CVE List - 2021 / September
Showing 1101 - 1200 of 1899 CVEs for September 2021 (Page 12 of 19)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-21126 | 2021-09-15 | MetInfo 7.0.0 contains a Cross-Site Request Forgery (CSRF) via admin/?n=admin&c=index&a=doSaveInfo. |
| CVE-2020-21127 | 2021-09-15 | MetInfo 7.0.0 contains a SQL injection vulnerability via admin/?n=logs&c=index&a=dodel. |
| CVE-2021-40238 | 2021-09-15 | A Cross Site Scriptiong (XSS) vulnerability exists in the admin panel in Webuzo < 2.9.0 via an HTTP request to a non-existent page, which is activated by administrators viewing the... |
| CVE-2021-3795 | 2021-09-15 | Inefficient Regular Expression Complexity in sindresorhus/semver-regex |
| CVE-2021-37412 | 2021-09-15 | The TechRadar app 1.1 for Confluence Server allows XSS via the Title field of a Radar. |
| CVE-2021-27045 | 2021-09-15 | A maliciously crafted PDF file in Autodesk Navisworks 2019, 2020, 2021, 2022 can be forced to read beyond allocated boundaries when parsing the PDF file. This vulnerability can be exploited... |
| CVE-2021-27046 | 2021-09-15 | A Memory Corruption vulnerability for PDF files in Autodesk Navisworks 2019, 2020, 2021, 2022 may lead to code execution through maliciously crafted DLL files. |
| CVE-2021-40155 | 2021-09-15 | A maliciously crafted DWG file in Autodesk Navisworks 2019, 2020, 2021, 2022 can be forced to read beyond allocated boundaries when parsing the DWG files. This vulnerability can be exploited... |
| CVE-2021-40156 | 2021-09-15 | A maliciously crafted DWG file in Autodesk Navisworks 2019, 2020, 2021, 2022 can be forced to write beyond allocated boundaries when parsing the DWG files. This vulnerability can be exploited... |
| CVE-2021-39210 | 2021-09-15 | Autologin cookie accessible by scripts |
| CVE-2021-39211 | 2021-09-15 | Disclosure of GLPI and server information in telemetry endpoint |
| CVE-2021-39213 | 2021-09-15 | IP restriction on GLPI API Bypass with custom header injection |
| CVE-2021-40966 | 2021-09-15 | A Stored XSS exists in TinyFileManager All version up to and including 2.4.6 in /tinyfilemanager.php when the server is given a file that contains HTML and javascript in its name.... |
| CVE-2021-40965 | 2021-09-15 | A Cross-Site Request Forgery (CSRF) vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to upload files and run OS commands by inducing the Administrator... |
| CVE-2021-40964 | 2021-09-15 | A Path Traversal vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to upload a file (with Admin credentials or with the CSRF vulnerability) with... |
| CVE-2021-39205 | 2021-09-15 | DOM-based XSS/Content Spoofing via Prototype Pollution |
| CVE-2021-39215 | 2021-09-15 | Authentication Bypass: Forged Tokens Allow Access to Arbitrary Rooms |
| CVE-2021-28901 | 2021-09-15 | Multiple cross-site scripting (XSS) vulnerabilities exist in SITA Software Azur CMS 1.2.3.1 and earlier, which allows remote attackers to inject arbitrary web script or HTML via the (1) NOM_CLI ,... |
| CVE-2021-20433 | 2021-09-15 | IBM Security Guardium 11.3 could allow a an authenticated user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 196345. |
| CVE-2021-29750 | 2021-09-15 | IBM QRadar SIEM 7.3 and 7.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 201778. |
| CVE-2021-29773 | 2021-09-15 | IBM Security Guardium 10.6 and 11.3 could allow a remote authenticated attacker to obtain sensitive information or modify user details caused by an insecure direct object vulnerability (IDOR). IBM X-Force... |
| CVE-2021-33690 | 2021-09-15 | Server-Side Request Forgery (SSRF) vulnerability has been detected in the SAP NetWeaver Development Infrastructure Component Build Service versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50The SAP NetWeaver Development Infrastructure Component... |
| CVE-2021-33696 | 2021-09-15 | SAP BusinessObjects Business Intelligence Platform (Crystal Report), versions - 420, 430, does not sufficiently encode user controlled inputs and therefore an authorized attacker can exploit a XSS vulnerability, leading to... |
| CVE-2021-33692 | 2021-09-15 | SAP Cloud Connector, version - 2.0, allows the upload of zip files as backup. This backup file can be tricked to inject special elements such as '..' and '/' separators,... |
| CVE-2021-33695 | 2021-09-15 | Potentially, SAP Cloud Connector, version - 2.0 communication with the backend is accepted without sufficient validation of the certificate. |
| CVE-2021-33697 | 2021-09-15 | Under certain conditions, SAP BusinessObjects Business Intelligence Platform (SAPUI5), versions - 420, 430, can allow an unauthenticated attacker to redirect users to a malicious site due to Reverse Tabnabbing vulnerabilities. |
| CVE-2021-33693 | 2021-09-15 | SAP Cloud Connector, version - 2.0, allows an authenticated administrator to modify a configuration file to inject malicious codes that could potentially lead to OS command execution. |
| CVE-2021-33691 | 2021-09-15 | NWDI Notification Service versions - 7.31, 7.40, 7.50, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.SAP NetWeaver Development Infrastructure Notification Service allows a threat actor to... |
| CVE-2021-33694 | 2021-09-15 | SAP Cloud Connector, version - 2.0, does not sufficiently encode user-controlled inputs, allowing an attacker with Administrator rights, to include malicious codes that get stored in the database, and when... |
| CVE-2021-33700 | 2021-09-15 | SAP Business One, version - 10.0, allows a local attacker with access to the victim's browser under certain circumstances, to login as the victim without knowing his/her password. The attacker... |
| CVE-2021-33705 | 2021-09-15 | The SAP NetWeaver Portal, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, component Iviews Editor contains a Server-Side Request Forgery (SSRF) vulnerability which allows an unauthenticated attacker to craft... |
| CVE-2021-33698 | 2021-09-15 | SAP Business One, version - 10.0, allows an attacker with business authorization to upload any files (including script files) without the proper file format validation. |
| CVE-2021-33701 | 2021-09-15 | DMIS Mobile Plug-In or SAP S/4HANA, versions - DMIS 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 710, 2011_1_731, 710, 2011_1_752, 2020, SAPSCORE 125, S4CORE 102, 102, 103, 104, 105, allows an attacker... |
| CVE-2021-33704 | 2021-09-15 | The Service Layer of SAP Business One, version - 10.0, allows an authenticated attacker to invoke certain functions that would otherwise be restricted to specific users. For an attacker to... |
| CVE-2021-40862 | 2021-09-15 | HashiCorp Terraform Enterprise up to v202108-1 contained an API endpoint that erroneously disclosed a sensitive URL to authenticated parties, which could be used for privilege escalation or unauthorized modification of... |
| CVE-2021-37909 | 2021-09-15 | CHANGING Inc. TSSServiSignAdapter Windows Versions - Improper Input Validation |
| CVE-2021-37912 | 2021-09-15 | HGiga OAKlouds - Command Injection-1 |
| CVE-2021-37913 | 2021-09-15 | HGiga OAKlouds - Command Injection-2 |
| CVE-2016-20012 | 2021-09-15 | OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion... |
| CVE-2020-21321 | 2021-09-15 | emlog v6.0 contains a Cross-Site Request Forgery (CSRF) via /admin/link.php?action=addlink, which allows attackers to arbitrarily add articles. |
| CVE-2020-21322 | 2021-09-15 | An arbitrary file upload vulnerability in Feehi CMS v2.0.8 and below allows attackers to execute arbitrary code via a crafted PHP file. |
| CVE-2021-40639 | 2021-09-15 | Improper access control in Jfinal CMS 5.1.0 allows attackers to access sensitive information via /classes/conf/db.properties&config=filemanager.config.js. |
| CVE-2021-40881 | 2021-09-15 | An issue in the BAT file parameters of PublicCMS v4.0 allows attackers to execute arbitrary code. |
| CVE-2021-33044 | 2021-09-15 | The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets. |
| CVE-2020-21480 | 2021-09-15 | An arbitrary file write vulnerability in RGCMS v1.06 allows attackers to execute arbitrary code via a crafted PHP file. |
| CVE-2020-21481 | 2021-09-15 | An arbitrary file upload vulnerability in RGCMS v1.06 allows attackers to execute arbitrary code via a crafted .txt file which is later changed to a PHP file. |
| CVE-2020-21482 | 2021-09-15 | A cross-site scripting (XSS) vulnerability in RGCMS v1.06 allows attackers to obtain the administrator's cookie via a crafted payload in the Name field under the Message Board module |
| CVE-2020-21483 | 2021-09-15 | An arbitrary file upload vulnerability in Jizhicms v1.5 allows attackers to execute arbitrary code via a crafted .jpg file which is later changed to a PHP file. |
| CVE-2021-33045 | 2021-09-15 | The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets. |
| CVE-2020-21529 | 2021-09-16 | fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c. |
| CVE-2020-21531 | 2021-09-16 | fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c. |
| CVE-2020-21532 | 2021-09-16 | fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c. |
| CVE-2020-21594 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the put_epel_hv_fallback function, which can be exploited via a crafted a file. |
| CVE-2020-21595 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the mc_luma function, which can be exploited via a crafted a file. |
| CVE-2020-21596 | 2021-09-16 | libde265 v1.0.4 contains a global buffer overflow in the decode_CABAC_bit function, which can be exploited via a crafted a file. |
| CVE-2020-21597 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the mc_chroma function, which can be exploited via a crafted a file. |
| CVE-2020-21598 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the ff_hevc_put_unweighted_pred_8_sse function, which can be exploited via a crafted a file. |
| CVE-2020-21599 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the de265_image::available_zscan function, which can be exploited via a crafted a file. |
| CVE-2020-21600 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_pred_avg_16_fallback function, which can be exploited via a crafted a file. |
| CVE-2020-21601 | 2021-09-16 | libde265 v1.0.4 contains a stack buffer overflow in the put_qpel_fallback function, which can be exploited via a crafted a file. |
| CVE-2020-21602 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the put_weighted_bipred_16_fallback function, which can be exploited via a crafted a file. |
| CVE-2020-21603 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow in the put_qpel_0_0_fallback_16 function, which can be exploited via a crafted a file. |
| CVE-2020-21604 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow fault in the _mm_loadl_epi64 function, which can be exploited via a crafted a file. |
| CVE-2020-21605 | 2021-09-16 | libde265 v1.0.4 contains a segmentation fault in the apply_sao_internal function, which can be exploited via a crafted a file. |
| CVE-2020-21606 | 2021-09-16 | libde265 v1.0.4 contains a heap buffer overflow fault in the put_epel_16_fallback function, which can be exploited via a crafted a file. |
| CVE-2021-39128 | 2021-09-16 | Affected versions of Atlassian Jira Server or Data Center using the Jira Service Management addon allow remote attackers with JIRA Administrators access to execute arbitrary Java code via a server-side... |
| CVE-2021-40066 | 2021-09-16 | The access controls on the Mobility read-only API improperly validate user access permissions. Attackers with both network access to the API and valid credentials can read data from it; regardless... |
| CVE-2021-40067 | 2021-09-16 | The access controls on the Mobility read-write API improperly validate user access permissions; this API is disabled by default. If the API is manually enabled, attackers with both network access... |
| CVE-2020-14130 | 2021-09-16 | Some js interfaces in the Xiaomi community were exposed, causing sensitive functions to be maliciously called on Xiaomi community app Affected Version <3.0.210809 |
| CVE-2020-14109 | 2021-09-16 | There is command injection in the meshd program in the routing system, resulting in command execution under administrator authority on Xiaomi router AX3600 with ROM version =< 1.1.12 |
| CVE-2020-14119 | 2021-09-16 | There is command injection in the addMeshNode interface of xqnetwork.lua, which leads to command execution under administrator authority on Xiaomi router AX3600 with rom versionrom< 1.1.12 |
| CVE-2020-14124 | 2021-09-16 | There is a buffer overflow in librsa.so called by getwifipwdurl interface, resulting in code execution on Xiaomi router AX3600 with ROM version =rom< 1.1.12. |
| CVE-2021-34571 | 2021-09-16 | Hard-coded Credentials in Enbra Wireless M-Bus devices |
| CVE-2021-34572 | 2021-09-16 | Insufficient Verification of Data Authenticity in Enbra EWM (replay attack) |
| CVE-2021-34573 | 2021-09-16 | Incorrect calculation in Enbra EWM does not report backflows or no flow events |
| CVE-2021-34576 | 2021-09-16 | Observable discrepancy in Kaden PICOFLUX AiR leaks water consumption |
| CVE-2021-27341 | 2021-09-16 | OpenSIS Community Edition version <= 7.6 is affected by a local file inclusion vulnerability in DownloadWindow.php via the "filename" parameter. |
| CVE-2021-27340 | 2021-09-16 | OpenSIS Community Edition version <= 7.6 is affected by a reflected XSS vulnerability in EmailCheck.php via the "opt" parameter. |
| CVE-2021-39208 | 2021-09-16 | WriteEntryToDirectory used for an archive extraction is vulnerable to partial path traversal. |
| CVE-2021-34798 | 2021-09-16 | NULL pointer dereference in httpd core |
| CVE-2021-36160 | 2021-09-16 | mod_proxy_uwsgi out of bound read |
| CVE-2021-39239 | 2021-09-16 | XML External Entity (XXE) vulnerability |
| CVE-2021-39275 | 2021-09-16 | ap_escape_quotes buffer overflow |
| CVE-2021-40438 | 2021-09-16 | mod_proxy SSRF |
| CVE-2021-41079 | 2021-09-16 | Apache Tomcat DoS with unexpected TLS packet |
| CVE-2021-39214 | 2021-09-16 | Lacking Protection against HTTP Request Smuggling in mitmproxy |
| CVE-2021-29752 | 2021-09-16 | IBM Db2 11.2 and 11.5 contains an information disclosure vulnerability, exposing remote storage credentials to privileged users under specific conditions. IBM X-Fporce ID: 201780. |
| CVE-2021-29763 | 2021-09-16 | IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 under very specific conditions, could allow a local user to keep running a procedure that could... |
| CVE-2021-29825 | 2021-09-16 | IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) could disclose sensitive information when using ADMIN_CMD with LOAD or BACKUP. IBM X-Force ID: 204470. |
| CVE-2021-29842 | 2021-09-16 | IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0 and Liberty 17.0.0.3 through 21.0.0.9 could allow a remote user to enumerate usernames due to a difference of responses from valid and... |
| CVE-2021-40669 | 2021-09-16 | SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the keywords parameter under the coreframe/app/promote/admin/index.php file. |
| CVE-2021-40670 | 2021-09-16 | SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the keywords iparameter under the /coreframe/app/order/admin/card.php file. |
| CVE-2020-21530 | 2021-09-16 | fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c. |
| CVE-2020-21533 | 2021-09-16 | fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c. |
| CVE-2020-21534 | 2021-09-16 | fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c. |
| CVE-2020-21535 | 2021-09-16 | fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c. |
| CVE-2021-41314 | 2021-09-16 | Certain NETGEAR smart switches are affected by a \n injection in the web UI's password field, which - due to several faulty aspects of the authentication scheme - allows the... |
| CVE-2021-3803 | 2021-09-17 | Inefficient Regular Expression Complexity in fb55/nth-check |
| CVE-2021-3805 | 2021-09-17 | Prototype Pollution in mariocasciaro/object-path |
| CVE-2021-3807 | 2021-09-17 | Inefficient Regular Expression Complexity in chalk/ansi-regex |