Latest CVE Feed
-
9.8
CRITICALCVE-2021-31897
In JetBrains WebStorm before 2021.1, code execution without user confirmation was possible for untrusted projects.... Read more
Affected Products : webstorm- EPSS Score: %0.01
- Published: May. 11, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-31894
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.X (All versions < V9.1 SP2), SIMATIC PDM (All versions < V9.2 SP2), SIMATIC STEP 7 V5.X (All versions < V5.7), SINAMICS STARTER (containing STEP 7 OEM v... Read more
- EPSS Score: %0.03
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-31893
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3), SIMATIC PDM (All versions < V9.2), SIMATIC STEP 7 V5.X (All versions < V5.6 SP2 HF3), SINAMICS STARTER (containing STEP 7 O... Read more
- EPSS Score: %0.13
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
7.4
HIGHCVE-2021-31892
A vulnerability has been identified in SINUMERIK Analyse MyCondition (All versions), SINUMERIK Analyze MyPerformance (All versions), SINUMERIK Analyze MyPerformance /OEE-Monitor (All versions), SINUMERIK Analyze MyPerformance /OEE-Tuning (All versions), S... Read more
Affected Products : sinumerik_analyse_mycondition_firmware sinumerik_analyze_myperformance_firmware sinumerik_integrate_client_firmware sinumerik_integrate_for_production_firmware sinumerik_manage_mymachines_firmware sinumerik_manage_myprograms_firmware sinumerik_manage_myresources_firmware sinumerik_manage_mytools_firmware sinumerik_operate_firmware sinumerik_optimize_myprogramming_firmware +10 more products- EPSS Score: %0.10
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2021-31891
A vulnerability has been identified in Desigo CC (All versions with OIS Extension Module), GMA-Manager (All versions with OIS running on Debian 9 or earlier), Operation Scheduler (All versions with OIS running on Debian 9 or earlier), Siveillance Control ... Read more
Affected Products : debian_linux desigo_cc siveillance_control_pro gma-manager operation_scheduler siveillance_control- EPSS Score: %4.58
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
9.1
CRITICALCVE-2021-31890
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), PLUSCONTROL 1st Gen (All versions), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), SIMOTICS CONNECT 400 ... Read more
- EPSS Score: %2.50
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
9.1
CRITICALCVE-2021-31889
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), PLUSCONTROL 1st Gen (All versions), SIMOTICS CONNECT 400 (All versions < V0.5.0.0). Malformed TCP packets... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware capital_vstar nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware +28 more products- EPSS Score: %1.58
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-31888
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware desigo_pxc00-e.d_firmware +38 more products- EPSS Score: %2.83
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-31887
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware desigo_pxc00-e.d_firmware +38 more products- EPSS Score: %1.72
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-31886
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware desigo_pxc00-e.d_firmware +38 more products- EPSS Score: %3.89
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31885
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
- EPSS Score: %0.39
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-31884
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware capital_vstar nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware +39 more products- EPSS Score: %0.72
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31883
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303). When processing a DHCP ACK message, the DHCP client application does not validate the length of the Vendo... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware capital_vstar nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware +26 more products- EPSS Score: %1.41
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31882
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303). The DHCP client application does not validate the length of the Domain Name Server IP option(s) (0x06) wh... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware capital_vstar nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware +26 more products- EPSS Score: %1.41
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31881
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303). When processing a DHCP OFFER message, the DHCP client application does not validate the length of the Ven... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware capital_vstar nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware +26 more products- EPSS Score: %1.41
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-31879
GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007.... Read more
- EPSS Score: %0.11
- Published: Apr. 29, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-31878
An issue was discovered in PJSIP in Asterisk before 16.19.1 and before 18.5.1. To exploit, a re-INVITE without SDP must be received after Asterisk has sent a BYE request.... Read more
Affected Products : asterisk- EPSS Score: %0.40
- Published: Jul. 30, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-31876
Bitcoin Core 0.12.0 through 0.21.1 does not properly implement the replacement policy specified in BIP125, which makes it easier for attackers to trigger a loss of funds, or a denial of service attack against downstream projects such as Lightning network ... Read more
Affected Products : bitcoin- EPSS Score: %0.48
- Published: May. 13, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-31875
In mjs_json.c in Cesanta MongooseOS mJS 1.26, a maliciously formed JSON string can trigger an off-by-one heap-based buffer overflow in mjs_json_parse, which can potentially lead to redirection of control flow. NOTE: the original reporter disputes the sign... Read more
Affected Products : mongooseos_mjs- EPSS Score: %0.55
- Published: Apr. 29, 2021
- Modified: Nov. 21, 2024
-
5.9
MEDIUMCVE-2021-31874
Zoho ManageEngine ADSelfService Plus before 6104, in rare situations, allows attackers to obtain sensitive information about the password-sync database application.... Read more
Affected Products : manageengine_adselfservice_plus- EPSS Score: %1.22
- Published: Jul. 02, 2021
- Modified: Nov. 21, 2024