Skip to main content
CVE-2021-35973 CRITICAL POC Act Now

NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/mini_httpd, allowing an unauthenticated attacker to invoke any action by adding the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Netgear Authentication Bypass Wac104 Firmware
NVD
CVSS 3.1
9.8
EPSS
3.1%
CVE-2021-22345 CRITICAL Act Now

There is an Input Verification Vulnerability in Huawei Smartphone. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Huawei Memory Corruption Emui Magic Ui
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2021-22348 CRITICAL Act Now

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Use After Free Huawei Memory Corruption Information Disclosure Emui +1
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2021-22367 CRITICAL Act Now

There is a Key Management Errors Vulnerability in Huawei Smartphone. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Authentication Bypass Emui Magic Ui
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2021-35971 CRITICAL Act Now

Veeam Backup and Replication 10 before 10.0.1.4854 P20210609 and 11 before 11.0.0.837 P20210507 mishandles deserialization during Microsoft .NET remoting. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization Microsoft Veeam Backup Replication
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-22323 CRITICAL Act Now

There is an Integer Overflow Vulnerability in Huawei Smartphone. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Huawei Integer Overflow Emui Magic Ui
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2021-22375 CRITICAL Act Now

There is a Key Management Errors Vulnerability in Huawei Smartphone. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Emui Magic Ui
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2021-27903 CRITICAL PATCH Act Now

An issue was discovered in Craft CMS before 3.6.7. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authorization vulnerability could allow attackers to access resources or perform actions without proper authorization checks.

RCE Authentication Bypass Craft Cms
NVD GitHub
CVSS 3.1
9.8
EPSS
2.8%
CVE-2021-30648 CRITICAL Act Now

The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Symantec Proxysg Symantec Advanced Secure Gateway S200 30 Firmware Symantec Advanced Secure Gateway S200 40 Firmware Symantec Advanced Secure Gateway S400 20 Firmware +4
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2021-35474 CRITICAL Act Now

Stack-based Buffer Overflow vulnerability in cachekey plugin of Apache Traffic Server.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Apache Stack Overflow Traffic Server Debian Linux
NVD
CVSS 3.1
9.8
EPSS
2.7%
CVE-2021-22354 CRITICAL Act Now

There is an Information Disclosure Vulnerability in Huawei Smartphone. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Huawei Information Disclosure Emui Magic Ui
NVD
CVSS 3.1
9.1
EPSS
0.8%
CVE-2021-22373 CRITICAL Act Now

There is a Defects Introduced in the Design Process Vulnerability in Huawei Smartphone. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Emui Magic Ui
NVD
CVSS 3.1
9.1
EPSS
0.7%
CVE-2021-22380 CRITICAL Act Now

There is a Cleartext Transmission of Sensitive Information Vulnerability in Huawei Smartphone. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Emui
NVD
CVSS 3.1
9.1
EPSS
0.6%
CVE-2021-35958 CRITICAL Act Now

TensorFlow through 2.5.0 allows attackers to overwrite arbitrary files via a crafted archive when tf.keras.utils.get_file is used with extract=True. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Tensorflow
NVD GitHub
CVSS 3.1
9.1
EPSS
1.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy