βΌ CVE-2021-25984 βΌ
π Read
via "National Vulnerability Database".
In Factor (App Framework & Headless CMS) forum plugin, versions v1.3.3 to v1.8.30, are vulnerable to stored Cross-Site Scripting (XSS) at the Γ’β¬Εpost replyΓ’β¬οΏ½ section. An unauthenticated attacker can execute malicious JavaScript code and steal the session cookies.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39222 βΌ
π Read
via "National Vulnerability Database".
Nextcloud is an open-source, self-hosted productivity platform. The Nextcloud Talk application was vulnerable to a stored Cross-Site Scripting (XSS) vulnerability. For exploitation, a user would need to right-click on a malicious file and open the file in a new tab. Due the strict Content-Security-Policy shipped with Nextcloud, this issue is not exploitable on modern browsers supporting Content-Security-Policy. It is recommended that the Nextcloud Talk application is upgraded to patched versions 10.0.7, 10.1.4, 11.1.2, 11.2.0 or 12.0.0. As a workaround, use a browser that has support for Content-Security-Policy.π Read
via "National Vulnerability Database".
βΌ CVE-2021-24852 βΌ
π Read
via "National Vulnerability Database".
The MouseWheel Smooth Scroll WordPress plugin before 5.7 does not have CSRF check in place on its settings page, which could allow attackers to make a logged in admin change them via a CSRF attackπ Read
via "National Vulnerability Database".
βΌ CVE-2021-42955 βΌ
π Read
via "National Vulnerability Database".
Zoho Remote Access Plus Server Windows Desktop binary fixed in version 10.1.2132 is affected by an unauthorized password reset vulnerability. Because of the designed password reset mechanism, any non-admin Windows user can reset the password of the Remote Access Plus Server Admin account.π Read
via "National Vulnerability Database".
βΌ CVE-2020-12892 βΌ
π Read
via "National Vulnerability Database".
An untrusted search path in AMD Radeon settings Installer may lead to a privilege escalation or unauthorized code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2020-12954 βΌ
π Read
via "National Vulnerability Database".
A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauthorized SPI ROM modification.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38978 (security_guardium_key_lifecycle_manager, security_key_lifecycle_manager) βΌ
π Read
via "National Vulnerability Database".
IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 212783.π Read
via "National Vulnerability Database".
βΌ CVE-2021-25965 βΌ
π Read
via "National Vulnerability Database".
In Calibre-web, versions 0.6.0 to 0.6.13 are vulnerable to Cross-Site Request Forgery (CSRF). By luring an authenticated user to click on a link, an attacker can create a new user role with admin privileges and attacker-controlled credentials, allowing them to take over the application.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38983 (security_guardium_key_lifecycle_manager, security_key_lifecycle_manager) βΌ
π Read
via "National Vulnerability Database".
IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 212792.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42956 βΌ
π Read
via "National Vulnerability Database".
Zoho Remote Access Plus Server Windows Desktop Binary fixed in 10.1.2132.6 is affected by a sensitive information disclosure vulnerability. Due to improper privilege management, the process launches as the logged in user, so memory dump can be done by non-admin also. Remotely, an attacker can dump all sensitive information including DB Connection string, entire IT infrastructure details, commands executed by IT admin including credentials, secrets, private keys and more.π Read
via "National Vulnerability Database".
βΌ CVE-2020-12898 βΌ
π Read
via "National Vulnerability Database".
Stack Buffer Overflow in AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42380 (busybox) βΌ
π Read
via "National Vulnerability Database".
A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar functionπ Read
via "National Vulnerability Database".
βΌ CVE-2021-42383 (busybox) βΌ
π Read
via "National Vulnerability Database".
A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate functionπ Read
via "National Vulnerability Database".
βΌ CVE-2021-41271 βΌ
π Read
via "National Vulnerability Database".
Discourse is a platform for community discussion. In affected versions a maliciously crafted request could cause an error response to be cached by intermediate proxies. This could cause a loss of confidentiality for some content. This issue is patched in the latest stable, beta and tests-passed versions of Discourse.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42384 (busybox) βΌ
π Read
via "National Vulnerability Database".
A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special functionπ Read
via "National Vulnerability Database".
βΌ CVE-2021-42580 βΌ
π Read
via "National Vulnerability Database".
Sourcecodester Online Learning System 2.0 is vunlerable to sql injection authentication bypass in admin login file (/admin/login.php) and authenticated file upload in (Master.php) file , we can craft these two vunlerablities to get unauthenticated remote command execution.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42114 βΌ
π Read
via "National Vulnerability Database".
Modern DRAM devices (PC-DDR4, LPDDR4X) are affected by a vulnerability in their internal Target Row Refresh (TRR) mitigation against Rowhammer attacks. Novel non-uniform Rowhammer access patterns, consisting of aggressors with different frequencies, phases, and amplitudes allow triggering bit flips on affected memory modules using our Blacksmith fuzzer. The patterns generated by Blacksmith were able to trigger bitflips on all 40 PC-DDR4 DRAM devices in our test pool, which cover the three major DRAM manufacturers: Samsung, SK Hynix, and Micron. This means that, even when chips advertised as Rowhammer-free are used, attackers may still be able to exploit Rowhammer. For example, this enables privilege-escalation attacks against the kernel or binaries such as the sudo binary, and also triggering bit flips in RSA-2048 keys (e.g., SSH keys) to gain cross-tenant virtual-machine access. We can confirm that DRAM devices acquired in July 2020 with DRAM chips from all three major DRAM vendors (Samsung, SK Hynix, Micron) are affected by this vulnerability. For more details, please refer to our publication.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38981 (security_guardium_key_lifecycle_manager, security_key_lifecycle_manager) βΌ
π Read
via "National Vulnerability Database".
IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 212788.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42723 βΌ
π Read
via "National Vulnerability Database".
Adobe Premiere Pro version 15.4 (and earlier) are affected by a memory corruption vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious M4A file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42731 βΌ
π Read
via "National Vulnerability Database".
Adobe InDesign versions 16.4 (and earlier) are affected by a Buffer Overflow vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-41263 βΌ
π Read
via "National Vulnerability Database".
rails_multisite provides multi-db support for Rails applications. In affected versions this vulnerability impacts any Rails applications using `rails_multisite` alongside Rails' signed/encrypted cookies. Depending on how the application makes use of these cookies, it may be possible for an attacker to re-use cookies on different 'sites' within a multi-site Rails application. The issue has been patched in v4 of the `rails_multisite` gem. Note that this upgrade will invalidate all previous signed/encrypted cookies. The impact of this invalidation will vary based on the application architecture.π Read
via "National Vulnerability Database".