CVE-2021-3973
- EPSS 1.67%
- Veröffentlicht 19.11.2021 12:15:09
- Zuletzt bearbeitet 21.11.2024 06:23:16
vim is vulnerable to Heap-based Buffer Overflow
CVE-2021-3974
- EPSS 1.27%
- Veröffentlicht 19.11.2021 11:15:07
- Zuletzt bearbeitet 21.11.2024 06:23:17
vim is vulnerable to Use After Free
CVE-2021-44026
- EPSS 42.75%
- Veröffentlicht 19.11.2021 04:15:07
- Zuletzt bearbeitet 04.11.2025 15:00:10
Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to a potential SQL injection via search or search_params.
CVE-2021-44025
- EPSS 1.05%
- Veröffentlicht 19.11.2021 04:15:06
- Zuletzt bearbeitet 21.11.2024 06:30:14
Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to XSS in handling an attachment's filename extension when displaying a MIME type warning message.
CVE-2021-39920
- EPSS 3.16%
- Veröffentlicht 18.11.2021 19:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:33
NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file
CVE-2021-39928
- EPSS 5.5%
- Veröffentlicht 18.11.2021 19:15:08
- Zuletzt bearbeitet 21.11.2024 06:20:35
NULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
CVE-2021-27023
- EPSS 1.33%
- Veröffentlicht 18.11.2021 15:15:09
- Zuletzt bearbeitet 21.11.2024 05:57:11
A flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credentials when following HTTP redirects to a different host. This is similar to CVE-2018-1000007
CVE-2021-27025
- EPSS 1.15%
- Veröffentlicht 18.11.2021 15:15:09
- Zuletzt bearbeitet 21.11.2024 05:57:12
A flaw was discovered in Puppet Agent where the agent may silently ignore Augeas settings or may be vulnerable to a Denial of Service condition prior to the first 'pluginsync'.
- EPSS 2.09%
- Veröffentlicht 17.11.2021 20:15:10
- Zuletzt bearbeitet 21.11.2024 06:25:43
The OCI Distribution Spec project defines an API protocol to facilitate and standardize the distribution of content. In the OCI Distribution Specification version 1.0.0 and prior, the Content-Type header alone was used to determine the type of docume...
CVE-2021-41164
- EPSS 1.26%
- Veröffentlicht 17.11.2021 19:15:08
- Zuletzt bearbeitet 21.11.2024 06:25:38
CKEditor4 is an open source WYSIWYG HTML editor. In affected versions a vulnerability has been discovered in the Advanced Content Filter (ACF) module and may affect all plugins used by CKEditor 4. The vulnerability allowed to inject malformed HTML by...