| ZDI-21-1604 |
ZDI-CAN-14859 |
SolarWinds |
CVE-2021-35234 |
8.8 |
2021-12-23 |
|
SolarWinds Network Performance Monitor SendSyslog Exposed Dangerous Function Privilege Escalation Vulnerability |
| ZDI-21-1603 |
ZDI-CAN-15319 |
SolarWinds |
CVE-2021-35234 |
8.8 |
2021-12-23 |
|
SolarWinds Network Performance Monitor SnmpTrap Exposed Dangerous Function Privilege Escalation Vulnerability |
| ZDI-21-1602 |
ZDI-CAN-15318 |
SolarWinds |
CVE-2021-35234 |
8.8 |
2021-12-23 |
|
SolarWinds Network Performance Monitor SendHttpRequest Exposed Dangerous Function Privilege Escalation Vulnerability |
| ZDI-21-1601 |
ZDI-CAN-15317 |
SolarWinds |
CVE-2021-35234 |
8.8 |
2021-12-23 |
|
SolarWinds Network Performance Monitor Email Exposed Dangerous Function Privilege Escalation Vulnerability |
| ZDI-21-1600 |
ZDI-CAN-15316 |
SolarWinds |
CVE-2021-35234 |
8.8 |
2021-12-23 |
|
SolarWinds Network Performance Monitor WriteToEventLog Exposed Dangerous Function Privilege Escalation Vulnerability |
| ZDI-21-1599 |
ZDI-CAN-15315 |
SolarWinds |
CVE-2021-35234 |
8.8 |
2021-12-23 |
|
SolarWinds Network Performance Monitor CustomProperty Exposed Dangerous Function Privilege Escalation Vulnerability |
| ZDI-21-1598 |
ZDI-CAN-15314 |
SolarWinds |
CVE-2021-35234 |
8.8 |
2021-12-23 |
|
SolarWinds Network Performance Monitor CustomStatus Exposed Dangerous Function Privilege Escalation Vulnerability |
| ZDI-21-1597 |
ZDI-CAN-15313 |
SolarWinds |
CVE-2021-35234 |
8.8 |
2021-12-23 |
|
SolarWinds Network Performance Monitor PlaySound Exposed Dangerous Function Privilege Escalation Vulnerability |
| ZDI-21-1596 |
ZDI-CAN-15311 |
SolarWinds |
CVE-2021-35234 |
8.8 |
2021-12-23 |
|
SolarWinds Network Performance Monitor TextToSpeech Exposed Dangerous Function Privilege Escalation Vulnerability |
| ZDI-21-1595 |
ZDI-CAN-14189 |
Microsoft |
CVE-2021-41365 |
8.8 |
2021-12-23 |
|
Microsoft Azure Defender for IoT maintenanceWindow Endpoint SQL Injection Privilege Escalation Vulnerability |
| ZDI-21-1594 |
ZDI-CAN-14080 |
Veritas |
CVE-2021-44681 |
9.8 |
2021-12-23 |
|
Veritas Enterprise Vault EVStgOfflineOpns Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1593 |
ZDI-CAN-14079 |
Veritas |
CVE-2021-44682 |
9.8 |
2021-12-23 |
|
Veritas Enterprise Vault EVStorageQueueBroker Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1592 |
ZDI-CAN-14078 |
Veritas |
CVE-2021-44677 |
9.8 |
2021-12-23 |
|
Veritas Enterprise Vault EVExchangeWebServicesProxy Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1591 |
ZDI-CAN-14076 |
Veritas |
CVE-2021-44678 |
9.8 |
2021-12-23 |
|
Veritas Enterprise Vault MonitoringAgent Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1590 |
ZDI-CAN-14075 |
Veritas |
CVE-2021-44680 |
9.8 |
2021-12-23 |
|
Veritas Enterprise Vault EVMonitoring Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1589 |
ZDI-CAN-14074 |
Veritas |
CVE-2021-44679 |
9.8 |
2021-12-23 |
|
Veritas Enterprise Vault EVTaskGuardian Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1588 |
ZDI-CAN-15270 |
Adobe |
CVE-2021-44696 |
3.3 |
2021-12-21 |
|
Adobe Prelude JPEG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1587 |
ZDI-CAN-15278 |
Adobe |
CVE-2021-43030 |
3.3 |
2021-12-21 |
|
Adobe Premiere Rush MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability |
| ZDI-21-1586 |
ZDI-CAN-15268 |
Adobe |
CVE-2021-40795 |
7.8 |
2021-12-21 |
|
Adobe Premiere Pro 3GP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1585 |
ZDI-CAN-15267 |
Adobe |
CVE-2021-40790 |
3.3 |
2021-12-21 |
|
Adobe Premiere Pro MOV File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1584 |
ZDI-CAN-15265 |
Adobe |
CVE-2021-43751 |
3.3 |
2021-12-21 |
|
Adobe Premiere Pro MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1583 |
ZDI-CAN-15264 |
Adobe |
CVE-2021-42265 |
3.3 |
2021-12-21 |
|
Adobe Premiere Pro MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1582 |
ZDI-CAN-15243 |
Adobe |
CVE-2021-40791 |
3.3 |
2021-12-21 |
|
Adobe Premiere Pro JPEG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1581 |
ZDI-CAN-15242 |
Adobe |
CVE-2021-43753 |
3.3 |
2021-12-21 |
|
Adobe Photoshop Lightroom TIF File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1580 |
ZDI-CAN-15269 |
Adobe |
CVE-2021-43759 |
3.3 |
2021-12-21 |
|
Adobe Media Encoder MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1579 |
ZDI-CAN-15263 |
Adobe |
CVE-2021-44699 |
3.3 |
2021-12-21 |
|
Adobe Audition MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1578 |
ZDI-CAN-15262 |
Adobe |
CVE-2021-44697 |
3.3 |
2021-12-21 |
|
Adobe Audition MOV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1577 |
ZDI-CAN-15261 |
Adobe |
CVE-2021-44698 |
3.3 |
2021-12-21 |
|
Adobe Audition MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1576 |
ZDI-CAN-15260 |
Adobe |
CVE-2021-43757 |
7.8 |
2021-12-21 |
|
Adobe Media Encoder 3GP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1575 |
ZDI-CAN-15259 |
Adobe |
CVE-2021-43758 |
3.3 |
2021-12-21 |
|
Adobe Media Encoder MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1574 |
ZDI-CAN-15258 |
Adobe |
CVE-2021-43760 |
3.3 |
2021-12-21 |
|
Adobe Media Encoder MOV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1573 |
ZDI-CAN-15276 |
Adobe |
CVE-2021-44182 |
3.3 |
2021-12-21 |
|
Adobe Dimension SVG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1572 |
ZDI-CAN-15252 |
Adobe |
CVE-2021-44183 |
3.3 |
2021-12-21 |
|
Adobe Dimension TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1571 |
ZDI-CAN-15250 |
Adobe |
CVE-2021-44180 |
7.8 |
2021-12-21 |
|
Adobe Dimension PCX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1570 |
ZDI-CAN-15249 |
Adobe |
CVE-2021-44181 |
7.8 |
2021-12-21 |
|
Adobe Dimension GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1569 |
ZDI-CAN-15248 |
Adobe |
CVE-2021-44179 |
7.8 |
2021-12-21 |
|
Adobe Dimension GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1568 |
ZDI-CAN-15281 |
Adobe |
CVE-2021-44192 |
3.3 |
2021-12-21 |
|
Adobe After Effects MOV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1567 |
ZDI-CAN-15280 |
Adobe |
CVE-2021-44194 |
3.3 |
2021-12-21 |
|
Adobe After Effects 3GP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1566 |
ZDI-CAN-15279 |
Adobe |
CVE-2021-44193 |
3.3 |
2021-12-21 |
|
Adobe After Effects MOV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1565 |
ZDI-CAN-15257 |
Adobe |
CVE-2021-44188 |
7.8 |
2021-12-21 |
|
Adobe After Effects 3GP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1564 |
ZDI-CAN-15256 |
Adobe |
CVE-2021-44191 |
3.3 |
2021-12-21 |
|
Adobe After Effects MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1563 |
ZDI-CAN-15255 |
Adobe |
CVE-2021-44190 |
3.3 |
2021-12-21 |
|
Adobe After Effects MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1562 |
ZDI-CAN-15247 |
Adobe |
CVE-2021-44195 |
3.3 |
2021-12-21 |
|
Adobe After Effects JPEG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1561 |
ZDI-CAN-15229 |
Adobe |
CVE-2021-43763 |
3.3 |
2021-12-21 |
|
Adobe Dimension TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1560 |
ZDI-CAN-15147 |
Adobe |
CVE-2021-43018 |
7.8 |
2021-12-21 |
|
Adobe Photoshop JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1559 |
ZDI-CAN-15149 |
Adobe |
CVE-2021-44189 |
3.3 |
2021-12-21 |
|
Adobe After Effects JPEG2000 Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1558 |
ZDI-CAN-15042 |
Adobe |
CVE-2021-43027 |
3.3 |
2021-12-21 |
|
Adobe After Effects TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1557 |
ZDI-CAN-13736 |
Adobe |
CVE-2021-43746 |
3.3 |
2021-12-21 |
|
Adobe Premiere Rush MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability |
| ZDI-21-1556 |
ZDI-CAN-14160 |
Microsoft |
CVE-2021-42311 |
9.8 |
2021-12-21 |
|
Microsoft Azure Defender for IoT update-handshake Endpoint SQL Injection Authentication Bypass Vulnerability |
| ZDI-21-1555 |
ZDI-CAN-14159 |
Microsoft |
CVE-2021-42313 |
9.8 |
2021-12-21 |
|
Microsoft Azure Defender for IoT sync Endpoint SQL Injection Authentication Bypass Vulnerability |
| ZDI-21-1554 |
ZDI-CAN-14456 |
Microsoft |
CVE-2021-43247 |
8.8 |
2021-12-21 |
|
Microsoft Windows tcpip.sys Heap-based Buffer Overflow Local Privilege Escalation Vulnerability |
| ZDI-21-1553 |
ZDI-CAN-14728 |
Microsoft |
CVE-2021-43882 |
9.8 |
2021-12-21 |
|
Microsoft Azure Defender for IoT Improper Certificate Validation Authentication Bypass Vulnerability |
| ZDI-21-1552 |
ZDI-CAN-14459 |
Microsoft |
CVE-2021-41333 |
7.8 |
2021-12-21 |
|
Microsoft Windows Print Spooler Link Following Privilege Escalation Vulnerability |
| ZDI-21-1551 |
ZDI-CAN-16001 |
SAP |
CVE-2021-42069 |
7.8 |
2021-12-21 |
|
SAP 3D Visual Enterprise Viewer JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1550 |
ZDI-CAN-14952 |
X.Org |
CVE-2021-4011 |
7.8 |
2021-12-21 |
|
X.Org Server SwapCreateRegister Out-Of-Bounds Access Local Privilege Escalation Vulnerability |
| ZDI-21-1549 |
ZDI-CAN-14951 |
X.Org |
CVE-2021-4010 |
7.8 |
2021-12-21 |
|
X.Org Server SProcScreenSaverSuspend Out-Of-Bounds Access Local Privilege Escalation Vulnerability |
| ZDI-21-1548 |
ZDI-CAN-14950 |
X.Org |
CVE-2021-4009 |
7.8 |
2021-12-21 |
|
X.Org Server SProcXFixesCreatePointerBarrier Out-Of-Bounds Access Local Privilege Escalation Vulnerability |
| ZDI-21-1547 |
ZDI-CAN-14192 |
X.Org |
CVE-2021-4008 |
7.8 |
2021-12-21 |
|
X.Org Server SProcRenderCompositeGlyphs Out-Of-Bounds Access Privilege Escalation Vulnerability |
| ZDI-21-1546 |
ZDI-CAN-14627 |
Open Design Alliance (ODA) |
CVE-2021-44423 |
3.3 |
2021-12-21 |
|
Open Design Alliance (ODA) Drawings Explorer BMP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1545 |
ZDI-CAN-14726 |
Open Design Alliance (ODA) |
CVE-2021-44860 |
3.3 |
2021-12-21 |
|
Open Design Alliance (ODA) Drawings Explorer TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1544 |
ZDI-CAN-14699 |
Open Design Alliance (ODA) |
CVE-2021-44859 |
3.3 |
2021-12-21 |
|
Open Design Alliance (ODA) Drawings Explorer TGA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1543 |
ZDI-CAN-14673 |
Open Design Alliance (ODA) |
CVE-2021-44422 |
7.8 |
2021-12-21 |
|
Open Design Alliance (ODA) Drawings Explorer BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1542 |
ZDI-CAN-14669 |
Open Design Alliance (ODA) |
CVE-2021-44422 |
7.8 |
2021-12-21 |
|
Open Design Alliance (ODA) Drawings Explorer BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1541 |
ZDI-CAN-16160 |
Apache |
CVE-2021-45105 |
5.3 |
2021-12-19 |
|
Apache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability |
| ZDI-21-1540 |
ZDI-CAN-13816 |
Tencent |
|
4.3 |
2021-12-14 |
|
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1539 |
ZDI-CAN-13815 |
Tencent |
|
8.8 |
2021-12-14 |
|
Tencent WeChat WXAM Decoder Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1538 |
ZDI-CAN-13814 |
Tencent |
|
8.8 |
2021-12-14 |
|
Tencent WeChat WXAM Decoder Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1537 |
ZDI-CAN-13813 |
Tencent |
|
8.8 |
2021-12-14 |
|
Tencent WeChat WXAM Decoder Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-1536 |
ZDI-CAN-14587 |
Trend Micro |
CVE-2021-44023 |
6.1 |
2021-12-14 |
|
Trend Micro Maximum Security Link Following Denial-of-Service Vulnerability |
| ZDI-21-1535 |
ZDI-CAN-14792 |
McAfee |
CVE-2021-31850 |
5.9 |
2021-12-14 |
|
McAfee Database Security Improper Access Control Denial-of-Service Vulnerability |
| ZDI-21-1534 |
ZDI-CAN-15055 |
Bentley |
CVE-2021-34946 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1533 |
ZDI-CAN-15054 |
Bentley |
CVE-2021-34945 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1532 |
ZDI-CAN-15052 |
Bentley |
CVE-2021-34944 |
3.3 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1531 |
ZDI-CAN-15051 |
Bentley |
CVE-2021-34943 |
3.3 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1530 |
ZDI-CAN-15041 |
Bentley |
CVE-2021-34942 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1529 |
ZDI-CAN-15040 |
Bentley |
CVE-2021-34941 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1528 |
ZDI-CAN-15039 |
Bentley |
CVE-2021-34940 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1527 |
ZDI-CAN-14996 |
Bentley |
CVE-2021-34939 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1526 |
ZDI-CAN-14995 |
Bentley |
CVE-2021-34938 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1525 |
ZDI-CAN-14915 |
Bentley |
CVE-2021-34937 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1524 |
ZDI-CAN-14914 |
Bentley |
CVE-2021-34936 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1523 |
ZDI-CAN-14913 |
Bentley |
CVE-2021-34935 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1522 |
ZDI-CAN-14912 |
Bentley |
CVE-2021-34934 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1521 |
ZDI-CAN-14911 |
Bentley |
CVE-2021-34933 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1520 |
ZDI-CAN-14910 |
Bentley |
CVE-2021-34932 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1519 |
ZDI-CAN-14909 |
Bentley |
CVE-2021-34931 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1518 |
ZDI-CAN-14908 |
Bentley |
CVE-2021-34930 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1517 |
ZDI-CAN-14907 |
Bentley |
CVE-2021-34929 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1516 |
ZDI-CAN-14906 |
Bentley |
CVE-2021-34928 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1515 |
ZDI-CAN-14905 |
Bentley |
CVE-2021-34927 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1514 |
ZDI-CAN-14904 |
Bentley |
CVE-2021-34926 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1513 |
ZDI-CAN-14903 |
Bentley |
CVE-2021-34925 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1512 |
ZDI-CAN-14902 |
Bentley |
CVE-2021-34924 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1511 |
ZDI-CAN-14901 |
Bentley |
CVE-2021-34923 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1510 |
ZDI-CAN-14900 |
Bentley |
CVE-2021-34922 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1509 |
ZDI-CAN-14899 |
Bentley |
CVE-2021-34921 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1508 |
ZDI-CAN-14898 |
Bentley |
CVE-2021-34920 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1507 |
ZDI-CAN-14897 |
Bentley |
CVE-2021-34919 |
7.8 |
2021-12-08 |
|
Bentley View JP2 File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1506 |
ZDI-CAN-14896 |
Bentley |
CVE-2021-34918 |
7.8 |
2021-12-08 |
|
Bentley View JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1505 |
ZDI-CAN-14895 |
Bentley |
CVE-2021-34917 |
7.8 |
2021-12-08 |
|
Bentley View J2K File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1504 |
ZDI-CAN-14894 |
Bentley |
CVE-2021-34916 |
3.3 |
2021-12-08 |
|
Bentley View DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1503 |
ZDI-CAN-14893 |
Bentley |
CVE-2021-34915 |
7.8 |
2021-12-08 |
|
Bentley View J2K File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1502 |
ZDI-CAN-14892 |
Bentley |
CVE-2021-34914 |
7.8 |
2021-12-08 |
|
Bentley View DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1501 |
ZDI-CAN-14885 |
Bentley |
CVE-2021-34912 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1500 |
ZDI-CAN-14884 |
Bentley |
CVE-2021-34911 |
7.8 |
2021-12-08 |
|
Bentley View 3DS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1499 |
ZDI-CAN-14883 |
Bentley |
CVE-2021-34910 |
3.3 |
2021-12-08 |
|
Bentley View DGN File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1498 |
ZDI-CAN-14882 |
Bentley |
CVE-2021-34909 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1497 |
ZDI-CAN-14881 |
Bentley |
CVE-2021-34908 |
7.8 |
2021-12-08 |
|
Bentley View J2K File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1496 |
ZDI-CAN-14880 |
Bentley |
CVE-2021-34907 |
7.8 |
2021-12-08 |
|
Bentley View BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1495 |
ZDI-CAN-14879 |
Bentley |
CVE-2021-34906 |
7.8 |
2021-12-08 |
|
Bentley View J2K File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1494 |
ZDI-CAN-14878 |
Bentley |
CVE-2021-34905 |
7.8 |
2021-12-08 |
|
Bentley View DGN File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1493 |
ZDI-CAN-14877 |
Bentley |
CVE-2021-34904 |
7.8 |
2021-12-08 |
|
Bentley View DGN File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1492 |
ZDI-CAN-14876 |
Bentley |
CVE-2021-34903 |
7.8 |
2021-12-08 |
|
Bentley View BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1491 |
ZDI-CAN-14875 |
Bentley |
CVE-2021-34902 |
3.3 |
2021-12-08 |
|
Bentley View DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1490 |
ZDI-CAN-14874 |
Bentley |
CVE-2021-34901 |
3.3 |
2021-12-08 |
|
Bentley View 3DS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1489 |
ZDI-CAN-14867 |
Bentley |
CVE-2021-34900 |
7.8 |
2021-12-08 |
|
Bentley View J2K File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1488 |
ZDI-CAN-14866 |
Bentley |
CVE-2021-34899 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1487 |
ZDI-CAN-14865 |
Bentley |
CVE-2021-34898 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1486 |
ZDI-CAN-14864 |
Bentley |
CVE-2021-34897 |
7.8 |
2021-12-08 |
|
Bentley View DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1485 |
ZDI-CAN-14863 |
Bentley |
CVE-2021-34896 |
7.8 |
2021-12-08 |
|
Bentley View BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1484 |
ZDI-CAN-14862 |
Bentley |
CVE-2021-34895 |
7.8 |
2021-12-08 |
|
Bentley View 3DS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1483 |
ZDI-CAN-14847 |
Bentley |
CVE-2021-34894 |
7.8 |
2021-12-08 |
|
Bentley View 3DS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1482 |
ZDI-CAN-14846 |
Bentley |
CVE-2021-34893 |
7.8 |
2021-12-08 |
|
Bentley View BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1481 |
ZDI-CAN-14845 |
Bentley |
CVE-2021-34892 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1480 |
ZDI-CAN-14844 |
Bentley |
CVE-2021-34891 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1479 |
ZDI-CAN-14843 |
Bentley |
CVE-2021-34890 |
3.3 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1478 |
ZDI-CAN-14842 |
Bentley |
CVE-2021-34889 |
3.3 |
2021-12-08 |
|
Bentley View 3DS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1477 |
ZDI-CAN-14841 |
Bentley |
CVE-2021-34888 |
3.3 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1476 |
ZDI-CAN-14840 |
Bentley |
CVE-2021-34887 |
3.3 |
2021-12-08 |
|
Bentley View PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1475 |
ZDI-CAN-14839 |
Bentley |
CVE-2021-34886 |
3.3 |
2021-12-08 |
|
Bentley View FBX File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1474 |
ZDI-CAN-14838 |
Bentley |
CVE-2021-34885 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1473 |
ZDI-CAN-14837 |
Bentley |
CVE-2021-34884 |
3.3 |
2021-12-08 |
|
Bentley View JP2 File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1472 |
ZDI-CAN-14836 |
Bentley |
CVE-2021-34883 |
3.3 |
2021-12-08 |
|
Bentley View J2K File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1471 |
ZDI-CAN-14835 |
Bentley |
CVE-2021-34882 |
3.3 |
2021-12-08 |
|
Bentley View JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1470 |
ZDI-CAN-14834 |
Bentley |
CVE-2021-34881 |
3.3 |
2021-12-08 |
|
Bentley View OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1469 |
ZDI-CAN-14833 |
Bentley |
CVE-2021-34880 |
7.8 |
2021-12-08 |
|
Bentley View 3DS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1468 |
ZDI-CAN-14832 |
Bentley |
CVE-2021-34879 |
7.8 |
2021-12-08 |
|
Bentley View J2K File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1467 |
ZDI-CAN-14831 |
Bentley |
CVE-2021-34913 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1466 |
ZDI-CAN-14830 |
Bentley |
CVE-2021-34878 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1465 |
ZDI-CAN-14829 |
Bentley |
CVE-2021-34877 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1464 |
ZDI-CAN-14828 |
Bentley |
CVE-2021-34876 |
7.8 |
2021-12-08 |
|
Bentley View JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1463 |
ZDI-CAN-14827 |
Bentley |
CVE-2021-34875 |
7.8 |
2021-12-08 |
|
Bentley View 3DS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1462 |
ZDI-CAN-14737 |
Bentley |
CVE-2021-34872 |
7.8 |
2021-12-08 |
|
Bentley View SKP File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1461 |
ZDI-CAN-14736 |
Bentley |
CVE-2021-34874 |
7.8 |
2021-12-08 |
|
Bentley View 3DS File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1460 |
ZDI-CAN-14696 |
Bentley |
CVE-2021-34873 |
7.8 |
2021-12-08 |
|
Bentley View PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1459 |
ZDI-CAN-14695 |
Bentley |
CVE-2021-34871 |
7.8 |
2021-12-08 |
|
Bentley View BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1458 |
ZDI-CAN-13513 |
Tencent |
|
8.8 |
2021-12-07 |
2021-12-08 |
Tencent WeChat WXAM Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1457 |
ZDI-CAN-13369 |
Tencent |
|
3.3 |
2021-12-07 |
2021-12-08 |
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1456 |
ZDI-CAN-13368 |
Tencent |
|
8.8 |
2021-12-07 |
2021-12-08 |
Tencent WeChat WXAM Decoder Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1455 |
ZDI-CAN-13367 |
Tencent |
|
4.3 |
2021-12-07 |
2021-12-08 |
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1454 |
ZDI-CAN-13366 |
Tencent |
|
4.3 |
2021-12-07 |
2021-12-08 |
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1453 |
ZDI-CAN-15253 |
Adobe |
CVE-2021-44185 |
3.3 |
2021-12-08 |
|
Adobe Bridge RGB File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1452 |
ZDI-CAN-15322 |
Adobe |
CVE-2021-44186 |
3.3 |
2021-12-08 |
|
Adobe Bridge SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1451 |
ZDI-CAN-15321 |
Adobe |
CVE-2021-44187 |
3.3 |
2021-12-08 |
|
Adobe Bridge SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1450 |
ZDI-CAN-13626 |
Tencent |
|
4.3 |
2021-12-07 |
|
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1449 |
ZDI-CAN-13624 |
Tencent |
|
4.3 |
2021-12-07 |
|
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1448 |
ZDI-CAN-13623 |
Tencent |
|
4.3 |
2021-12-07 |
|
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1447 |
ZDI-CAN-13622 |
Tencent |
|
4.3 |
2021-12-07 |
|
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1446 |
ZDI-CAN-13336 |
Tencent |
|
8.8 |
2021-12-07 |
|
Tencent WeChat WAXM Decoder Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1445 |
ZDI-CAN-13498 |
Tencent |
|
3.3 |
2021-12-07 |
|
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1444 |
ZDI-CAN-14979 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1443 |
ZDI-CAN-14186 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DXF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1442 |
ZDI-CAN-14185 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DXF File Parsing Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-1441 |
ZDI-CAN-14184 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWG File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1440 |
ZDI-CAN-14183 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1439 |
ZDI-CAN-14182 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop pdf2dl Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-1438 |
ZDI-CAN-14181 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1437 |
ZDI-CAN-14180 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1436 |
ZDI-CAN-14179 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-1435 |
ZDI-CAN-14178 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1434 |
ZDI-CAN-14177 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1433 |
ZDI-CAN-14176 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1432 |
ZDI-CAN-14175 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1431 |
ZDI-CAN-14174 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DXF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1430 |
ZDI-CAN-14173 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1429 |
ZDI-CAN-14172 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1428 |
ZDI-CAN-14171 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1427 |
ZDI-CAN-14170 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1426 |
ZDI-CAN-14169 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1425 |
ZDI-CAN-14168 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1424 |
ZDI-CAN-14167 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1423 |
ZDI-CAN-14166 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop PDF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1422 |
ZDI-CAN-14165 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1421 |
ZDI-CAN-14164 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1420 |
ZDI-CAN-14163 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1419 |
ZDI-CAN-14161 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop JXR File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1418 |
ZDI-CAN-14152 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop HTML File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1417 |
ZDI-CAN-14151 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1416 |
ZDI-CAN-14150 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop JXR File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1415 |
ZDI-CAN-14149 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop JXR File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1414 |
ZDI-CAN-14148 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DGN File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1413 |
ZDI-CAN-14147 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1412 |
ZDI-CAN-14146 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop CGM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1411 |
ZDI-CAN-14145 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop XGL File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1410 |
ZDI-CAN-14144 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop XGL File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1409 |
ZDI-CAN-14143 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop XGL File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1408 |
ZDI-CAN-14142 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop CGM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1407 |
ZDI-CAN-14141 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop DGN File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1406 |
ZDI-CAN-14140 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1405 |
ZDI-CAN-14139 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop SLDDRW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1404 |
ZDI-CAN-14138 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop SLDDRW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1403 |
ZDI-CAN-14104 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1402 |
ZDI-CAN-14103 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1401 |
ZDI-CAN-14102 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop EMF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1400 |
ZDI-CAN-14101 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop JXR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1399 |
ZDI-CAN-14100 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1398 |
ZDI-CAN-14099 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop JXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1397 |
ZDI-CAN-14098 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1396 |
ZDI-CAN-14097 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1395 |
ZDI-CAN-14096 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop GIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1394 |
ZDI-CAN-14095 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop U3D File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1393 |
ZDI-CAN-14094 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop JXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1392 |
ZDI-CAN-14093 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop JXR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1391 |
ZDI-CAN-14092 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1390 |
ZDI-CAN-14091 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1389 |
ZDI-CAN-14090 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop EMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1388 |
ZDI-CAN-14089 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop JPG File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1387 |
ZDI-CAN-14088 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop JXR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1386 |
ZDI-CAN-14087 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1385 |
ZDI-CAN-14086 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop EMF File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1384 |
ZDI-CAN-14085 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop U3D File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1383 |
ZDI-CAN-14084 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1382 |
ZDI-CAN-14083 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop EMF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1381 |
ZDI-CAN-14082 |
OpenText |
|
3.3 |
2021-12-03 |
|
OpenText Brava! Desktop EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1380 |
ZDI-CAN-14081 |
OpenText |
|
7.8 |
2021-12-03 |
|
OpenText Brava! Desktop DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1379 |
ZDI-CAN-14635 |
Avira |
|
7.0 |
2021-12-03 |
|
Avira Free Antivirus Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1378 |
ZDI-CAN-14124 |
Avira |
|
7.0 |
2021-12-03 |
|
Avira Free Antivirus Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1377 |
ZDI-CAN-14119 |
Avira |
|
7.0 |
2021-12-03 |
|
Avira Free Antivirus Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1376 |
ZDI-CAN-14377 |
Bitdefender |
CVE-2021-3576 |
7.0 |
2021-12-03 |
|
Bitdefender GravityZone Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1375 |
ZDI-CAN-13028 |
Delta Industrial Automation |
CVE-2021-32969 |
7.8 |
2021-12-03 |
|
Delta Industrial Automation DIAScreen XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1374 |
ZDI-CAN-12978 |
Delta Industrial Automation |
CVE-2021-32965 |
7.8 |
2021-12-03 |
|
Delta Industrial Automation DIAScreen XLS File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1373 |
ZDI-CAN-13946 |
Jenkins |
|
6.5 |
2021-12-02 |
|
Jenkins Report Info XML External Entity Processing Information Disclosure Vulnerability |
| ZDI-21-1372 |
ZDI-CAN-13792 |
Delta Industrial Automation |
CVE-2021-43982 |
7.8 |
2021-12-02 |
|
Delta Industrial Automation CNCSoft DPB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1371 |
ZDI-CAN-14437 |
Esri |
|
7.8 |
2021-11-30 |
|
(0Day) Esri ArcReader PMF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1370 |
ZDI-CAN-14473 |
Esri |
|
7.8 |
2021-11-30 |
|
(0Day) Esri ArcReader PMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1369 |
ZDI-CAN-14977 |
Apple |
CVE-2021-30910 |
3.3 |
2021-11-30 |
|
Apple macOS ModelIO ABC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1368 |
ZDI-CAN-14605 |
Apple |
CVE-2021-30905 |
3.3 |
2021-11-30 |
|
Apple macOS AudioCodecs LOAS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1367 |
ZDI-CAN-14784 |
Bentley |
CVE-2021-34984 |
3.3 |
2021-11-30 |
|
Bentley ContextCapture OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1366 |
ZDI-CAN-14221 |
Trend Micro |
CVE-2021-44021 |
7.0 |
2021-11-30 |
|
Trend Micro Worry-Free Business Security Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1365 |
ZDI-CAN-14220 |
Trend Micro |
CVE-2021-44020 |
7.0 |
2021-11-30 |
|
Trend Micro Worry-Free Business Security Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1364 |
ZDI-CAN-14219 |
Trend Micro |
CVE-2021-44019 |
7.0 |
2021-11-30 |
|
Trend Micro Worry-Free Business Security Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1363 |
ZDI-CAN-14285 |
Open Design Alliance (ODA) |
CVE-2021-43272 |
7.8 |
2021-11-30 |
|
Open Design Alliance (ODA) ODAViewer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1362 |
ZDI-CAN-14240 |
Open Design Alliance (ODA) |
CVE-2021-43390 |
7.8 |
2021-11-30 |
|
Open Design Alliance (ODA) ODAViewer DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1361 |
ZDI-CAN-14282 |
Open Design Alliance (ODA) |
CVE-2021-43391 |
7.8 |
2021-11-30 |
|
Open Design Alliance (ODA) ODAViewer DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1360 |
ZDI-CAN-14301 |
Open Design Alliance (ODA) |
CVE-2021-43272 |
7.8 |
2021-11-30 |
|
Open Design Alliance (ODA) ODAViewer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1359 |
ZDI-CAN-14785 |
Bentley |
CVE-2021-34985 |
3.3 |
2021-11-30 |
|
Bentley ContextCapture OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1358 |
ZDI-CAN-14299 |
Open Design Alliance (ODA) |
CVE-2021-43272 |
7.8 |
2021-11-30 |
|
Open Design Alliance (ODA) ODAViewer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1357 |
ZDI-CAN-14768 |
Open Design Alliance (ODA) |
CVE-2021-43273 |
3.3 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DGN File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1356 |
ZDI-CAN-14767 |
Open Design Alliance (ODA) |
CVE-2021-43280 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1355 |
ZDI-CAN-14765 |
Open Design Alliance (ODA) |
CVE-2021-43280 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1354 |
ZDI-CAN-14764 |
Open Design Alliance (ODA) |
CVE-2021-44047 |
3.3 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1353 |
ZDI-CAN-14763 |
Open Design Alliance (ODA) |
CVE-2021-43582 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWG File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1352 |
ZDI-CAN-14762 |
Open Design Alliance (ODA) |
CVE-2021-43391 |
3.3 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DXF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1351 |
ZDI-CAN-14761 |
Open Design Alliance (ODA) |
CVE-2021-43273 |
3.3 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DGN File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1350 |
ZDI-CAN-14760 |
Open Design Alliance (ODA) |
CVE-2021-44045 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1349 |
ZDI-CAN-14750 |
Open Design Alliance (ODA) |
CVE-2021-44047 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) ODAViewer DWFX File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1348 |
ZDI-CAN-14749 |
Open Design Alliance (ODA) |
CVE-2021-43390 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) ODAViewer DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1347 |
ZDI-CAN-14748 |
Open Design Alliance (ODA) |
CVE-2021-43390 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1346 |
ZDI-CAN-14725 |
Open Design Alliance (ODA) |
CVE-2021-44047 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWFX File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1345 |
ZDI-CAN-14672 |
Open Design Alliance (ODA) |
CVE-2021-43280 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1344 |
ZDI-CAN-14671 |
Open Design Alliance (ODA) |
CVE-2021-44044 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer JPG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1343 |
ZDI-CAN-14670 |
Open Design Alliance (ODA) |
CVE-2021-43280 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1342 |
ZDI-CAN-14668 |
Open Design Alliance (ODA) |
CVE-2021-43280 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1341 |
ZDI-CAN-14665 |
Open Design Alliance (ODA) |
CVE-2021-43280 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1340 |
ZDI-CAN-14664 |
Open Design Alliance (ODA) |
CVE-2021-43280 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Out-Of-Based Write Remote Code Execution Vulnerability |
| ZDI-21-1339 |
ZDI-CAN-14663 |
Open Design Alliance (ODA) |
CVE-2021-44048 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) Drawings Explorer TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1338 |
ZDI-CAN-14628 |
Open Design Alliance (ODA) |
CVE-2021-44046 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1337 |
ZDI-CAN-14588 |
Open Design Alliance (ODA) |
CVE-2021-43279 |
7.8 |
2021-11-29 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1336 |
ZDI-CAN-14208 |
Panda Security |
CVE-2021-34998 |
7.0 |
2021-11-29 |
|
Panda Security Free Antivirus Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1335 |
ZDI-CAN-14235 |
Kaspersky |
CVE-2021-35052 |
7.8 |
2021-11-29 |
|
Kaspersky Password Manager Improper Privilege Management Privilege Escalation Vulnerability |
| ZDI-21-1334 |
ZDI-CAN-14954 |
Microsoft |
CVE-2021-42297 |
6.7 |
2021-11-24 |
|
Microsoft Windows Update Assistant Link Following Local Privilege Escalation Vulnerability |
| ZDI-21-1333 |
ZDI-CAN-14772 |
Adobe |
CVE-2021-43019 |
7.8 |
2021-11-24 |
|
Adobe Creative Cloud Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-1332 |
ZDI-CAN-13894 |
Commvault |
CVE-2021-34997 |
8.8 |
2021-11-22 |
|
Commvault CommCell AppStudioUploadHandler Arbitrary File Upload Remote Code Execution Vulnerability |
| ZDI-21-1331 |
ZDI-CAN-13889 |
Commvault |
CVE-2021-34996 |
8.8 |
2021-11-22 |
|
Commvault CommCell Demo_ExecuteProcessOnGroup Exposed Dangerous Function Remote Code Execution Vulnerability |
| ZDI-21-1330 |
ZDI-CAN-13756 |
Commvault |
CVE-2021-34995 |
8.8 |
2021-11-22 |
|
Commvault CommCell DownloadCenterUploadHandler Arbitrary File Upload Remote Code Execution Vulnerability |
| ZDI-21-1329 |
ZDI-CAN-13755 |
Commvault |
CVE-2021-34994 |
8.8 |
2021-11-22 |
|
Commvault CommCell DataProvider JavaScript Sandbox Escape Vulnerability |
| ZDI-21-1328 |
ZDI-CAN-13706 |
Commvault |
CVE-2021-34993 |
9.8 |
2021-11-22 |
|
Commvault CommCell CVSearchService Authentication Bypass Vulnerability |
| ZDI-21-1327 |
ZDI-CAN-15217 |
Ivanti |
CVE-2021-42132 |
9.8 |
2021-11-19 |
2022-05-26 |
Ivanti Avalanche PrinterDeviceServer Service Command Injection Remote Code Execution Vulnerability |
| ZDI-21-1326 |
ZDI-CAN-15169 |
Ivanti |
CVE-2021-42130 |
9.8 |
2021-11-19 |
2022-05-26 |
Ivanti Avalanche DataRepository Service Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1325 |
ZDI-CAN-15168 |
Ivanti |
CVE-2021-42129 |
9.8 |
2021-11-19 |
2022-05-26 |
Ivanti Avalanche MapShare Service Command Injection Remote Code Execution Vulnerability |
| ZDI-21-1324 |
ZDI-CAN-15137 |
Ivanti |
CVE-2021-42128 |
7.5 |
2021-11-19 |
2024-02-16 |
Ivanti Avalanche EnterpriseServer Service Exposed Dangerous Function Authentication Bypass Vulnerability |
| ZDI-21-1323 |
ZDI-CAN-15130 |
Ivanti |
CVE-2021-42127 |
9.8 |
2021-11-19 |
2022-05-26 |
Ivanti Avalanche StatServer Service Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1322 |
ZDI-CAN-13917 |
WECON |
CVE-2021-42707 |
7.8 |
2021-11-18 |
|
WECON PLC Editor WCP File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1321 |
ZDI-CAN-13915 |
WECON |
CVE-2021-42705 |
7.8 |
2021-11-18 |
|
WECON PLC Editor WCP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1320 |
ZDI-CAN-13882 |
Trend Micro |
CVE-2021-43771 |
7.8 |
2021-11-17 |
|
Trend Micro Antivirus for Mac Improper Access Control Privilege Escalation Vulnerability |
| ZDI-21-1319 |
ZDI-CAN-14256 |
Autodesk |
CVE-2021-27037 |
7.8 |
2021-11-17 |
2022-01-21 |
(0Day) Autodesk Design Review PNG File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1318 |
ZDI-CAN-14246 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-11-17 |
2022-01-21 |
(0Day) Autodesk Design Review DWF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1317 |
ZDI-CAN-14243 |
Autodesk |
CVE-2021-27038 |
7.8 |
2021-11-17 |
2022-01-21 |
(0Day) Autodesk Design Review PDF File Parsing Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-1316 |
ZDI-CAN-14242 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-11-17 |
2022-01-21 |
(0Day) Autodesk Design Review PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1315 |
ZDI-CAN-14239 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-11-17 |
2022-01-21 |
(0Day) Autodesk Design Review PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1314 |
ZDI-CAN-13947 |
Jenkins |
CVE-2021-43576 |
6.5 |
2021-11-16 |
|
Jenkins pom2config XML External Entity Processing Information Disclosure Vulnerability |
| ZDI-21-1313 |
ZDI-CAN-13384 |
Jenkins |
CVE-2021-21701 |
6.5 |
2021-11-16 |
|
Jenkins Performance XML External Entity Processing Information Disclosure Vulnerability |
| ZDI-21-1312 |
ZDI-CAN-14294 |
Open Design Alliance (ODA) |
CVE-2021-43582 |
7.8 |
2021-11-16 |
|
Open Design Alliance (ODA) ODAViewer DWG File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1311 |
ZDI-CAN-14353 |
Open Design Alliance (ODA) |
CVE-2021-43581 |
3.3 |
2021-11-16 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1310 |
ZDI-CAN-14345 |
Open Design Alliance (ODA) |
CVE-2021-43581 |
3.3 |
2021-11-16 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1309 |
ZDI-CAN-14453 |
Microsoft |
CVE-2021-41368 |
7.8 |
2021-11-11 |
|
Microsoft Access ACCDB File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1308 |
ZDI-CAN-14616 |
Microsoft |
CVE-2021-41379 |
7.8 |
2021-11-11 |
|
Microsoft Windows Installer Service Link Following Privilege Escalation Vulnerability |
| ZDI-21-1307 |
ZDI-CAN-14512 |
Microsoft |
CVE-2021-42280 |
7.8 |
2021-11-11 |
|
Microsoft Windows DiagTrack Service Link Following Privilege Escalation Vulnerability |
| ZDI-21-1306 |
ZDI-CAN-14641 |
Microsoft |
CVE-2021-42277 |
7.8 |
2021-11-11 |
|
Microsoft Windows Diagnostics Hub Link Following Privilege Escalation Vulnerability |
| ZDI-21-1305 |
ZDI-CAN-14223 |
Adobe |
CVE-2021-42727 |
8.8 |
2021-11-11 |
|
Adobe RoboHelp Server Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-1304 |
ZDI-CAN-14740 |
Orckestra |
CVE-2021-34992 |
8.8 |
2021-11-11 |
|
Orckestra C1 CMS Composite Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1303 |
ZDI-CAN-14110 |
NETGEAR |
CVE-2021-34991 |
8.8 |
2021-11-11 |
2021-12-23 |
NETGEAR R6400v2 UPnP uuid Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1302 |
ZDI-CAN-15200 |
Ivanti |
CVE-2021-42131 |
9.1 |
2021-11-18 |
2022-05-26 |
Ivanti Avalanche EnterpriseServer Service SQL Injection Authentication Bypass Vulnerability |
| ZDI-21-1301 |
ZDI-CAN-15251 |
Ivanti |
CVE-2021-42133 |
9.8 |
2021-11-18 |
2022-05-26 |
Ivanti Avalanche EnterpriseServer Service Unrestricted File Upload Remote Code Execution Vulnerability |
| ZDI-21-1300 |
ZDI-CAN-14188 |
Ivanti |
CVE-2021-42126 |
8.8 |
2021-11-18 |
2022-05-26 |
Ivanti Avalanche User Management Improper Authentication Privilege Escalation Vulnerability |
| ZDI-21-1299 |
ZDI-CAN-14187 |
Ivanti |
CVE-2021-42125 |
7.2 |
2021-11-18 |
2022-05-26 |
Ivanti Avalanche Filestore Management Arbitrary File Upload Remote Code Execution Vulnerability |
| ZDI-21-1298 |
ZDI-CAN-14123 |
Ivanti |
CVE-2021-42124 |
8.1 |
2021-11-18 |
2022-05-26 |
Ivanti Avalanche JNLP File Improper Access Control Authentication Bypass Vulnerability |
| ZDI-21-1297 |
ZDI-CAN-14313 |
Open Design Alliance (ODA) |
CVE-2021-43277 |
7.8 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1296 |
ZDI-CAN-14306 |
Open Design Alliance (ODA) |
CVE-2021-43279 |
7.8 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1295 |
ZDI-CAN-14304 |
Open Design Alliance (ODA) |
CVE-2021-43274 |
7.8 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1294 |
ZDI-CAN-14300 |
Open Design Alliance (ODA) |
CVE-2021-43279 |
7.8 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1293 |
ZDI-CAN-14297 |
Open Design Alliance (ODA) |
CVE-2021-43274 |
7.8 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1292 |
ZDI-CAN-14308 |
Open Design Alliance (ODA) |
CVE-2021-43279 |
7.8 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1291 |
ZDI-CAN-14329 |
Open Design Alliance (ODA) |
CVE-2021-43273 |
3.3 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer DGN File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1290 |
ZDI-CAN-14350 |
Open Design Alliance (ODA) |
CVE-2021-43277 |
3.3 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1289 |
ZDI-CAN-14337 |
Open Design Alliance (ODA) |
CVE-2021-43277 |
7.8 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1288 |
ZDI-CAN-14331 |
Open Design Alliance (ODA) |
CVE-2021-43278 |
7.8 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer OBJ File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1287 |
ZDI-CAN-14349 |
Open Design Alliance (ODA) |
CVE-2021-43274 |
3.3 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer DWF File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1286 |
ZDI-CAN-14352 |
Open Design Alliance (ODA) |
CVE-2021-43274 |
3.3 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer DWF File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1285 |
ZDI-CAN-14351 |
Open Design Alliance (ODA) |
CVE-2021-43277 |
3.3 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1284 |
ZDI-CAN-14314 |
Open Design Alliance (ODA) |
CVE-2021-43275 |
7.8 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer DGN File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1283 |
ZDI-CAN-14333 |
Open Design Alliance (ODA) |
CVE-2021-43277 |
3.3 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1282 |
ZDI-CAN-14325 |
Open Design Alliance (ODA) |
CVE-2021-43276 |
3.3 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer DWF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1281 |
ZDI-CAN-14335 |
Open Design Alliance (ODA) |
CVE-2021-43273 |
3.3 |
2021-11-10 |
|
Open Design Alliance (ODA) ODAViewer DGN File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1280 |
ZDI-CAN-14234 |
Kaspersky |
CVE-2021-35053 |
6.1 |
2021-11-09 |
|
Kaspersky Total Security Directory Traversal Denial-of-Service Vulnerability |
| ZDI-21-1279 |
ZDI-CAN-12585 |
Schneider Electric |
CVE-2021-22748 |
8.8 |
2021-11-08 |
|
Schneider Electric C-Bus Toolkit CONFIG SAVE Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-1278 |
ZDI-CAN-14056 |
Hewlett Packard Enterprise |
CVE-2021-29212 |
9.8 |
2021-11-05 |
|
Hewlett Packard Enterprise iLO Amplifier Pack backup Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-1277 |
ZDI-CAN-13968 |
Bitdefender |
CVE-2021-3579, CVE-2021-3576 |
7.0 |
2021-11-03 |
|
(0Day) Bitdefender Total Security Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1276 |
ZDI-CAN-13967 |
Bitdefender |
CVE-2021-3579, CVE-2021-3576 |
7.0 |
2021-11-03 |
|
(0Day) Bitdefender Total Security Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1275 |
ZDI-CAN-13708 |
NETGEAR |
CVE-2021-34983 |
6.5 |
2021-10-29 |
|
NETGEAR Multiple Routers httpd Missing Authentication for Critical Function Information Disclosure Vulnerability |
| ZDI-21-1274 |
ZDI-CAN-13709 |
NETGEAR |
CVE-2021-34982 |
8.8 |
2021-10-29 |
|
NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1273 |
ZDI-CAN-13950 |
Bitdefender |
CVE-2021-3579, CVE-2021-3576 |
7.0 |
2021-10-28 |
|
(0Day) Bitdefender Total Security Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1272 |
ZDI-CAN-13949 |
Bitdefender |
CVE-2021-3579, CVE-2021-3576 |
7.0 |
2021-10-28 |
|
(0Day) Bitdefender Total Security Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1271 |
ZDI-CAN-13888 |
Bitdefender |
CVE-2021-3576 |
7.0 |
2021-10-28 |
|
(0Day) Bitdefender Endpoint Security Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1270 |
ZDI-CAN-13887 |
Bitdefender |
CVE-2021-3576 |
7.0 |
2021-10-28 |
|
(0Day) Bitdefender Endpoint Security Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1269 |
ZDI-CAN-13817 |
Fuji Electric |
CVE-2021-38413 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V-Simulator V8 File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-1268 |
ZDI-CAN-13685 |
Fuji Electric |
CVE-2021-38413 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1267 |
ZDI-CAN-13686 |
Fuji Electric |
CVE-2021-38419 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V9 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1266 |
ZDI-CAN-13684 |
Fuji Electric |
CVE-2021-38419 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V9 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1265 |
ZDI-CAN-13793 |
Fuji Electric |
CVE-2021-38415 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V-Simulator V8 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1264 |
ZDI-CAN-13782 |
Fuji Electric |
CVE-2021-38421 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V-Simulator V8 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1263 |
ZDI-CAN-13781 |
Fuji Electric |
CVE-2021-38419 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V-Simulator X1 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1262 |
ZDI-CAN-13779 |
Fuji Electric |
CVE-2021-38419 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V-Simulator V8 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1261 |
ZDI-CAN-13724 |
Fuji Electric |
CVE-2021-38413 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V-Simulator X1 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1260 |
ZDI-CAN-13723 |
Fuji Electric |
CVE-2021-38413 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V-Simulator X1 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1259 |
ZDI-CAN-13722 |
Fuji Electric |
CVE-2021-38413 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V-Simulator X1 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1258 |
ZDI-CAN-13721 |
Fuji Electric |
CVE-2021-38413 |
7.8 |
2021-10-28 |
|
Fuji Electric Tellus Lite V-Simulator X1 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1257 |
ZDI-CAN-14595 |
Adobe |
CVE-2021-42533 |
7.8 |
2021-10-28 |
|
Adobe Bridge DCM File Parsing Double Free Remote Code Execution Vulnerability |
| ZDI-21-1256 |
ZDI-CAN-15275 |
Adobe |
CVE-2021-40769 |
3.3 |
2021-10-28 |
|
Adobe Character Animator SVG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1255 |
ZDI-CAN-14688 |
Adobe |
CVE-2021-42270 |
7.8 |
2021-10-28 |
|
Adobe Animate BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1254 |
ZDI-CAN-15274 |
Adobe |
CVE-2021-42525 |
3.3 |
2021-10-28 |
|
Adobe Animate SVG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1253 |
ZDI-CAN-15126 |
Adobe |
CVE-2021-42271 |
7.8 |
2021-10-28 |
|
Adobe Animate BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1252 |
ZDI-CAN-15124 |
Adobe |
CVE-2021-42272 |
7.8 |
2021-10-28 |
|
Adobe Animate GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1251 |
ZDI-CAN-15123 |
Adobe |
CVE-2021-42524 |
7.8 |
2021-10-28 |
|
Adobe Animate BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1250 |
ZDI-CAN-14590 |
Adobe |
CVE-2021-40725 |
7.8 |
2021-10-28 |
|
Adobe Acrobat Reader DC AcroForm listbox Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1249 |
ZDI-CAN-14484 |
Adobe |
CVE-2021-40726 |
7.8 |
2021-10-28 |
|
Adobe Acrobat Reader DC AcroForm Field Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1248 |
ZDI-CAN-14190 |
SolarWinds |
CVE-2021-35218 |
8.8 |
2021-10-28 |
|
SolarWinds Patch Manager Chart Endpoint Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1247 |
ZDI-CAN-14156 |
SolarWinds |
CVE-2021-35217 |
8.8 |
2021-10-28 |
|
SolarWinds Patch Manager WSAsyncExecuteTasks Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1246 |
ZDI-CAN-14155 |
SolarWinds |
CVE-2021-35216 |
8.8 |
2021-10-28 |
|
SolarWinds Patch Manager EditResourceControls Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1245 |
ZDI-CAN-13845 |
SolarWinds |
CVE-2021-35215 |
8.8 |
2021-10-28 |
|
SolarWinds Orion Platform ActionPluginBaseView Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1244 |
ZDI-CAN-13453 |
SolarWinds |
CVE-2021-35213 |
8.8 |
2021-10-28 |
2022-05-26 |
SolarWinds Orion Platform NCM SCM IPAM SaveUserSetting Improper Access Control Privilege Escalation Vulnerability |
| ZDI-21-1243 |
ZDI-CAN-13460 |
SolarWinds |
CVE-2021-35212 |
8.8 |
2021-10-28 |
2022-05-26 |
SolarWinds Orion Network Performance Monitor DisableNOCView SQL Injection Privilege Escalation Vulnerability |
| ZDI-21-1242 |
ZDI-CAN-14107 |
NETGEAR |
CVE-2021-34980 |
8.8 |
2021-10-28 |
2021-10-28 |
NETGEAR R6260 setupwizard.cgi Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1241 |
ZDI-CAN-13512 |
NETGEAR |
CVE-2021-34979 |
8.8 |
2021-10-28 |
|
NETGEAR R6260 mini_httpd Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1240 |
ZDI-CAN-13511 |
NETGEAR |
CVE-2021-34978 |
8.8 |
2021-10-28 |
|
NETGEAR R6260 setupwizard.cgi Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1239 |
ZDI-CAN-13483 |
NETGEAR |
CVE-2021-34977 |
8.8 |
2021-10-28 |
|
NETGEAR R7000 SOAP ParentalControl Authentication Bypass Vulnerability |
| ZDI-21-1238 |
ZDI-CAN-14065 |
ICONICS |
CVE-2021-27040 |
3.3 |
2021-10-28 |
|
ICONICS GENESIS64 DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1237 |
ZDI-CAN-14064 |
ICONICS |
