Latest CVE Feed
-
5.3
MEDIUMCVE-2021-37175
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501 (All versions < V2.14.1), RUGGEDCOM ROX RX1510 (All ve... Read more
Affected Products : ruggedcom_rox_mx5000_firmware ruggedcom_rox_rx1400_firmware ruggedcom_rox_rx1500_firmware ruggedcom_rox_rx1501_firmware ruggedcom_rox_rx1510_firmware ruggedcom_rox_rx1511_firmware ruggedcom_rox_rx1512_firmware ruggedcom_rox_rx1524_firmware ruggedcom_rox_rx1536_firmware ruggedcom_rox_rx5000_firmware +10 more products- EPSS Score: %0.24
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-37174
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501 (All versions < V2.14.1), RUGGEDCOM ROX RX1510 (All ve... Read more
Affected Products : ruggedcom_rox_mx5000_firmware ruggedcom_rox_rx1400_firmware ruggedcom_rox_rx1500_firmware ruggedcom_rox_rx1501_firmware ruggedcom_rox_rx1510_firmware ruggedcom_rox_rx1511_firmware ruggedcom_rox_rx1512_firmware ruggedcom_rox_rx1524_firmware ruggedcom_rox_rx1536_firmware ruggedcom_rox_rx5000_firmware +10 more products- EPSS Score: %0.56
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-37173
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501 (All versions < V2.14.1), RUGGEDCOM ROX RX1510 (All ve... Read more
Affected Products : ruggedcom_rox_mx5000_firmware ruggedcom_rox_rx1400_firmware ruggedcom_rox_rx1500_firmware ruggedcom_rox_rx1501_firmware ruggedcom_rox_rx1510_firmware ruggedcom_rox_rx1511_firmware ruggedcom_rox_rx1512_firmware ruggedcom_rox_rx1524_firmware ruggedcom_rox_rx1536_firmware ruggedcom_rox_rx5000_firmware +10 more products- EPSS Score: %1.55
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-37172
A vulnerability has been identified in SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (V4.5.0). Affected devices fail to authenticate against configured passwords when provisioned using TIA Portal V13. This could allow an attacker using TIA Portal V13... Read more
Affected Products : simatic_s7-1200_cpu_firmware simatic_step_7_\(tia_portal\) simatic_s7-1200_firmware cpu_1211c cpu_1212c cpu_1212fc cpu_1214c cpu_1214fc cpu_1215c cpu_1215fc +1 more products- EPSS Score: %0.19
- Published: Aug. 10, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-37167
An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. A user logged in using the default credentials can gain root access to the devic... Read more
- EPSS Score: %0.58
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-37166
A buffer overflow issue leading to denial of service was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When HMI3 starts up, it binds a local service to a TCP po... Read more
- EPSS Score: %0.87
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37165
A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When a message is sent to the HMI TCP socket, it is forwarded to the hmiProcessMsg fun... Read more
- EPSS Score: %5.00
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37164
A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. In the tcpTxThread function, the received data is copied to a stack buffer. An off-by-... Read more
- EPSS Score: %0.80
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37163
An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus operated by released versions of software before Nexus Software 7.2.5.7. The device has two user accounts with passwords that are hardcoded.... Read more
- EPSS Score: %0.58
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37162
A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. If an attacker sends a malformed UDP message, a buffer underflow occurs, leading to an... Read more
- EPSS Score: %7.56
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37161
A buffer overflow issue was discovered in the HMI3 Control Panel contained within the Swisslog Healthcare Nexus Panel, operated by released versions of software before Nexus Software 7.2.5.7. A buffer overflow allows an attacker to overwrite an internal q... Read more
- EPSS Score: %7.56
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37160
A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware validation (e.g., cryptographic signature validation) during ... Read more
- EPSS Score: %2.03
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
6.4
MEDIUMCVE-2021-37159
hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free.... Read more
- EPSS Score: %0.03
- Published: Jul. 21, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-37158
An issue was discovered in OpenGamePanel OGP-Agent-Linux through 2021-08-14. An authenticated attacker could inject OS commands by starting a Counter-Strike server and using the map field to enter a Bash command.... Read more
Affected Products : opengamepanel- EPSS Score: %0.42
- Published: Nov. 10, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-37157
An issue was discovered in OpenGamePanel OGP-Agent-Linux through 2021-08-14. $HOME/OGP/Cfg/Config.pm has the root password in cleartext.... Read more
Affected Products : opengamepanel- EPSS Score: %0.26
- Published: Nov. 10, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-37156
Redmine 4.2.0 and 4.2.1 allow existing user sessions to continue upon enabling two-factor authentication for the user's account, but the intended behavior is for those sessions to be terminated.... Read more
Affected Products : redmine- EPSS Score: %0.25
- Published: Aug. 05, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37155
wolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number in an OCSP request differs from the serial number in the OCSP response.... Read more
Affected Products : wolfssl- EPSS Score: %0.51
- Published: Jul. 21, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-37154
In ForgeRock Access Management (AM) before 7.0.2, the SAML2 implementation allows XML injection, potentially enabling a fraudulent SAML 2.0 assertion.... Read more
Affected Products : access_management- EPSS Score: %0.53
- Published: Aug. 25, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37153
ForgeRock Access Management (AM) before 7.0.2, when configured with Active Directory as the Identity Store, has an authentication-bypass issue.... Read more
Affected Products : access_management- EPSS Score: %0.63
- Published: Aug. 25, 2021
- Modified: Nov. 21, 2024
-
5.4
MEDIUMCVE-2021-37152
Multiple XSS issues exist in Sonatype Nexus Repository Manager 3 before 3.33.0. An authenticated attacker with the ability to add HTML files to a repository could redirect users to Nexus Repository Manager’s pages with code modifications.... Read more
Affected Products : nexus_repository_manager- EPSS Score: %3.22
- Published: Aug. 10, 2021
- Modified: Nov. 21, 2024