Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

6.1

MEDIUM

CVE-2021-20620

Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors....

Affected Products : wg2600hp_firmware wg2600hp
Published: Jan. 28, 2021

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2021-20619

Cross-site scripting vulnerability in GROWI (v4.2 Series) versions prior to v4.2.3 allows remote attackers to inject an arbitrary script via unspecified vectors....

Affected Products : growi
Published: Jan. 19, 2021

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2021-20618

Privilege chaining vulnerability in acmailer ver. 4.0.2 and earlier, and acmailer DB ver. 1.1.4 and earlier allows remote attackers to bypass authentication and to gain an administrative privilege which may result in obtaining the sensitive information on...

Affected Products : acmailer acmailer_db
Published: Jan. 14, 2021

Modified: Nov. 21, 2024
10.0

HIGH

CVE-2021-20617

Improper access control vulnerability in acmailer ver. 4.0.1 and earlier, and acmailer DB ver. 1.1.3 and earlier allows remote attackers to execute an arbitrary OS command, or gain an administrative privilege which may result in obtaining the sensitive in...

Affected Products : acmailer acmailer_db
Published: Jan. 14, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-20616

Untrusted search path vulnerability in the installer of SKYSEA Client View Ver.1.020.05b to Ver.16.001.01g allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory....

Affected Products : skysea_client_view
Published: Jan. 13, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-20613

Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 and prior, FX3U-ENET-L Firmware version 1.16 and prior and FX3U-ENET-P502 Firmware version 1.16 and prior allows a remote unauthenticated attacker to cause a denial-o...

Affected Products : fx3u-enet-l_firmware fx3u-enet-p502_firmware fx3u-enet_firmware fx3u-enet fx3u-enet-l fx3u-enet-p502
Published: Jan. 14, 2022

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-20612

Lack of administrator control over security vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.14 and prior, FX3U-ENET-L Firmware version 1.14 and prior and FX3U-ENET-P502 Firmware version 1.14 and prior allows a remote unauthenticated attacker...

Affected Products : fx3u-enet-l_firmware fx3u-enet-p502_firmware fx3u-enet_firmware fx3u-enet fx3u-enet-l fx3u-enet-p502
Published: Jan. 14, 2022

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-20611

Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/120PSFCPU...

Affected Products : melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec_iq-r_r16_cpu_firmware melsec_iq-r_r32_cpu_firmware melsec_iq-r_r04_pcpu_firmware melsec_iq-r_r08_pcpu_firmware +100 more products
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-20610

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R ...

Affected Products : melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec_iq-r_r16_cpu_firmware melsec_iq-r_r32_cpu_firmware melsec_iq-r_r04_pcpu_firmware melsec_iq-r_r08_pcpu_firmware +100 more products
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-20609

Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R08/16/32/120PCPU, MELSEC iQ-R Series R08/16/32/1...

Affected Products : melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec_iq-r_r16_cpu_firmware melsec_iq-r_r32_cpu_firmware melsec_iq-r_r04_pcpu_firmware melsec_iq-r_r08_pcpu_firmware +100 more products
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-20608

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior allows a remote unauthenticated attacker to cause a DoS condition in GX Works2 by getting GX Works2 to read a tampered program fil...

Affected Products : gx_works2
Published: Dec. 17, 2021

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2021-20607

Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition ...

Affected Products : gx_works2 melsoft_navigator ezsocket
Published: Dec. 17, 2021

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2021-20606

Out-of-bounds Read vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior, Mitsubishi Electric MELSOFT Navigator versions 2.84N and prior and Mitsubishi Electric EZSocket versions 5.4 and prior allows an attacker to cause a DoS condition...

Affected Products : gx_works2 melsoft_navigator ezsocket
Published: Dec. 17, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2021-20601

Improper input validation vulnerability in GOT2000 series GT27 model all versions, GOT2000 series GT25 model all versions, GOT2000 series GT23 model all versions, GOT2000 series GT21 model all versions, GOT SIMPLE series GS21 model all versions, and GT So...

