Latest CVE Feed
-
9.3
HIGHCVE-2021-26912
NetMotion Mobility before 11.73 and 12.x before 12.02 allows unauthenticated remote attackers to execute arbitrary code as SYSTEM because of Java deserialization in SupportRpcServlet.... Read more
Affected Products : netmotion_mobility- EPSS Score: %35.43
- Published: Feb. 08, 2021
- Modified: Nov. 21, 2024
-
7.4
HIGHCVE-2021-26911
core/imap/MCIMAPSession.cpp in Canary Mail before 3.22 has Missing SSL Certificate Validation for IMAP in STARTTLS mode.... Read more
- EPSS Score: %0.28
- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-26910
Firejail before 0.9.64.4 allows attackers to bypass intended access restrictions because there is a TOCTOU race condition between a stat operation and an OverlayFS mount operation.... Read more
- EPSS Score: %0.05
- Published: Feb. 08, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-26909
Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing sensitive files, which could be brute-forced by an attacker to subvert an organization's security program. The issue has since been fixed in version 31 of th... Read more
Affected Products : automox- EPSS Score: %0.20
- Published: Apr. 23, 2021
- Modified: Nov. 21, 2024
-
3.3
LOWCVE-2021-26908
Automox Agent prior to version 31 logs potentially sensitive information in local log files, which could be used by a locally-authenticated attacker to subvert an organization's security program. The issue has since been fixed in version 31 of the Automox... Read more
Affected Products : automox- EPSS Score: %0.05
- Published: Apr. 23, 2021
- Modified: Nov. 21, 2024
-
5.9
MEDIUMCVE-2021-26906
An issue was discovered in res_pjsip_session.c in Digium Asterisk through 13.38.1; 14.x, 15.x, and 16.x through 16.16.0; 17.x through 17.9.1; and 18.x through 18.2.0, and Certified Asterisk through 16.8-cert5. An SDP negotiation vulnerability in PJSIP all... Read more
- EPSS Score: %0.51
- Published: Feb. 18, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-26905
1Password SCIM Bridge before 1.6.2 mishandles validation of authenticated requests for log files, leading to disclosure of a TLS private key.... Read more
Affected Products : scim_bridge- EPSS Score: %0.22
- Published: Feb. 08, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-26904
LMA ISIDA Retriever 5.2 allows SQL Injection.... Read more
Affected Products : retriever- EPSS Score: %0.73
- Published: Feb. 26, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-26903
LMA ISIDA Retriever 5.2 is vulnerable to XSS via query['text'].... Read more
Affected Products : retriever- EPSS Score: %0.44
- Published: Feb. 26, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGH- EPSS Score: %4.41
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-26901
Windows Event Tracing Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +10 more products- EPSS Score: %0.45
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-26900
Windows Win32k Elevation of Privilege Vulnerability... Read more
- EPSS Score: %7.07
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-26899
Windows UPnP Device Host Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +10 more products- EPSS Score: %0.44
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-26898
Windows Event Tracing Elevation of Privilege Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 +10 more products- EPSS Score: %0.45
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-26897
Windows DNS Server Remote Code Execution Vulnerability... Read more
- EPSS Score: %10.79
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-26896
Windows DNS Server Denial of Service Vulnerability... Read more
- EPSS Score: %20.42
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-26895
Windows DNS Server Remote Code Execution Vulnerability... Read more
- EPSS Score: %9.94
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-26894
Windows DNS Server Remote Code Execution Vulnerability... Read more
- EPSS Score: %9.94
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-26893
Windows DNS Server Remote Code Execution Vulnerability... Read more
- EPSS Score: %8.31
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024
-
6.2
MEDIUMCVE-2021-26892
Windows Extensible Firmware Interface Security Feature Bypass Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_1803 windows_10_1909 windows_server_20h2 windows_server_1909 +1 more products- EPSS Score: %0.75
- Published: Mar. 11, 2021
- Modified: Nov. 21, 2024