CVE List - 2021 / April
Showing 1101 - 1200 of 1817 CVEs for April 2021 (Page 12 of 19)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2021-30139 | 2021-04-21 | In Alpine Linux apk-tools before 2.12.5, the tarball parser allows... |
| CVE-2021-31329 | 2021-04-21 | Cross Site Scripting (XSS) in Remote Clinic v2.0 via the... |
| CVE-2021-31327 | 2021-04-21 | Stored XSS in Remote Clinic v2.0 in /medicines due to... |
| CVE-2021-28167 | 2021-04-21 | In Eclipse Openj9 to version 0.25.0, usage of the jdk.internal.reflect.ConstantPool... |
| CVE-2020-23907 | 2021-04-21 | An issue was discovered in retdec v3.3. In function canSplitFunctionOn()... |
| CVE-2020-23912 | 2021-04-21 | An issue was discovered in Bento4 through v1.6.0-637. A NULL... |
| CVE-2020-23914 | 2021-04-21 | An issue was discovered in cpp-peglib through v0.1.12. A NULL... |
| CVE-2020-23915 | 2021-04-21 | An issue was discovered in cpp-peglib through v0.1.12. peg::resolve_escape_sequence() in... |
| CVE-2020-23921 | 2021-04-21 | An issue was discovered in fast_ber through v0.4. yy::yylex() in... |
| CVE-2020-23922 | 2021-04-21 | An issue was discovered in giflib through 5.1.4. DumpScreen2RGB in... |
| CVE-2020-23928 | 2021-04-21 | An issue was discovered in gpac before 1.0.1. The abst_box_read... |
| CVE-2020-23930 | 2021-04-21 | An issue was discovered in gpac through 20200801. A NULL... |
| CVE-2020-23931 | 2021-04-21 | An issue was discovered in gpac before 1.0.1. The abst_box_read... |
| CVE-2020-23932 | 2021-04-21 | An issue was discovered in gpac before 1.0.1. A NULL... |
| CVE-2021-31523 | 2021-04-21 | The Debian xscreensaver 5.42+dfsg1-1 package for XScreenSaver has cap_net_raw enabled... |
| CVE-2021-29456 | 2021-04-21 | Authelia allows open redirects on the logout endpoint |
| CVE-2020-28973 | 2021-04-21 | The ABUS Secvest wireless alarm system FUAA50000 (v3.01.17) fails to... |
| CVE-2020-36324 | 2021-04-21 | Wikimedia Quarry analytics-quarry-web before 2020-12-15 allows Reflected XSS because app.py... |
| CVE-2021-21426 | 2021-04-21 | Fixes a bug in Zend Framework's Stream HTTP Wrapper |
| CVE-2021-21427 | 2021-04-21 | Backport for CVE-2021-21024 Blind SQLi from Magento 2 |
| CVE-2020-27568 | 2021-04-21 | Insecure File Permissions exist in Aviatrix Controller 5.3.1516. Several world... |
| CVE-2020-27569 | 2021-04-21 | Arbitrary File Write exists in Aviatrix VPN Client 2.8.2 and... |
| CVE-2021-1074 | 2021-04-21 | NVIDIA GPU Display Driver for Windows installer contains a vulnerability... |
| CVE-2021-1075 | 2021-04-21 | NVIDIA Windows GPU Display Driver for Windows, all versions, contains... |
| CVE-2021-1078 | 2021-04-21 | NVIDIA Windows GPU Display Driver for Windows, all versions, contains... |
| CVE-2021-2173 | 2021-04-22 | Vulnerability in the Recovery component of Oracle Database Server. Supported... |
| CVE-2021-2175 | 2021-04-22 | Vulnerability in the Database Vault component of Oracle Database Server.... |
| CVE-2021-2207 | 2021-04-22 | Vulnerability in the Oracle Database - Enterprise Edition component of... |
| CVE-2021-3496 | 2021-04-22 | A heap-based buffer overflow was found in jhead in version... |
| CVE-2021-29467 | 2021-04-22 | Self-XSS |
| CVE-2021-29465 | 2021-04-22 | Remote file overwrite on discord-recon can result in DoS and Remote Code Execution |
| CVE-2021-29466 | 2021-04-22 | Path Traversal at Discord-Recon .recon Command Path |
| CVE-2021-31555 | 2021-04-22 | An issue was discovered in the Oauth extension for MediaWiki... |
| CVE-2021-31554 | 2021-04-22 | An issue was discovered in the AbuseFilter extension for MediaWiki... |
| CVE-2021-31553 | 2021-04-22 | An issue was discovered in the CheckUser extension for MediaWiki... |
| CVE-2021-31552 | 2021-04-22 | An issue was discovered in the AbuseFilter extension for MediaWiki... |
| CVE-2021-31551 | 2021-04-22 | An issue was discovered in the PageForms extension for MediaWiki... |
| CVE-2021-31550 | 2021-04-22 | An issue was discovered in the CommentBox extension for MediaWiki... |
| CVE-2021-31549 | 2021-04-22 | An issue was discovered in the AbuseFilter extension for MediaWiki... |
| CVE-2021-31548 | 2021-04-22 | An issue was discovered in the AbuseFilter extension for MediaWiki... |
| CVE-2021-31547 | 2021-04-22 | An issue was discovered in the AbuseFilter extension for MediaWiki... |
| CVE-2021-31546 | 2021-04-22 | An issue was discovered in the AbuseFilter extension for MediaWiki... |
| CVE-2021-31545 | 2021-04-22 | An issue was discovered in the AbuseFilter extension for MediaWiki... |
| CVE-2021-3287 | 2021-04-22 | Zoho ManageEngine OpManager before 12.5.329 allows unauthenticated Remote Code Execution... |
| CVE-2021-27736 | 2021-04-22 | FusionAuth fusionauth-samlv2 before 0.5.4 allows XXE attacks via a forged... |
| CVE-2021-22540 | 2021-04-22 | XSS in Dart SDK |
| CVE-2021-30476 | 2021-04-22 | HashiCorp Terraform’s Vault Provider (terraform-provider-vault) did not correctly configure GCE-type... |
| CVE-2021-29653 | 2021-04-22 | HashiCorp Vault and Vault Enterprise 1.5.1 and newer, under certain... |
| CVE-2021-27400 | 2021-04-22 | HashiCorp Vault and Vault Enterprise Cassandra integrations (storage backend and... |
| CVE-2020-7861 | 2021-04-22 | AnySupport directory traversing vulnerability |
| CVE-2021-28168 | 2021-04-22 | Eclipse Jersey 2.28 to 2.33 and Eclipse Jersey 3.0.0 to... |
| CVE-2021-30356 | 2021-04-22 | A denial of service vulnerability was reported in Check Point... |
| CVE-2021-27277 | 2021-04-22 | This vulnerability allows local attackers to escalate privileges on affected... |
| CVE-2021-27278 | 2021-04-22 | This vulnerability allows local attackers to escalate privileges on affected... |
| CVE-2021-31571 | 2021-04-22 | The kernel in Amazon Web Services FreeRTOS before 10.4.3 has... |
| CVE-2021-31572 | 2021-04-22 | The kernel in Amazon Web Services FreeRTOS before 10.4.3 has... |
| CVE-2020-7858 | 2021-04-22 | AquaNPlayer directory traversing vulnerability |
| CVE-2021-23133 | 2021-04-22 | Linux Kernel sctp_destroy_sock race condition |
| CVE-2021-20590 | 2021-04-22 | Improper authentication vulnerability in GOT2000 series GT27 model VNC server... |
| CVE-2021-0214 | 2021-04-22 | Junos OS: Denial of Service in ppmd upon receipt of malformed packet |
| CVE-2021-0216 | 2021-04-22 | Junos OS: ACX5448, ACX710: BFD sessions might flap due to high rate of transit ARP packets |
| CVE-2021-0224 | 2021-04-22 | Junos OS: ANCPD core when hitting maximum-discovery-table-entries limit |
| CVE-2021-0225 | 2021-04-22 | Junos OS Evolved: Stateless IP firewall filter does not work as expected |
| CVE-2021-0226 | 2021-04-22 | Junos OS Evolved: The IPv6 BGP session will flap due to receipt of a specific IPv6 packet |
| CVE-2021-0227 | 2021-04-22 | Junos OS: SRX Series: Denial of Service in J-Web upon receipt of crafted HTTP packets |
| CVE-2021-0228 | 2021-04-22 | Junos OS: MX Series: DDoS LACP violation upon receipt of specific layer 2 frames in EVPN-VXLAN deployment |
| CVE-2021-0229 | 2021-04-22 | Junos OS: Receipt of specific packets could lead to Denial of Service in MQTT Server |
| CVE-2021-0230 | 2021-04-22 | Junos OS: SRX Series: Memory leak when querying Aggregated Ethernet (AE) interface statistics |
| CVE-2021-0231 | 2021-04-22 | Junos OS: SRX, vSRX Series: J-Web Path traversal vulnerability in SRX and vSRX Series leads to information disclosure. |
| CVE-2021-0232 | 2021-04-22 | Paragon Active Assurance: Authentication bypass vulnerability in Control Center |
| CVE-2021-0233 | 2021-04-22 | Junos OS: ACX500 Series, ACX4000 Series: Denial of Service due to FFEB crash while processing high rate of specific packets. |
| CVE-2021-0234 | 2021-04-22 | Junos OS: QFX5100-96S: DDoS protection does not work as expected. |
| CVE-2021-0235 | 2021-04-22 | Junos OS: SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with SPC2/SPC3, vSRX Series: In a multi-tenant environment, a tenant host administrator may configure logical firewall isolation affecting other tenant networks |
| CVE-2021-0236 | 2021-04-22 | Junos OS: A specific BGP VPNv6 flowspec message causes routing protocol daemon (rpd) process to crash with a core. |
| CVE-2021-0237 | 2021-04-22 | Junos OS: EX4300-MP/EX4600/EX4650/QFX5K Series: Packet Forwarding Engine manager (FXPC) process crashes when deployed in a Virtual Chassis (VC) configuration |
| CVE-2021-0238 | 2021-04-22 | Junos OS: MX Series: Executing CLI command repetitively may cause the system to run out of disk space |
| CVE-2021-0239 | 2021-04-22 | Junos OS Evolved: Denial of Service due to receipt of specific genuine layer 2 frames. |
| CVE-2021-0240 | 2021-04-22 | Junos OS: Receipt of malformed DHCPv6 packets causes jdhcpd to crash and restart. |
| CVE-2021-0241 | 2021-04-22 | Junos OS: Receipt of specific DHCPv6 packet may cause jdhcpd to crash and restart |
| CVE-2021-0242 | 2021-04-22 | Junos OS: EX4300: FPC crash upon receipt of specific frames on an interface without L2PT or dot1x configured |
| CVE-2021-0243 | 2021-04-22 | Junos OS: EX4300: Stateless firewall policer fails to discard traffic |
| CVE-2021-0244 | 2021-04-22 | Junos OS: A race condition in the storm control profile may allow an attacker to cause a Denial of Service condition |
| CVE-2021-0245 | 2021-04-22 | Junos OS: Junos Fusion: Hard-coded credentials on satellite devices allows a locally authenticated attacker to elevate their privileges. |
| CVE-2021-0246 | 2021-04-22 | Junos OS: SRX1500, SRX4100, SRX4200, SRX4600, SRX5000 Series with SPC2/SPC3: In a multi-tenant environment, a tenant host administrator may be able to jailbreak out of their network impacting other tenant networks or gather information from other networks. |
| CVE-2021-0247 | 2021-04-22 | Junos OS: PTX Series, QFX Series: Due to a race condition input loopback firewall filters applied to interfaces may not operate even when listed in the running configuration. |
| CVE-2021-0248 | 2021-04-22 | NFX Series: Hard-coded credentials allow an attacker to take control of any instance through administrative interfaces. |
| CVE-2021-0249 | 2021-04-22 | Junos OS: SRX Series: A remote attacker may be able to cause a PFE buffer overflow to arbitrarily remotely execute code or commands on the target device with UTM enabled. |
| CVE-2021-0250 | 2021-04-22 | Junos OS and Junos OS Evolved: An attacker sending a specific crafted BGP update message will crash RPD |
| CVE-2021-0251 | 2021-04-22 | Junos OS: MX Series with MS-PIC, MS-SPC3, MS-MIC or MS-MPC: The BRAS Subscriber Services service activation portal is vulnerable to a Denial of Service (DoS) via malformed HTTP packets |
| CVE-2021-0252 | 2021-04-22 | Junos OS: NFX Series: Local Code Execution Vulnerability in JDMD Leads to Privilege Escalation |
| CVE-2021-0253 | 2021-04-22 | Junos OS: NFX Series: Local Command Execution Vulnerability in JDMD Leads to Privilege Escalation |
| CVE-2021-0254 | 2021-04-22 | Junos OS: Remote code execution vulnerability in overlayd service |
| CVE-2021-0255 | 2021-04-22 | Junos OS: ethtraceroute Local Privilege Escalation vulnerability in SUID binaries |
| CVE-2021-0256 | 2021-04-22 | Junos OS: mosquitto Local Privilege Escalation vulnerability in SUID binaries |
| CVE-2021-0257 | 2021-04-22 | Junos OS: MX Series, EX9200 Series: Trio-based MPCs memory leak in VPLS with integrated routing and bridging (IRB) interface |
| CVE-2021-0258 | 2021-04-22 | Junos OS: Kernel panic upon receipt of specific TCPv6 packet on management interface |
| CVE-2021-0259 | 2021-04-22 | Junos OS and Junos OS Evolved: QFX5K Series: Underlay network traffic might not be processed upon receipt of high rate of specific genuine overlay packets in VXLAN scenario |
| CVE-2021-0260 | 2021-04-22 | Junos OS: SNMP fails to properly perform authorization checks on incoming received SNMP requests. |
| CVE-2021-0261 | 2021-04-22 | Junos OS: Denial of Service vulnerability in J-Web and web based (HTTP/HTTPS) services caused by a high number of specific requests |
| CVE-2021-0262 | 2021-04-22 | Junos OS: QFX10002-60C: Use after free vulnerability found during static code analysis |