CVE List - 2021 / April
Showing 501 - 600 of 1817 CVEs for April 2021 (Page 6 of 19)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-30462 | 2021-04-08 | VestaCP through 0.9.8-24 allows the admin user to escalate privileges... |
| CVE-2020-23426 | 2021-04-08 | zzcms 201910 contains an access control vulnerability through escalation of... |
| CVE-2021-27522 | 2021-04-08 | Learnsite 1.2.5.0 contains a remote privilege escalation vulnerability in /Manager/index.aspx... |
| CVE-2020-23539 | 2021-04-08 | An issue was discovered in Realtek rtl8723de BLE Stack <=... |
| CVE-2021-27945 | 2021-04-08 | The Squirro Insights Engine was affected by a Reflected Cross-Site... |
| CVE-2021-3328 | 2021-04-08 | An issue was discovered in Aprelium Abyss Web Server X1... |
| CVE-2021-22115 | 2021-04-08 | Cloud Controller API versions prior to 1.106.0 logs service broker... |
| CVE-2021-22507 | 2021-04-08 | Authentication bypass vulnerability in Micro Focus Operations Bridge Manager affects... |
| CVE-2020-14104 | 2021-04-08 | A RACE CONDITION on XQBACKUP causes a decompression path error... |
| CVE-2020-14099 | 2021-04-08 | On Xiaomi router AX1800 rom version < 1.0.336 and RM1800... |
| CVE-2021-22312 | 2021-04-08 | There is a memory leak vulnerability in some Huawei products.... |
| CVE-2021-3146 | 2021-04-08 | The Dolby Audio X2 (DAX2) API service before 0.8.8.90 on... |
| CVE-2020-14103 | 2021-04-08 | The application in the mobile phone can read the SNO... |
| CVE-2020-14106 | 2021-04-08 | The application in the mobile phone can unauthorized access to... |
| CVE-2021-22513 | 2021-04-08 | Missing Authorization vulnerability in Micro Focus Application Automation Tools Plugin... |
| CVE-2021-22510 | 2021-04-08 | Reflected XSS vulnerability in Micro Focus Application Automation Tools Plugin... |
| CVE-2021-22511 | 2021-04-08 | Improper Certificate Validation vulnerability in Micro Focus Application Automation Tools... |
| CVE-2021-22512 | 2021-04-08 | Cross-Site Request Forgery (CSRF) vulnerability in Micro Focus Application Automation... |
| CVE-2020-6590 | 2021-04-08 | Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly... |
| CVE-2021-3482 | 2021-04-08 | A flaw was found in Exiv2 in versions before and... |
| CVE-2021-3448 | 2021-04-08 | A flaw was found in dnsmasq in versions before 2.85.... |
| CVE-2021-3413 | 2021-04-08 | A flaw was found in Red Hat Satellite in tfm-rubygem-foreman_azure_rm... |
| CVE-2020-36287 | 2021-04-09 | The dashboard gadgets preference resource of the Atlassian gadgets plugin... |
| CVE-2021-30458 | 2021-04-09 | An issue was discovered in Wikimedia Parsoid before 0.11.1 and... |
| CVE-2021-30152 | 2021-04-09 | An issue was discovered in MediaWiki before 1.31.13 and 1.32.x... |
| CVE-2021-30155 | 2021-04-09 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x... |
| CVE-2021-30156 | 2021-04-09 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x... |
| CVE-2021-30159 | 2021-04-09 | An issue was discovered in MediaWiki before 1.31.12 and 1.32.x... |
| CVE-2020-21883 | 2021-04-09 | Unibox U-50 2.4 and UniBox Enterprise Series 2.4 and UniBox... |
| CVE-2020-21884 | 2021-04-09 | Unibox SMB 2.4 and UniBox Enterprise Series 2.4 and UniBox... |
| CVE-2021-25326 | 2021-04-09 | Skyworth Digital Technology RN510 V.3.1.0.4 is affected by an incorrect... |
| CVE-2021-25327 | 2021-04-09 | Skyworth Digital Technology RN510 V.3.1.0.4 contains a cross-site request forgery... |
| CVE-2021-25328 | 2021-04-09 | Skyworth Digital Technology RN510 V.3.1.0.4 RN510 V.3.1.0.4 contains a buffer... |
| CVE-2021-29221 | 2021-04-09 | A local privilege escalation vulnerability was discovered in Erlang/OTP prior... |
| CVE-2021-21431 | 2021-04-09 | Improper Input Validation in sopel-plugins.channelmgnt |
| CVE-2021-29671 | 2021-04-09 | IBM Spectrum Scale 5.1.0.1 could allow a local attacker to... |
| CVE-2021-20080 | 2021-04-09 | Insufficient output sanitization in ManageEngine ServiceDesk Plus before version 11200... |
| CVE-2021-21728 | 2021-04-09 | A ZTE product has a configuration error vulnerability. Because a... |
| CVE-2021-25356 | 2021-04-09 | An improper caller check vulnerability in Managed Provisioning prior to... |
| CVE-2021-25357 | 2021-04-09 | A pendingIntent hijacking vulnerability in Create Movie prior to SMR... |
| CVE-2021-25358 | 2021-04-09 | A vulnerability that stores IMSI values in an improper path... |
| CVE-2021-25359 | 2021-04-09 | An improper SELinux policy prior to SMR APR-2021 Release 1... |
| CVE-2021-25360 | 2021-04-09 | An improper input validation vulnerability in libswmfextractor library prior to... |
| CVE-2021-25361 | 2021-04-09 | An improper access control vulnerability in stickerCenter prior to SMR... |
| CVE-2021-25362 | 2021-04-09 | An improper permission management in CertInstaller prior to SMR APR-2021... |
| CVE-2021-25363 | 2021-04-09 | An improper access control in ActivityManagerService prior to SMR APR-2021... |
| CVE-2021-25364 | 2021-04-09 | A pendingIntent hijacking vulnerability in Secure Folder prior to SMR... |
| CVE-2021-25365 | 2021-04-09 | An improper exception control in softsimd prior to SMR APR-2021... |
| CVE-2021-25373 | 2021-04-09 | Using unsafe PendingIntent in Customization Service prior to version 2.2.02.1... |
| CVE-2021-25374 | 2021-04-09 | An improper authorization vulnerability in Samsung Members "samsungrewards" scheme for... |
| CVE-2021-25375 | 2021-04-09 | Using predictable index for attachments in Samsung Email prior to... |
| CVE-2021-25376 | 2021-04-09 | An improper synchronization logic in Samsung Email prior to version... |
| CVE-2021-25377 | 2021-04-09 | Intent redirection in Samsung Experience Service versions 10.8.0.4 in Android... |
| CVE-2021-25378 | 2021-04-09 | Improper access control of certain port in SmartThings prior to... |
| CVE-2021-25379 | 2021-04-09 | Intent redirection vulnerability in Gallery prior to version 5.4.16.1 allows... |
| CVE-2021-25380 | 2021-04-09 | Improper handling of exceptional conditions in Bixby prior to version... |
| CVE-2021-25381 | 2021-04-09 | Using unsafe PendingIntent in Samsung Account in versions 10.8.0.4 in... |
| CVE-2020-13591 | 2021-04-09 | An exploitable SQL injection vulnerability exists in the "access_rules/rules_form" page... |
| CVE-2020-13587 | 2021-04-09 | An exploitable SQL injection vulnerability exists in the "forms_fields_rules/rules" page... |
| CVE-2020-13592 | 2021-04-09 | An exploitable SQL injection vulnerability exists in "global_lists/choices" page of... |
| CVE-2020-23761 | 2021-04-09 | Cross Site Scripting (XSS) vulnerability in subrion CMS Version <=... |
| CVE-2020-13534 | 2021-04-09 | A privilege escalation vulnerability exists in Dream Report 5 R20-2.... |
| CVE-2020-13533 | 2021-04-09 | A privilege escalation vulnerability exists in Dream Report 5 R20-2.... |
| CVE-2020-23762 | 2021-04-09 | Cross Site Scripting (XSS) vulnerability in the Larsens Calender plugin... |
| CVE-2020-13532 | 2021-04-09 | A privilege escalation vulnerability exists in Dream Report 5 R20-2.... |
| CVE-2021-20021 | 2021-04-09 | A vulnerability in the SonicWall Email Security version 10.0.9.x allows... |
| CVE-2021-20022 | 2021-04-09 | SonicWall Email Security version 10.0.9.x contains a vulnerability that allows... |
| CVE-2020-23763 | 2021-04-09 | SQL injection in admin.php in Online Book Store 1.0 allows... |
| CVE-2021-21433 | 2021-04-09 | Remote code execution on discord-recon .dirsearch and .arjun commands due to improper input validation |
| CVE-2021-21432 | 2021-04-09 | Reject unauthorized access with GitHub PATs |
| CVE-2021-21194 | 2021-04-09 | Use after free in screen sharing in Google Chrome prior... |
| CVE-2021-21195 | 2021-04-09 | Use after free in V8 in Google Chrome prior to... |
| CVE-2021-21196 | 2021-04-09 | Heap buffer overflow in TabStrip in Google Chrome on Windows... |
| CVE-2021-21197 | 2021-04-09 | Heap buffer overflow in TabStrip in Google Chrome prior to... |
| CVE-2021-21198 | 2021-04-09 | Out of bounds read in IPC in Google Chrome prior... |
| CVE-2021-21199 | 2021-04-09 | Use after free in Aura in Google Chrome on Linux... |
| CVE-2021-30480 | 2021-04-09 | Zoom Chat through 2021-04-09 on Windows and macOS allows certain... |
| CVE-2021-20020 | 2021-04-10 | A command execution vulnerability in SonicWall GMS 9.3 allows a... |
| CVE-2021-30481 | 2021-04-10 | Valve Steam through 2021-04-10, when a Source engine game is... |
| CVE-2021-28875 | 2021-04-11 | In the standard library in Rust before 1.50.0, read_to_end() does... |
| CVE-2021-28876 | 2021-04-11 | In the standard library in Rust before 1.52.0, the Zip... |
| CVE-2021-28877 | 2021-04-11 | In the standard library in Rust before 1.51.0, the Zip... |
| CVE-2021-28878 | 2021-04-11 | In the standard library in Rust before 1.52.0, the Zip... |
| CVE-2021-28879 | 2021-04-11 | In the standard library in Rust before 1.52.0, the Zip... |
| CVE-2021-30485 | 2021-04-11 | An issue was discovered in libezxml.a in ezXML 0.8.6. The... |
| CVE-2020-36318 | 2021-04-11 | In the standard library in Rust before 1.49.0, VecDeque::make_contiguous has... |
| CVE-2020-36317 | 2021-04-11 | In the standard library in Rust before 1.49.0, String::retain() function... |
| CVE-2015-20001 | 2021-04-11 | In the standard library in Rust before 1.2.0, BinaryHeap is... |
| CVE-2021-29379 | 2021-04-12 | An issue was discovered on D-Link DIR-802 A1 devices through... |
| CVE-2020-24285 | 2021-04-12 | INTELBRAS TELEFONE IP TIP200 version 60.61.75.22 allows an attacker to... |
| CVE-2021-23371 | 2021-04-12 | Regular Expression Denial of Service (ReDoS) |
| CVE-2021-23369 | 2021-04-12 | Remote Code Execution (RCE) |
| CVE-2021-23370 | 2021-04-12 | Prototype Pollution |
| CVE-2020-28872 | 2021-04-12 | An authorization bypass vulnerability in Monitorr v1.7.6m in Monitorr/assets/config/_installation/_register.php allows... |
| CVE-2021-25926 | 2021-04-12 | In SiCKRAGE, versions 9.3.54.dev1 to 10.0.11.dev1 are vulnerable to Reflected... |
| CVE-2021-25925 | 2021-04-12 | in SiCKRAGE, versions 4.2.0 to 10.0.11.dev1 are vulnerable to Stored... |
| CVE-2021-23368 | 2021-04-12 | Regular Expression Denial of Service (ReDoS) |
| CVE-2021-24197 | 2021-04-12 | wpDataTables < 3.4.2 - Improper Access Control leading to Table Permission Takeover |
| CVE-2021-24198 | 2021-04-12 | wpDataTables < 3.4.2 - Improper Access Control leading to Table Data Deletion |
| CVE-2021-24199 | 2021-04-12 | wpDataTables < 3.4.2 - Blind SQL Injection via start Parameter |