Affected Products : gt_softgot2000 got_simple_gs2110-wtbd_firmware got_simple_gs2107-wtbd_firmware got2000_gt2104-rtbd_firmware got2000_gt2103-pmbd_firmware got2000_gt2103-pmbds_firmware got2000_gt2103-pmbds2_firmware got2000_gt2103-pmbls_firmware got2000_gt2107-wtbd_firmware got2000_gt2310-vtba_firmware +89 more products
Published: Nov. 23, 2021

Modified: Nov. 21, 2024
7.1

HIGH

CVE-2021-20600

Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-of-service (DoS) condition by sending a large number of p...

Affected Products : r12ccpu-v_firmware r12ccpu-v
Published: Oct. 08, 2021

Modified: Nov. 21, 2024
9.1

CRITICAL

CVE-2021-20599

Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU f...

Affected Products : r08sfcpu_firmware r16sfcpu_firmware r32sfcpu_firmware r120sfcpu_firmware r08psfcpu_firmware r16psfcpu_firmware r32psfcpu_firmware r120psfcpu_firmware r08sfcpu r16sfcpu +6 more products
Published: Oct. 14, 2021

Modified: Nov. 21, 2024
5.3

MEDIUM

CVE-2021-20598

Overly Restrictive Account Lockout Mechanism vulnerability in Mitsubishi Electric MELSEC iQ-R series CPU modules (R08/16/32/120SFCPU all versions, R08/16/32/120PSFCPU all versions) allows a remote unauthenticated attacker to lockout a legitimate user by c...

Affected Products : r08sfcpu_firmware r16sfcpu_firmware r32sfcpu_firmware r120sfcpu_firmware r08psfcpu_firmware r16psfcpu_firmware r32psfcpu_firmware r120psfcpu_firmware r08sfcpu r16sfcpu +6 more products
Published: Aug. 06, 2021

Modified: Nov. 21, 2024
9.1

CRITICAL

CVE-2021-20597

Insufficiently Protected Credentials vulnerability in Mitsubishi Electric MELSEC iQ-R series Safety CPU modules R08/16/32/120SFCPU firmware versions "26" and prior and Mitsubishi Electric MELSEC iQ-R series SIL2 Process CPU modules R08/16/32/120PSFCPU fir...

Affected Products : r08sfcpu_firmware r16sfcpu_firmware r32sfcpu_firmware r120sfcpu_firmware r08psfcpu_firmware r16psfcpu_firmware r32psfcpu_firmware r120psfcpu_firmware r08sfcpu r16sfcpu +6 more products
Published: Aug. 06, 2021

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2021-20596

NULL Pointer Dereference in MELSEC-F Series FX3U-ENET firmware version 1.14 and prior, FX3U-ENET-L firmware version 1.14 and prior and FX3U-ENET-P502 firmware version 1.14 and prior allows a remote unauthenticated attacker to cause a DoS condition in comm...

Affected Products : fx3u-enet-l_firmware fx3u-enet-p502_firmware fx3u-enet_firmware
Published: Jul. 22, 2021

Modified: Nov. 21, 2024
8.5

HIGH

CVE-2021-20595

Improper Restriction of XML External Entity Reference vulnerability in Mitsubishi Electric Air Conditioning System/Centralized Controllers (G-50A Ver.3.35 and prior, GB-50A Ver.3.35 and prior, GB-24A Ver.9.11 and prior, AG-150A-A Ver.3.20 and prior, AG-15...

Affected Products : ae-200a_firmware ae-200e_firmware ae-50a_firmware ae-50e_firmware ag-150a-a_firmware ag-150a-j_firmware eb-50gu-a_firmware eb-50gu-j_firmware ew-50a_firmware ew-50e_firmware +28 more products
Published: Jul. 13, 2021

Modified: Nov. 21, 2024

Showing 20 of 293618 Results

Browse by Apps

Latest CVE Feed

6.1

6.1

10.0

10.0

7.8

7.8

7.8

7.8

7.8

7.8

7.5

5.5

5.5

7.8

7.1

9.1

5.3

9.1

7.5

8.5

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable