Skip to main content
CVE-2021-26723 MEDIUM POC THREAT This Month

Jenzabar 9.2.x through 9.2.2 allows /ics?tool=search&query= XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Jenzabar
NVD GitHub
CVSS 3.1
6.1
EPSS
12.6%
CVE-2021-22299 HIGH This Week

There is a local privilege escalation vulnerability in some Huawei products. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Huawei Privilege Escalation Imaster Mae M Manageone Network Functions Virtualization Fusionsphere +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2021-22293 HIGH This Week

Some Huawei products have an inconsistent interpretation of HTTP requests vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Request Smuggling Information Disclosure Huawei Campusinsight Manageone +1
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2021-22292 HIGH This Week

There is a denial of service (DoS) vulnerability in eCNS280 versions V100R005C00, V100R005C10. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Ecns280 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.9%
CVE-2021-22302 HIGH This Week

There is an out-of-bound read vulnerability in Taurus-AL00A 10.0.0.1(C00E1R1P1). Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Taurus Al00A Firmware
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2021-22301 MEDIUM This Month

Mate 30 10.0.0.203(C00E201R7P2) have a buffer overflow vulnerability. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Mate 30 Firmware
NVD
CVSS 3.1
6.7
EPSS
0.2%
CVE-2021-22500 MEDIUM This Month

Cross Site Request Forgery vulnerability in Micro Focus Application Performance Management product, affecting versions 9.40, 9.50 and 9.51. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Application Performance Management
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2021-22298 MEDIUM This Month

There is a logic vulnerability in Huawei Gauss100 OLTP Product. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Manageone
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2021-22307 MEDIUM This Month

There is a weak algorithm vulnerability in Mate 3010.0.0.203(C00E201R7P2). Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Mate 30 Firmware
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2021-20176 MEDIUM This Month

A divide-by-zero flaw was found in ImageMagick 6.9.11-57 and 7.0.10-57 in gem.c. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Imagemagick Debian Linux
NVD
CVSS 3.1
5.5
EPSS
0.9%
CVE-2021-22499 MEDIUM This Month

Persistent Cross-Site scripting vulnerability in Micro Focus Application Performance Management product, affecting versions 9.40, 9.50 and 9.51. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Application Performance Management
NVD
CVSS 3.1
4.8
EPSS
0.6%
CVE-2021-22306 MEDIUM This Month

There is an out-of-bound read vulnerability in Mate 30 10.0.0.182(C00E180R6P2). Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Mate 30 Firmware
NVD
CVSS 3.1
4.6
EPSS
0.2%
CVE-2021-22300 MEDIUM This Month

There is an information leak vulnerability in eCNS280_TD versions V100R005C00 and V100R005C10. Rated medium severity (CVSS 4.1). No vendor patch available.

Information Disclosure Ecns280 Td Firmware
NVD
CVSS 3.1
4.1
EPSS
0.1%
CVE-2021-22305 LOW Monitor

There is a buffer overflow vulnerability in Mate 30 10.1.0.126(C00E125R5P3). Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Mate 30 Firmware
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2021-22304 LOW Monitor

There is a use after free vulnerability in Taurus-AL00A 10.0.0.1(C00E1R1P1). Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Use After Free Denial Of Service Memory Corruption Taurus Al00A Firmware
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2021-22303 LOW Monitor

There is a pointer double free vulnerability in Taurus-AL00A 10.0.0.1(C00E1R1P1). Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Taurus Al00A Firmware
NVD
CVSS 3.1
3.3
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy