Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.5

    MEDIUM
    CVE-2021-32436

    An out-of-bounds read in the function write_title() in subs.c of abcm2ps v8.14.11 allows remote attackers to cause a Denial of Service (DoS) via unspecified vectors.... Read more

    Affected Products : fedora debian_linux abcm2ps
    • EPSS Score: %0.20
    • Published: Mar. 10, 2022
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2021-32435

    Stack-based buffer overflow in the function get_key in parse.c of abcm2ps v8.14.11 allows remote attackers to cause a Denial of Service (DoS) via unspecified vectors.... Read more

    Affected Products : fedora debian_linux abcm2ps
    • EPSS Score: %0.13
    • Published: Mar. 10, 2022
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2021-32434

    abcm2ps v8.14.11 was discovered to contain an out-of-bounds read in the function calculate_beam at draw.c.... Read more

    Affected Products : fedora debian_linux abcm2ps
    • EPSS Score: %0.09
    • Published: Mar. 10, 2022
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2021-32428

    SQL Injection vulnerability in viaviwebtech Android EBook App (Books App, PDF, ePub, Online Book Reading, Download Books) 10 via the author_id parameter to api.php.... Read more

    Affected Products : ebook
    • EPSS Score: %0.43
    • Published: Jul. 01, 2022
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2021-32426

    In TrendNet TW100-S4W1CA 2.3.32, it is possible to inject arbitrary JavaScript into the router's web interface via the "echo" command.... Read more

    Affected Products : tw100-s4w1ca_firmware tw100-s4w1ca
    • EPSS Score: %0.24
    • Published: Jun. 17, 2021
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2021-32424

    In TrendNet TW100-S4W1CA 2.3.32, due to a lack of proper session controls, a threat actor could make unauthorized changes to an affected router via a specially crafted web page. If an authenticated user were to interact with a malicious web page it could ... Read more

    Affected Products : tw100-s4w1ca_firmware tw100-s4w1ca
    • EPSS Score: %0.21
    • Published: Jun. 17, 2021
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-32422

    dpic 2021.01.01 has a Global buffer overflow in theyylex() function in main.c and reads out of the bound array.... Read more

    Affected Products : dpic
    • EPSS Score: %0.18
    • Published: Aug. 22, 2023
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-32421

    dpic 2021.01.01 has a Heap Use-After-Free in thedeletestringbox() function in dpic.y.... Read more

    Affected Products : dpic
    • EPSS Score: %0.13
    • Published: Aug. 22, 2023
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2021-32420

    dpic 2021.01.01 has a Heap-based Buffer Overflow in thestorestring function in dpic.y.... Read more

    Affected Products : dpic
    • EPSS Score: %0.13
    • Published: Aug. 22, 2023
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2021-32403

    Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of security mechanisms for token protection and unsafe inputs and modules.... Read more

    Affected Products : rf_301k_firmware rf_301k
    • EPSS Score: %0.53
    • Published: May. 17, 2021
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2021-32402

    Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of validation and insecure configurations in inputs and modules.... Read more

    Affected Products : rf_301k_firmware rf_301k
    • EPSS Score: %0.14
    • Published: May. 17, 2021
    • Modified: Nov. 21, 2024

  • 7.0

    HIGH
    CVE-2021-32399

    net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller.... Read more

    • EPSS Score: %0.08
    • Published: May. 10, 2021
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2021-32305

    WebSVN before 2.6.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the search parameter.... Read more

    Affected Products : websvn
    • EPSS Score: %93.29
    • Published: May. 18, 2021
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2021-32302

    Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter.... Read more

    Affected Products : ruh2_firmware ruh2
    • EPSS Score: %0.09
    • Published: Feb. 27, 2023
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2021-32299

    An issue was discovered in pbrt through 20200627. A stack-buffer-overflow exists in the function pbrt::ParamSet::ParamSet() located in paramset.h. It allows an attacker to cause code Execution.... Read more

    Affected Products : pbrt
    • EPSS Score: %0.41
    • Published: Sep. 20, 2021
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2021-32298

    An issue was discovered in libiff through 20190123. A global-buffer-overflow exists in the function IFF_errorId located in error.c. It allows an attacker to cause code Execution.... Read more

    Affected Products : libiff
    • EPSS Score: %0.59
    • Published: Sep. 20, 2021
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2021-32297

    An issue was discovered in LIEF through 0.11.4. A heap-buffer-overflow exists in the function main located in pe_reader.c. It allows an attacker to cause code Execution.... Read more

    Affected Products : lief
    • EPSS Score: %0.55
    • Published: Sep. 20, 2021
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2021-32294

    An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution.... Read more

    Affected Products : libgig
    • EPSS Score: %0.55
    • Published: Sep. 20, 2021
    • Modified: Nov. 21, 2024

  • 5.5

    MEDIUM
    CVE-2021-32289

    An issue was discovered in heif through through v3.6.2. A NULL pointer dereference exists in the function convertByteStreamToRBSP() located in nalutil.cpp. It allows an attacker to cause Denial of Service.... Read more

    Affected Products : heif
    • EPSS Score: %0.14
    • Published: Sep. 20, 2021
    • Modified: Nov. 21, 2024

  • 7.8

    HIGH
    CVE-2021-32288

    An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicHeight() located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution.... Read more

    Affected Products : heif
    • EPSS Score: %0.41
    • Published: Sep. 20, 2021
    • Modified: Nov. 21, 2024
Showing 20 of 292318 Results