Latest CVE Feed
-
6.1
MEDIUMCVE-2021-31903
In JetBrains YouTrack before 2021.1.9819, a pull request's title was sanitized insufficiently, leading to XSS.... Read more
Affected Products : youtrack- Published: May. 11, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31902
In JetBrains YouTrack before 2020.6.6600, access control during the exporting of issues was implemented improperly.... Read more
Affected Products : youtrack- Published: May. 11, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31901
In JetBrains Hub before 2021.1.13079, two-factor authentication wasn't enabled properly for the All Users group.... Read more
Affected Products : hub- Published: May. 11, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-31900
In JetBrains Code With Me bundled to the compatible IDE versions before 2021.1, a client could open a browser on a host.... Read more
Affected Products : code_with_me- Published: May. 11, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-31899
In JetBrains Code With Me bundled to the compatible IDEs before version 2021.1, the client could execute code in read-only mode.... Read more
Affected Products : code_with_me- Published: May. 11, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31898
In JetBrains WebStorm before 2021.1, HTTP requests were used instead of HTTPS.... Read more
Affected Products : webstorm- Published: May. 11, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-31897
In JetBrains WebStorm before 2021.1, code execution without user confirmation was possible for untrusted projects.... Read more
Affected Products : webstorm- Published: May. 11, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-31894
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.X (All versions < V9.1 SP2), SIMATIC PDM (All versions < V9.2 SP2), SIMATIC STEP 7 V5.X (All versions < V5.7), SINAMICS STARTER (containing STEP 7 OEM v... Read more
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-31893
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3), SIMATIC PDM (All versions < V9.2), SIMATIC STEP 7 V5.X (All versions < V5.6 SP2 HF3), SINAMICS STARTER (containing STEP 7 O... Read more
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
7.4
HIGHCVE-2021-31892
A vulnerability has been identified in SINUMERIK Analyse MyCondition (All versions), SINUMERIK Analyze MyPerformance (All versions), SINUMERIK Analyze MyPerformance /OEE-Monitor (All versions), SINUMERIK Analyze MyPerformance /OEE-Tuning (All versions), S... Read more
Affected Products : sinumerik_analyse_mycondition_firmware sinumerik_analyze_myperformance_firmware sinumerik_integrate_client_firmware sinumerik_integrate_for_production_firmware sinumerik_manage_mymachines_firmware sinumerik_manage_myprograms_firmware sinumerik_manage_myresources_firmware sinumerik_manage_mytools_firmware sinumerik_operate_firmware sinumerik_optimize_myprogramming_firmware +10 more products- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2021-31891
A vulnerability has been identified in Desigo CC (All versions with OIS Extension Module), GMA-Manager (All versions with OIS running on Debian 9 or earlier), Operation Scheduler (All versions with OIS running on Debian 9 or earlier), Siveillance Control ... Read more
Affected Products : debian_linux desigo_cc siveillance_control_pro gma-manager operation_scheduler siveillance_control- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
9.1
CRITICALCVE-2021-31890
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), PLUSCONTROL 1st Gen (All versions), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), SIMOTICS CONNECT 400 ... Read more
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
9.1
CRITICALCVE-2021-31889
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), PLUSCONTROL 1st Gen (All versions), SIMOTICS CONNECT 400 (All versions < V0.5.0.0). Malformed TCP packets... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware capital_vstar nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware +28 more products- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-31888
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware desigo_pxc00-e.d_firmware +38 more products- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-31887
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware desigo_pxc00-e.d_firmware +38 more products- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-31886
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware desigo_pxc00-e.d_firmware +38 more products- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31885
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-31884
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versi... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware capital_vstar nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware +39 more products- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31883
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303). When processing a DHCP ACK message, the DHCP client application does not validate the length of the Vendo... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware capital_vstar nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware +26 more products- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-31882
A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303). The DHCP client application does not validate the length of the Domain Name Server IP option(s) (0x06) wh... Read more
Affected Products : apogee_pxc_modular_firmware talon_tc_compact_firmware talon_tc_modular_firmware capital_vstar nucleus_net nucleus_readystart_v3 nucleus_source_code apogee_modular_building_controller_firmware apogee_modular_equiment_controller_firmware apogee_pxc_compact_firmware +26 more products- Published: Nov. 09, 2021
- Modified: Nov. 21, 2024