Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

6.8

MEDIUM

CVE-2021-28208

The specific function in ASUS BMC’s firmware Web management page (Get video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files....

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.50

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
6.8

MEDIUM

CVE-2021-28207

The specific function in ASUS BMC’s firmware Web management page (Get Help file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files....

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.50

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
6.8

MEDIUM

CVE-2021-28206

The specific function in ASUS BMC’s firmware Web management page (Record video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files....

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.50

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
6.8

MEDIUM

CVE-2021-28205

The specific function in ASUS BMC’s firmware Web management page (Delete SOL video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system file...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.50

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
7.2

HIGH

CVE-2021-28204

The specific function in ASUS BMC’s firmware Web management page (Modify user’s information function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can launch command injection to execute command arbit...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %1.75

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
7.2

HIGH

CVE-2021-28203

The Web Set Media Image function in ASUS BMC’s firmware Web management page does not filter the specific parameter. As obtaining the administrator permission, remote attackers can launch command injection to execute command arbitrary....

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %1.75

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28202

The Service configuration-2 function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to a...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28201

The Service configuration-1 function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to a...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28200

The CD media configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to ab...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28199

The specific function in ASUS BMC’s firmware Web management page (Modify user’s information function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attacker...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28198

The Firmware protocol configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leak...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28197

The Active Directory configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leaka...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28196

The specific function in ASUS BMC’s firmware Web management page (Generate SSL certificate function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.66

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28195

The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abno...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28194

The specific function in ASUS BMC’s firmware Web management page (Remote image configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attacker...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28193

The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnorm...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28192

The specific function in ASUS BMC’s firmware Web management page (Remote video storage function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28191

The Firmware update function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormall...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28190

The specific function in ASUS BMC’s firmware Web management page (Generate new certificate function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.66

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28189

The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnorm...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024

Showing 20 of 291736 Results

Latest CVE Feed

6.8

6.8

6.8

6.8

7.2

7.2

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable