CVE List - 2021 / March
Showing 701 - 800 of 1447 CVEs for March 2021 (Page 8 of 15)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-27278 | 2021-03-15 | In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, hard-coded credentials... |
| CVE-2020-27282 | 2021-03-15 | In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an XML... |
| CVE-2020-27290 | 2021-03-15 | In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an information... |
| CVE-2021-26987 | 2021-03-15 | Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework... |
| CVE-2021-20279 | 2021-03-15 | The ID number user profile field required additional sanitizing to... |
| CVE-2021-20280 | 2021-03-15 | Text-based feedback answers required additional sanitizing to prevent stored XSS... |
| CVE-2021-20281 | 2021-03-15 | It was possible for some users without permission to view... |
| CVE-2021-20282 | 2021-03-15 | When creating a user account, it was possible to verify... |
| CVE-2021-20283 | 2021-03-15 | The web service responsible for fetching other users' enrolled courses... |
| CVE-2021-27230 | 2021-03-15 | ExpressionEngine before 5.4.2 and 6.x before 6.0.3 allows PHP Code... |
| CVE-2020-1926 | 2021-03-16 | Timing attack in Cookie signature verification |
| CVE-2020-4851 | 2021-03-16 | IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2... |
| CVE-2020-4890 | 2021-03-16 | IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2... |
| CVE-2020-4891 | 2021-03-16 | IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2... |
| CVE-2021-21191 | 2021-03-16 | Use after free in WebRTC in Google Chrome prior to... |
| CVE-2021-21192 | 2021-03-16 | Heap buffer overflow in tab groups in Google Chrome prior... |
| CVE-2021-21193 | 2021-03-16 | Use after free in Blink in Google Chrome prior to... |
| CVE-2020-24263 | 2021-03-16 | Portainer 1.24.1 and earlier is affected by an insecure permissions... |
| CVE-2020-24264 | 2021-03-16 | Portainer 1.24.1 and earlier is affected by incorrect access control... |
| CVE-2021-28543 | 2021-03-16 | Varnish varnish-modules before 0.17.1 allows remote attackers to cause a... |
| CVE-2021-22887 | 2021-03-16 | A vulnerability in the BIOS of Pulse Secure (PSA-Series Hardware)... |
| CVE-2021-25916 | 2021-03-16 | Prototype pollution vulnerability in 'patchmerge' versions 1.0.0 through 1.0.1 allows... |
| CVE-2021-27938 | 2021-03-16 | A vulnerability has been identified in the Silverstripe CMS 3... |
| CVE-2020-28899 | 2021-03-16 | The Web CGI Script on ZyXEL LTE4506-M606 V1.00(ABDO.2)C0 devices does... |
| CVE-2021-28380 | 2021-03-16 | The aimeos (aka Aimeos shop and e-commerce framework) extension before... |
| CVE-2021-28381 | 2021-03-16 | The vhs (aka VHS: Fluid ViewHelpers) extension before 5.1.1 for... |
| CVE-2021-28294 | 2021-03-16 | Online Ordering System 1.0 is vulnerable to arbitrary file upload... |
| CVE-2021-28295 | 2021-03-16 | Online Ordering System 1.0 is vulnerable to unauthenticated SQL injection... |
| CVE-2021-3127 | 2021-03-16 | NATS Server 2.x before 2.2.0 and JWT library before 2.0.1... |
| CVE-2021-20218 | 2021-03-16 | A flaw was found in the fabric8 kubernetes-client in version... |
| CVE-2019-3897 | 2021-03-16 | It has been discovered in redhat-certification that any unauthorized user... |
| CVE-2021-3344 | 2021-03-16 | A privilege escalation flaw was found in OpenShift builder. During... |
| CVE-2021-28660 | 2021-03-17 | rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows... |
| CVE-2021-28650 | 2021-03-17 | autoar-extractor.c in GNOME gnome-autoar before 0.3.1, as used by GNOME... |
| CVE-2017-20002 | 2021-03-17 | The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists... |
| CVE-2020-11166 | 2021-03-17 | Potential out of bound read exception when UE receives unusually... |
| CVE-2020-11171 | 2021-03-17 | Buffer over-read can happen while parsing received SDP values due... |
| CVE-2020-11186 | 2021-03-17 | Modem will enter into busy mode in an infinite loop... |
| CVE-2020-11188 | 2021-03-17 | Buffer over-read can happen while parsing received SDP values due... |
| CVE-2020-11189 | 2021-03-17 | Buffer over-read can happen while parsing received SDP values due... |
| CVE-2020-11190 | 2021-03-17 | Buffer over-read can happen while parsing received SDP values due... |
| CVE-2020-11192 | 2021-03-17 | Out of bound write while parsing SDP string due to... |
| CVE-2020-11199 | 2021-03-17 | HLOS to access EL3 stack canary by just mapping imem... |
| CVE-2020-11218 | 2021-03-17 | Denial of service in baseband when NW configures LTE betaOffset-RI-Index... |
| CVE-2020-11220 | 2021-03-17 | While processing storage SCM commands there is a time of... |
| CVE-2020-11221 | 2021-03-17 | Usage of syscall by non-secure entity can allow extraction of... |
| CVE-2020-11222 | 2021-03-17 | Buffer over read while processing MT SMS with maximum length... |
| CVE-2020-11226 | 2021-03-17 | Out of bound memory read in Data modem while unpacking... |
| CVE-2020-11227 | 2021-03-17 | Out of bound write while parsing RTT/TTY packet parsing due... |
| CVE-2020-11228 | 2021-03-17 | Part of RPM region was not protected from xblSec itself... |
| CVE-2020-11230 | 2021-03-17 | Potential arbitrary memory corruption when the qseecom driver updates ion... |
| CVE-2020-11290 | 2021-03-17 | Use after free condition in msm ioctl events due to... |
| CVE-2020-11299 | 2021-03-17 | Buffer overflow can occur in video while playing the non-standard... |
| CVE-2020-11305 | 2021-03-17 | Integer overflow in boot due to improper length check on... |
| CVE-2020-11308 | 2021-03-17 | Buffer overflow occurs when trying to convert ASCII string to... |
| CVE-2020-11309 | 2021-03-17 | Use after free in GPU driver while mapping the user... |
| CVE-2020-13924 | 2021-03-17 | In Apache Ambari versions 2.6.2.2 and earlier, malicious users can... |
| CVE-2021-22859 | 2021-03-17 | EIC e-document system - SQL Injection |
| CVE-2021-22860 | 2021-03-17 | EIC e-document system - Broken Authentication |
| CVE-2020-17525 | 2021-03-17 | Remote unauthenticated denial-of-service in Subversion mod_authz_svn |
| CVE-2021-27291 | 2021-03-17 | In pygments 1.1+, fixed in 2.7.4, the lexers used to... |
| CVE-2020-28873 | 2021-03-17 | Fluxbb 1.5.11 is affected by a denial of service (DoS)... |
| CVE-2021-27292 | 2021-03-17 | ua-parser-js >= 0.7.14, fixed in 0.7.24, uses a regular expression... |
| CVE-2020-35456 | 2021-03-17 | The Taidii Diibear Android application 2.4.0 and all its derivatives... |
| CVE-2020-35455 | 2021-03-17 | The Taidii Diibear Android application 2.4.0 and all its derivatives... |
| CVE-2020-35454 | 2021-03-17 | The Taidii Diibear Android application 2.4.0 and all its derivatives... |
| CVE-2020-17457 | 2021-03-17 | Fujitsu ServerView Suite iRMC before 9.62F allows XSS. An authenticated... |
| CVE-2019-18233 | 2021-03-17 | In Advantech Spectre RT Industrial Routers ERT351 5.1.3 and prior,... |
| CVE-2019-18231 | 2021-03-17 | Advantech Spectre RT ERT351 Versions 5.1.3 and prior logins and... |
| CVE-2019-18235 | 2021-03-17 | Advantech Spectre RT ERT351 Versions 5.1.3 and prior has insufficient... |
| CVE-2020-27827 | 2021-03-18 | A flaw was found in multiple versions of OpenvSwitch. Specially... |
| CVE-2021-20624 | 2021-03-18 | Improper access control vulnerability in Scheduler of Cybozu Office 10.0.0... |
| CVE-2021-20625 | 2021-03-18 | Improper access control vulnerability in Bulletin Board of Cybozu Office... |
| CVE-2021-20626 | 2021-03-18 | Improper access control vulnerability in Workflow of Cybozu Office 10.0.0... |
| CVE-2021-20627 | 2021-03-18 | Cross-site scripting vulnerability in Address Book of Cybozu Office 10.0.0... |
| CVE-2021-20628 | 2021-03-18 | Cross-site scripting vulnerability in Address Book of Cybozu Office 10.0.0... |
| CVE-2021-20629 | 2021-03-18 | Cross-site scripting vulnerability in E-mail of Cybozu Office 10.0.0 to... |
| CVE-2021-20630 | 2021-03-18 | Improper access control vulnerability in Phone Messages of Cybozu Office... |
| CVE-2021-20631 | 2021-03-18 | Improper input validation vulnerability in Custom App of Cybozu Office... |
| CVE-2021-20632 | 2021-03-18 | Improper access control vulnerability in Bulletin Board of Cybozu Office... |
| CVE-2021-20633 | 2021-03-18 | Improper access control vulnerability in Cabinet of Cybozu Office 10.0.0... |
| CVE-2021-20634 | 2021-03-18 | Improper access control vulnerability in Custom App of Cybozu Office... |
| CVE-2021-20675 | 2021-03-18 | M-System DL8 series (type A (DL8-A) versions prior to Ver3.0,... |
| CVE-2021-20676 | 2021-03-18 | M-System DL8 series (type A (DL8-A) versions prior to Ver3.0,... |
| CVE-2021-20678 | 2021-03-18 | SQL injection vulnerability in the Paid Memberships Pro versions prior... |
| CVE-2021-28667 | 2021-03-18 | StackStorm before 3.4.1, in some situations, has an infinite loop... |
| CVE-2021-28681 | 2021-03-18 | Pion WebRTC before 3.0.15 didn't properly tear down the DTLS... |
| CVE-2021-3141 | 2021-03-18 | In Unisys Stealth (core) before 6.0.025.0, the Keycloak password is... |
| CVE-2021-22848 | 2021-03-18 | HGiga MailSherlock - SQL Injection-2 |
| CVE-2021-28417 | 2021-03-18 | A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows... |
| CVE-2021-28418 | 2021-03-18 | A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows... |
| CVE-2021-28419 | 2021-03-18 | The "order_col" parameter in archive.php of SEO Panel 4.8.0 is... |
| CVE-2021-28420 | 2021-03-18 | A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows... |
| CVE-2021-23359 | 2021-03-18 | Arbitrary Command Injection |
| CVE-2021-26236 | 2021-03-18 | FastStone Image Viewer v.<= 7.5 is affected by a Stack-based... |
| CVE-2021-21623 | 2021-03-18 | An incorrect permission check in Jenkins Matrix Authorization Strategy Plugin... |
| CVE-2021-21624 | 2021-03-18 | An incorrect permission check in Jenkins Role-based Authorization Strategy Plugin... |
| CVE-2021-21625 | 2021-03-18 | Jenkins CloudBees AWS Credentials Plugin 1.28 and earlier does not... |
| CVE-2021-21626 | 2021-03-18 | Jenkins Warnings Next Generation Plugin 8.4.4 and earlier does not... |
| CVE-2021-21627 | 2021-03-18 | A cross-site request forgery (CSRF) vulnerability in Jenkins Libvirt Agents... |