‼ CVE-2021-36972 ‼
📖 Read
via "National Vulnerability Database".
Windows SMB Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-36960.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-38649 ‼
📖 Read
via "National Vulnerability Database".
Open Management Infrastructure Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38645, CVE-2021-38648.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-3801 ‼
📖 Read
via "National Vulnerability Database".
prism is vulnerable to Inefficient Regular Expression Complexity📖 Read
via "National Vulnerability Database".
‼ CVE-2021-36956 ‼
📖 Read
via "National Vulnerability Database".
Azure Sphere Information Disclosure Vulnerability📖 Read
via "National Vulnerability Database".
‼ CVE-2021-38655 ‼
📖 Read
via "National Vulnerability Database".
Microsoft Excel Remote Code Execution Vulnerability📖 Read
via "National Vulnerability Database".
‼ CVE-2021-36960 ‼
📖 Read
via "National Vulnerability Database".
Windows SMB Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-36972.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-41076 ‼
📖 Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-38628 ‼
📖 Read
via "National Vulnerability Database".
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38638.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-38626 ‼
📖 Read
via "National Vulnerability Database".
Windows Kernel Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-38625.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-36969 ‼
📖 Read
via "National Vulnerability Database".
Windows Redirected Drive Buffering SubSystem Driver Information Disclosure Vulnerability This CVE ID is unique from CVE-2021-38635, CVE-2021-38636.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-36968 ‼
📖 Read
via "National Vulnerability Database".
Windows DNS Elevation of Privilege Vulnerability📖 Read
via "National Vulnerability Database".
⚠ S3 Ep50: Two 0-days plus another 0-day plus a fast food bug [Podcast] ⚠
📖 Read
via "Naked Security".
Bugs! So many bugs! Latest episode - listen now...📖 Read
via "Naked Security".
Naked Security
S3 Ep50: Two 0-days plus another 0-day plus a fast food bug [Podcast]
Bugs! So many bugs! Latest episode – listen now…
🦿 You can now eliminate the password for your Microsoft account 🦿
📖 Read
via "Tech Republic".
By using an alternative means of authentication, you can now go passwordless on your Microsoft account.📖 Read
via "Tech Republic".
🗓️ Remote code execution flaw allowed hijack of Motorola Halo+ baby monitors 🗓️
📖 Read
via "The Daily Swig".
Expectant parent finds severe security problems in his new baby monitor📖 Read
via "The Daily Swig".
The Daily Swig | Cybersecurity news and views
Remote code execution flaw allowed hijack of Motorola Halo+ baby monitors
Expectant parent finds severe security problems in his new baby monitor
‼ CVE-2021-39189 ‼
📖 Read
via "National Vulnerability Database".
Pimcore is an open source data & experience management platform. In versions prior to 10.1.3, it is possible to enumerate usernames via the forgot password functionality. This issue is fixed in version 10.1.3. As a workaround, one may apply the available patch manually.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-19155 ‼
📖 Read
via "National Vulnerability Database".
Improper Access Control in Jfinal CMS v4.7.1 and earlier allows remote attackers to obtain sensitive information and/or execute arbitrary code via the 'FileManager.rename()' function in the component 'modules/filemanager/FileManagerController.java'.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-19154 ‼
📖 Read
via "National Vulnerability Database".
Improper Access Control in Jfinal CMS v4.7.1 and earlier allows remote attackers to obtain sensitive information via the 'FileManager.editFile()' function in the component 'modules/filemanager/FileManagerController.java'.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-19148 ‼
📖 Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) in Jfinal CMS v4.7.1 and earlier allows remote attackers to execute arbitrary code via the 'Nickname' parameter in the component '/jfinal_cms/front/person/profile.html'.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-19157 ‼
📖 Read
via "National Vulnerability Database".
Cross Site Scripting (CSS) in Wenku CMS v3.4 allows remote attackers to execute arbitrary code via the 'Intro' parameter for the component '/index.php?m=ucenter&a=index'.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-19151 ‼
📖 Read
via "National Vulnerability Database".
Command Injection in Jfinal CMS v4.7.1 and earlier allows remote attackers to execute arbitrary code by uploading a malicious HTML template file via the component 'jfinal_cms/admin/filemanager/list'.📖 Read
via "National Vulnerability Database".