Skip to main content
CVE-2021-45232 CRITICAL POC THREAT Act Now

In Apache APISIX Dashboard before 2.10.1, the Manager API uses two frameworks and introduces framework `droplet` on the basis of framework `gin`, all APIs and authentication middleware are developed. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apache Authentication Bypass Apisix Dashboard
NVD
CVSS 3.1
9.8
EPSS
85.9%
CVE-2021-43845 CRITICAL POC PATCH Act Now

PJSIP is a free and open source multimedia communication library. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow Information Disclosure Pjsip Debian Linux
NVD GitHub
CVSS 3.1
9.1
EPSS
3.7%
CVE-2021-45890 CRITICAL PATCH Act Now

basic/BasicAuthProvider.java in AuthGuard before 0.9.0 allows authentication via an inactive identifier. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Java Authentication Bypass Authguard
NVD GitHub
CVSS 3.1
9.8
EPSS
1.7%
CVE-2021-45709 CRITICAL Act Now

An issue was discovered in the crypto2 crate through 2021-10-08 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Crypto2
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2021-45707 CRITICAL PATCH Act Now

An issue was discovered in the nix crate 0.16.0 and later before 0.20.2, 0.21.x before 0.21.2, and 0.22.x before 0.22.2 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Memory Corruption Nix
NVD GitHub
CVSS 3.1
9.8
EPSS
1.7%
CVE-2021-45706 CRITICAL PATCH Act Now

An issue was discovered in the zeroize_derive crate before 1.1.1 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Zeroize Derive
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45705 CRITICAL PATCH Act Now

An issue was discovered in the nanorand crate before 0.6.1 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Nanorand
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45703 CRITICAL PATCH Act Now

An issue was discovered in the tectonic_xdv crate before 0.1.12 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Tectonic Xdv
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45701 CRITICAL PATCH Act Now

An issue was discovered in the tremor-script crate before 0.11.6 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Use After Free Memory Corruption Information Disclosure Tremor Script
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45698 CRITICAL PATCH Act Now

An issue was discovered in the ckb crate before 0.40.0 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ckb
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45697 CRITICAL PATCH Act Now

An issue was discovered in the molecule crate before 0.7.2 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Molecule
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2021-45696 CRITICAL PATCH Act Now

An issue was discovered in the sha2 crate 0.9.7 before 0.9.8 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Sha2
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2021-45695 CRITICAL Act Now

An issue was discovered in the mopa crate through 2021-06-01 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Mopa
NVD
CVSS 3.1
9.8
EPSS
1.6%
CVE-2021-45693 CRITICAL Act Now

An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Messagepack Rs
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45692 CRITICAL Act Now

An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Messagepack Rs
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2021-45691 CRITICAL Act Now

An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Messagepack Rs
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45690 CRITICAL Act Now

An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Messagepack Rs
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45689 CRITICAL Act Now

An issue was discovered in the gfx-auxil crate through 2021-01-07 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Gfx Auxil
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45688 CRITICAL PATCH Act Now

An issue was discovered in the ash crate before 0.33.1 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ash
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2021-45687 CRITICAL PATCH Act Now

An issue was discovered in the raw-cpuid crate before 9.1.1 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Raw Cpuid
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-45686 CRITICAL PATCH Act Now

An issue was discovered in the csv-sniffer crate through 2021-01-05 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Csv Sniffer
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45685 CRITICAL PATCH Act Now

An issue was discovered in the columnar crate through 2021-01-07 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Columnar
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45684 CRITICAL PATCH Act Now

An issue was discovered in the flumedb crate through 2021-01-07 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Flumedb
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45683 CRITICAL Act Now

An issue was discovered in the binjs_io crate through 2021-01-03 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Binjs Io
NVD
CVSS 3.1
9.8
EPSS
1.2%
CVE-2021-45682 CRITICAL Act Now

An issue was discovered in the bronzedb-protocol crate through 2021-01-03 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Bronzedb Protocol
NVD
CVSS 3.1
9.8
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy