CVE List - 2021 / March
Showing 1 - 100 of 1447 CVEs for March 2021 (Page 1 of 15)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-27225 | 2021-03-01 | In Dataiku DSS before 8.0.6, insufficient access control in the... |
| CVE-2021-25122 | 2021-03-01 | Apache Tomcat h2c request mix-up |
| CVE-2021-25329 | 2021-03-01 | Incomplete fix for CVE-2020-9484 |
| CVE-2021-25829 | 2021-03-01 | An improper binary stream data handling issue was found in... |
| CVE-2021-25830 | 2021-03-01 | A file extension handling issue was found in [core] module... |
| CVE-2021-25831 | 2021-03-01 | A file extension handling issue was found in [core] module... |
| CVE-2021-25832 | 2021-03-01 | A heap buffer overflow vulnerability inside of BMP image processing... |
| CVE-2021-25833 | 2021-03-01 | A file extension handling issue was found in [server] module... |
| CVE-2020-9479 | 2021-03-01 | unzip directory traversal |
| CVE-2020-7929 | 2021-03-01 | Specially crafted regex query can cause DoS |
| CVE-2018-25004 | 2021-03-01 | Invariant failure when explaining a find with a UUID |
| CVE-2020-36240 | 2021-03-01 | The ResourceDownloadRewriteRule class in Crowd before version 4.0.4, and from... |
| CVE-2021-25914 | 2021-03-01 | Prototype pollution vulnerability in 'object-collider' versions 1.0.0 through 1.0.3 allows... |
| CVE-2021-22114 | 2021-03-01 | Addresses partial fix in CVE-2018-1263. Spring-integration-zip, versions prior to 1.0.4,... |
| CVE-2021-27318 | 2021-03-01 | Cross Site Scripting (XSS) vulnerability in contactus.php in Doctor Appointment... |
| CVE-2021-27317 | 2021-03-01 | Cross Site Scripting (XSS) vulnerability in contactus.php in Doctor Appointment... |
| CVE-2021-3332 | 2021-03-01 | WPS Hide Login 1.6.1 allows remote attackers to bypass a... |
| CVE-2021-21515 | 2021-03-01 | Dell EMC SourceOne, versions 7.2SP10 and prior, contain a Stored... |
| CVE-2021-21517 | 2021-03-01 | SRS Policy Manager 6.X is affected by an XML External... |
| CVE-2021-26702 | 2021-03-01 | EPrints 3.4.2 exposes a reflected XSS opportunity in the dataset... |
| CVE-2021-26476 | 2021-03-01 | EPrints 3.4.2 allows remote attackers to execute OS commands via... |
| CVE-2021-26475 | 2021-03-01 | EPrints 3.4.2 exposes a reflected XSS opportunity in the via... |
| CVE-2021-3342 | 2021-03-01 | EPrints 3.4.2 allows remote attackers to read arbitrary files and... |
| CVE-2021-26703 | 2021-03-01 | EPrints 3.4.2 allows remote attackers to read arbitrary files and... |
| CVE-2021-26704 | 2021-03-01 | EPrints 3.4.2 allows remote attackers to execute arbitrary commands via... |
| CVE-2021-27876 | 2021-03-01 | An issue was discovered in Veritas Backup Exec before 21.2.... |
| CVE-2021-27878 | 2021-03-01 | An issue was discovered in Veritas Backup Exec before 21.2.... |
| CVE-2021-27877 | 2021-03-01 | An issue was discovered in Veritas Backup Exec before 21.2.... |
| CVE-2021-27884 | 2021-03-01 | Weak JSON Web Token (JWT) signing secret generation in YMFE... |
| CVE-2021-27886 | 2021-03-01 | rakibtg Docker Dashboard before 2021-02-28 allows command injection in backend/utilities/terminal.js... |
| CVE-2021-27888 | 2021-03-02 | ZendTo before 6.06-4 Beta allows XSS during the display of... |
| CVE-2021-27804 | 2021-03-02 | JPEG XL (aka jpeg-xl) through 0.3.2 allows writable memory corruption. |
| CVE-2021-25306 | 2021-03-02 | A buffer overflow vulnerability in the AT command interface of... |
| CVE-2021-25309 | 2021-03-02 | The telnet administrator service running on port 650 on Gigaset... |
| CVE-2021-27731 | 2021-03-02 | Accellion FTA 9_12_432 and earlier is affected by stored XSS... |
| CVE-2021-27730 | 2021-03-02 | Accellion FTA 9_12_432 and earlier is affected by argument injection... |
| CVE-2021-21320 | 2021-03-02 | User content sandbox can be confused into opening arbitrary documents |
| CVE-2021-21322 | 2021-03-02 | Prefix escape |
| CVE-2021-21321 | 2021-03-02 | Prefix escape |
| CVE-2021-27901 | 2021-03-02 | An issue was discovered on LG mobile devices with Android... |
| CVE-2021-27904 | 2021-03-02 | An issue was discovered in app/Model/SharingGroupServer.php in MISP 2.4.139. In... |
| CVE-2020-1936 | 2021-03-02 | Stored XSS in Apache Ambari |
| CVE-2020-25902 | 2021-03-02 | Blackboard Collaborate Ultra 20.02 is affected by a cross-site scripting... |
| CVE-2021-21513 | 2021-03-02 | Dell EMC OpenManage Server Administrator (OMSA) version 9.5 Microsoft Windows... |
| CVE-2021-21514 | 2021-03-02 | Dell EMC OpenManage Server Administrator (OMSA) versions 9.5 and prior... |
| CVE-2020-23518 | 2021-03-02 | Cross Site Scripting (XSS) vulnerability in UltimateKode Neo Billing -... |
| CVE-2020-4719 | 2021-03-02 | The IBM Cloud APM 8.1.4 server will issue a DNS... |
| CVE-2020-4725 | 2021-03-02 | IBM Monitoring (IBM Cloud APM 8.1.4 ) could allow an... |
| CVE-2020-4726 | 2021-03-02 | The IBM Application Performance Monitoring UI (IBM Cloud APM 8.1.4)... |
| CVE-2021-3384 | 2021-03-02 | A vulnerability in Stormshield Network Security could allow an attacker... |
| CVE-2021-25330 | 2021-03-02 | Calling of non-existent provider in MobileWips application prior to SMR... |
| CVE-2021-22296 | 2021-03-02 | A component of HarmonyOS 2.0 has a DoS vulnerability. Local... |
| CVE-2020-28657 | 2021-03-02 | In bPanel 2.0, the administrative ajax endpoints (aka ajax/aj_*.php) are... |
| CVE-2021-22294 | 2021-03-02 | A component API of the HarmonyOS 2.0 has a permission... |
| CVE-2021-22187 | 2021-03-02 | An issue has been discovered in GitLab affecting all versions... |
| CVE-2021-27885 | 2021-03-02 | usersettings.php in e107 through 2.3.0 lacks a certain e_TOKEN protection... |
| CVE-2021-21255 | 2021-03-02 | entities switch IDOR |
| CVE-2021-21258 | 2021-03-02 | XSS injection in ajax/kanban |
| CVE-2020-12527 | 2021-03-02 | Improper Access Validation in products of MB connect line and Helmholz |
| CVE-2020-12528 | 2021-03-02 | An issue was discovered in MB connect line mymbCONNECT24 and... |
| CVE-2020-12529 | 2021-03-02 | An issue was discovered in MB connect line mymbCONNECT24 and... |
| CVE-2020-12530 | 2021-03-02 | An issue was discovered in MB connect line mymbCONNECT24 and... |
| CVE-2021-26412 | 2021-03-02 | Microsoft Exchange Server Remote Code Execution Vulnerability |
| CVE-2021-26854 | 2021-03-02 | Microsoft Exchange Server Remote Code Execution Vulnerability |
| CVE-2021-26855 | 2021-03-02 | Microsoft Exchange Server Remote Code Execution Vulnerability |
| CVE-2021-26857 | 2021-03-02 | Microsoft Exchange Server Remote Code Execution Vulnerability |
| CVE-2021-26858 | 2021-03-02 | Microsoft Exchange Server Remote Code Execution Vulnerability |
| CVE-2021-27078 | 2021-03-02 | Microsoft Exchange Server Remote Code Execution Vulnerability |
| CVE-2021-27065 | 2021-03-02 | Microsoft Exchange Server Remote Code Execution Vulnerability |
| CVE-2021-27927 | 2021-03-03 | In Zabbix from 4.0.x before 4.0.28rc1, 5.0.0alpha1 before 5.0.10rc1, 5.2.x... |
| CVE-2021-21352 | 2021-03-03 | Predictable tokens used for password resets |
| CVE-2021-21353 | 2021-03-03 | Remote code execution in pug |
| CVE-2020-10519 | 2021-03-03 | Unsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server |
| CVE-2021-22861 | 2021-03-03 | Improper access control in GitHub Enterprise Server leading to unauthorized write access to forkable repositories |
| CVE-2021-22862 | 2021-03-03 | Improper access control in GitHub Enterprise Server leading to the disclosure of Actions secrets to forks |
| CVE-2021-22863 | 2021-03-03 | Improper access control in GitHub Enterprise Server leading to unauthorized changes to maintainer permissions on pull requests |
| CVE-2021-2138 | 2021-03-03 | Vulnerability in the Oracle Cloud Infrastructure Data Science Notebook Sessions.... |
| CVE-2021-27923 | 2021-03-03 | Pillow before 8.1.1 allows attackers to cause a denial of... |
| CVE-2021-27922 | 2021-03-03 | Pillow before 8.1.1 allows attackers to cause a denial of... |
| CVE-2021-27921 | 2021-03-03 | Pillow before 8.1.1 allows attackers to cause a denial of... |
| CVE-2021-25315 | 2021-03-03 | salt-api unauthenticated remote code execution |
| CVE-2021-23347 | 2021-03-03 | Cross-site Scripting (XSS) |
| CVE-2020-35296 | 2021-03-03 | ThinkAdmin v6 has default administrator credentials, which allows attackers to... |
| CVE-2021-26813 | 2021-03-03 | markdown2 >=1.0.1.18, fixed in 2.4.0, is affected by a regular... |
| CVE-2021-25252 | 2021-03-03 | Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan... |
| CVE-2021-27215 | 2021-03-03 | An issue was discovered in genua genugate before 9.0 Z... |
| CVE-2020-15937 | 2021-03-03 | An improper neutralization of input vulnerability in FortiGate version 6.2.x... |
| CVE-2021-22662 | 2021-03-03 | A use after free issue has been identified in Fatek... |
| CVE-2021-22670 | 2021-03-03 | An uninitialized pointer may be exploited in Fatek FvDesigner Version... |
| CVE-2021-22666 | 2021-03-03 | Fatek FvDesigner Version 1.5.76 and prior is vulnerable to a... |
| CVE-2021-22683 | 2021-03-03 | Fatek FvDesigner Version 1.5.76 and prior is vulnerable to an... |
| CVE-2021-22638 | 2021-03-03 | Fatek FvDesigner Version 1.5.76 and prior is vulnerable to an... |
| CVE-2020-13554 | 2021-03-03 | An exploitable local privilege elevation vulnerability exists in the file... |
| CVE-2021-21979 | 2021-03-03 | In Bitnami Containers, all Laravel container versions prior to: 6.20.0-debian-10-r107... |
| CVE-2021-20076 | 2021-03-03 | Tenable.sc and Tenable.sc Core versions 5.13.0 through 5.17.0 were found... |
| CVE-2020-27779 | 2021-03-03 | A flaw was found in grub2 in versions prior to... |
| CVE-2020-27749 | 2021-03-03 | A flaw was found in grub2 in versions prior to... |
| CVE-2020-14372 | 2021-03-03 | A flaw was found in grub2 in versions prior to... |
| CVE-2020-25647 | 2021-03-03 | A flaw was found in grub2 in versions prior to... |
| CVE-2020-25632 | 2021-03-03 | A flaw was found in grub2 in versions prior to... |