Skip to main content
CVE-2021-29940 CRITICAL POC Act Now

An issue was discovered in the through crate through 2021-02-18 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Through
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2021-29937 CRITICAL POC PATCH Act Now

An issue was discovered in the telemetry crate through 2021-02-17 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Telemetry
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2021-29936 CRITICAL POC Act Now

An issue was discovered in the adtensor crate through 2021-01-11 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Adtensor
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2021-20078 CRITICAL POC THREAT Act Now

Manage Engine OpManager builds below 125346 are vulnerable to a remote denial of service vulnerability due to a path traversal issue in spark gateway component. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Path Traversal Manageengine Opmanager
NVD
CVSS 3.1
9.1
EPSS
60.4%
CVE-2021-28918 CRITICAL POC PATCH THREAT Act Now

Improper input validation of octal strings in netmask npm package v1.0.6 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many of the dependent. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Node.js SSRF Netmask
NVD GitHub
CVSS 3.1
9.1
EPSS
16.4%
CVE-2021-23921 CRITICAL Act Now

An issue was discovered in Devolutions Server before 2020.3. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Devolutions Server
NVD
CVSS 3.1
9.1
EPSS
1.0%
CVE-2021-21982 CRITICAL PATCH Act Now

VMware Carbon Black Cloud Workload appliance 1.0.0 and 1.01 has an authentication bypass vulnerability that may allow a malicious actor with network access to the administrative interface of the. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

VMware Authentication Bypass Carbon Black Cloud Workload
NVD
CVSS 3.1
9.1
EPSS
1.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy