Skip to main content
CVE-2021-27487 MEDIUM This Month

ZOLL Defibrillator Dashboard, v prior to 2.2, The affected products contain credentials stored in plaintext. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Defibrillator Dashboard
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2021-27481 MEDIUM This Month

ZOLL Defibrillator Dashboard, v prior to 2.2, The affected products utilize an encryption key in the data exchange process, which is hardcoded. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Information Disclosure Defibrillator Dashboard
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2021-21668 MEDIUM PATCH This Month

Jenkins Scriptler Plugin 3.1 and earlier does not escape script content, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Scriptler/Configure permission. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Scriptler
NVD
CVSS 3.1
5.4
EPSS
76.0%
CVE-2021-21667 MEDIUM PATCH This Month

Jenkins Scriptler Plugin 3.2 and earlier does not escape parameter names shown in job configuration forms, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins XSS Scriptler
NVD
CVSS 3.1
5.4
EPSS
75.7%
CVE-2021-27479 MEDIUM This Month

ZOLL Defibrillator Dashboard, v prior to 2.2,The affected product’s web application could allow a low privilege user to inject parameters to contain malicious scripts to be executed by higher. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Defibrillator Dashboard
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2021-34683 MEDIUM This Month

An issue was discovered in EXCELLENT INFOTEK CORPORATION (EIC) E-document System 3.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure E Document System
NVD GitHub
CVSS 3.1
5.3
EPSS
1.1%
CVE-2021-32659 MEDIUM PATCH This Month

Matrix-appservice-bridge is the bridging service for the Matrix communication program's application services. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Matrix Appservice Bridge
NVD GitHub
CVSS 3.1
4.9
EPSS
0.9%
CVE-2021-28815 MEDIUM This Month

Insecure storage of sensitive information has been reported to affect QNAP NAS running myQNAPcloud Link. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap Information Disclosure Myqnapcloud Link
NVD
CVSS 3.1
4.9
EPSS
1.7%
CVE-2021-20567 MEDIUM PATCH This Month

IBM Resilient SOAR V38.0 could allow a local privileged attacker to obtain sensitive information due to improper or nonexisting encryption.IBM X-Force ID: 199239. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

IBM Information Disclosure Resilient Security Orchestration Automation And Response
NVD
CVSS 3.1
4.4
EPSS
0.1%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy