Latest CVE Feed
-
5.5
MEDIUMCVE-2021-40575
The binary MP4Box in Gpac 1.0.1 has a null pointer dereference vulnerability in the mpgviddmx_process function in reframe_mpgvid.c, which allows attackers to cause a denial of service. This vulnerability is possibly due to an incomplete fix for CVE-2021-4... Read more
Affected Products : gpac- EPSS Score: %0.07
- Published: Jan. 13, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-40454
Rich Text Edit Control Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_8.1 windows_rt_8.1 windows_server_2012 windows_server_2016 office windows_server_2019 365_apps windows_server windows_10_1607 +12 more products- EPSS Score: %0.14
- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-40326
Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, mishandle hidden and incremental data in signed documents. An attacker can write to an arbitrary file, and display controlled contents, during signature verification.... Read more
- EPSS Score: %0.04
- Published: Aug. 29, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-39861
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory information in the context of the ... Read more
Affected Products : acrobat_dc acrobat_reader_dc macos acrobat acrobat_reader windows acrobat_2017 acrobat_reader_2017- EPSS Score: %1.65
- Published: Sep. 29, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-39849
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an ap... Read more
- EPSS Score: %1.01
- Published: Sep. 29, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-3933
An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t < 64 bits. This could cause an invalid bytesPerLine and maxBytesPerLine value, which could lead to problems with application stability or lead to other attack pa... Read more
- EPSS Score: %0.05
- Published: Mar. 25, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-38635
Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +10 more products- EPSS Score: %0.46
- Published: Sep. 15, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-38198
arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.... Read more
- EPSS Score: %0.09
- Published: Aug. 08, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-37519
Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted authenticattion file.... Read more
Affected Products : memcached- EPSS Score: %0.02
- Published: Feb. 03, 2023
- Modified: Mar. 26, 2025
-
5.5
MEDIUMCVE-2021-3669
A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS.... Read more
Affected Products : linux_kernel enterprise_linux fedora debian_linux enterprise_linux_server_aus enterprise_linux_server_tus spectrum_protect_plus openshift_container_platform enterprise_linux_eus virtualization_host +14 more products- EPSS Score: %0.01
- Published: Aug. 26, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-36003
Adobe Audition version 14.2 (and earlier) is affected by an out-of-bounds read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose arbitrary memory information in the context of th... Read more
- EPSS Score: %0.40
- Published: Nov. 19, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUM- EPSS Score: %0.37
- Published: Aug. 12, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-34304
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF files. This could re... Read more
- EPSS Score: %0.20
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-37692
TensorFlow is an end-to-end open source platform for machine learning. In affected versions under certain conditions, Go code can trigger a segfault in string deallocation. For string tensors, `C.TF_TString_Dealloc` is called during garbage collection wit... Read more
Affected Products : tensorflow- EPSS Score: %0.03
- Published: Aug. 12, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-33120
Out of bounds read under complex microarchitectural condition in memory subsystem for some Intel Atom(R) Processors may allow authenticated user to potentially enable information disclosure or cause denial of service via network access.... Read more
Affected Products : atom_p5942b atom_x6200fe atom_x6211e atom_x6212re atom_x6413e atom_x6425e atom_x6425re atom_x6427fe celeron_j6413 celeron_n6211 +40 more products- EPSS Score: %0.34
- Published: Feb. 09, 2022
- Modified: May. 05, 2025
-
5.5
MEDIUMCVE-2021-32437
The gf_hinter_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.... Read more
Affected Products : gpac- EPSS Score: %0.09
- Published: Aug. 11, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-32132
The abst_box_size function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command.... Read more
Affected Products : gpac- EPSS Score: %0.10
- Published: Sep. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-31319
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by an Integer Overflow in the LOTGradient::populate function of their custom fork of the rlottie library. A remote attacker might be able to access heap memory out-of-... Read more
Affected Products : telegram- EPSS Score: %0.20
- Published: May. 18, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-30964
An inherited permissions issue was addressed with additional restrictions. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2. A malicious application may be able to bypass Privacy preferences.... Read more
- EPSS Score: %0.18
- Published: Aug. 24, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-30963
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. Parsing a maliciously crafted audio file may lead to disclosure of user information.... Read more
- EPSS Score: %0.24
- Published: Aug. 24, 2021
- Modified: Nov. 21, 2024