Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

9.0

HIGH

CVE-2021-41018

A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests....

Affected Products : fortiweb
Published: Feb. 02, 2022

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-41017

Multiple heap-based buffer overflow vulnerabilities in some web API controllers of FortiWeb 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may allow a remote authenticated attacker to execute arbitrary code or commands via specifically crafted HTTP requests....

Affected Products : fortiweb
Published: Dec. 08, 2021

Modified: Nov. 21, 2024
9.0

HIGH

CVE-2021-41016

A improper neutralization of special elements used in a command ('command injection') in Fortinet FortiExtender version 7.0.1 and below, 4.2.3 and below, 4.1.7 and below allows an authenticated attacker to execute privileged shell commands via CLI command...

Affected Products : fortiextender_firmware fortiextender
Published: Feb. 02, 2022

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2021-41015

A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests to SAML login handler...

Affected Products : fortiweb
Published: Dec. 08, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-41014

A uncontrolled resource consumption in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows an unauthenticated attacker to make the httpsd daemon unresponsive via huge HTTP packets...

Affected Products : fortiweb
Published: Dec. 08, 2021

Modified: Nov. 21, 2024
5.3

MEDIUM

CVE-2021-41013

An improper access control vulnerability [CWE-284] in FortiWeb versions 6.4.1 and below and 6.3.15 and below in the Report Browse section of Log & Report may allow an unauthorized and unauthenticated user to access the Log reports via their URLs....

Affected Products : fortiweb
Published: Dec. 08, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-41011

LINE client for iOS before 11.15.0 might expose authentication information for a certain service to external entities under certain conditions. This is usually impossible, but in combination with a server-side bug, attackers could get this information....

Affected Products : line
Published: Sep. 22, 2021

Modified: Nov. 21, 2024
6.8

MEDIUM

CVE-2021-41005

A remote vulnerability was discovered in Aruba Instant On 1930 Switch Series version(s): Firmware below v1.0.7.0....

Affected Products : aruba_instant_on_1930_8g_2sfp_firmware aruba_instant_on_1930_8g_class4_poe_2sfp_124w_firmware aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w_firmware aruba_instant_on_1930_48g_4sfp\/sfp\+_firmware aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w_firmware aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_195w_firmware aruba_instant_on_1930_24g_4sfp\/sfp\+_firmware aruba_instant_on_1930_8g_2sfp aruba_instant_on_1930_8g_class4_poe_2sfp_124w aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w +4 more products
Published: Apr. 12, 2022

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-41004

A remote vulnerability was discovered in Aruba Instant On 1930 Switch Series version(s): Firmware below v1.0.7.0....

Affected Products : aruba_instant_on_1930_8g_2sfp_firmware aruba_instant_on_1930_8g_class4_poe_2sfp_124w_firmware aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w_firmware aruba_instant_on_1930_48g_4sfp\/sfp\+_firmware aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w_firmware aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_195w_firmware aruba_instant_on_1930_24g_4sfp\/sfp\+_firmware aruba_instant_on_1930_8g_2sfp aruba_instant_on_1930_8g_class4_poe_2sfp_124w aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w +4 more products
Published: Apr. 12, 2022

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2021-41003

Multiple unauthenticated command injection vulnerabilities were discovered in the AOS-CX API interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Swit...

Affected Products : arubaos-cx aruba_cx_6200f aruba_cx_6300f aruba_cx_6300m aruba_cx_6405 aruba_cx_6410 aruba_8320 aruba_8325-32-c aruba_8325-48y8c aruba_8360-12c +5 more products
Published: Mar. 02, 2022

Modified: Nov. 21, 2024
8.5

HIGH

CVE-2021-41002

Multiple authenticated remote path traversal vulnerabilities were discovered in the AOS-CX command line interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Arub...

Affected Products : arubaos-cx aruba_cx_6200f aruba_cx_6300f aruba_cx_6300m aruba_cx_6405 aruba_cx_6410 aruba_8320 aruba_8325-32-c aruba_8325-48y8c aruba_8360-12c +5 more products
Published: Mar. 02, 2022

Modified: Nov. 21, 2024
9.0

HIGH

CVE-2021-41001

An authenticated remote code execution vulnerability was discovered in the AOS-CX Network Analytics Engine (NAE) in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba...

Affected Products : arubaos-cx aruba_cx_6200f aruba_cx_6300f aruba_cx_6300m aruba_cx_6405 aruba_cx_6410 aruba_8320 aruba_8325-32-c aruba_8325-48y8c aruba_8360-12c +5 more products
Published: Mar. 02, 2022

Modified: Nov. 21, 2024
9.0

HIGH

CVE-2021-41000

Multiple authenticated remote code execution vulnerabilities were discovered in the AOS-CX command line interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Arub...

Affected Products : arubaos-cx aruba_cx_6200f aruba_cx_6300f aruba_cx_6300m aruba_cx_6405 aruba_cx_6410 aruba_8320 aruba_8325-32-c aruba_8325-48y8c aruba_8360-12c +5 more products
Published: Mar. 02, 2022

Modified: Nov. 21, 2024
7.2

HIGH

CVE-2021-40999

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior ...

Affected Products : clearpass_policy_manager
Published: Oct. 15, 2021

Modified: Nov. 21, 2024
9.0

HIGH

CVE-2021-40998

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior ...

Affected Products : clearpass_policy_manager
Published: Oct. 15, 2021

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2021-40997

A remote authentication bypass vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8...

Affected Products : clearpass_policy_manager
Published: Oct. 15, 2021

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2021-40996

A remote authentication bypass vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8...

Affected Products : clearpass_policy_manager
Published: Oct. 15, 2021

Modified: Nov. 21, 2024
6.5

MEDIUM

CVE-2021-40995

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior ...

Affected Products : clearpass_policy_manager
Published: Oct. 15, 2021

Modified: Nov. 21, 2024
6.5

MEDIUM

CVE-2021-40994

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior ...

Affected Products : clearpass_policy_manager
Published: Oct. 15, 2021

Modified: Nov. 21, 2024
8.1

HIGH

CVE-2021-40993

A remote SQL injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. ...

Affected Products : clearpass_policy_manager
Published: Oct. 15, 2021

Modified: Nov. 21, 2024

Showing 20 of 293334 Results

Browse by Apps

Latest CVE Feed

9.0

8.8

9.0

6.1

7.5

5.3

7.5

6.8

7.8

6.1

8.5

9.0

9.0

7.2

9.0

9.8

9.8

6.5

6.5

8.1

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable