Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

6.3

MEDIUM

CVE-2021-3802

A vulnerability found in udisks2. This flaw allows an attacker to input a specially crafted image file/USB leading to kernel panic. The highest threat from this vulnerability is to system availability....

Affected Products : enterprise_linux fedora udisks
Published: Nov. 29, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-3801

prism is vulnerable to Inefficient Regular Expression Complexity...

Affected Products : prism
Published: Sep. 15, 2021

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2021-3800

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition....

Affected Products : debian_linux active_iq_unified_manager glib
Published: Aug. 23, 2022

Modified: Nov. 21, 2024
5.8

MEDIUM

CVE-2021-3799

grav-plugin-admin is vulnerable to Improper Restriction of Rendered UI Layers or Frames...

Affected Products : grav-plugin-admin
Published: Sep. 27, 2021

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2021-3798

A flaw was found in openCryptoki. The openCryptoki Soft token does not check if an EC key is valid when an EC key is created via C_CreateObject, nor when C_DeriveKey is used with ECDH public data. This may allow a malicious user to extract the private key...

Affected Products : opencryptoki
Published: Aug. 23, 2022

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2021-3797

hestiacp is vulnerable to Use of Wrong Operator in String Comparison...

Affected Products : control_panel
Published: Sep. 15, 2021

Modified: Nov. 21, 2024
8.2

HIGH

CVE-2021-3796

vim is vulnerable to Use After Free...

Affected Products : fedora debian_linux ontap_select_deploy_administration_utility vim
Published: Sep. 15, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-3795

semver-regex is vulnerable to Inefficient Regular Expression Complexity...

Affected Products : semver-regex
Published: Sep. 15, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-3794

vuelidate is vulnerable to Inefficient Regular Expression Complexity...

Affected Products : vuelidate
Published: Sep. 15, 2021

Modified: Nov. 21, 2024
6.5

MEDIUM

CVE-2021-3793

An improper access control vulnerability was reported in some Motorola-branded Binatone Hubble Cameras which could allow an unauthenticated attacker on the same network as the device to access administrative pages that could result in information disclosu...

Affected Products : halo\+_camera_firmware comfort_85_connect_firmware mbp3855_firmware focus_68_firmware focus_72r_firmware cn28_firmware cn50_firmware comfort_40_firmware comfort_50_connect_firmware mbp4855_firmware +32 more products
Published: Nov. 12, 2021

Modified: Nov. 21, 2024
5.3

MEDIUM

CVE-2021-3792

Some device communications in some Motorola-branded Binatone Hubble Cameras with backend Hubble services are not encrypted which could lead to the communication channel being accessible by an attacker....

Affected Products : halo\+_camera_firmware comfort_85_connect_firmware mbp3855_firmware focus_68_firmware focus_72r_firmware cn28_firmware cn50_firmware comfort_40_firmware comfort_50_connect_firmware mbp4855_firmware +32 more products
Published: Nov. 12, 2021

Modified: Nov. 21, 2024
6.5

MEDIUM

CVE-2021-3791

An information disclosure vulnerability was reported in some Motorola-branded Binatone Hubble Cameras that could allow an unauthenticated attacker on the same subnet to download an encrypted log file containing sensitive information such as WiFi SSID and ...

Affected Products : halo\+_camera_firmware comfort_85_connect_firmware mbp3855_firmware focus_68_firmware focus_72r_firmware cn28_firmware cn50_firmware comfort_40_firmware comfort_50_connect_firmware mbp4855_firmware +32 more products
Published: Nov. 12, 2021

Modified: Nov. 21, 2024
6.5

MEDIUM

CVE-2021-3790

A buffer overflow was reported in the local web server of some Motorola-branded Binatone Hubble Cameras that could allow an unauthenticated attacker on the same network to perform a denial-of-service attack against the device....

Affected Products : halo\+_camera_firmware comfort_85_connect_firmware mbp3855_firmware focus_68_firmware focus_72r_firmware cn28_firmware cn50_firmware comfort_40_firmware comfort_50_connect_firmware mbp4855_firmware +32 more products
Published: Nov. 12, 2021

Modified: Nov. 21, 2024
4.6

MEDIUM

CVE-2021-3789

An information disclosure vulnerability was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attacker with physical access to obtain the encryption key used to decrypt firmware update packages....

Affected Products : halo\+_camera_firmware comfort_85_connect_firmware mbp3855_firmware focus_68_firmware focus_72r_firmware cn28_firmware cn50_firmware comfort_40_firmware comfort_50_connect_firmware mbp4855_firmware +32 more products
Published: Nov. 12, 2021

Modified: Nov. 21, 2024
6.8

MEDIUM

CVE-2021-3788

An exposed debug interface was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attacker with physical access unauthorized access to the device....

Affected Products : halo\+_camera_firmware comfort_85_connect_firmware mbp3855_firmware focus_68_firmware focus_72r_firmware cn28_firmware cn50_firmware comfort_40_firmware comfort_50_connect_firmware mbp4855_firmware +32 more products
Published: Nov. 12, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-3787

A vulnerability was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attacker with local access to obtain the MQTT credentials that could result in unauthorized access to backend Hubble services....

Affected Products : halo\+_camera_firmware comfort_85_connect_firmware mbp3855_firmware focus_68_firmware focus_72r_firmware cn28_firmware cn50_firmware comfort_40_firmware comfort_50_connect_firmware mbp4855_firmware +32 more products
Published: Nov. 12, 2021

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2021-3786

A potential vulnerability in the SMI callback function used in CSME configuration of some Lenovo Notebook and ThinkPad systems could be used to leak out data out of the SMRAM range....

Affected Products : thinkpad_l380_firmware thinkpad_e480_firmware thinkpad_e580_firmware thinkpad_l480_firmware thinkpad_l580_firmware thinkpad_p51_firmware thinkpad_p51s_firmware thinkpad_p52_firmware thinkpad_p52s_firmware thinkpad_p71_firmware +256 more products
Published: Nov. 12, 2021

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-3785

yourls is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...

Affected Products : yourls
Published: Sep. 15, 2021

Modified: Nov. 21, 2024
7.0

HIGH

CVE-2021-3784

Garuda Linux performs an insecure user creation and authentication that allows any user to impersonate the created account. By creating users from the 'Garuda settings manager', an insecure procedure is performed that keeps the created user without an ass...

Affected Products : garuda_linux
Published: Oct. 04, 2023

Modified: Nov. 21, 2024
6.6

MEDIUM

CVE-2021-3783

yourls is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...

Affected Products : yourls
Published: Sep. 15, 2021

Modified: Nov. 21, 2024

Showing 20 of 293308 Results

Browse by Apps

Latest CVE Feed

6.3

7.5

5.5

5.8

5.5

9.8

8.2

7.5

7.5

6.5

5.3

6.5

6.5

4.6

6.8

7.8

5.5

8.8

7.0

6.6

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable