Latest CVE Feed
-
9.8
CRITICALCVE-2021-40499
Client-side printing services SAP Cloud Print Manager and SAPSprint for SAP NetWeaver Application Server for ABAP - versions 7.70, 7.70 PI, 7.70 BYD, allow an attacker to inject code that can be executed by the application. An attacker could thereby contr... Read more
Affected Products : netweaver_application_server_abap- Published: Oct. 12, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-40498
A vulnerability has been identified in SAP SuccessFactors Mobile Application for Android - versions older than 2108, which allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service, which can lead ... Read more
Affected Products : successfactors_mobile- Published: Oct. 12, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-40497
SAP BusinessObjects Analysis (edition for OLAP) - versions 420, 430, allows an attacker to exploit certain application endpoints to read sensitive data. These endpoints are normally exposed over the network and successful exploitation could lead to exposu... Read more
Affected Products : businessobjects_analysis- Published: Oct. 12, 2021
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2021-40496
SAP Internet Communication framework (ICM) - versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 785, allows an attacker with logon functionality, to exploit the authentication function by using POST and form field to repeat executio... Read more
- Published: Oct. 12, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-40495
There are multiple Denial-of Service vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 740, 750, 751, 752, 753, 754, 755. An unauthorized attacker can use the public SICF service /sap/public/bc/abap to reduce the pe... Read more
- Published: Oct. 12, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-40494
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows attackers to gain admin access to the host system.... Read more
Affected Products : lxdui- Published: Sep. 03, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-40493
Zoho ManageEngine OpManager before 125437 is vulnerable to SQL Injection in the support diagnostics module. This occurs via the pollingObject parameter of the getDataCollectionFailureReason API.... Read more
Affected Products : manageengine_opmanager- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-40492
A reflected XSS vulnerability exists in multiple pages in version 22 of the Gibbon application that allows for arbitrary execution of JavaScript (gibbonCourseClassID, gibbonPersonID, subpage, currentDate, or allStudents to index.php).... Read more
Affected Products : gibbon- Published: Sep. 03, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-40491
The ftp client in GNU Inetutils before 2.2 does not validate addresses returned by PASV/LSPV responses to make sure they match the server address. This is similar to CVE-2020-8284 for curl.... Read more
- Published: Sep. 03, 2021
- Modified: Nov. 21, 2024
-
7.0
HIGHCVE-2021-40490
A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.... Read more
Affected Products : linux_kernel fedora debian_linux h410c_firmware h300s_firmware h500s_firmware h700s_firmware h410s_firmware h615c_firmware h610s_firmware +19 more products- Published: Sep. 03, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-40489
Storage Spaces Controller Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +12 more products- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-40488
Storage Spaces Controller Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_8.1 windows_rt_8.1 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_server_2022 +8 more products- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-40486
Microsoft Word Remote Code Execution Vulnerability... Read more
Affected Products : sharepoint_enterprise_server office word sharepoint_server office_online_server office_web_apps_server- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
7.6
HIGH- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
7.6
HIGHCVE-2021-40483
Microsoft SharePoint Server Spoofing Vulnerability... Read more
Affected Products : sharepoint_server- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-40482
Microsoft SharePoint Server Information Disclosure Vulnerability... Read more
Affected Products : sharepoint_server- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGH- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGH- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGH- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-40478
Storage Spaces Controller Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_8.1 windows_rt_8.1 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_server_2022 +8 more products- Published: Oct. 13, 2021
- Modified: Nov. 21, 2024