CVE List - 2021 / March
Showing 401 - 500 of 1447 CVEs for March 2021 (Page 5 of 15)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-0393 | 2021-03-10 | In Scanner::LiteralBuffer::NewCapacity of scanner.cc, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution if an attacker can supply a... |
| CVE-2021-0395 | 2021-03-10 | In StopServicesAndLogViolations of reboot.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User... |
| CVE-2021-0394 | 2021-03-10 | In android_os_Parcel_readString8 of android_os_Parcel.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges... |
| CVE-2021-0391 | 2021-03-10 | In onCreate() of ChooseTypeAndAccountActivity.java, there is a possible way to learn the existence of an account, without permissions, due to a tapjacking/overlay attack. This could lead to local escalation of... |
| CVE-2021-0398 | 2021-03-10 | In bindServiceLocked of ActiveServices.java, there is a possible foreground service launch due to a confused deputy. This could lead to local escalation of privilege with User execution privileges needed. User... |
| CVE-2021-0397 | 2021-03-10 | In sdp_copy_raw_data of sdp_discovery.cc, there is a possible system compromise due to a double free. This could lead to remote code execution with no additional execution privileges needed. User interaction... |
| CVE-2021-0390 | 2021-03-10 | In various methods of WifiNetworkSuggestionsManager.java, there is a possible modification of suggested networks due to a missing permission check. This could lead to local escalation of privilege by a background... |
| CVE-2021-0392 | 2021-03-10 | In main of main.cpp, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with User execution privileges needed. User interaction... |
| CVE-2021-0399 | 2021-03-10 | In qtaguid_untag of xt_qtaguid.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed.... |
| CVE-2020-1916 | 2021-03-10 | An incorrect size calculation in ldap_escape may lead to an integer overflow when overly long input is passed in, resulting in an out-of-bounds write. This issue affects HHVM prior to... |
| CVE-2020-1917 | 2021-03-10 | xbuf_format_converter, used as part of exif_read_data, was appending a terminating null character to the generated string, but was not using its standard append char function. As a result, if the... |
| CVE-2020-1918 | 2021-03-10 | In-memory file operations (ie: using fopen on a data URI) did not properly restrict negative seeking, allowing for the reading of memory prior to the in-memory buffer. This issue affects... |
| CVE-2020-1919 | 2021-03-10 | Incorrect bounds calculations in substr_compare could lead to an out-of-bounds read when the second string argument passed in is longer than the first. This issue affects HHVM versions prior to... |
| CVE-2020-1921 | 2021-03-10 | In the crypt function, we attempt to null terminate a buffer using the size of the input salt without validating that the offset is within the buffer. This issue affects... |
| CVE-2021-24025 | 2021-03-10 | Due to incorrect string size calculations inside the preg_quote function, a large input string passed to the function can trigger an integer overflow leading to a heap overflow. This issue... |
| CVE-2021-24030 | 2021-03-10 | The fbgames protocol handler registered as part of Facebook Gameroom does not properly quote arguments passed to the executable. That allows a malicious URL to cause code execution. This issue... |
| CVE-2020-0025 | 2021-03-10 | In deletePackageVersionedInternal of PackageManagerService.java, there is a possible way to exit Screen Pinning due to a permissions bypass. This could lead to local escalation of privilege with no additional execution... |
| CVE-2021-0368 | 2021-03-10 | In oggpack_look of bitwise.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges... |
| CVE-2021-0369 | 2021-03-10 | In CrossProfileAppsServiceImpl.java, there is the possibility of an application's INTERACT_ACROSS_PROFILES grant state not displaying properly in the setting UI due to a logic error in the code. This could lead... |
| CVE-2021-0370 | 2021-03-10 | In Write of NxpMfcReader.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege in the NFC server... |
| CVE-2021-0371 | 2021-03-10 | In nci_proc_rf_management_ntf of nci_hrcv.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges... |
| CVE-2021-0372 | 2021-03-10 | In getMediaOutputSliceAction of RemoteMediaSlice.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction... |
| CVE-2021-0374 | 2021-03-10 | In BnAudioPolicyService::onTransact of IAudioPolicyService.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed.... |
| CVE-2021-0375 | 2021-03-10 | In onPackageModified of VoiceInteractionManagerService.java, there is a possible change of default applications due to an insecure default value. This could lead to local escalation of privilege with no additional execution... |
| CVE-2021-0376 | 2021-03-10 | In checkUriPermission and related functions of MediaProvider.java, there is a possible way to access external files due to a permissions bypass. This could lead to local escalation of privilege with... |
| CVE-2021-0377 | 2021-03-10 | In DeltaPerformer::Write of delta_performer.cc, there is a possible use of untrusted input due to improper input validation. This could lead to a local bypass of defense in depth protections with... |
| CVE-2021-0378 | 2021-03-10 | In getNbits of pvmp3_getbits.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges... |
| CVE-2021-0379 | 2021-03-10 | In getUpTo17bits of pvmp3_getbits.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges... |
| CVE-2021-0380 | 2021-03-10 | In onReceive of DcTracker.java, there is a possible way to trigger a provisioning URL and modify other telephony settings due to a missing permission check. This could lead to local... |
| CVE-2021-0381 | 2021-03-10 | In updateNotifications of DeviceStorageMonitorService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is... |
| CVE-2021-0382 | 2021-03-10 | In checkSlicePermission of SliceManagerService.java, there is a possible resource exposure due to an incorrect permission check. This could lead to local information disclosure with no additional execution privileges needed. User... |
| CVE-2021-0383 | 2021-03-10 | In done of CaptivePortalLoginActivity.java, there is a confused deputy. This could lead to local escalation of privilege in carrier settings with no additional execution privileges needed. User interaction is not... |
| CVE-2021-0385 | 2021-03-10 | In createConnectToAvailableNetworkNotification of ConnectToNetworkNotificationBuilder.java, there is a possible connection to untrusted WiFi networks due to notification interaction above the lockscreen. This could lead to local escalation of privilege with no... |
| CVE-2021-0386 | 2021-03-10 | In onCreate of UsbConfirmActivity, there is a possible tapjacking vector due to an insecure default value. This could lead to local escalation of privilege with User execution privileges needed. User... |
| CVE-2021-0387 | 2021-03-10 | In FindQuotaDeviceForUuid of QuotaUtils.cpp, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is... |
| CVE-2021-0388 | 2021-03-10 | In onReceive of ImsPhoneCallTracker.java, there is a possible misattribution of data usage due to an incorrect broadcast handler. This could lead to local escalation of privilege resulting in attributing video... |
| CVE-2021-0389 | 2021-03-10 | In setNightModeActivated of UiModeManagerService.java, there is a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for... |
| CVE-2021-0449 | 2021-03-10 | In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed.... |
| CVE-2021-0450 | 2021-03-10 | In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed.... |
| CVE-2021-0451 | 2021-03-10 | In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed.... |
| CVE-2021-0452 | 2021-03-10 | In the Titan M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed.... |
| CVE-2021-0453 | 2021-03-10 | In the Titan-M chip firmware, there is a possible disclosure of stack memory due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User... |
| CVE-2021-0454 | 2021-03-10 | In the Citadel chip firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution... |
| CVE-2021-0455 | 2021-03-10 | In the Citadel chip firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution... |
| CVE-2021-0456 | 2021-03-10 | In the Citadel chip firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution... |
| CVE-2021-0457 | 2021-03-10 | In the FingerTipS touch screen driver, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System... |
| CVE-2021-0458 | 2021-03-10 | In the FingerTipS touch screen driver, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges... |
| CVE-2021-0459 | 2021-03-10 | In fts_driver_test_write of fts_proc.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed.... |
| CVE-2021-0460 | 2021-03-10 | In the FingerTipS touch screen driver, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges... |
| CVE-2021-0461 | 2021-03-10 | In iaxxx_core_sensor_change_state of iaxxx-module.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges... |
| CVE-2021-0462 | 2021-03-10 | In the NXP NFC firmware, there is a possible insecure firmware update due to a logic error. This could lead to local escalation of privilege with System execution privileges needed.... |
| CVE-2021-0463 | 2021-03-10 | In convertToHidl of convert.cpp, there is a possible out of bounds read due to uninitialized data from ReturnFrameworkMessage. This could lead to local information disclosure with no additional execution privileges... |
| CVE-2021-0464 | 2021-03-10 | In sound_trigger_event_alloc of platform.h, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution... |
| CVE-2021-0465 | 2021-03-10 | In GenerateFaceMask of face.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution... |
| CVE-2021-20205 | 2021-03-10 | Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image. |
| CVE-2021-1640 | 2021-03-10 | Windows Print Spooler Elevation of Privilege Vulnerability |
| CVE-2020-19417 | 2021-03-10 | Emerson Smart Wireless Gateway 1420 4.6.59 allows non-privileged users (such as the default account 'maint') to perform administrative tasks by sending specially crafted HTTP requests to the application. |
| CVE-2020-19419 | 2021-03-10 | Incorrect Access Control in Emerson Smart Wireless Gateway 1420 4.6.59 allows remote attackers to obtain sensitive device information from the administrator console without authentication. |
| CVE-2020-35221 | 2021-03-10 | The hashing algorithm implemented for NSDP password authentication on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was found to be insecure, allowing attackers (with access to a network capture) to quickly generate multiple... |
| CVE-2020-35223 | 2021-03-10 | The CSRF protection mechanism implemented in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices could be bypassed by omitting the CSRF token parameter in HTTP requests. |
| CVE-2020-35224 | 2021-03-10 | A buffer overflow vulnerability in the NSDP protocol authentication method on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote unauthenticated attackers to force a device reboot. |
| CVE-2020-35225 | 2021-03-10 | The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was not properly validating the length of string parameters sent in write requests, potentially allowing denial of service attacks. |
| CVE-2020-35226 | 2021-03-10 | NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allow unauthenticated users to modify the switch DHCP configuration by sending the corresponding write request command. |
| CVE-2020-35227 | 2021-03-10 | A buffer overflow vulnerability in the access control section on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices (in the administration web panel) allows an attacker to inject IP addresses into the whitelist via... |
| CVE-2020-35228 | 2021-03-10 | A cross-site scripting (XSS) vulnerability in the administration web panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote attackers to inject arbitrary web script or HTML via the language parameter. |
| CVE-2021-3034 | 2021-03-10 | Cortex XSOAR: Secrets for SAML single sign-on (SSO) integration may be logged in system logs |
| CVE-2020-35229 | 2021-03-10 | The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated and can be reused until a new token is generated, which allows... |
| CVE-2020-35230 | 2021-03-10 | Multiple integer overflow parameters were found in the web administration panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices. Most of the integer parameters sent through the web server can be abused to... |
| CVE-2020-35231 | 2021-03-10 | The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an attacker to bypass access controls and obtain full control of the device. |
| CVE-2020-35233 | 2021-03-10 | The TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices, and allows external attackers to force device reboots by sending concurrent connections, aka a denial of service... |
| CVE-2021-21265 | 2021-03-10 | October CMS vulnerable to Potential Host Header Poisoning on misconfigured servers |
| CVE-2021-21334 | 2021-03-10 | environment variable leak |
| CVE-2021-21371 | 2021-03-10 | Execution of untrusted code through config file |
| CVE-2020-15260 | 2021-03-10 | Existing TLS connections can be reused without checking remote hostname |
| CVE-2021-21375 | 2021-03-10 | Crash in receiving updated SDP answer after initial SDP negotiation failed |
| CVE-2021-27918 | 2021-03-10 | encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur... |
| CVE-2021-21381 | 2021-03-11 | Sandbox escape via special tokens in .desktop file |
| CVE-2021-27919 | 2021-03-11 | archive/zip in Go 1.16.x before 1.16.1 allows attackers to cause a denial of service (panic) upon attempted use of the Reader.Open API for a ZIP archive in which ../ occurs... |
| CVE-2021-28134 | 2021-03-11 | Clipper before 1.0.5 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal API. |
| CVE-2020-1898 | 2021-03-11 | The fb_unserialize function did not impose a depth limit for nested deserialization. That meant a maliciously constructed string could cause deserialization to recurse, leading to stack exhaustion. This issue affected... |
| CVE-2020-1899 | 2021-03-11 | The unserialize() function supported a type code, "S", which was meant to be supported only for APC serialization. This type code allowed arbitrary memory addresses to be accessed as if... |
| CVE-2020-1900 | 2021-03-11 | When unserializing an object with dynamic properties HHVM needs to pre-reserve the full size of the dynamic property array before inserting anything into it. Otherwise the array might resize, invalidating... |
| CVE-2021-21378 | 2021-03-11 | JWT authentication bypass with unknown issuer token |
| CVE-2021-21364 | 2021-03-11 | Generated Code Contains Local Information Disclosure Vulnerability |
| CVE-2021-21363 | 2021-03-11 | Generator Web Application: Local Privilege Escalation Vulnerability via System Temp Directory |
| CVE-2021-28132 | 2021-03-11 | LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool (in the Support section) allows upload of .php files within a system.tar.gz file. The .php... |
| CVE-2021-1729 | 2021-03-11 | Windows Update Stack Setup Elevation of Privilege Vulnerability |
| CVE-2021-24089 | 2021-03-11 | HEVC Video Extensions Remote Code Execution Vulnerability |
| CVE-2021-24090 | 2021-03-11 | Windows Error Reporting Elevation of Privilege Vulnerability |
| CVE-2021-24095 | 2021-03-11 | DirectX Elevation of Privilege Vulnerability |
| CVE-2021-24104 | 2021-03-11 | Microsoft SharePoint Server Spoofing Vulnerability |
| CVE-2021-24107 | 2021-03-11 | Windows Event Tracing Information Disclosure Vulnerability |
| CVE-2021-24108 | 2021-03-11 | Microsoft Office Remote Code Execution Vulnerability |
| CVE-2021-24110 | 2021-03-11 | HEVC Video Extensions Remote Code Execution Vulnerability |
| CVE-2021-26411 | 2021-03-11 | Internet Explorer Memory Corruption Vulnerability |
| CVE-2020-4976 | 2021-03-11 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to read and write specific files due to... |
| CVE-2020-5024 | 2021-03-11 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow an unauthenticated attacker to cause a denial of service due a... |
| CVE-2020-5025 | 2021-03-11 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which... |
| CVE-2021-20336 | 2021-03-11 | IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading... |
| CVE-2021-26859 | 2021-03-11 | Microsoft Power BI Information Disclosure Vulnerability |