Skip to main content
CVE-2021-22852 HIGH This Week

HGiga EIP product contains SQL Injection vulnerability. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Oaklouds Openid
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2021-20190 HIGH PATCH This Week

A flaw was found in jackson-databind before 2.9.10.7. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. This Deserialization of Untrusted Data vulnerability could allow attackers to execute arbitrary code through malicious serialized objects.

Deserialization Jackson Databind Active Iq Unified Manager Oncommand Api Services Oncommand Insight +4
NVD GitHub
CVSS 3.1
8.1
EPSS
7.5%
CVE-2021-22498 HIGH This Week

XML External Entity Injection vulnerability in Micro Focus Application Lifecycle Management (Previously known as Quality Center) product. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XXE Application Lifecycle Management
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-3182 HIGH This Week

D-Link DCS-5220 devices have a buffer overflow. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow D-Link Memory Corruption Dcs 5220 Firmware
NVD
CVSS 3.1
8.0
EPSS
0.9%
CVE-2021-3183 HIGH This Week

Files.com Fat Client 3.3.6 allows authentication bypass because the client continues to have access after a logout and a removal of a login profile. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Fat Client
NVD
CVSS 3.1
7.5
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy