CVE-2021-44420
- EPSS 2.3%
- Veröffentlicht 08.12.2021 00:15:07
- Zuletzt bearbeitet 21.11.2024 06:30:56
In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for URLs with trailing newlines could bypass upstream access control based on URL paths.
CVE-2021-44686
- EPSS 4.99%
- Veröffentlicht 07.12.2021 00:15:08
- Zuletzt bearbeitet 04.11.2025 16:15:45
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service) in html_preprocess_rules in ebooks/conversion/preprocess.py.
CVE-2021-4069
- EPSS 1.29%
- Veröffentlicht 06.12.2021 12:15:07
- Zuletzt bearbeitet 21.11.2024 06:36:50
vim is vulnerable to Use After Free
CVE-2021-3984
- EPSS 1.46%
- Veröffentlicht 01.12.2021 11:15:07
- Zuletzt bearbeitet 21.11.2024 06:23:18
vim is vulnerable to Heap-based Buffer Overflow
CVE-2021-4019
- EPSS 1.79%
- Veröffentlicht 01.12.2021 10:15:07
- Zuletzt bearbeitet 29.05.2026 20:09:37
vim is vulnerable to Heap-based Buffer Overflow
CVE-2021-3802
- EPSS 0.81%
- Veröffentlicht 29.11.2021 16:15:07
- Zuletzt bearbeitet 21.11.2024 06:22:28
A vulnerability found in udisks2. This flaw allows an attacker to input a specially crafted image file/USB leading to kernel panic. The highest threat from this vulnerability is to system availability.
CVE-2021-44225
- EPSS 1.16%
- Veröffentlicht 26.11.2021 00:15:10
- Zuletzt bearbeitet 21.11.2024 06:30:37
In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This leads to access-control bypass in some situations in which an unrelated D-Bus system ...
- EPSS 1.36%
- Veröffentlicht 24.11.2021 19:15:07
- Zuletzt bearbeitet 21.11.2024 06:25:56
Symfony/Serializer handles serializing and deserializing data structures for Symfony, a PHP framework for web and console applications and a set of reusable PHP components. Symfony versions 4.1.0 before 4.4.35 and versions 5.0.0 before 5.3.12 are vul...
CVE-2021-28705
- EPSS 0.33%
- Veröffentlicht 24.11.2021 02:15:06
- Zuletzt bearbeitet 21.11.2024 06:00:10
issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mod...
CVE-2021-28709
- EPSS 0.34%
- Veröffentlicht 24.11.2021 02:15:06
- Zuletzt bearbeitet 21.11.2024 06:00:11
issues with partially successful P2M updates on x86 T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] x86 HVM and PVH guests may be started in populate-on-demand (PoD) mod...