Latest CVE Feed
-
9.8
CRITICALCVE-2021-25669
A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT PRO (All versions < 5.5.1), SCALANCE X202-2 IRT (All versions < 5.5.1), SCALANCE X202-2P IRT (incl. SIPLU... Read more
Affected Products : scalance_x200-4p_irt_firmware scalance_x201-3p_irt_firmware scalance_x201-3p_irt_pro_firmware scalance_x202-2p_irt_firmware scalance_x202-2p_irt_pro_firmware scalance_xf201-3p_irt_firmware scalance_xf202-2p_irt_firmware scalance_xf204-2ba_irt_firmware scalance_x202-2_irt_firmware scalance_x204_irt_firmware +48 more products- EPSS Score: %1.00
- Published: Apr. 22, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-25668
A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT PRO (All versions < 5.5.1), SCALANCE X202-2 IRT (All versions < 5.5.1), SCALANCE X202-2P IRT (incl. SIPLU... Read more
Affected Products : scalance_x200-4p_irt_firmware scalance_x201-3p_irt_firmware scalance_x201-3p_irt_pro_firmware scalance_x202-2p_irt_firmware scalance_x202-2p_irt_pro_firmware scalance_xf201-3p_irt_firmware scalance_xf202-2p_irt_firmware scalance_xf204-2ba_irt_firmware scalance_x202-2_irt_firmware scalance_x204_irt_firmware +48 more products- EPSS Score: %0.54
- Published: Apr. 22, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-25667
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE SC-600 Family (All versions >= V2.0 and < V2.1.3), SCALA... Read more
- EPSS Score: %0.91
- Published: Mar. 15, 2021
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2021-25666
A vulnerability has been identified in SCALANCE W780 and W740 (IEEE 802.11n) family (All versions < V6.3). Sending specially crafted packets through the ARP protocol to an affected device could cause a partial denial-of-service, preventing the device to o... Read more
- EPSS Score: %0.09
- Published: Feb. 09, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-25665
A vulnerability has been identified in Simcenter STAR-CCM+ Viewer (All versions < V2021.2.1). The starview+.exe application lacks proper validation of user-supplied data when parsing scene files. This could result in an out of bounds write past the end of... Read more
- EPSS Score: %0.40
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-25662
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\" & 15\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMA... Read more
Affected Products : simatic_wincc_runtime_advanced simatic_hmi_comfort_outdoor_panels_7\"_firmware simatic_hmi_comfort_outdoor_panels_15\"_firmware simatic_hmi_comfort_panels_4\"_firmware simatic_hmi_comfort_panels_22\"_firmware simatic_hmi_ktp_mobile_panels_ktp400f_firmware simatic_hmi_ktp_mobile_panels_ktp700_firmware simatic_hmi_ktp_mobile_panels_ktp700f_firmware simatic_hmi_ktp_mobile_panels_ktp900_firmware simatic_hmi_ktp_mobile_panels_ktp900f_firmware +9 more products- EPSS Score: %0.74
- Published: May. 12, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-25661
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\" & 15\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMA... Read more
Affected Products : simatic_wincc_runtime_advanced simatic_hmi_comfort_outdoor_panels_7\"_firmware simatic_hmi_comfort_outdoor_panels_15\"_firmware simatic_hmi_comfort_panels_4\"_firmware simatic_hmi_comfort_panels_22\"_firmware simatic_hmi_ktp_mobile_panels_ktp400f_firmware simatic_hmi_ktp_mobile_panels_ktp700_firmware simatic_hmi_ktp_mobile_panels_ktp700f_firmware simatic_hmi_ktp_mobile_panels_ktp900_firmware simatic_hmi_ktp_mobile_panels_ktp900f_firmware +9 more products- EPSS Score: %0.37
- Published: May. 12, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-25660
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\" & 15\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMA... Read more
Affected Products : simatic_wincc_runtime_advanced simatic_hmi_comfort_outdoor_panels_7\"_firmware simatic_hmi_comfort_outdoor_panels_15\"_firmware simatic_hmi_comfort_panels_4\"_firmware simatic_hmi_comfort_panels_22\"_firmware simatic_hmi_ktp_mobile_panels_ktp400f_firmware simatic_hmi_ktp_mobile_panels_ktp700_firmware simatic_hmi_ktp_mobile_panels_ktp700f_firmware simatic_hmi_ktp_mobile_panels_ktp900_firmware simatic_hmi_ktp_mobile_panels_ktp900f_firmware +9 more products- EPSS Score: %0.46
- Published: May. 12, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-25659
A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0 SP9 Update 2). Sending specially crafted packets to port 4410/tcp of an affected system could lead to extensive memory be... Read more
Affected Products : automation_license_manager- EPSS Score: %0.44
- Published: Aug. 10, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-25657
A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may potentially allow a local user to escalate privileges. This issue affects Admin Lite and USB Creator 11.1 Feature Pack 2 Service Pack 1 and earlier ... Read more
Affected Products : ip_office- EPSS Score: %0.06
- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
5.4
MEDIUMCVE-2021-25656
Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could allow an authenticated user to potentially disclose sensitive information. Affected versions include 7.0 through 7.2.3 (without hotfix) and... Read more
Affected Products : aura_experience_portal- EPSS Score: %0.15
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-25655
A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).... Read more
Affected Products : aura_experience_portal- EPSS Score: %0.12
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-25654
An arbitrary code execution vulnerability was discovered in Avaya Aura Device Services that may potentially allow a local user to execute specially crafted scripts. Affects 7.0 through 8.1.4.0 versions of Avaya Aura Device Services.... Read more
Affected Products : aura_device_services- EPSS Score: %0.21
- Published: Jun. 25, 2021
- Modified: Nov. 21, 2024
-
8.0
HIGHCVE-2021-25653
A privilege escalation vulnerability was discovered in Avaya Aura Appliance Virtualization Platform Utilities (AVPU) that may potentially allow a local user to escalate privileges. Affects 8.0.0.0 through 8.1.3.1 versions of AVPU.... Read more
Affected Products : aura_appliance_virtualization_platform- EPSS Score: %0.10
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-25652
An information disclosure vulnerability was discovered in the directory and file management of Avaya Aura Appliance Virtualization Platform Utilities (AVPU). This vulnerability may potentially allow any local user to access system functionality and config... Read more
Affected Products : aura_appliance_virtualization_platform- EPSS Score: %0.25
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
8.0
HIGHCVE-2021-25651
A privilege escalation vulnerability was discovered in Avaya Aura Utility Services that may potentially allow a local user to escalate privileges. Affects all 7.x versions of Avaya Aura Utility Services... Read more
Affected Products : aura_utility_services- EPSS Score: %0.10
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-25650
A privilege escalation vulnerability was discovered in Avaya Aura Utility Services that may potentially allow a local user to execute specially crafted scripts as a privileged user. Affects all 7.x versions of Avaya Aura Utility Services... Read more
Affected Products : aura_utility_services- EPSS Score: %0.07
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-25649
An information disclosure vulnerability was discovered in the directory and file management of Avaya Aura Utility Services. This vulnerability may potentially allow any local user to access system functionality and configuration information that should on... Read more
Affected Products : aura_utility_services- EPSS Score: %0.14
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-25648
Mobile application "Testes de Codigo" 11.4 and prior allows an attacker to gain access to the administrative interface and premium features by tampering the boolean value of parameters "isAdmin" and "isPremium" located on device storage.... Read more
Affected Products : testes_de_codigo- EPSS Score: %0.43
- Published: Feb. 16, 2021
- Modified: Nov. 21, 2024
-
5.4
MEDIUMCVE-2021-25647
Mobile application "Testes de Codigo" v11.3 and prior allows stored XSS by injecting a payload in the "feedback" message field causing it to be stored in the remote database and leading to its execution on client devices when loading the "feedback list", ... Read more
Affected Products : testes_de_codigo- EPSS Score: %0.28
- Published: Jan. 28, 2021
- Modified: Nov. 21, 2024