Skip to main content
CVE-2021-23772 HIGH POC PATCH This Week

This affects all versions of package github.com/kataras/iris; all versions of package github.com/kataras/iris/v12. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Iris
NVD GitHub
CVSS 3.1
8.8
EPSS
1.8%
CVE-2021-23490 HIGH POC PATCH This Week

The package parse-link-header before 2.0.0 are vulnerable to Regular Expression Denial of Service (ReDoS) via the checkHeader function. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Parse Link Header
NVD GitHub
CVSS 3.1
7.5
EPSS
1.8%
CVE-2021-20826 HIGH This Week

Unprotected transport of credentials vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR. Rated high severity (CVSS 7.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Microsmart Fc6A Firmware Microsmart Plus Fc6A Firmware Data File Manager Windedit +1
NVD
CVSS 3.1
7.6
EPSS
0.4%
CVE-2021-20874 HIGH This Week

Incorrect permission assignment for critical resource vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Groupsession
NVD
CVSS 3.1
7.5
EPSS
1.3%
CVE-2021-20827 HIGH This Week

Plaintext storage of a password vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Microsmart Fc6A Firmware Microsmart Plus Fc6A Firmware Data File Manager Windedit +1
NVD
CVSS 3.1
7.5
EPSS
0.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy