Skip to main content
CVE-2021-31348 MEDIUM POC This Month

An issue was discovered in libezxml.a in ezXML 0.8.6. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Information Disclosure Ezxml Debian Linux
NVD
CVSS 3.1
6.5
EPSS
1.1%
CVE-2021-31347 MEDIUM POC This Month

An issue was discovered in libezxml.a in ezXML 0.8.6. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Ezxml Debian Linux
NVD
CVSS 3.1
6.5
EPSS
1.2%
CVE-2021-29452 MEDIUM PATCH This Month

a12n-server is an npm package which aims to provide a simple authentication system. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Node.js Privilege Escalation A12N Server
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-26074 MEDIUM PATCH This Month

Broken Authentication in Atlassian Connect Spring Boot (ACSB) from version 1.1.0 before version 2.1.3: Atlassian Connect Spring Boot is a Java Spring Boot package for building Atlassian Connect apps. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Java Atlassian Authentication Bypass Connect Spring Boot
NVD
CVSS 3.1
6.5
EPSS
0.7%
CVE-2021-29443 MEDIUM PATCH This Month

jose is an npm library providing a number of cryptographic operations. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Node.js Oracle Microsoft Jose
NVD GitHub VulDB
CVSS 3.1
5.9
EPSS
1.2%
CVE-2021-29446 MEDIUM PATCH This Month

jose-node-cjs-runtime is an npm package which provides a number of cryptographic functions. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Node.js Oracle Information Disclosure Jose Node Cjs Runtime
NVD GitHub
CVSS 3.1
5.9
EPSS
1.2%
CVE-2021-29445 MEDIUM PATCH This Month

jose-node-esm-runtime is an npm package which provides a number of cryptographic functions. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Node.js Oracle Information Disclosure Jose Node Cjs Runtime
NVD GitHub
CVSS 3.1
5.9
EPSS
1.2%
CVE-2021-29444 MEDIUM PATCH This Month

jose-browser-runtime is an npm package which provides a number of cryptographic functions. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Node.js Oracle Information Disclosure Jose Node Cjs Runtime
NVD GitHub
CVSS 3.1
5.9
EPSS
1.2%
CVE-2021-20491 MEDIUM PATCH This Month

IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-based buffer overflow caused by improper bounds checking during the parsing of commands. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow IBM Memory Corruption Spectrum Protect
NVD
CVSS 3.1
4.4
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy