Total
34640 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-43239 | 1 Microsoft | 4 Windows 10, Windows 11, Windows Server and 1 more | 2024-11-21 | 4.6 MEDIUM | 7.1 HIGH |
|
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
|
|||||
| CVE-2021-43236 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
Microsoft Message Queuing Information Disclosure Vulnerability
|
|||||
| CVE-2021-43235 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server and 2 more | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
Storage Spaces Controller Information Disclosure Vulnerability
|
|||||
| CVE-2021-43234 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
Windows Fax Service Remote Code Execution Vulnerability
|
|||||
| CVE-2021-43233 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 5.1 MEDIUM | 7.5 HIGH |
|
Remote Desktop Client Remote Code Execution Vulnerability
|
|||||
| CVE-2021-43232 | 1 Microsoft | 8 Windows 10, Windows 11, Windows 8.1 and 5 more | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
Windows Event Tracing Remote Code Execution Vulnerability
|
|||||
| CVE-2021-43231 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server and 2 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows NTFS Elevation of Privilege Vulnerability
|
|||||
| CVE-2021-43230 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows NTFS Elevation of Privilege Vulnerability
|
|||||
| CVE-2021-43229 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows NTFS Elevation of Privilege Vulnerability
|
|||||
| CVE-2021-43228 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server and 2 more | 2024-11-21 | 7.8 HIGH | 7.5 HIGH |
|
SymCrypt Denial of Service Vulnerability
|
|||||
| CVE-2021-43227 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server and 2 more | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
Storage Spaces Controller Information Disclosure Vulnerability
|
|||||
| CVE-2021-43225 | 1 Microsoft | 1 Bot Framework Software Development Kit | 2024-11-21 | 7.5 HIGH | 7.5 HIGH |
|
Bot Framework SDK Remote Code Execution Vulnerability
|
|||||
| CVE-2021-43224 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 2.1 LOW | 5.5 MEDIUM |
|
Windows Common Log File System Driver Information Disclosure Vulnerability
|
|||||
| CVE-2021-43223 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows Remote Access Connection Manager Elevation of Privilege Vulnerability
|
|||||
| CVE-2021-43222 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
Microsoft Message Queuing Information Disclosure Vulnerability
|
|||||
| CVE-2021-43219 | 1 Microsoft | 5 Windows 10, Windows 11, Windows Server and 2 more | 2024-11-21 | 7.8 HIGH | 7.4 HIGH |
|
DirectX Graphics Kernel File Denial of Service Vulnerability
|
|||||
| CVE-2021-43217 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 7.5 HIGH | 8.1 HIGH |
|
Windows Encrypting File System (EFS) Remote Code Execution Vulnerability
|
|||||
| CVE-2021-43214 | 1 Microsoft | 1 Raw Image Extension | 2024-11-21 | 7.5 HIGH | 7.8 HIGH |
|
Web Media Extensions Remote Code Execution Vulnerability
|
|||||
| CVE-2021-43209 | 1 Microsoft | 1 3d Viewer | 2024-11-21 | 6.8 MEDIUM | 7.8 HIGH |
|
3D Viewer Remote Code Execution Vulnerability
|
|||||
| CVE-2021-43207 | 1 Microsoft | 10 Windows 10, Windows 11, Windows 7 and 7 more | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
|
Windows Common Log File System Driver Elevation of Privilege Vulnerability
|
|||||
| CVE-2021-43202 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
In JetBrains TeamCity before 2021.1.3, the X-Frame-Options header is missing in some cases.
|
|||||
| CVE-2021-43201 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
In JetBrains TeamCity before 2021.1.3, a newly created project could take settings from an already deleted project.
|
|||||
| CVE-2021-43200 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
In JetBrains TeamCity before 2021.1.2, permission checks in the Agent Push functionality were insufficient.
|
|||||
| CVE-2021-43196 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible.
|
|||||
| CVE-2021-43195 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
In JetBrains TeamCity before 2021.1.2, some HTTP security headers were missing.
|
|||||
| CVE-2021-43194 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
In JetBrains TeamCity before 2021.1.2, user enumeration was possible.
|
|||||
| CVE-2021-43193 | 1 Jetbrains | 1 Teamcity | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
In JetBrains TeamCity before 2021.1.2, remote code execution via the agent push functionality is possible.
|
|||||
| CVE-2021-43192 | 2 Apple, Jetbrains | 2 Iphone Os, Youtrack Mobile | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
In JetBrains YouTrack Mobile before 2021.2, iOS URL scheme hijacking is possible.
|
|||||
| CVE-2021-43191 | 3 Apple, Google, Jetbrains | 3 Iphone Os, Android, Youtrack Mobile | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
JetBrains YouTrack Mobile before 2021.2, is missing the security screen on Android and iOS.
|
|||||
| CVE-2021-43190 | 2 Google, Jetbrains | 2 Android, Youtrack Mobile | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
In JetBrains YouTrack Mobile before 2021.2, task hijacking on Android is possible.
|
|||||
| CVE-2021-43189 | 2 Google, Jetbrains | 2 Android, Youtrack Mobile | 2024-11-21 | 7.5 HIGH | 7.3 HIGH |
|
In JetBrains YouTrack Mobile before 2021.2, access token protection on Android is incomplete.
|
|||||
| CVE-2021-43188 | 2 Apple, Jetbrains | 2 Iphone Os, Youtrack Mobile | 2024-11-21 | 7.5 HIGH | 7.3 HIGH |
|
In JetBrains YouTrack Mobile before 2021.2, access token protection on iOS is incomplete.
|
|||||
| CVE-2021-43187 | 2 Apple, Jetbrains | 2 Iphone Os, Youtrack Mobile | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
|
In JetBrains YouTrack Mobile before 2021.2, the client-side cache on iOS could contain sensitive information.
|
|||||
| CVE-2021-43183 | 1 Jetbrains | 1 Hub | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
In JetBrains Hub before 2021.1.13690, the authentication throttling mechanism could be bypassed.
|
|||||
| CVE-2021-43182 | 1 Jetbrains | 1 Hub | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
In JetBrains Hub before 2021.1.13415, a DoS via user information is possible.
|
|||||
| CVE-2021-43180 | 1 Jetbrains | 1 Hub | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
In JetBrains Hub before 2021.1.13690, information disclosure via avatar metadata is possible.
|
|||||
| CVE-2021-43177 | 1 Tinfoilsecurity | 1 Devise-two-factor | 2024-11-21 | 3.5 LOW | 5.3 MEDIUM |
|
As a result of an incomplete fix for CVE-2015-7225, in versions of devise-two-factor prior to 4.0.2 it is possible to reuse a One-Time-Password (OTP) for one (and only one) immediately trailing interval. CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N)
|
|||||
| CVE-2021-43145 | 1 Zammad | 1 Zammad | 2024-11-21 | 5.5 MEDIUM | 8.1 HIGH |
|
With certain LDAP configurations, Zammad 5.0.1 was found to be vulnerable to unauthorized access with existing user accounts.
|
|||||
| CVE-2021-43110 | 1 Puneethreddyhc Online-shopping-system Project | 1 Puneethreddyhc Online-shopping-system | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
An Access Conrol vulnerability exists in PuneethReddyHC online-shopping-system as of 11/01/2021 in add_products.
|
|||||
| CVE-2021-43105 | 1 Technitium | 1 Dns Server | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
|
A vulnerability in the bailiwick checking function in Technitium DNS Server <= v7.0 exists that allows specific malicious users to inject `NS` records of any domain (even TLDs) into the cache and conduct a DNS cache poisoning attack.
|
|||||