Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

4.9

MEDIUM

CVE-2021-28193

The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnorm...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28192

The specific function in ASUS BMC’s firmware Web management page (Remote video storage function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28191

The Firmware update function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormall...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28190

The specific function in ASUS BMC’s firmware Web management page (Generate new certificate function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers...

Affected Products : asmb9-ikvm_firmware rs720a-e9-rs24-e_firmware rs700a-e9-rs4_firmware rs700-e9-rs4_firmware esc4000_g4x_firmware rs700-e9-rs12_firmware rs100-e10-pi2_firmware rs300-e10-ps4_firmware rs300-e10-rs4_firmware rs500a-e9-ps4_firmware +78 more products
EPSS Score: %0.66

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28189

The SMTP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnorm...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28188

The specific function in ASUS BMC’s firmware Web management page (Modify user’s information function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attacker...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28187

The specific function in ASUS BMC’s firmware Web management page (Generate new SSL certificate) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use ...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.66

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28186

The specific function in ASUS BMC’s firmware Web management page (ActiveX configuration-2 acquisition) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attacke...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28185

The specific function in ASUS BMC’s firmware Web management page (ActiveX configuration-1 acquisition) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attacke...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28184

The Active Directory configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leaka...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28183

The specific function in ASUS BMC’s firmware Web management page (Web License configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28182

The Web Service configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28181

The specific function in ASUS BMC’s firmware Web management page (Remote video configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attacker...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28180

The specific function in ASUS BMC’s firmware Web management page (Audit log configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers u...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28179

The specific function in ASUS BMC’s firmware Web management page (Media support configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attacke...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28178

The UEFI configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnorm...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28177

The LDAP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnorm...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28176

The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnorma...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
4.9

MEDIUM

CVE-2021-28175

The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abno...

Affected Products : z10pr-d16_firmware asmb8-ikvm_firmware z10pe-d16_ws_firmware z10pr-d16 asmb8-ikvm z10pe-d16_ws
EPSS Score: %0.90

Published: Apr. 06, 2021

Modified: Nov. 21, 2024
6.5

MEDIUM

CVE-2021-28174

Mitake smart stock selection system contains a broken authentication vulnerability. By manipulating the parameters in the URL, remote attackers can gain the privileged permissions to access transaction record, and fraudulent trading without login....

Affected Products : smart_stock_selection
EPSS Score: %0.14

Published: Apr. 08, 2021

Modified: Nov. 21, 2024

Showing 20 of 291741 Results

Latest CVE Feed

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

4.9

6.5

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable