Latest CVE Feed
-
7.8
HIGHCVE-2021-34803
TeamViewer before 14.7.48644 on Windows loads untrusted DLLs in certain situations.... Read more
- EPSS Score: %0.03
- Published: Jun. 16, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-34802
A failure in resetting the security context in some transaction actions in Neo4j Graph Database 4.2 and 4.3 could allow authenticated users to execute commands with elevated privileges.... Read more
Affected Products : graph_databse- EPSS Score: %0.55
- Published: Jul. 30, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-34801
Valine 1.4.14 allows remote attackers to cause a denial of service (application outage) by supplying a ua (aka User-Agent) value that only specifies the product and version.... Read more
Affected Products : valine- EPSS Score: %1.05
- Published: Jun. 16, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-34800
Sensitive information could be logged. The following products are affected: Acronis Agent (Windows, Linux, macOS) before build 27147... Read more
Affected Products : agent- EPSS Score: %0.32
- Published: Nov. 29, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-34798
Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.... Read more
Affected Products : fedora zfs_storage_appliance_kit debian_linux cloud_backup peoplesoft_enterprise_peopletools http_server clustered_data_ontap http_server tenable.sc sinema_remote_connect_server +8 more products- EPSS Score: %10.97
- Published: Sep. 16, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-34797
Apache Geode versions up to 1.12.4 and 1.13.4 are vulnerable to a log file redaction of sensitive information flaw when using values that begin with characters other than letters or numbers for passwords and security properties with the prefix "sysprop-",... Read more
Affected Products : geode- EPSS Score: %0.36
- Published: Jan. 04, 2022
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2021-34795
Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network (PON) Series Switches Optical Network Terminal (ONT) could allow an unauthenticated, remote attacker to perform the following actions: Log in with... Read more
Affected Products : catalyst_pon_switch_cgp-ont-1p_firmware catalyst_pon_switch_cgp-ont-4p_firmware catalyst_pon_switch_cgp-ont-4pvc_firmware catalyst_pon_switch_cgp-ont-4tvcw_firmware catalyst_pon_switch_cgp-ont-4pv_firmware catalyst_pon_switch_cgp-ont-1p catalyst_pon_switch_cgp-ont-4p catalyst_pon_switch_cgp-ont-4pvc catalyst_pon_switch_cgp-ont-4tvcw catalyst_pon_switch_cgp-ont-4pv- EPSS Score: %1.26
- Published: Nov. 04, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-34794
A vulnerability in the Simple Network Management Protocol version 3 (SNMPv3) access control functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker... Read more
- EPSS Score: %0.36
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2021-34793
A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software operating in transparent mode could allow an unauthenticated, remote attacker to poison MAC address tables, resulting in ... Read more
- EPSS Score: %0.09
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2021-34792
A vulnerability in the memory management of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. Th... Read more
- EPSS Score: %0.43
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-34791
Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address Translation (NAT) feature of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attack... Read more
- EPSS Score: %0.99
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-34790
Multiple vulnerabilities in the Application Level Gateway (ALG) for the Network Address Translation (NAT) feature of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attack... Read more
- EPSS Score: %0.47
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2021-34789
A vulnerability in the web-based management interface of Cisco Tetration could allow an authenticated, remote attacker to perform a stored cross-site scripting (XSS) attack on an affected system. This vulnerability exists because the web-based management ... Read more
- EPSS Score: %0.17
- Published: Oct. 21, 2021
- Modified: Nov. 21, 2024
-
7.0
HIGHCVE-2021-34788
A vulnerability in the shared library loading mechanism of Cisco AnyConnect Secure Mobility Client for Linux and Mac OS could allow an authenticated, local attacker to perform a shared library hijacking attack on an affected device if the VPN Posture (Hos... Read more
- EPSS Score: %0.04
- Published: Oct. 06, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-34787
A vulnerability in the identity-based firewall (IDFW) rule processing feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass security protecti... Read more
- EPSS Score: %0.40
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-34786
Multiple vulnerabilities in Cisco BroadWorks CommPilot Application Software could allow an authenticated, remote attacker to delete arbitrary user accounts or gain elevated privileges on an affected system.... Read more
- EPSS Score: %0.22
- Published: Sep. 09, 2021
- Modified: Nov. 21, 2024
-
7.2
HIGHCVE-2021-34785
Multiple vulnerabilities in Cisco BroadWorks CommPilot Application Software could allow an authenticated, remote attacker to delete arbitrary user accounts or gain elevated privileges on an affected system.... Read more
- EPSS Score: %0.52
- Published: Sep. 09, 2021
- Modified: Nov. 21, 2024
-
5.4
MEDIUMCVE-2021-34784
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a us... Read more
- EPSS Score: %0.17
- Published: Nov. 04, 2021
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2021-34783
A vulnerability in the software-based SSL/TLS message handler of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting ... Read more
- EPSS Score: %0.30
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2021-34781
A vulnerability in the processing of SSH connections for multi-instance deployments of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. This ... Read more
- EPSS Score: %0.43
- Published: Oct. 27, 2021
- Modified: Nov. 21, 2024