Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cve-2021-20688 vulnerabilities and exploits

(subscribe to this query)

7.5
CVSSv2
CVE-2020-29595
PlugIns\IDE_ACDStd.apl in ACDSee Photo Studio Studio Professional 2021 14.0 Build 1705 has a User Mode Write AV starting at IDE_ACDStd!JPEGTransW+0x00000000000031aa....
Acdsee Photo Studio 2021 14.0
6.8
CVSSv2
CVE-2021-26026
PlugIns\IDE_ACDStd.apl in ACDSee Professional 2021 14.0 1721 has a User Mode Write Access Violation starting at IDE_ACDStd!JPEGTransW+0x000000000000c7f4 via a crafted BMP image....
Acdsee Photo Studio 2021 14.0
6.4
CVSSv2
CVE-2021-30045
SerenityOS 2021-03-27 contains a buffer overflow vulnerability in the EndOfCentralDirectory::read() function....
Serenityos Serenity 2021-03-27
5.2
CVSSv2
CVE-2019-20688
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D3600 before 1.0.0.75, D6000 before 1.0.0.75, D6100 before 1.0.0.63, EX2700 before 1.0.1.48, EX6100v2 before 1.0.1.76, EX6150v2 before 1.0.1.76, EX6200v2 before 1.0.1.72, EX6400...
Netgear D3600 FirmwareNetgear D6000 FirmwareNetgear D6100 FirmwareNetgear Ex2700 FirmwareNetgear Ex6100 FirmwareNetgear Ex6150 FirmwareNetgear Ex6200 FirmwareNetgear Ex6400 FirmwareNetgear Ex7300 FirmwareNetgear Ex8000 FirmwareNetgear R7800 FirmwareNetgear R8900 FirmwareNetgear R9000 FirmwareNetgear Wn2000rpt FirmwareNetgear Wn3000rp FirmwareNetgear Wn3100rp FirmwareNetgear Wndr3700 FirmwareNetgear Wndr4300 FirmwareNetgear Wndr4500 FirmwareNetgear Wnr2000 FirmwareNetgear Xr500 Firmware
4.3
CVSSv2
CVE-2002-2021
Cross-site scripting (XSS) vulnerability in WoltLab Burning Board (wbboard) 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the message parameter....
Woltlab Burning Board 1.1.1
7.2
CVSSv2
CVE-2021-3156
Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character....
Sudo Project SudoSudo Project Sudo 1.9.5Fedoraproject Fedora 32Fedoraproject Fedora 33Debian Debian Linux 9.0Debian Debian Linux 10.0Netapp Hci Management Node -Netapp Oncommand Unified Manager Core Package -Netapp Solidfire -Mcafee Web Gateway 8.2.17Mcafee Web Gateway 9.2.8Mcafee Web Gateway 10.0.4Synology Diskstation Manager 6.2Synology Diskstation Manager Unified Controller 3.0Synology Skynas Firmware -Synology Vs960hd Firmware -Beyondtrust Privilege Management For MacBeyondtrust Privilege Management For Unix\\/linux
6.8
CVSSv2
CVE-2015-8011
Buffer overflow in the lldp_decode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries....
Lldpd Project LldpdDebian Debian Linux 9.0Debian Debian Linux 10.0Fedoraproject Fedora 33
6.8
CVSSv2
CVE-2021-20198
A flaw was found in the OpenShift Installer before version v0.9.0-master.0.20210125200451-95101da940b0. During installation of OpenShift Container Platform 4 clusters, bootstrap nodes are provisioned with anonymous authentication enabled on kubelet port 10250. A remote attacker...
Redhat Openshift Installer
6.5
CVSSv2
CVE-2021-3344
A privilege escalation flaw was found in OpenShift builder. During build time, credentials outside the build context are automatically mounted into the container image under construction. An OpenShift user, able to execute code during build time inside this container can re-use...
Redhat Openshift Builder
6.8
CVSSv2
CVE-2020-14382
A vulnerability was found in upstream release cryptsetup-2.2.0 where, there's a bug in LUKS2 format validation code, that is effectively invoked on every device/image presenting itself as LUKS2 container. The bug is in segments validation code in file...
Cryptsetup Project Cryptsetup 2.2.0Redhat Enterprise Linux 8.0Canonical Ubuntu Linux 20.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2021-24218CVE-2021-24086cameraCVE-2021-24198CVE-2018-13379XML external entityCVE-2021-24229CVE-2021-3465
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook