Latest CVE Feed
-
7.8
HIGHCVE-2021-27116
An issue was discovered in file profile.go in function MemProf in beego through 2.0.2, allows attackers to launch symlink attacks locally.... Read more
Affected Products : beego- EPSS Score: %0.16
- Published: Apr. 05, 2022
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-27114
An issue was discovered in D-Link DIR-816 A2 1.10 B05 devices. Within the handler function of the /goform/addassignment route, a very long text entry for the"'s_ip" and "s_mac" fields could lead to a Stack-Based Buffer Overflow and overwrite the return ad... Read more
- EPSS Score: %1.36
- Published: Apr. 14, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-27113
An issue was discovered in D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction within the handler function of the /goform/addRouting route. This could lead to Command Injection via Shell Metacharacters.... Read more
- EPSS Score: %28.61
- Published: Apr. 14, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-27112
LightCMS v1.3.5 contains a remote code execution vulnerability in /app/Http/Controllers/Admin/NEditorController.php during the downloading of external images.... Read more
Affected Products : lightcms- EPSS Score: %2.23
- Published: Apr. 15, 2021
- Modified: Nov. 21, 2024
-
6.8
MEDIUMCVE-2021-27099
In SPIRE before versions 0.8.5, 0.9.4, 0.10.2, 0.11.3 and 0.12.1, the "aws_iid" Node Attestor improperly normalizes the path provided through the agent ID templating feature, which may allow the issuance of an arbitrary SPIFFE ID within the same trust dom... Read more
Affected Products : spire- EPSS Score: %0.21
- Published: Mar. 05, 2021
- Modified: Nov. 21, 2024
-
8.1
HIGHCVE-2021-27098
In SPIRE 0.8.1 through 0.8.4 and before versions 0.9.4, 0.10.2, 0.11.3 and 0.12.1, specially crafted requests to the FetchX509SVID RPC of SPIRE Server’s Legacy Node API can result in the possible issuance of an X.509 certificate with a URI SAN for a SPIFF... Read more
Affected Products : spire- EPSS Score: %0.12
- Published: Mar. 05, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-27097
The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT.... Read more
Affected Products : u-boot- EPSS Score: %0.09
- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-27096
NTFS Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +9 more products- EPSS Score: %0.28
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-27095
Windows Media Video Decoder Remote Code Execution Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +10 more products- EPSS Score: %0.78
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
4.4
MEDIUMCVE-2021-27094
Windows Early Launch Antimalware Driver Security Feature Bypass Vulnerability... Read more
Affected Products : windows_10 windows_8.1 windows_rt_8.1 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_1507 +6 more products- EPSS Score: %0.41
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-27093
Windows Kernel Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +10 more products- EPSS Score: %0.44
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-27092
Azure AD Web Sign-in Security Feature Bypass Vulnerability... Read more
- EPSS Score: %10.59
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGH- EPSS Score: %0.40
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-27090
Windows Secure Kernel Mode Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_10_1809 windows_10_20h2 windows_server_20h2 windows_server_2004- EPSS Score: %3.47
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-27089
Microsoft Internet Messaging API Remote Code Execution Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +10 more products- EPSS Score: %0.43
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-27088
Windows Event Tracing Elevation of Privilege Vulnerability... Read more
- EPSS Score: %0.22
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-27086
Windows Services and Controller App Elevation of Privilege Vulnerability... Read more
- EPSS Score: %0.28
- Published: Apr. 13, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-27085
Internet Explorer Remote Code Execution Vulnerability... Read more
- Actively Exploited
- EPSS Score: %3.31
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
9.3
HIGHCVE-2021-27083
Remote Development Extension for Visual Studio Code Remote Code Execution Vulnerability... Read more
Affected Products : remote_development- EPSS Score: %6.76
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
9.3
HIGHCVE-2021-27082
Quantum Development Kit for Visual Studio Code Remote Code Execution Vulnerability... Read more
Affected Products : quantum_development_kit- EPSS Score: %3.12
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024