Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cve-2021-23926 vulnerabilities and exploits

(subscribe to this query)

6.4
CVSSv2
CVE-2021-23926
The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include possibilities for XML Entity Expansion attacks. Affects XMLBeans up to and including v2.6.0....
Apache Xmlbeans
5
CVSSv2
CVE-2013-2020
Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read....
Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.04Suse Linux Enterprise Server 11.0Clamav Clamav 0.9Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.1 P0Clamav Clamav 0.90.2Clamav Clamav 0.90.2 P0Clamav Clamav 0.90.3Clamav Clamav 0.90.3 P0Clamav Clamav 0.90.3 P1Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.91.2 P0Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.92 P0Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav Clamav 0.96.1Clamav Clamav 0.96.2Clamav Clamav 0.96.3Clamav Clamav 0.96.4Clamav Clamav 0.96.5Clamav Clamav 0.97Clamav Clamav 0.97.1Clamav Clamav 0.97.2Clamav Clamav 0.97.3Clamav Clamav 0.97.4Clamav Clamav 0.97.5Clamav Clamav
4.3
CVSSv2
CVE-2013-2021
pdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted length value in an encrypted PDF file....
Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.04Suse Linux Enterprise Server 11.0Clamav Clamav 0.97.1Clamav Clamav 0.97.2Clamav Clamav 0.97.3Clamav Clamav 0.97.4Clamav Clamav 0.97.5Clamav Clamav 0.97.6Clamav Clamav 0.97.7
NA
CVE-2017-2021
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none....
6.8
CVSSv2
CVE-2021-26025
PlugIns\IDE_ACDStd.apl in ACDSee Professional 2021 14.0 1721 has a User Mode Write Access Violation starting at IDE_ACDStd!zlibVersion+0x0000000000004e5e via a crafted BMP image....
Acdsee Photo Studio 2021 14.0
5
CVSSv2
CVE-2014-10069
Hitron CVE-30360 devices use a 578A958E3DD933FC DES key that is shared across different customers' installations, which makes it easier for attackers to obtain sensitive information by decrypting a backup configuration file, as demonstrated by a password hash in the...
Hitrontech Cve-30360 Firmware 3.1.1.21
4
CVSSv2
CVE-2021-1305
Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization and modify the configuration of an affected system, gain access to sensitive information, and view information...
Cisco Ios Xe Sd-wan -Cisco Sd-wan FirmwareCisco Sd-wan Firmware 20.4.0Cisco Sd-wan Vsmart Controller FirmwareCisco Sd-wan Vbond Orchestrator -
4
CVSSv2
CVE-2021-1304
Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization and modify the configuration of an affected system, gain access to sensitive information, and view information...
Cisco Sd-wan Vmanage -
6
CVSSv2
CVE-2021-1302
Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to bypass authorization and modify the configuration of an affected system, gain access to sensitive information, and view information...
Cisco Sd-wan Vmanage -
6.8
CVSSv2
CVE-2020-13581
In SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 (Revision 1014), a specially crafted document can cause the document parser to copy data from a particular record type into a buffer that is smaller than the size used for the copy which will cause a heap-based buffer...
Softmaker Planmaker 2021 1014
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2021-21973mass assignmentCVE-2021-1396CVE-2018-19518CVE-2020-28599deserializationCVE-2021-1230CVE-2021-26681