Skip to main content
CVE-2021-2264 HIGH POC PATCH This Week

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Rated high severity (CVSS 8.4), this vulnerability is low attack complexity. Public exploit code available.

Oracle Authentication Bypass Vm Virtualbox
NVD
CVSS 3.1
8.4
EPSS
0.7%
CVE-2021-0253 HIGH POC This Week

NFX Series devices using Juniper Networks Junos OS are susceptible to a local command execution vulnerability thereby allowing an attacker to elevate their privileges via the Junos Device Management. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Juniper Junos
NVD GitHub
CVSS 3.1
7.8
EPSS
0.5%
CVE-2021-0252 HIGH POC This Week

NFX Series devices using Juniper Networks Junos OS are susceptible to a local code execution vulnerability thereby allowing an attacker to elevate their privileges via the Junos Device Management. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

RCE Command Injection Juniper Junos
NVD GitHub
CVSS 3.1
7.8
EPSS
0.5%
CVE-2021-3496 HIGH POC This Week

A heap-based buffer overflow was found in jhead in version 3.06 in Get16u() in exif.c when processing a crafted file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Jhead
NVD GitHub
CVSS 3.1
7.8
EPSS
1.1%
CVE-2021-23133 HIGH POC PATCH This Week

A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. Rated high severity (CVSS 7.0). Public exploit code available.

Linux Privilege Escalation Race Condition Linux Kernel Fedora +13
NVD
CVSS 3.1
7.0
EPSS
0.5%
CVE-2021-27392 HIGH This Week

A vulnerability has been identified in Siveillance Video Open Network Bridge (2020 R3), Siveillance Video Open Network Bridge (2020 R2), Siveillance Video Open Network Bridge (2020 R1), Siveillance. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Siveillance Video Open Network Bridge
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-0275 HIGH This Week

A Cross-site Scripting (XSS) vulnerability in J-Web on Juniper Networks Junos OS allows an attacker to target another user's session thereby gaining access to the users session. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Juniper Junos
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-0269 HIGH This Week

The improper handling of client-side parameters in J-Web of Juniper Networks Junos OS allows an attacker to perform a number of different malicious actions against a target device when a user is. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Juniper Junos
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-25664 HIGH This Week

A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), Nucleus NET (All versions), Nucleus ReadyStart V3. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Capital Vstar Nucleus Net Nucleus Readystart V3 Nucleus Readystart V4 +1
NVD
CVSS 4.0
8.7
EPSS
1.9%
CVE-2021-25663 HIGH This Week

A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), Nucleus NET (All versions), Nucleus ReadyStart V3. Rated high severity (CVSS 8.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Capital Vstar Nucleus Net Nucleus Readystart Nucleus Source Code
NVD
CVSS 4.0
8.7
EPSS
1.9%
CVE-2021-0251 HIGH This Week

A NULL Pointer Dereference vulnerability in the Captive Portal Content Delivery (CPCD) services daemon (cpcd) of Juniper Networks Junos OS on MX Series with MS-PIC, MS-SPC3, MS-MIC or MS-MPC allows. Rated high severity (CVSS 8.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Juniper Junos
NVD
CVSS 3.1
8.6
EPSS
1.1%
CVE-2021-2209 HIGH PATCH This Week

Vulnerability in the Oracle Email Center product of Oracle E-Business Suite (component: Message Display). Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Email Center
NVD
CVSS 3.1
8.5
EPSS
0.8%
CVE-2021-2218 HIGH PATCH This Week

Vulnerability in the PeopleSoft Enterprise PT PeopleTools product of Oracle PeopleSoft (component: Health Center). Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Oracle Peoplesoft Enterprise Pt Peopletools
NVD
CVSS 3.1
8.3
EPSS
1.3%
CVE-2021-2250 HIGH PATCH This Week

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Rated high severity (CVSS 8.2), this vulnerability is low attack complexity.

Oracle Information Disclosure Vm Virtualbox
NVD
CVSS 3.1
8.2
EPSS
0.8%
CVE-2021-2242 HIGH PATCH This Week

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Outside In Technology
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2210 HIGH PATCH This Week

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite (component: Quotes). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Trade Management
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2206 HIGH PATCH This Week

Vulnerability in the Oracle Trade Management product of Oracle E-Business Suite (component: Quotes). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Trade Management
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2199 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2198 HIGH PATCH This Week

Vulnerability in the Oracle Knowledge Management product of Oracle E-Business Suite (component: Setup, Admin). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Knowledge Management
NVD
CVSS 3.1
8.2
EPSS
79.9%
CVE-2021-2197 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
1.0%
CVE-2021-2195 HIGH PATCH This Week

Vulnerability in the Oracle Partner Management product of Oracle E-Business Suite (component: Attribute Admin Setup). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Partner Management
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2188 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2187 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2186 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2185 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2184 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2183 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2182 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-2150 HIGH PATCH This Week

Vulnerability in the Oracle iStore product of Oracle E-Business Suite (component: Shopping Cart). Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Oracle Authentication Bypass Istore
NVD
CVSS 3.1
8.2
EPSS
0.9%
CVE-2021-27278 HIGH This Week

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.1-49141. Rated high severity (CVSS 8.2), this vulnerability is low attack complexity. No vendor patch available.

Path Traversal Parallels Desktop
NVD
CVSS 3.1
8.2
EPSS
0.5%
CVE-2021-2316 HIGH PATCH This Week

Vulnerability in the Oracle HRMS (France) product of Oracle E-Business Suite (component: French HR). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Human Resource Management Software For France
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2314 HIGH PATCH This Week

Vulnerability in the Oracle Application Object Library product of Oracle E-Business Suite (component: Profiles). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Application Object Library
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2295 HIGH PATCH This Week

Vulnerability in the Oracle Concurrent Processing product of Oracle E-Business Suite (component: BI Publisher Integration). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Concurrent Processing
NVD
CVSS 3.1
8.1
EPSS
0.9%
CVE-2021-2292 HIGH PATCH This Week

Vulnerability in the Oracle Document Management and Collaboration product of Oracle E-Business Suite (component: Document Management). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Document Management And Collaboration
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2290 HIGH PATCH This Week

Vulnerability in the Oracle Engineering product of Oracle E-Business Suite (component: Change Management). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Engineering
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2289 HIGH PATCH This Week

Vulnerability in the Oracle Product Hub product of Oracle E-Business Suite (component: Template, GTIN search). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Product Hub
NVD
CVSS 3.1
8.1
EPSS
15.0%
CVE-2021-2288 HIGH PATCH This Week

Vulnerability in the Oracle Bills of Material product of Oracle E-Business Suite (component: Bill Issues). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Bills Of Material
NVD
CVSS 3.1
8.1
EPSS
0.9%
CVE-2021-2279 HIGH PATCH This Week

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

Oracle Information Disclosure Vm Virtualbox
NVD
CVSS 3.1
8.1
EPSS
3.3%
CVE-2021-2276 HIGH PATCH This Week

Vulnerability in the Oracle iSetup product of Oracle E-Business Suite (component: General Ledger Update Transform, Reports). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Isetup
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2274 HIGH PATCH This Week

Vulnerability in the Oracle E-Business Tax product of Oracle E-Business Suite (component: User Interface). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass E Business Tax
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2273 HIGH PATCH This Week

Vulnerability in the Oracle Legal Entity Configurator product of Oracle E-Business Suite (component: Create Contracts). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Legal Entity Configurator
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2272 HIGH PATCH This Week

Vulnerability in the Oracle Subledger Accounting product of Oracle E-Business Suite (component: Inquiries). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Subledger Accounting
NVD
CVSS 3.1
8.1
EPSS
0.9%
CVE-2021-2271 HIGH PATCH This Week

Vulnerability in the Oracle Work in Process product of Oracle E-Business Suite (component: Resource Exceptions). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Work In Progress
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2270 HIGH PATCH This Week

Vulnerability in the Oracle Site Hub product of Oracle E-Business Suite (component: Sites). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Site Hub
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2269 HIGH PATCH This Week

Vulnerability in the Oracle Advanced Pricing product of Oracle E-Business Suite (component: Price Book). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Advanced Pricing
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2268 HIGH PATCH This Week

Vulnerability in the Oracle Quoting product of Oracle E-Business Suite (component: Courseware). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Quoting
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2267 HIGH PATCH This Week

Vulnerability in the Oracle Labor Distribution product of Oracle E-Business Suite (component: User Interface). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Labor Distribution
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2263 HIGH PATCH This Week

Vulnerability in the Oracle Sourcing product of Oracle E-Business Suite (component: Intelligence, RFx). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Sourcing
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2262 HIGH PATCH This Week

Vulnerability in the Oracle Purchasing product of Oracle E-Business Suite (component: Endeca). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Purchasing
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2021-2261 HIGH PATCH This Week

Vulnerability in the Oracle Lease and Finance Management product of Oracle E-Business Suite (component: Quotes). Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Lease And Finance Management
NVD
CVSS 3.1
8.1
EPSS
0.9%
Page 1 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy