Skip to main content
CVE-2021-33824 HIGH POC This Week

An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Mgate Mb3180 Firmware
NVD GitHub
CVSS 3.1
7.5
EPSS
2.2%
CVE-2021-33823 HIGH POC This Week

An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Mgate Mb3180 Firmware
NVD GitHub
CVSS 3.1
7.5
EPSS
1.5%
CVE-2021-33822 HIGH POC This Week

An issue was discovered on 4GEE ROUTER HH70VB Version HH70_E1_02.00_22. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service 4Gee Router Hh70Vb Firmware
NVD GitHub
CVSS 3.1
7.5
EPSS
1.9%
CVE-2021-33820 HIGH POC This Week

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Information Disclosure Camera G3 Flex Firmware
NVD GitHub
CVSS 3.1
7.5
EPSS
1.9%
CVE-2021-33818 HIGH POC This Week

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Denial Of Service Camera G3 Flex Firmware
NVD GitHub
CVSS 3.1
7.5
EPSS
1.9%
CVE-2021-23845 HIGH This Week

This vulnerability could allow an attacker to hijack a session while a user is logged in the configuration web page. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass B426 Firmware B426 Cn Firmware B429 Cn Firmware B426 M Firmware
NVD
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-34810 HIGH This Week

Improper privilege management vulnerability in cgi component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Synology RCE Privilege Escalation Download Station
NVD
CVSS 3.1
8.8
EPSS
1.4%
CVE-2021-34809 HIGH This Week

Improper neutralization of special elements used in a command ('Command Injection') vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Synology RCE Command Injection Download Station
NVD
CVSS 3.1
8.8
EPSS
1.9%
CVE-2021-33186 HIGH This Week

SerenityOS in test-crypto.cpp contains a stack buffer overflow which could allow attackers to obtain sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Memory Corruption Serenityos
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2021-33185 HIGH This Week

SerenityOS contains a buffer overflow in the set_range test in TestBitmap which could allow attackers to obtain sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Serenityos
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2021-31664 HIGH This Week

RIOT-OS 2021.01 before commit 44741ff99f7a71df45420635b238b9c22093647a contains a buffer overflow which could allow attackers to obtain sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Riot
NVD GitHub
CVSS 3.1
7.5
EPSS
1.3%
CVE-2021-31663 HIGH PATCH This Week

RIOT-OS 2021.01 before commit bc59d60be60dfc0a05def57d74985371e4f22d79 contains a buffer overflow which could allow attackers to obtain sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Riot
NVD GitHub
CVSS 3.1
7.5
EPSS
1.6%
CVE-2021-31662 HIGH PATCH This Week

RIOT-OS 2021.01 before commit 07f1254d8537497552e7dce80364aaead9266bbe contains a buffer overflow which could allow attackers to obtain sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Riot
NVD GitHub
CVSS 3.1
7.5
EPSS
1.3%
CVE-2021-31661 HIGH PATCH This Week

RIOT-OS 2021.01 before commit 609c9ada34da5546cffb632a98b7ba157c112658 contains a buffer overflow that could allow attackers to obtain sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Riot
NVD GitHub
CVSS 3.1
7.5
EPSS
1.3%
CVE-2021-31660 HIGH PATCH This Week

RIOT-OS 2021.01 before commit 85da504d2dc30188b89f44c3276fc5a25b31251f contains a buffer overflow which could allow attackers to obtain sensitive information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Riot
NVD GitHub
CVSS 3.1
7.5
EPSS
1.3%
CVE-2021-21279 HIGH This Week

Contiki-NG is an open-source, cross-platform operating system for internet of things devices. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Contiki Ng
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2021-21257 HIGH PATCH This Week

Contiki-NG is an open-source, cross-platform operating system for internet of things devices. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Memory Corruption Contiki Ng
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
CVE-2021-34812 HIGH This Week

Use of hard-coded credentials vulnerability in php component in Synology Calendar before 2.4.0-0761 allows remote attackers to obtain sensitive information via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Synology PHP Authentication Bypass Calendar
NVD
CVSS 3.1
7.5
EPSS
1.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy