Skip to main content
CVE-2021-29922 CRITICAL POC PATCH Act Now

library/std/src/net/parser.rs in Rust before 1.53.0 does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Rust
NVD GitHub
CVSS 3.1
9.1
EPSS
2.6%
CVE-2021-38173 CRITICAL PATCH Act Now

Btrbk before 0.31.2 allows command execution because of the mishandling of remote hosts filtering SSH commands using ssh_filter_btrbk.sh in authorized_keys. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Command Injection vulnerability could allow attackers to inject arbitrary commands into system command execution.

Command Injection Btrbk Debian Linux Fedora
NVD GitHub
CVSS 3.1
9.8
EPSS
3.2%
CVE-2021-38167 CRITICAL Act Now

Roxy-WI through 5.2.2.0 allows SQL Injection via check_login. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Roxy Wi
NVD GitHub
CVSS 3.1
9.8
EPSS
1.3%
CVE-2021-38159 CRITICAL Act Now

In certain Progress MOVEit Transfer versions before 2021.0.4 (aka 13.0.4), SQL injection in the MOVEit Transfer web application could allow an unauthenticated remote attacker to gain access to the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Microsoft Moveit Transfer
NVD
CVSS 3.1
9.8
EPSS
1.9%
CVE-2021-38148 CRITICAL PATCH Act Now

Obsidian before 0.12.12 does not require user confirmation for non-http/https URLs. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Obsidian
NVD
CVSS 3.1
9.8
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy