Skip to main content
CVE-2021-39207 HIGH PATCH This Week

parlai is a framework for training and evaluating AI models on a variety of openly available dialogue datasets. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Deserialization of Untrusted Data vulnerability could allow attackers to execute arbitrary code through malicious serialized objects.

Deserialization RCE Parlai
NVD GitHub
CVSS 3.1
8.8
EPSS
1.8%
CVE-2021-28816 HIGH This Week

A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Qnap RCE Memory Corruption Qts +2
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-37414 HIGH This Week

Zoho ManageEngine DesktopCentral before 10.0.709 allows anyone to get a valid user's APIKEY without authentication. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Zoho Authentication Bypass Manageengine Desktop Central
NVD
CVSS 3.1
7.5
EPSS
5.2%
CVE-2021-28813 HIGH This Week

A vulnerability involving insecure storage of sensitive information has been reported to affect QSW-M2116P-2T2S and QNAP switches running QuNetSwitch. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Authentication Bypass Qsw M2116P 2T2S Firmware Qunetswitch
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2021-40839 HIGH PATCH This Week

The rencode package through 1.0.6 for Python allows an infinite loop in typecode decoding (such as via ;\x2f\x7f), enabling a remote attack that consumes CPU and memory. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Python Denial Of Service Rencode Fedora
NVD GitHub
CVSS 3.1
7.5
EPSS
5.6%
CVE-2021-34343 HIGH This Week

A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Qnap RCE Memory Corruption Qts +2
NVD
CVSS 3.1
7.2
EPSS
1.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy