Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cve-2021-0212 vulnerabilities and exploits

(subscribe to this query)

7.2
CVSSv2
CVE-2021-0212
An Information Exposure vulnerability in Juniper Networks Contrail Networking allows a locally authenticated attacker able to read files to retrieve administrator credentials stored in plaintext thereby elevating their privileges over the system. This issue affects: Juniper...
Juniper Contrail Networking
5
CVSSv2
CVE-2013-2020
Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read....
Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.04Suse Linux Enterprise Server 11.0Clamav Clamav 0.9Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.1 P0Clamav Clamav 0.90.2Clamav Clamav 0.90.2 P0Clamav Clamav 0.90.3Clamav Clamav 0.90.3 P0Clamav Clamav 0.90.3 P1Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.91.2 P0Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.92 P0Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav Clamav 0.96.1Clamav Clamav 0.96.2Clamav Clamav 0.96.3Clamav Clamav 0.96.4Clamav Clamav 0.96.5Clamav Clamav 0.97Clamav Clamav 0.97.1Clamav Clamav 0.97.2Clamav Clamav 0.97.3Clamav Clamav 0.97.4Clamav Clamav 0.97.5Clamav Clamav
4.3
CVSSv2
CVE-2013-2021
pdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted length value in an encrypted PDF file....
Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.04Suse Linux Enterprise Server 11.0Clamav Clamav 0.97.1Clamav Clamav 0.97.2Clamav Clamav 0.97.3Clamav Clamav 0.97.4Clamav Clamav 0.97.5Clamav Clamav 0.97.6Clamav Clamav 0.97.7
NA
CVE-2017-2021
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none....
10
CVSSv2
CVE-2004-0212
Stack-based buffer overflow in the Task Scheduler for Windows 2000 and XP, and Internet Explorer 6 on Windows NT 4.0, allows local or remote attackers to execute arbitrary code via a .job file containing long parameters, as demonstrated using Internet Explorer and accessing a...
Avaya Ip600 Media ServersMicrosoft Ie 6.0Avaya Definity One Media ServerAvaya S8100Avaya Modular Messaging Message Storage Server S3400Microsoft Windows 2000Microsoft Windows Nt 4.0Microsoft Windows Xp
6.4
CVSSv2
CVE-2011-0212
servermgrd in Apple Mac OS X before 10.6.8 allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service (CPU and memory consumption), via an XML-RPC request containing an entity declaration in conjunction with...
Apple Mac Os X Server 10.6.0Apple Mac Os X Server 10.6.1Apple Mac Os X Server 10.6.2Apple Mac Os X Server 10.6.3Apple Mac Os X Server 10.6.4Apple Mac Os X Server 10.6.5Apple Mac Os X Server 10.6.6Apple Mac Os X Server 10.6.7
6.8
CVSSv2
CVE-2021-26025
PlugIns\IDE_ACDStd.apl in ACDSee Professional 2021 14.0 1721 has a User Mode Write Access Violation starting at IDE_ACDStd!zlibVersion+0x0000000000004e5e via a crafted BMP image....
Acdsee Photo Studio 2021 14.0
4
CVSSv2
CVE-2013-0212
store/swift.py in OpenStack Glance Essex (2012.1), Folsom (2012.2) before 2012.2.3, and Grizzly, when in Swift single tenant mode, logs the Swift endpoint's user name and password in cleartext when the endpoint is misconfigured or unusable, allows remote authenticated users...
Openstack Image Registry And Delivery Service \\(glance\\) 2012.1Openstack Image Registry And Delivery Service \\(glance\\) 2012.2Openstack Image Registry And Delivery Service \\(glance\\) 2012.2.1Openstack Image Registry And Delivery Service \\(glance\\) 2012.2.2Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10
3.5
CVSSv2
CVE-2015-0212
Cross-site scripting (XSS) vulnerability in course/pending.php in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before 2.7.4, and 2.8.x before 2.8.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted course summary....
Moodle Moodle 2.5.0Moodle Moodle 2.5.1Moodle Moodle 2.5.2Moodle Moodle 2.5.3Moodle Moodle 2.5.4Moodle Moodle 2.5.5Moodle Moodle 2.5.6Moodle Moodle 2.5.7Moodle Moodle 2.5.8Moodle MoodleMoodle Moodle 2.6.0Moodle Moodle 2.6.1Moodle Moodle 2.6.2Moodle Moodle 2.6.3Moodle Moodle 2.6.4Moodle Moodle 2.6.5Moodle Moodle 2.6.6Moodle Moodle 2.7.0Moodle Moodle 2.7.1Moodle Moodle 2.7.2Moodle Moodle 2.7.3Moodle Moodle 2.8.0
5
CVSSv2
CVE-2014-10069
Hitron CVE-30360 devices use a 578A958E3DD933FC DES key that is shared across different customers' installations, which makes it easier for attackers to obtain sensitive information by decrypting a backup configuration file, as demonstrated by a password hash in the...
Hitrontech Cve-30360 Firmware 3.1.1.21
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2021-21973mass assignmentCVE-2021-1396CVE-2018-19518CVE-2020-28599deserializationCVE-2021-1230CVE-2021-26681