Search
Search Results (367228 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-26473 | 1 Vembu | 2 Bdr Suite, Offsite Dr | 2024-11-21 | 9.8 Critical |
| In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1 the http API located at /sgwebservice_o.php action logFilePath allows an attacker to write arbitrary files in the context of the web server process. These files can then be executed remotely by calling the file via the web server. | ||||
| CVE-2021-26472 | 2 Microsoft, Vembu | 3 Windows, Bdr Suite, Offsite Dr | 2024-11-21 | 10 Critical |
| In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1 installed on Windows, the http API located at /consumerweb/secure/download.php. Using this command argument an unauthenticated attacker can execute arbitrary OS commands with SYSTEM privileges. | ||||
| CVE-2021-26471 | 1 Vembu | 2 Bdr Suite, Offsite Dr | 2024-11-21 | 9.8 Critical |
| In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1, the http API located at /sgwebservice_o.php accepts a command argument. Using this command argument an unauthenticated attacker can execute arbitrary shell commands. | ||||
| CVE-2021-26461 | 1 Apache | 1 Nuttx | 2024-11-21 | 9.8 Critical |
| Apache Nuttx Versions prior to 10.1.0 are vulnerable to integer wrap-around in functions malloc, realloc and memalign. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution. | ||||
| CVE-2021-26444 | 1 Microsoft | 1 Azure Real Time Operating System | 2024-11-21 | 3.3 Low |
| Azure RTOS Information Disclosure Vulnerability | ||||
| CVE-2021-26443 | 1 Microsoft | 11 Windows 10, Windows 10 1809, Windows 10 1909 and 8 more | 2024-11-21 | 9 Critical |
| Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability | ||||
| CVE-2021-26442 | 1 Microsoft | 22 Windows 10, Windows 10 1507, Windows 10 1607 and 19 more | 2024-11-21 | 7 High |
| Windows HTTP.sys Elevation of Privilege Vulnerability | ||||
| CVE-2021-26441 | 1 Microsoft | 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more | 2024-11-21 | 7.8 High |
| Storage Spaces Controller Elevation of Privilege Vulnerability | ||||
| CVE-2021-26439 | 2 Google, Microsoft | 2 Android, Edge | 2024-11-21 | 4.6 Medium |
| Microsoft Edge for Android Information Disclosure Vulnerability | ||||
| CVE-2021-26437 | 1 Microsoft | 1 Visual Studio Code | 2024-11-21 | 5.5 Medium |
| Visual Studio Code Spoofing Vulnerability | ||||
| CVE-2021-26436 | 1 Microsoft | 2 Edge, Edge Chromium | 2024-11-21 | 6.1 Medium |
| Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | ||||
| CVE-2021-26435 | 1 Microsoft | 20 Windows 10, Windows 10 1507, Windows 10 1607 and 17 more | 2024-11-21 | 8.1 High |
| Windows Scripting Engine Memory Corruption Vulnerability | ||||
| CVE-2021-26434 | 1 Microsoft | 2 Visual Studio 2017, Visual Studio 2019 | 2024-11-21 | 7.8 High |
| Visual Studio Elevation of Privilege Vulnerability | ||||
| CVE-2021-26433 | 1 Microsoft | 15 Windows 10, Windows 10 1507, Windows 10 1607 and 12 more | 2024-11-21 | 7.5 High |
| Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability | ||||
| CVE-2021-26432 | 1 Microsoft | 15 Windows 10, Windows 10 1507, Windows 10 1607 and 12 more | 2024-11-21 | 9.8 Critical |
| Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability | ||||
| CVE-2021-26431 | 1 Microsoft | 7 Windows 10, Windows 10 1809, Windows 10 20h2 and 4 more | 2024-11-21 | 7.8 High |
| Windows Recovery Environment Agent Elevation of Privilege Vulnerability | ||||
| CVE-2021-26430 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 6 Medium |
| Azure Sphere Denial of Service Vulnerability | ||||
| CVE-2021-26429 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 7.7 High |
| Azure Sphere Elevation of Privilege Vulnerability | ||||
| CVE-2021-26428 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 4.4 Medium |
| Azure Sphere Information Disclosure Vulnerability | ||||
| CVE-2021-26427 | 1 Microsoft | 1 Exchange Server | 2024-11-21 | 9 Critical |
| Microsoft Exchange Server Remote Code Execution Vulnerability | ||||