CVE List - 2021 / February
Showing 1101 - 1200 of 1455 CVEs for February 2021 (Page 12 of 15)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-27328 | 2021-02-19 | Yeastar NeoGate TG400 91.3.0.3 devices are affected by Directory Traversal.... |
| CVE-2021-27214 | 2021-02-19 | A Server-side request forgery (SSRF) vulnerability in the ProductConfig servlet... |
| CVE-2021-27351 | 2021-02-19 | The Terminate Session feature in the Telegram application through 7.2.1... |
| CVE-2021-26713 | 2021-02-19 | A stack-based buffer overflow in res_rtp_asterisk.c in Sangoma Asterisk before... |
| CVE-2020-35499 | 2021-02-19 | A NULL pointer dereference flaw in Linux kernel versions prior... |
| CVE-2021-20587 | 2021-02-19 | Heap-based buffer overflow vulnerability in Mitsubishi Electric FA Engineering Software... |
| CVE-2021-20588 | 2021-02-19 | Improper handling of length parameter inconsistency vulnerability in Mitsubishi Electric... |
| CVE-2021-27509 | 2021-02-19 | In Visualware MyConnection Server before 11.0b build 5382, each published... |
| CVE-2021-3189 | 2021-02-19 | The slashify package 1.0.0 for Node.js allows open-redirect attacks, as... |
| CVE-2020-12668 | 2021-02-19 | Jinjava before 2.5.4 allow access to arbitrary classes by calling... |
| CVE-2020-12873 | 2021-02-19 | An issue was discovered in Alfresco Enterprise Content Management (ECM)... |
| CVE-2020-24392 | 2021-02-19 | In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an... |
| CVE-2020-24393 | 2021-02-19 | TweetStream 2.6.1 uses the library eventmachine in an insecure way... |
| CVE-2020-24617 | 2021-02-19 | Mailtrain through 1.24.1 allows SQL Injection in statsClickedSubscribersByColumn in lib/models/campaigns.js... |
| CVE-2020-27997 | 2021-02-19 | An issue was discovered in SmartStoreNET before 4.1.0. Lack of... |
| CVE-2020-28248 | 2021-02-19 | An integer overflow in the PngImg::InitStorage_() function of png-img before... |
| CVE-2021-26544 | 2021-02-20 | Apache Livy (Incubating) is vulnerable to cross site scripting |
| CVE-2021-27515 | 2021-02-21 | url-parse before 1.5.0 mishandles certain uses of backslash such as... |
| CVE-2021-26716 | 2021-02-21 | Modules/input/Views/schedule.php in Emoncms through 10.2.7 allows XSS via the node... |
| CVE-2021-27514 | 2021-02-21 | EyesOfNetwork 5.3-10 uses an integer of between 8 and 10... |
| CVE-2021-27513 | 2021-02-21 | The module admin_ITSM in EyesOfNetwork 5.3-10 allows remote authenticated users... |
| CVE-2021-27516 | 2021-02-21 | URI.js (aka urijs) before 1.19.6 mishandles certain uses of backslash... |
| CVE-2021-26119 | 2021-02-22 | Smarty before 3.1.39 allows a Sandbox Escape because $smarty.template_object can... |
| CVE-2021-26120 | 2021-02-22 | Smarty before 3.1.39 allows code injection via an unexpected function... |
| CVE-2021-3149 | 2021-02-22 | On Netshield NANO 25 10.2.18 devices, /usr/local/webmin/System/manual_ping.cgi allows OS command... |
| CVE-2021-24115 | 2021-02-22 | In Botan before 2.17.3, constant-time computations are not used for... |
| CVE-2020-35681 | 2021-02-22 | Django Channels 3.x before 3.0.3 allows remote attackers to obtain... |
| CVE-2020-35664 | 2021-02-22 | An issue was discovered in Acronis Cyber Protect before 15... |
| CVE-2020-35556 | 2021-02-22 | An issue was discovered in Acronis Cyber Protect before 15... |
| CVE-2020-35571 | 2021-02-22 | An issue was discovered in MantisBT through 2.24.3. In the... |
| CVE-2020-11147 | 2021-02-22 | Use after free issue in audio modules while removing and... |
| CVE-2020-11163 | 2021-02-22 | Possible buffer overflow while updating ikev2 parameters due to lack... |
| CVE-2020-11170 | 2021-02-22 | Out of bound memory access while playing music playbacks with... |
| CVE-2020-11177 | 2021-02-22 | User can overwrite Security Code NV item without knowing current... |
| CVE-2020-11187 | 2021-02-22 | Possible memory corruption in BSI module due to improper validation... |
| CVE-2020-11194 | 2021-02-22 | Possible out of bound access in TA while processing a... |
| CVE-2020-11195 | 2021-02-22 | Out of bound write and read in TA while processing... |
| CVE-2020-11198 | 2021-02-22 | Key material used for TZ diag buffer encryption and other... |
| CVE-2020-11203 | 2021-02-22 | Stack overflow may occur if GSM/WCDMA broadcast config size received... |
| CVE-2020-11204 | 2021-02-22 | Possible memory corruption and information leakage in sub-system due to... |
| CVE-2020-11223 | 2021-02-22 | Out of bound in camera driver due to lack of... |
| CVE-2020-11253 | 2021-02-22 | Arbitrary memory write issue in video driver while setting the... |
| CVE-2020-11269 | 2021-02-22 | Possible memory corruption while processing EAPOL frames due to lack... |
| CVE-2020-11270 | 2021-02-22 | Possible denial of service due to RTT responder consistently rejects... |
| CVE-2020-11271 | 2021-02-22 | Possible out of bounds while accessing global control elements due... |
| CVE-2020-11272 | 2021-02-22 | Before enqueuing a frame to the PE queue for further... |
| CVE-2020-11275 | 2021-02-22 | Possible buffer over-read while parsing quiet IE in Rx beacon... |
| CVE-2020-11276 | 2021-02-22 | Possible buffer over read while processing P2P IE and NOA... |
| CVE-2020-11277 | 2021-02-22 | Possible race condition during async fastrpc session after sending RPC... |
| CVE-2020-11278 | 2021-02-22 | Possible denial of service while handling host WMI command due... |
| CVE-2020-11280 | 2021-02-22 | Denial of service while processing fine timing measurement request (FTMR)... |
| CVE-2020-11281 | 2021-02-22 | Allowing RTT frames to be linked with non randomized MAC... |
| CVE-2020-11282 | 2021-02-22 | Improper access control when using mmap with the kgsl driver... |
| CVE-2020-11283 | 2021-02-22 | A buffer overflow can occur when playing an MKV clip... |
| CVE-2020-11286 | 2021-02-22 | An Untrusted Pointer Dereference can occur while doing USB control... |
| CVE-2020-11287 | 2021-02-22 | Allowing RTT frames to be linked with non randomized MAC... |
| CVE-2020-11296 | 2021-02-22 | Arithmetic overflow can happen while processing NOA IE due to... |
| CVE-2020-11297 | 2021-02-22 | Denial of service in WLAN module due to improper check... |
| CVE-2020-3664 | 2021-02-22 | Out of bound read access in hypervisor due to an... |
| CVE-2021-3120 | 2021-02-22 | An arbitrary file upload vulnerability in the YITH WooCommerce Gift... |
| CVE-2021-27369 | 2021-02-22 | The Contact page in Monica 2.19.1 allows stored XSS via... |
| CVE-2021-27559 | 2021-02-22 | The Contact page in Monica 2.19.1 allows stored XSS via... |
| CVE-2021-27371 | 2021-02-22 | The Contact page in Monica 2.19.1 allows stored XSS via... |
| CVE-2021-27370 | 2021-02-22 | The Contact page in Monica 2.19.1 allows stored XSS via... |
| CVE-2021-27368 | 2021-02-22 | The Contact page in Monica 2.19.1 allows stored XSS via... |
| CVE-2020-19762 | 2021-02-22 | Automated Logic Corporation (ALC) WebCTRL System 6.5 and prior allows... |
| CVE-2020-21224 | 2021-02-22 | A Remote Code Execution vulnerability has been found in Inspur... |
| CVE-2020-24175 | 2021-02-22 | Buffer overflow in Yz1 0.30 and 0.32, as used in... |
| CVE-2021-27564 | 2021-02-22 | A stored XSS issue exists in Appspace 6.2.4. After a... |
| CVE-2020-22474 | 2021-02-22 | In webERP 4.15, the ManualContents.php file allows users to specify... |
| CVE-2020-22475 | 2021-02-22 | "Tasks" application version before 9.7.3 is affected by insecure permissions.... |
| CVE-2021-27228 | 2021-02-22 | An issue was discovered in Shinobi through ocean version 1.... |
| CVE-2021-27549 | 2021-02-22 | Genymotion Desktop through 3.2.0 leaks the host's clipboard data to... |
| CVE-2021-27279 | 2021-02-22 | MyBB before 1.8.25 allows stored XSS via nested [email] tags... |
| CVE-2021-26725 | 2021-02-22 | Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4 |
| CVE-2021-26724 | 2021-02-22 | Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4 |
| CVE-2020-36232 | 2021-02-22 | The MessageBundleWhiteList class of atlassian-gadgets before version 4.2.37, from version... |
| CVE-2021-21149 | 2021-02-22 | Stack buffer overflow in Data Transfer in Google Chrome on... |
| CVE-2021-21150 | 2021-02-22 | Use after free in Downloads in Google Chrome on Windows... |
| CVE-2021-21151 | 2021-02-22 | Use after free in Payments in Google Chrome prior to... |
| CVE-2021-21152 | 2021-02-22 | Heap buffer overflow in Media in Google Chrome on Linux... |
| CVE-2021-21153 | 2021-02-22 | Stack buffer overflow in GPU Process in Google Chrome on... |
| CVE-2021-21154 | 2021-02-22 | Heap buffer overflow in Tab Strip in Google Chrome prior... |
| CVE-2021-21155 | 2021-02-22 | Heap buffer overflow in Tab Strip in Google Chrome on... |
| CVE-2021-21156 | 2021-02-22 | Heap buffer overflow in V8 in Google Chrome prior to... |
| CVE-2021-21157 | 2021-02-22 | Use after free in Web Sockets in Google Chrome on... |
| CVE-2021-23827 | 2021-02-22 | Keybase Desktop Client before 5.6.0 on Windows and macOS, and... |
| CVE-2021-27189 | 2021-02-22 | The CIRA Canadian Shield app before 4.0.13 for iOS lacks... |
| CVE-2020-27768 | 2021-02-23 | In ImageMagick, there is an outside the range of representable... |
| CVE-2020-35852 | 2021-02-23 | Chatbox is affected by cross-site scripting (XSS). An attacker has... |
| CVE-2021-27568 | 2021-02-23 | An issue was discovered in netplex json-smart-v1 through 2015-10-23 and... |
| CVE-2021-22649 | 2021-02-23 | Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions... |
| CVE-2021-22645 | 2021-02-23 | Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions... |
| CVE-2021-22643 | 2021-02-23 | Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions... |
| CVE-2021-22647 | 2021-02-23 | Luxion KeyShot versions prior to 10.1, Luxion KeyShot Viewer versions... |
| CVE-2020-29075 | 2021-02-23 | PDF Injection BlackHat Talk |
| CVE-2020-27819 | 2021-02-23 | An issue was discovered in libxls before and including 1.6.1... |
| CVE-2020-25690 | 2021-02-23 | An out-of-bounds write flaw was found in FontForge in versions... |
| CVE-2020-13697 | 2021-02-23 | An issue was discovered in RouterNanoHTTPD.java in NanoHTTPD through 2.3.1.... |
| CVE-2020-8902 | 2021-02-23 | SSRF in Rendertron |