IDCVSSSummaryLast (major) updatePublished
CVE-2021-20027 None
A buffer overflow vulnerability in SonicOS allows a remote attacker to cause a Denial of Service (DoS) by sending a specially crafted request. This vulnerability affects SonicOS Gen5, Gen6, Gen7 platforms, and SonicOSv virtual firewalls.
14-06-2021 - 23:15 14-06-2021 - 23:15
CVE-2021-32684 None
magento-scripts contains scripts and configuration used by Create Magento App, a zero-configuration tool-chain which allows one to deploy Magento 2. In versions 1.5.1 and 1.5.2, after changing the function from synchronous to asynchronous there wasn'
14-06-2021 - 23:15 14-06-2021 - 23:15
CVE-2021-27887 None
Cross-site Scripting (XSS) vulnerability in the main dashboard of Ellipse APM versions allows an authenticated user or integrated application to inject malicious data into the application that can then be executed in a victim’s browser. This issue af
14-06-2021 - 22:15 14-06-2021 - 22:15
CVE-2021-34693 None
net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
14-06-2021 - 22:15 14-06-2021 - 22:15
CVE-2021-26845 None
Information Exposure vulnerability in Hitachi ABB Power Grids eSOMS allows unauthorized user to gain access to report data if the URL used to access the report is discovered. This issue affects: Hitachi ABB Power Grids eSOMS 6.0 versions prior to 6.0
14-06-2021 - 22:15 14-06-2021 - 22:15
CVE-2021-27196 None
Improper Input Validation vulnerability in Hitachi ABB Power Grids Relion 670 Series, Relion 670/650 Series, Relion 670/650/SAM600-IO, Relion 650, REB500, RTU500 Series, FOX615 (TEGO1), MSM, GMS600, PWC600 allows an attacker with access to the IEC 61
14-06-2021 - 22:15 14-06-2021 - 22:15
CVE-2021-31965 4.0
Microsoft SharePoint Server Information Disclosure Vulnerability
14-06-2021 - 21:03 08-06-2021 - 23:15
CVE-2021-31966 6.5
Microsoft SharePoint Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-26420, CVE-2021-31963.
14-06-2021 - 21:02 08-06-2021 - 23:15
CVE-2020-11126 9.4
Possible out of bound read while WLAN frame parsing due to lack of check for body and header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Ind
14-06-2021 - 21:00 09-06-2021 - 05:15
CVE-2021-26471 7.5
Vembu BDR Suite before 4.2.0 allows Unauthenticated Remote Code Execution by placing a command in a GET request (issue 1 of 2).
14-06-2021 - 20:55 08-06-2021 - 19:15
CVE-2021-26472 7.5
Vembu BDR Suite before 4.2.0 allows Unauthenticated Remote Code Execution by placing a command in a GET request (issue 2 of 2).
14-06-2021 - 20:47 08-06-2021 - 19:15
CVE-2021-26473 7.5
Vembu BDR Suite before 4.2.0 allows Unauthenticated file write via a GET request that specifies a file's name and content.
14-06-2021 - 20:46 08-06-2021 - 19:15
CVE-2021-26474 5.0
Vembu BDR Suite before 4.2.0 allows Unauthenticated SSRF via a GET request that specifies a hostname and port number.
14-06-2021 - 20:43 08-06-2021 - 19:15
CVE-2021-27625 4.3
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation
14-06-2021 - 20:20 09-06-2021 - 14:15
CVE-2021-27623 4.3
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation
14-06-2021 - 20:18 09-06-2021 - 14:15
CVE-2021-27624 4.3
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation
14-06-2021 - 20:18 09-06-2021 - 14:15
CVE-2021-27622 4.3
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation
14-06-2021 - 20:16 09-06-2021 - 14:15
CVE-2021-0324 None
Product: AndroidVersions: Android SoCAndroid ID: A-175402462
14-06-2021 - 20:15 14-06-2021 - 20:15
CVE-2021-0467 None
In Chromecast bootROM, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege in the bootloader, with physical USB access, with no additional execution privileges needed. User intera
14-06-2021 - 20:15 14-06-2021 - 20:15
CVE-2021-27620 4.3
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation
14-06-2021 - 20:15 09-06-2021 - 14:15
CVE-2021-31946 6.8
Paint 3D Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31945, CVE-2021-31983.
14-06-2021 - 20:15 08-06-2021 - 23:15
CVE-2021-27597 5.0
SAP NetWeaver AS for ABAP (RFC Gateway), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated attacker withou
14-06-2021 - 20:00 09-06-2021 - 14:15
CVE-2021-27633 5.0
SAP NetWeaver AS for ABAP (RFC Gateway), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated attacker withou
14-06-2021 - 19:59 09-06-2021 - 14:15
CVE-2021-27634 4.3
SAP NetWeaver AS for ABAP (RFC Gateway), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated attacker withou
14-06-2021 - 19:57 09-06-2021 - 14:15
CVE-2021-27627 4.3
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation
14-06-2021 - 19:56 09-06-2021 - 14:15
CVE-2021-27626 5.0
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation
14-06-2021 - 19:49 09-06-2021 - 14:15
CVE-2021-27606 5.0
SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker witho
14-06-2021 - 19:32 09-06-2021 - 14:15
CVE-2021-27629 5.0
SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker witho
14-06-2021 - 19:32 09-06-2021 - 14:15
CVE-2021-27631 5.0
SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker witho
14-06-2021 - 19:32 09-06-2021 - 14:15
CVE-2021-27632 5.0
SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker witho
14-06-2021 - 19:32 09-06-2021 - 14:15
CVE-2021-21555 None
Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a heap-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious user with high privileges may potentially exploit thi
14-06-2021 - 19:15 14-06-2021 - 19:15
CVE-2021-21557 None
Dell PowerEdge Server BIOS and select Dell Precision Rack BIOS contain an out-of-bounds array access vulnerability. A local malicious user with high privileges may potentially exploit this vulnerability, leading to a denial of service, arbitrary code
14-06-2021 - 19:15 14-06-2021 - 19:15
CVE-2021-21556 None
Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a stack-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious user with high privileges may potentially exploit th
14-06-2021 - 19:15 14-06-2021 - 19:15
CVE-2021-21554 None
Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and, Dell Precision 7920 Rack Workstation BIOS contain a stack-based buffer overflow vulnerability in systems with Intel Optane DC Persistent Memory installed. A local malicious u
14-06-2021 - 19:15 14-06-2021 - 19:15
CVE-2021-21480 9.0
SAP MII allows users to create dashboards and save them as JSP through the SSCE (Self Service Composition Environment). An attacker can intercept a request to the server, inject malicious JSP code in the request and forward to server. When this dashb
14-06-2021 - 19:15 09-03-2021 - 15:15
CVE-2020-26830 5.5
SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, does not perform necessary authorization checks for an authenticated user. Due to inadequate access control, a network attacker authenticated as a regular user can use operations w
14-06-2021 - 19:15 09-12-2020 - 17:15
CVE-2020-26837 6.5
SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, allows an authenticated user to upload a malicious script that can exploit an existing path traversal vulnerability to compromise confidentiality exposing elements of the file syst
14-06-2021 - 19:15 09-12-2020 - 17:15
CVE-2020-26829 9.0
SAP NetWeaver AS JAVA (P2P Cluster Communication), versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows arbitrary connections from processes because of missing authentication check, that are outside the cluster and even outside the network segment d
14-06-2021 - 19:15 09-12-2020 - 17:15
CVE-2020-26836 5.8
SAP Solution Manager (Trace Analysis), version - 720, allows for misuse of a parameter in the application URL leading to Open Redirect vulnerability, an attacker can enter a link to malicious site which could trick the user to enter credentials or do
14-06-2021 - 19:15 09-12-2020 - 17:15
CVE-2020-26809 5.0
SAP Commerce Cloud, versions- 1808,1811,1905,2005, allows an attacker to bypass existing authentication and permission checks via the '/medias' endpoint hence gaining access to Secure Media folders. This folder could contain sensitive files that resu
14-06-2021 - 19:15 10-11-2020 - 17:15
CVE-2020-26811 5.0
SAP Commerce Cloud (Accelerator Payment Mock), versions - 1808, 1811, 1905, 2005, allows an unauthenticated attacker to submit a crafted request over a network to a particular SAP Commerce module URL which will be processed without further interactio
14-06-2021 - 19:15 10-11-2020 - 17:15
CVE-2020-6369 4.3
SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an unauthenticated attackers to bypass the authentication if the default passwords for Admin and Guest have not been changed by the admi
14-06-2021 - 19:15 20-10-2020 - 14:15
CVE-2020-6364 10.0
SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an attacker to modify a cookie in a way that OS commands can be executed and potentially gain control over the host running the CA Intro
14-06-2021 - 19:15 15-10-2020 - 02:15
CVE-2020-6207 10.0
SAP Solution Manager (User Experience Monitoring), version- 7.2, due to Missing Authentication Check does not perform any authentication for a service resulting in complete compromise of all SMDAgents connected to the Solution Manager.
14-06-2021 - 19:15 10-03-2020 - 21:15
CVE-2021-1563 6.1
Multiple vulnerabilities in the implementation of the Cisco Discovery Protocol and Link Layer Discovery Protocol (LLDP) for Cisco Video Surveillance 7000 Series IP Cameras could allow an unauthenticated, adjacent attacker to cause a memory leak, whic
14-06-2021 - 19:09 04-06-2021 - 17:15
CVE-2021-27630 5.0
SAP NetWeaver ABAP Server and ABAP Platform (Enqueue Server), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73, allows an unauthenticated attacker witho
14-06-2021 - 18:59 09-06-2021 - 14:15
CVE-2021-1525 5.8
A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to redirect users to a malicious file. This vulnerability is due to improper validation of URL paths in the application interface.
14-06-2021 - 18:58 04-06-2021 - 17:15
CVE-2020-36386 4.9
An issue was discovered in the Linux kernel before 5.8.1. net/bluetooth/hci_event.c has a slab out-of-bounds read in hci_extended_inquiry_result_evt, aka CID-51c19bf3d5cf.
14-06-2021 - 18:57 07-06-2021 - 20:15
CVE-2021-1527 5.8
A vulnerability in Cisco Webex Player for Windows and MacOS could allow an attacker to cause the affected software to terminate or to gain access to memory state information that is related to the vulnerable application. The vulnerability is due to i
14-06-2021 - 18:50 04-06-2021 - 17:15
CVE-2021-33806 7.5
The BDew BdLib library before 1.16.1.7 for Minecraft allows remote code execution because it deserializes untrusted data in ObjectInputStream.readObject as part of its use of Java serialization.
14-06-2021 - 18:43 03-06-2021 - 12:15
Back to Top Mark selected
Back to Top