021-22113 | 2021-02-23 | Applications using the “Sensitive Headers” functionality in Spring Cloud Netflix... |
| CVE-2020-25161 | 2021-02-23 | The WADashboard component of WebAccess/SCADA Versions 9.0 and prior may... |
| CVE-2020-16243 | 2021-02-23 | Multiple buffer overflow vulnerabilities exist when LeviStudioU (Version 2019-09-21 and... |
| CVE-2021-20230 | 2021-02-23 | A flaw was found in stunnel before 5.57, where it... |
| CVE-2021-20226 | 2021-02-23 | A use-after-free flaw was found in the io_uring in Linux... |
| CVE-2020-26609 | 2021-02-23 | fastadmin V1.0.0.20200506_beta contains a cross-site scripting (XSS) vulnerability which may... |
| CVE-2021-26685 | 2021-02-23 | A remote authenticated SQL Injection vulnerabilitiy was discovered in Aruba... |
| CVE-2021-27579 | 2021-02-23 | Snow Inventory Agent through 6.7.0 on Windows uses CPUID to... |
| CVE-2021-26686 | 2021-02-23 | A remote authenticated SQL Injection vulnerabilitiy was discovered in Aruba... |
| CVE-2021-26683 | 2021-02-23 | A remote authenticated command injection vulnerability was discovered in Aruba... |
| CVE-2021-26681 | 2021-02-23 | A remote authenticated command Injection vulnerability was discovered in Aruba... |
| CVE-2021-26682 | 2021-02-23 | A remote reflected cross-site scripting (XSS) vulnerability was discovered in... |
| CVE-2021-20220 | 2021-02-23 | A flaw was found in Undertow. A regression in the... |
| CVE-2021-26684 | 2021-02-23 | A remote authenticated command injection vulnerability was discovered in Aruba... |
| CVE-2021-20229 | 2021-02-23 | A flaw was found in PostgreSQL in versions before 13.2.... |
| CVE-2021-26926 | 2021-02-23 | A flaw was found in jasper before 2.0.25. An out... |
| CVE-2021-20198 | 2021-02-23 | A flaw was found in the OpenShift Installer before version... |
| CVE-2021-22651 | 2021-02-23 | When loading a specially crafted file, Luxion KeyShot versions prior... |
| CVE-2021-26678 | 2021-02-23 | A remote unauthenticated stored cross-site scripting (XSS) vulnerability was discovered... |
| CVE-2021-27582 | 2021-02-23 | org/mitre/oauth2/web/OAuthConfirmationController.java in the OpenID Connect server implementation for MITREid Connect... |
| CVE-2021-26680 | 2021-02-23 | A remote authenticated command injection vulnerability was discovered in Aruba... |
| CVE-2021-26679 | 2021-02-23 | A remote authenticated command injection vulnerability was discovered in Aruba... |
| CVE-2021-26677 | 2021-02-23 | A local authenticated escalation of privilege vulnerability was discovered in... |
| CVE-2020-7120 | 2021-02-23 | A local authenticated buffer overflow vulnerability was discovered in Aruba... |
| CVE-2020-28587 | 2021-02-23 | A specially crafted document can cause the document parser to... |
| CVE-2021-22882 | 2021-02-23 | UniFi Protect before v1.17.1 allows an attacker to use spoofed... |
| CVE-2020-8297 | 2021-02-23 | Nextcloud Deck before 1.0.2 suffers from an insecure direct object... |
| CVE-2020-27782 | 2021-02-23 | A flaw was found in the Undertow AJP connector. Malicious... |
| CVE-2021-20247 | 2021-02-23 | A flaw was found in mbsync before v1.3.5 and v1.4.1.... |
| CVE-2021-22112 | 2021-02-23 | Spring Security 5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE,... |
| CVE-2021-27583 | 2021-02-23 | In Directus 8.x through 8.8.1, an attacker can discover whether... |
| CVE-2021-26593 | 2021-02-23 | In Directus 8.x through 8.8.1, an attacker can see all... |
| CVE-2021-26594 | 2021-02-23 | In Directus 8.x through 8.8.1, an attacker can switch to... |
| CVE-2021-26595 | 2021-02-23 | In Directus 8.x through 8.8.1, an attacker can learn sensitive... |
| CVE-2021-26927 | 2021-02-23 | A flaw was found in jasper before 2.0.25. A null... |
| CVE-2021-3405 | 2021-02-23 | A flaw was found in libebml before 1.4.2. A heap... |
| CVE-2021-20182 | 2021-02-23 | A privilege escalation flaw was found in openshift4/ose-docker-builder. The build... |
| CVE-2021-3407 | 2021-02-23 | A flaw was found in mupdf 1.18.0. Double free of... |
| CVE-2021-3410 | 2021-02-23 | A flaw was found in libcaca v0.99.beta19. A buffer overflow... |
| CVE-2021-20252 | 2021-02-23 | A flaw was found in Red Hat 3scale API Management... |
| CVE-2021-20256 | 2021-02-23 | A flaw was found in Red Hat Satellite. The BMC... |
| CVE-2021-20194 | 2021-02-23 | There is a vulnerability in the linux kernel versions higher... |
| CVE-2021-21323 | 2021-02-23 | Regression in DNS leakage from Tor windows |
| CVE-2020-11987 | 2021-02-24 | Apache Batik 1.13 is vulnerable to server-side request forgery, caused... |
| CVE-2021-27645 | 2021-02-24 | The nameserver caching daemon (nscd) in the GNU C Library... |
| CVE-2021-20656 | 2021-02-24 | Exposure of information through directory listing in SolarView Compact SV-CPT-MC310... |
| CVE-2021-20657 | 2021-02-24 | Improper access control vulnerability in SolarView Compact SV-CPT-MC310 prior to... |
| CVE-2021-20658 | 2021-02-24 | SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to... |
| CVE-2021-20659 | 2021-02-24 | SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker... |
| CVE-2021-20660 | 2021-02-24 | Cross-site scripting vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5... |
| CVE-2021-20661 | 2021-02-24 | Directory traversal vulnerability in SolarView Compact SV-CPT-MC310 prior to Ver.6.5... |
| CVE-2021-20662 | 2021-02-24 | Missing authentication for critical function in SolarView Compact SV-CPT-MC310 prior... |
| CVE-2020-12702 | 2021-02-24 | Weak encryption in the Quick Pairing mode in the eWeLink... |
| CVE-2021-3355 | 2021-02-24 | A stored-self XSS exists in LightCMS v1.3.4, allowing an attacker... |
| CVE-2021-21616 | 2021-02-24 | Jenkins Active Choices Plugin 2.5.2 and earlier does not escape... |
| CVE-2021-21617 | 2021-02-24 | A cross-site request forgery (CSRF) vulnerability in Jenkins Configuration Slicing... |
| CVE-2021-21618 | 2021-02-24 | Jenkins Repository Connector Plugin 2.0.2 and earlier does not escape... |
| CVE-2021-21619 | 2021-02-24 | Jenkins Claim Plugin 2.18.1 and earlier does not escape the... |
| CVE-2021-21620 | 2021-02-24 | A cross-site request forgery (CSRF) vulnerability in Jenkins Claim Plugin... |
| CVE-2021-21621 | 2021-02-24 | Jenkins Support Core Plugin 2.72 and earlier provides the serialized... |
| CVE-2021-21622 | 2021-02-24 | Jenkins Artifact Repository Parameter Plugin 1.0.0 and earlier does not... |
| CVE-2020-7846 | 2021-02-24 | Helpcom before v10.0 contains a file download and execution vulnerability... |
| CVE-2020-28599 | 2021-02-24 | A stack-based buffer overflow vulnerability exists in the import_stl.cc:import_stl() functionality... |
| CVE-2021-22667 | 2021-02-24 | BB-ESWGP506-2SFP-T versions 1.01.09 and prior is vulnerable due to the... |
| CVE-2020-7836 | 2021-02-24 | VOICEYE WSActiveBridgeES versions prior to 2.1.0.3 contains a stack-based buffer... |
| CVE-2020-27224 | 2021-02-24 | In Eclipse Theia versions up to and including 1.2.0, the... |
| CVE-2021-21973 | 2021-02-24 | The vSphere Client (HTML5) contains an SSRF (Server Side Request... |
| CVE-2021-21972 | 2021-02-24 | The vSphere Client (HTML5) contains a remote code execution vulnerability... |
| CVE-2021-21974 | 2021-02-24 | OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before... |
| CVE-2020-11988 | 2021-02-24 | Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side... |
| CVE-2020-4931 | 2021-02-24 | IBM MQ 9.1 LTS, 9.2 LTS, and 9.1 CD AMQP... |
| CVE-2021-1227 | 2021-02-24 | Cisco NX-OS Software NX-API Cross-Site Request Forgery Vulnerability |
| CVE-2021-1229 | 2021-02-24 | Cisco NX-OS Software ICMP Version 6 Memory Leak Denial of Service Vulnerability |
| CVE-2021-1228 | 2021-02-24 | Cisco Nexus 9000 Series Fabric Switches ACI Mode Fabric Infrastructure VLAN Unauthorized Access Vulnerability |
| CVE-2021-1230 | 2021-02-24 | Cisco Nexus 9000 Series Fabric Switches ACI Mode BGP Route Installation Denial of Service Vulnerability |
| CVE-2021-1231 | 2021-02-24 | Cisco Nexus 9000 Series Fabric Switches ACI Mode Link Layer Discovery Protocol Port Denial of Service Vulnerability |
| CVE-2021-1361 | 2021-02-24 | Cisco NX-OS Software Unauthenticated Arbitrary File Actions Vulnerability |
| CVE-2021-1367 | 2021-02-24 | Cisco NX-OS Software Protocol Independent Multicast Denial of Service Vulnerability |
| CVE-2021-1368 | 2021-02-24 | Cisco FXOS and NX-OS Software Unidirectional Link Detection Denial of Service and Arbitrary Code Execution Vulnerability |
| CVE-2021-1387 | 2021-02-24 | Cisco NX-OS Software IPv6 Netstack Denial of Service Vulnerability |
| CVE-2021-1388 | 2021-02-24 | Cisco ACI Multi-Site Orchestrator Application Services Engine Deployment Authentication Bypass Vulnerability |
| CVE-2021-1393 | 2021-02-24 | Cisco Application Services Engine Unauthorized Access Vulnerabilities |
| CVE-2021-1396 | 2021-02-24 | Cisco Application Services Engine Unauthorized Access Vulnerabilities |
| CVE-2021-1450 | 2021-02-24 | Cisco AnyConnect Secure Mobility Client Denial of Service Vulnerability |
| CVE-2021-27670 | 2021-02-25 | Appspace 6.2.4 allows SSRF via the api/v1/core/proxy/jsonprequest url parameter. |
| CVE-2021-27671 | 2021-02-25 | An issue was discovered in the comrak crate before 0.9.1... |
| CVE-2020-36254 | 2021-02-25 | scp.c in Dropbear before 2020.79 mishandles the filename of .... |
| CVE-2020-8032 | 2021-02-25 | Local privilege escalation to root due to insecure tmp file usage |
| CVE-2021-21064 | 2021-02-25 | Magento UPWARD-php Path traversal vulnerability via UPWARD Connector |
| CVE-2021-21065 | 2021-02-25 | Adobe Bridge Font Parsing Out-Of-Bounds Write Arbitrary Code Execution Vulnerability |
| CVE-2021-21066 | 2021-02-25 | Adobe Bridge Font Parsing Out-Of-Bounds Write Arbitrary Code Execution Vulnerability |
| CVE-2021-3273 | 2021-02-25 | Nagios XI below 5.7 is affected by code injection in... |
| CVE-2021-3124 | 2021-02-25 | Stored cross-site scripting (XSS) in form field in robust.systems product... |