CVE-2021-27041 |
7.8 |
2021-10-28 |
|
ICONICS GENESIS64 DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1236 |
ZDI-CAN-14060 |
ICONICS |
CVE-2021-27040 |
3.3 |
2021-10-28 |
|
ICONICS GENESIS64 DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1235 |
ZDI-CAN-14046 |
Vinchin |
|
9.8 |
2021-10-27 |
|
(0Day) Vinchin Backup and Recovery Use of Hard-coded Credentials Authentication Bypass Vulnerability |
| ZDI-21-1234 |
ZDI-CAN-14045 |
Vinchin |
|
9.8 |
2021-10-27 |
|
(0Day) Vinchin Backup and Recovery Use of Hard-coded Cryptographic Key Authentication Bypass Vulnerability |
| ZDI-21-1233 |
ZDI-CAN-13658 |
Microsoft |
CVE-2021-43211 |
7.3 |
2021-10-27 |
|
(0Day) Microsoft Windows Update Assistant Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-1232 |
ZDI-CAN-14771 |
Oracle |
CVE-2021-35621 |
9.8 |
2021-10-21 |
|
Oracle MySQL Cluster Data Node Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1231 |
ZDI-CAN-14228 |
Oracle |
CVE-2021-35611 |
4.3 |
2021-10-21 |
|
Oracle E-Business Suite Content-Length Memory Exhaustion Denial-Of-Service Vulnerability |
| ZDI-21-1230 |
ZDI-CAN-14066 |
Oracle |
CVE-2021-35598 |
9.8 |
2021-10-21 |
|
Oracle MySQL Cluster Data Node Improper Validation of Array Index Remote Code Execution Vulnerability |
| ZDI-21-1229 |
ZDI-CAN-13965 |
Oracle |
CVE-2021-35593 |
9.8 |
2021-10-21 |
|
Oracle MySQL Cluster Data Node Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1228 |
ZDI-CAN-13926 |
Oracle |
CVE-2021-35592 |
9.8 |
2021-10-21 |
|
Oracle MySQL Cluster Data Node Improper Validation of Array Index Remote Code Execution Vulnerability |
| ZDI-21-1227 |
ZDI-CAN-13923 |
Oracle |
CVE-2021-35594 |
9.8 |
2021-10-21 |
|
Oracle MySQL Cluster Data Node Improper Validation of Array Index Remote Code Execution Vulnerability |
| ZDI-21-1226 |
ZDI-CAN-13864 |
Oracle |
CVE-2021-35590 |
9.8 |
2021-10-21 |
|
Oracle MySQL Cluster Management API Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1225 |
ZDI-CAN-14787 |
Microsoft |
CVE-2021-40487 |
8.8 |
2021-10-21 |
|
Microsoft SharePoint SetVariableActivity Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1224 |
ZDI-CAN-14769 |
Microsoft |
CVE-2021-41344 |
8.8 |
2021-10-21 |
|
Microsoft SharePoint Workflow Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-1223 |
ZDI-CAN-11977 |
Linux |
CVE-2021-34981 |
7.5 |
2021-10-21 |
|
Linux Kernel Bluetooth CMTP Module Double Free Privilege Escalation Vulnerability |
| ZDI-21-1222 |
ZDI-CAN-13830 |
Trend Micro |
CVE-2021-42102 |
7.0 |
2021-10-19 |
|
Trend Micro Apex One Uncontrolled Search Path Element Privilege Escalation Vulnerability |
| ZDI-21-1221 |
ZDI-CAN-13857 |
Trend Micro |
CVE-2021-42012 |
7.8 |
2021-10-19 |
|
Trend Micro Worry-Free Business Security Stack-based Buffer Overflow Privilege Escalation Vulnerability |
| ZDI-21-1220 |
ZDI-CAN-13846 |
Trend Micro |
CVE-2021-42011 |
7.8 |
2021-10-19 |
|
Trend Micro Apex One Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-1219 |
ZDI-CAN-13534 |
Trend Micro |
CVE-2021-42101 |
7.0 |
2021-10-19 |
|
Trend Micro Apex One Uncontrolled Search Path Element Privilege Escalation Vulnerability |
| ZDI-21-1218 |
ZDI-CAN-13898 |
Trend Micro |
CVE-2021-42106 |
7.0 |
2021-10-19 |
|
Trend Micro Apex One Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1217 |
ZDI-CAN-13873 |
Trend Micro |
CVE-2021-42108 |
6.7 |
2021-10-19 |
|
Trend Micro Apex One Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1216 |
ZDI-CAN-13874 |
Trend Micro |
CVE-2021-42104 |
7.0 |
2021-10-19 |
|
Trend Micro Apex One Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1215 |
ZDI-CAN-13861 |
Trend Micro |
CVE-2021-42105 |
7.0 |
2021-10-19 |
|
Trend Micro Apex One Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1214 |
ZDI-CAN-13936 |
Trend Micro |
CVE-2021-42107 |
7.0 |
2021-10-19 |
|
Trend Micro Apex One Unnecessary Privileges Local Privilege Escalation Vulnerability |
| ZDI-21-1213 |
ZDI-CAN-13522 |
Trend Micro |
CVE-2021-42103 |
7.8 |
2021-10-19 |
|
Trend Micro Apex One Uncontrolled Search Path Element Privilege Escalation Vulnerability |
| ZDI-21-1212 |
ZDI-CAN-13656 |
Schneider Electric |
CVE-2021-22801 |
7.8 |
2021-10-19 |
|
Schneider Electric ConneXium Network Manager Insufficient UI Warning Remote Code Execution Vulnerability |
| ZDI-21-1211 |
ZDI-CAN-13999 |
Fuji Electric |
CVE-2022-21202 |
3.3 |
2021-10-15 |
2022-03-23 |
(0Day) Fuji Electric Alpha5 A5V File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1210 |
ZDI-CAN-13942 |
Fuji Electric |
CVE-2022-24383 |
7.8 |
2021-10-15 |
2022-03-23 |
(0Day) Fuji Electric Alpha5 Servo Operator C5P File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1209 |
ZDI-CAN-13941 |
Fuji Electric |
CVE-2022-21228 |
7.8 |
2021-10-15 |
2022-03-23 |
(0Day) Fuji Electric Alpha5 Servo Operator C5P File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1208 |
ZDI-CAN-13939 |
Fuji Electric |
CVE-2022-21214 |
7.8 |
2021-10-15 |
2022-03-23 |
(0Day) Fuji Electric Alpha5 Servo Operator C5P File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1207 |
ZDI-CAN-14659 |
Foxit |
CVE-2021-34976 |
3.3 |
2021-10-15 |
|
Foxit PDF Reader PDF File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1206 |
ZDI-CAN-15218 |
Foxit |
CVE-2021-34975 |
7.8 |
2021-10-15 |
|
Foxit PDF Reader transitionToState Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1205 |
ZDI-CAN-15167 |
Foxit |
CVE-2021-34974 |
7.8 |
2021-10-15 |
|
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1204 |
ZDI-CAN-14968 |
Foxit |
CVE-2021-34973 |
3.3 |
2021-10-15 |
|
Foxit PDF Reader PDF File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1203 |
ZDI-CAN-14975 |
Foxit |
CVE-2021-34972 |
3.3 |
2021-10-15 |
|
Foxit PDF Reader AcroForm Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1202 |
ZDI-CAN-14812 |
Foxit |
CVE-2021-34971 |
7.8 |
2021-10-15 |
|
Foxit PDF Reader JPG2000 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1201 |
ZDI-CAN-14849 |
Foxit |
CVE-2021-34970 |
3.3 |
2021-10-15 |
|
Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure Vulnerability |
| ZDI-21-1200 |
ZDI-CAN-14622 |
Foxit |
CVE-2021-34969 |
3.3 |
2021-10-15 |
|
Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1199 |
ZDI-CAN-14370 |
Foxit |
CVE-2021-34968 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor transitionToState Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1198 |
ZDI-CAN-14368 |
Foxit |
CVE-2021-34967 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Line Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1197 |
ZDI-CAN-14367 |
Foxit |
CVE-2021-34966 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor FileAttachment Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1196 |
ZDI-CAN-14361 |
Foxit |
CVE-2021-34965 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Squiggly Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1195 |
ZDI-CAN-14366 |
Foxit |
CVE-2021-34964 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Polygon Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1194 |
ZDI-CAN-14365 |
Foxit |
CVE-2021-34963 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor PolyLine Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1193 |
ZDI-CAN-14364 |
Foxit |
CVE-2021-34962 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Caret Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1192 |
ZDI-CAN-14363 |
Foxit |
CVE-2021-34961 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Ink Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1191 |
ZDI-CAN-14362 |
Foxit |
CVE-2021-34960 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Circle Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1190 |
ZDI-CAN-14360 |
Foxit |
CVE-2021-34959 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Square Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1189 |
ZDI-CAN-14359 |
Foxit |
CVE-2021-34958 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Text Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1188 |
ZDI-CAN-14358 |
Foxit |
CVE-2021-34957 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Highlight Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1187 |
ZDI-CAN-14357 |
Foxit |
CVE-2021-34956 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Underline Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1186 |
ZDI-CAN-14356 |
Foxit |
CVE-2021-34955 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor Stamp Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1185 |
ZDI-CAN-14355 |
Foxit |
CVE-2021-34954 |
7.8 |
2021-10-15 |
|
Foxit PDF Editor StrikeOut Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1184 |
ZDI-CAN-14658 |
Foxit |
CVE-2021-34953 |
7.8 |
2021-10-15 |
|
Foxit PDF Reader Annotation Use of Uninitialized Variable Remote Code Execution Vulnerability |
| ZDI-21-1183 |
ZDI-CAN-14729 |
Foxit |
CVE-2021-34952 |
7.8 |
2021-10-15 |
|
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1182 |
ZDI-CAN-14395 |
Foxit |
CVE-2021-34951 |
3.3 |
2021-10-15 |
|
Foxit PDF Reader Annotation Use of Uninitialized Variable Information Disclosure Vulnerability |
| ZDI-21-1181 |
ZDI-CAN-14396 |
Foxit |
CVE-2021-34950 |
7.8 |
2021-10-15 |
|
Foxit PDF Reader Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1180 |
ZDI-CAN-14273 |
Foxit |
CVE-2021-34949 |
3.3 |
2021-10-15 |
|
Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1179 |
ZDI-CAN-14272 |
Foxit |
CVE-2021-34948 |
7.8 |
2021-10-15 |
|
Foxit PDF Reader Square Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1178 |
ZDI-CAN-13884 |
Fatek Automation |
CVE-2021-38442 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1177 |
ZDI-CAN-13906 |
Fatek Automation |
CVE-2021-38442 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1176 |
ZDI-CAN-13905 |
Fatek Automation |
CVE-2021-38442 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1175 |
ZDI-CAN-13904 |
Fatek Automation |
CVE-2021-38442 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1174 |
ZDI-CAN-13903 |
Fatek Automation |
CVE-2021-38442 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1173 |
ZDI-CAN-13852 |
Fatek Automation |
CVE-2021-38442 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1172 |
ZDI-CAN-13790 |
Fatek Automation |
CVE-2021-38442 |
8.8 |
2021-10-14 |
|
Fatek Automation WinProladder PLC Configuration Data Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1171 |
ZDI-CAN-13744 |
Fatek Automation |
CVE-2021-38440 |
3.3 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1170 |
ZDI-CAN-13743 |
Fatek Automation |
CVE-2021-38438 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1169 |
ZDI-CAN-14039 |
Fatek Automation |
CVE-2021-38426 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1168 |
ZDI-CAN-14112 |
Fatek Automation |
CVE-2021-38434 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Unexpected Sign Extension Remote Code Execution Vulnerability |
| ZDI-21-1167 |
ZDI-CAN-14072 |
Fatek Automation |
CVE-2021-38442 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1166 |
ZDI-CAN-13934 |
Fatek Automation |
CVE-2021-38442 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1165 |
ZDI-CAN-13933 |
Fatek Automation |
CVE-2021-38430 |
7.8 |
2021-10-14 |
|
Fatek Automation WinProladder PDW File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1164 |
ZDI-CAN-13791 |
Fatek Automation |
CVE-2021-38432 |
9.8 |
2021-10-14 |
|
Fatek Automation Communication Server Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1163 |
ZDI-CAN-15060 |
Adobe |
CVE-2021-40731 |
7.8 |
2021-10-14 |
|
Adobe Acrobat Reader DC JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1162 |
ZDI-CAN-15059 |
Adobe |
CVE-2021-40730 |
3.3 |
2021-10-14 |
|
Adobe Acrobat Reader DC JPEG2000 Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1161 |
ZDI-CAN-14687 |
Microsoft |
CVE-2021-41347 |
7.0 |
2021-10-14 |
|
Microsoft Windows AppX Deployment Service Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-1160 |
ZDI-CAN-14224 |
Microsoft |
CVE-2021-40481 |
7.8 |
2021-10-14 |
|
Microsoft Office Visio WMF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1159 |
ZDI-CAN-14216 |
Microsoft |
CVE-2021-40480 |
7.8 |
2021-10-14 |
|
Microsoft Office Visio EMF File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability |
| ZDI-21-1158 |
ZDI-CAN-14203 |
Microsoft |
CVE-2021-40486 |
7.8 |
2021-10-14 |
|
Microsoft Office Word Converter Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1157 |
ZDI-CAN-14006 |
Microsoft |
CVE-2021-26441 |
8.8 |
2021-10-14 |
|
Microsoft Windows storport Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-1156 |
ZDI-CAN-14005 |
Microsoft |
CVE-2021-40489 |
7.8 |
2021-10-14 |
|
Microsoft Windows storport Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-1155 |
ZDI-CAN-14004 |
Microsoft |
CVE-2021-40478 |
7.8 |
2021-10-14 |
|
Microsoft Windows storport Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-1154 |
ZDI-CAN-14003 |
Microsoft |
CVE-2021-41345 |
8.8 |
2021-10-14 |
|
Microsoft Windows storport Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-1153 |
ZDI-CAN-14002 |
Microsoft |
CVE-2021-40488 |
8.8 |
2021-10-14 |
|
Microsoft Windows storport Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-1152 |
ZDI-CAN-13891 |
Schneider Electric |
CVE-2021-22802 |
9.8 |
2021-10-14 |
|
Schneider Electric IGSS Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1151 |
ZDI-CAN-13892 |
Schneider Electric |
CVE-2021-22803 |
9.8 |
2021-10-14 |
|
Schneider Electric IGSS Unrestricted File Upload Remote Code Execution Vulnerability |
| ZDI-21-1150 |
ZDI-CAN-14460 |
Schneider Electric |
CVE-2021-22804 |
7.5 |
2021-10-14 |
|
Schneider Electric IGSS dc.exe Missing Authentication Information Disclosure Vulnerability |
| ZDI-21-1149 |
ZDI-CAN-13893 |
Schneider Electric |
CVE-2021-22805 |
5.3 |
2021-10-14 |
|
Schneider Electric IGSS Missing Authentication Arbitrary File Deletion Vulnerability |
| ZDI-21-1148 |
ZDI-CAN-14689 |
Linux |
CVE-2021-34866 |
8.8 |
2021-10-13 |
|
Linux Kernel eBPF Type Confusion Privilege Escalation Vulnerability |
| ZDI-21-1147 |
ZDI-CAN-13860 |
Adobe |
CVE-2021-36009 |
7.8 |
2021-10-13 |
|
Adobe Illustrator PDF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1146 |
ZDI-CAN-13901 |
Adobe |
CVE-2021-36008 |
3.3 |
2021-10-13 |
|
Adobe Illustrator PDF File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1145 |
ZDI-CAN-13556 |
Adobe |
CVE-2021-35986 |
3.3 |
2021-10-13 |
|
Adobe Acrobat Pro DC getAnnots Type Confusion Information Disclosure Vulnerability |
| ZDI-21-1144 |
ZDI-CAN-14518 |
Microsoft |
|
3.3 |
2021-10-06 |
|
Microsoft Project MPT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1143 |
ZDI-CAN-14630 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-10-06 |
|
Autodesk Design Review PCX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1142 |
ZDI-CAN-13955 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1141 |
ZDI-CAN-14257 |
Autodesk |
CVE-2021-27036 |
3.3 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1140 |
ZDI-CAN-14255 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1139 |
ZDI-CAN-14254 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1138 |
ZDI-CAN-13954 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-10-06 |
|
Autodesk Design Review PCX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1137 |
ZDI-CAN-14253 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1136 |
ZDI-CAN-14252 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1135 |
ZDI-CAN-14251 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-10-06 |
|
Autodesk Design Review TGA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1134 |
ZDI-CAN-14250 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-10-06 |
|
Autodesk Design Review TGA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1133 |
ZDI-CAN-14249 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1132 |
ZDI-CAN-14248 |
Autodesk |
CVE-2021-27034 |
3.3 |
2021-10-06 |
|
Autodesk Design Review TGA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1131 |
ZDI-CAN-14247 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1130 |
ZDI-CAN-14245 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1129 |
ZDI-CAN-14244 |
Autodesk |
CVE-2021-27034 |
3.3 |
2021-10-06 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1128 |
ZDI-CAN-14241 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-10-06 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1127 |
ZDI-CAN-14238 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-10-06 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1126 |
ZDI-CAN-13948 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-10-06 |
|
Autodesk Design Review DWF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1125 |
ZDI-CAN-13913 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-10-06 |
|
Autodesk Design Review RLC File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1124 |
ZDI-CAN-13776 |
Siemens |
CVE-2021-41540 |
7.8 |
2021-09-30 |
|
Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1123 |
ZDI-CAN-13773 |
Siemens |
CVE-2021-41539 |
7.8 |
2021-09-30 |
|
Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1122 |
ZDI-CAN-13770 |
Siemens |
CVE-2021-41538 |
3.3 |
2021-09-30 |
|
Siemens Solid Edge Viewer OBJ File Parsing Uninitialized Pointer Information Disclosure Vulnerability |
| ZDI-21-1121 |
ZDI-CAN-13789 |
Siemens |
CVE-2021-41537 |
7.8 |
2021-09-30 |
|
Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1120 |
ZDI-CAN-13778 |
Siemens |
CVE-2021-41536 |
7.8 |
2021-09-30 |
|
Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1119 |
ZDI-CAN-13771 |
Siemens |
CVE-2021-41535 |
7.8 |
2021-09-30 |
|
Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1118 |
ZDI-CAN-13703 |
Siemens |
CVE-2021-41534 |
3.3 |
2021-09-30 |
|
Siemens Solid Edge Viewer JT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1117 |
ZDI-CAN-13565 |
Siemens |
CVE-2021-41533 |
3.3 |
2021-09-30 |
|
Siemens Solid Edge Viewer JT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1116 |
ZDI-CAN-13055 |
NETGEAR |
CVE-2021-34947 |
8.8 |
2021-09-28 |
|
NETGEAR R7800 net-cgi Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1115 |
ZDI-CAN-12771 |
Trend Micro |
CVE-2021-36745 |
9.8 |
2021-09-26 |
|
Trend Micro ServerProtect Authentication Bypass Vulnerability |
| ZDI-21-1114 |
ZDI-CAN-13777 |
Siemens |
CVE-2021-37179 |
7.8 |
2021-09-24 |
|
Siemens Solid Edge Viewer OBJ File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1113 |
ZDI-CAN-13775 |
Siemens |
CVE-2021-37180 |
7.8 |
2021-09-24 |
|
Siemens Solid Edge Viewer OBJ File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-1112 |
ZDI-CAN-13794 |
Trend Micro |
CVE-2021-32466 |
7.3 |
2021-09-24 |
|
Trend Micro HouseCall for Home Networks Uncontrolled Search Path Element Privilege Escalation Vulnerability |
| ZDI-21-1111 |
ZDI-CAN-13641 |
VMware |
CVE-2021-22009 |
7.5 |
2021-09-22 |
|
VMware vCenter Server Appliance External Control of File Path Denial-of-Service Vulnerability |
| ZDI-21-1110 |
ZDI-CAN-13636 |
VMware |
CVE-2021-22009 |
4.0 |
2021-09-22 |
|
VMware vCenter Server Appliance External Control of File Path Denial-of-Service Vulnerability |
| ZDI-21-1109 |
ZDI-CAN-13635 |
VMware |
CVE-2021-22019 |
7.5 |
2021-09-22 |
|
VMware vCenter Server Appliance External Control of File Path Denial-of-Service Vulnerability |
| ZDI-21-1108 |
ZDI-CAN-13634 |
VMware |
CVE-2021-22015 |
7.8 |
2021-09-22 |
|
VMware vCenter Server Appliance Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-1107 |
ZDI-CAN-13633 |
VMware |
CVE-2021-22008 |
5.3 |
2021-09-22 |
|
VMware vCenter Server Appliance Missing Authentication Information Disclosure Vulnerability |
| ZDI-21-1106 |
ZDI-CAN-13426 |
VMware |
CVE-2021-22015 |
7.8 |
2021-09-22 |
|
VMware vCenter Server Appliance Service Lifecycle Manager Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-1105 |
ZDI-CAN-13425 |
VMware |
CVE-2021-22018 |
6.5 |
2021-09-22 |
|
VMware vCenter Server Appliance Update Manager Directory Traversal Arbitrary File Deletion Vulnerability |
| ZDI-21-1104 |
ZDI-CAN-13800 |
McAfee |
CVE-2021-31847 |
7.8 |
2021-09-22 |
|
McAfee Endpoint Security Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-1103 |
ZDI-CAN-13768 |
Microsoft |
CVE-2021-36962 |
5.5 |
2021-09-16 |
2021-09-20 |
Microsoft Windows Installer Service Directory Junction Information Disclosure Vulnerability |
| ZDI-21-1102 |
ZDI-CAN-13461 |
Schneider Electric |
CVE-2021-22797 |
7.8 |
2021-09-20 |
|
Schneider Electric EcoStruxure Control Expert Classic STU and STA File Parsing Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-1101 |
ZDI-CAN-14597 |
Adobe |
CVE-2021-39839 |
7.8 |
2021-09-16 |
|
Adobe Acrobat Reader DC AcroForm getItemAt Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1100 |
ZDI-CAN-14606 |
Adobe |
CVE-2021-39836 |
7.8 |
2021-09-16 |
|
Adobe Acrobat Reader DC AcroForm buttonGetIcon Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1099 |
ZDI-CAN-14596 |
Adobe |
CVE-2021-39837 |
7.8 |
2021-09-16 |
|
Adobe Acrobat Reader DC AcroForm deleteItemAt Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1098 |
ZDI-CAN-14614 |
Adobe |
CVE-2021-39838 |
7.8 |
2021-09-16 |
|
Adobe Acrobat Reader DC AcroForm buttonGetCaption Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1097 |
ZDI-CAN-14379 |
Adobe |
CVE-2021-39821 |
7.8 |
2021-09-16 |
|
Adobe InDesign TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1096 |
ZDI-CAN-14126 |
Adobe |
CVE-2021-39840 |
7.8 |
2021-09-16 |
|
Adobe Acrobat Reader DC AcroForm Field Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1095 |
ZDI-CAN-14376 |
Adobe |
CVE-2021-39822 |
7.8 |
2021-09-16 |
|
Adobe InDesign BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1094 |
ZDI-CAN-14372 |
Adobe |
CVE-2021-40697 |
3.3 |
2021-09-16 |
|
Adobe FrameMaker PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1093 |
ZDI-CAN-14055 |
Adobe |
CVE-2021-39858 |
3.3 |
2021-09-16 |
|
Adobe Acrobat Pro DC PostScript File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1092 |
ZDI-CAN-13877 |
Adobe |
CVE-2021-39841 |
7.8 |
2021-09-16 |
|
Adobe Acrobat Pro DC DocMedia Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-1091 |
ZDI-CAN-13858 |
Adobe |
CVE-2021-39832 |
7.8 |
2021-09-16 |
|
Adobe FrameMaker PDF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1090 |
ZDI-CAN-13728 |
Adobe |
CVE-2021-39830 |
7.8 |
2021-09-16 |
|
Adobe FrameMaker PDF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1089 |
ZDI-CAN-13727 |
Adobe |
CVE-2021-39829 |
7.8 |
2021-09-16 |
|
Adobe FrameMaker PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1088 |
ZDI-CAN-13902 |
Adobe |
CVE-2021-39835 |
3.3 |
2021-09-16 |
|
Adobe FrameMaker PDF File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-1087 |
ZDI-CAN-13729 |
Adobe |
CVE-2021-39831 |
7.8 |
2021-09-16 |
|
Adobe FrameMaker PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1086 |
ZDI-CAN-13849 |
Adobe |
CVE-2021-39833 |
3.3 |
2021-09-16 |
|
Adobe FrameMaker TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1085 |
ZDI-CAN-13848 |
Adobe |
CVE-2021-39834 |
3.3 |
2021-09-16 |
|
Adobe FrameMaker TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1084 |
ZDI-CAN-14451 |
Microsoft |
CVE-2021-38659 |
7.8 |
2021-09-16 |
|
Microsoft PowerPoint PPT File Parsing Double Free Remote Code Execution Vulnerability |
| ZDI-21-1083 |
ZDI-CAN-14198 |
Microsoft |
CVE-2021-38658 |
7.8 |
2021-09-16 |
|
Microsoft Office Word Converter Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-1082 |
ZDI-CAN-13918 |
Microsoft |
CVE-2021-38656 |
7.8 |
2021-09-16 |
|
Microsoft Word DOC File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1081 |
ZDI-CAN-14194 |
Microsoft |
CVE-2021-38654 |
7.8 |
2021-09-16 |
|
Microsoft Office Visio EMF File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability |
| ZDI-21-1080 |
ZDI-CAN-14118 |
Microsoft |
CVE-2021-38655 |
7.8 |
2021-09-16 |
|
Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1079 |
ZDI-CAN-13828 |
Microsoft |
CVE-2021-38653 |
7.8 |
2021-09-16 |
|
Microsoft Office Visio EMF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1078 |
ZDI-CAN-13762 |
Microsoft |
CVE-2021-36961 |
6.1 |
2021-09-16 |
|
Microsoft Windows Installer Service Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-1077 |
ZDI-CAN-14603 |
Microsoft |
CVE-2021-26434 |
7.3 |
2021-09-16 |
|
Microsoft Visual Studio Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-1076 |
ZDI-CAN-14041 |
Microsoft |
CVE-2021-36952 |
7.0 |
2021-09-16 |
|
Microsoft Visual Studio DDS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1075 |
ZDI-CAN-13765 |
Microsoft |
CVE-2021-38634 |
7.0 |
2021-09-16 |
|
Microsoft Windows Update Agent Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-1074 |
ZDI-CAN-13700 |
Siemens |
CVE-2021-25665 |
7.8 |
2021-09-15 |
|
Siemens Simcenter STAR-CCM+ SCE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1073 |
ZDI-CAN-14260 |
Siemens |
CVE-2021-37176 |
3.3 |
2021-09-15 |
|
Siemens Simcenter Femap MODFEM File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1072 |
ZDI-CAN-13553 |
Schneider Electric |
CVE-2021-22795 |
8.8 |
2021-09-15 |
|
Schneider Electric Struxureware Data Center Expert Command Injection Remote Code Execution Vulnerability |
| ZDI-21-1071 |
ZDI-CAN-13077 |
Schneider Electric |
CVE-2021-22794 |
8.8 |
2021-09-15 |
|
Schneider Electric Struxureware Data Center Expert Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-1070 |
ZDI-CAN-14380 |
Autodesk |
CVE-2021-27030 |
7.8 |
2021-09-15 |
|
Autodesk FBX Review ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-1069 |
ZDI-CAN-14280 |
Autodesk |
CVE-2021-27031 |
7.8 |
2021-09-15 |
|
Autodesk FBX Review DAE File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-1068 |
ZDI-CAN-14279 |
Autodesk |
CVE-2021-40157 |
7.8 |
2021-09-15 |
|
Autodesk FBX Review DAE File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-1067 |
ZDI-CAN-14036 |
Autodesk |
CVE-2021-27044 |
7.8 |
2021-09-15 |
|
Autodesk FBX Review FBX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1066 |
ZDI-CAN-13246 |
Parallels |
|
8.2 |
2021-09-14 |
|
(0Day) Parallels Desktop virtio-net Memory Corruption Privilege Escalation Vulnerability |
| ZDI-21-1065 |
ZDI-CAN-13719 |
Autodesk |
CVE-2021-40156 |
7.8 |
2021-09-14 |
2021-09-15 |
(0Day) Autodesk Navisworks DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1064 |
ZDI-CAN-13718 |
Autodesk |
CVE-2021-27045 |
3.3 |
2021-09-14 |
2021-09-15 |
(0Day) Autodesk Navisworks PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1063 |
ZDI-CAN-13717 |
Autodesk |
CVE-2021-27046 |
7.8 |
2021-09-14 |
2021-09-15 |
(0Day) Autodesk Navisworks PDF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1062 |
ZDI-CAN-13716 |
Autodesk |
CVE-2021-40155 |
7.8 |
2021-09-14 |
2021-09-15 |
(0Day) Autodesk Navisworks DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1061 |
ZDI-CAN-13715 |
Autodesk |
CVE-2021-27045 |
3.3 |
2021-09-14 |
2021-09-15 |
(0Day) Autodesk Navisworks PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1060 |
ZDI-CAN-13714 |
Autodesk |
CVE-2021-40155 |
3.3 |
2021-09-14 |
2021-09-15 |
(0Day) Autodesk Navisworks DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-1059 |
ZDI-CAN-12877 |
Delta Industrial Automation |
CVE-2021-33019 |
7.8 |
2021-09-08 |
|
Delta Industrial Automation DOPSoft TBK File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1058 |
ZDI-CAN-13325 |
NETGEAR |
CVE-2021-34870 |
6.5 |
2021-09-08 |
|
NETGEAR XR1000 UPnP SOAPAction Missing Authentication Information Disclosure Vulnerability |
| ZDI-21-1057 |
ZDI-CAN-13797 |
Parallels |
CVE-2021-34869 |
7.8 |
2021-09-08 |
|
Parallels Desktop Toolgate Uncontrolled Memory Allocation Privilege Escalation Vulnerability |
| ZDI-21-1056 |
ZDI-CAN-13712 |
Parallels |
CVE-2021-34868 |
7.8 |
2021-09-08 |
|
Parallels Desktop Toolgate Uncontrolled Memory Allocation Privilege Escalation Vulnerability |
| ZDI-21-1055 |
ZDI-CAN-13672 |
Parallels |
CVE-2021-34867 |
7.5 |
2021-09-08 |
|
Parallels Desktop Toolgate Uncontrolled Memory Allocation Privilege Escalation Vulnerability |
| ZDI-21-1054 |
ZDI-CAN-12967 |
Advantech |
CVE-2021-38408 |
9.8 |
2021-09-03 |
|
Advantech WebAccess BwFLApp Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1053 |
ZDI-CAN-13692 |
Microsoft |
CVE-2021-26431 |
6.8 |
2021-09-02 |
|
Microsoft Windows Lock Screen Improper Access Control Authentication Bypass Vulnerability |
| ZDI-21-1052 |
ZDI-CAN-13371 |
Trend Micro |
CVE-2021-36744 |
6.1 |
2021-08-30 |
|
Trend Micro Maximum Security Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-1051 |
ZDI-CAN-13313 |
NETGEAR |
CVE-2021-34865 |
8.8 |
2021-08-30 |
|
NETGEAR Multiple Routers mini_httpd Authentication Bypass Vulnerability |
| ZDI-21-1050 |
ZDI-CAN-13494 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator V8 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1049 |
ZDI-CAN-13469 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator V8 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1048 |
ZDI-CAN-13495 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator V8 File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-1047 |
ZDI-CAN-13470 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator V8 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1046 |
ZDI-CAN-13493 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator V8 File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-1045 |
ZDI-CAN-13267 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V9 File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1044 |
ZDI-CAN-13263 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1043 |
ZDI-CAN-13260 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V9 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1042 |
ZDI-CAN-13257 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1041 |
ZDI-CAN-13256 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1040 |
ZDI-CAN-13255 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1039 |
ZDI-CAN-13254 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V9 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1038 |
ZDI-CAN-13253 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1037 |
ZDI-CAN-13252 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V9 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1036 |
ZDI-CAN-13276 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1035 |
ZDI-CAN-13179 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1034 |
ZDI-CAN-13295 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1033 |
ZDI-CAN-13294 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1032 |
ZDI-CAN-13293 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1031 |
ZDI-CAN-13292 |
Fuji Electric |
|
7.8 |
2021-08-30 |
|
(0Day) Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1030 |
ZDI-CAN-13400 |
Fatek Automation |
CVE-2021-32931 |
7.8 |
2021-08-27 |
|
Fatek Automation FvDesigner FPJ File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-1029 |
ZDI-CAN-13398 |
Fatek Automation |
CVE-2021-32947 |
7.8 |
2021-08-27 |
|
Fatek Automation FvDesigner FPJ File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-1028 |
ZDI-CAN-13392 |
Fatek Automation |
CVE-2021-32939 |
7.8 |
2021-08-27 |
|
Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1027 |
ZDI-CAN-13388 |
Fatek Automation |
CVE-2021-32931 |
7.8 |
2021-08-27 |
|
Fatek Automation FvDesigner FPJ File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-1026 |
ZDI-CAN-12686 |
D-Link |
|
8.8 |
2021-08-26 |
|
(0Day) D-Link DIR-2055 HNAP PrivateLogin Incorrect Implementation of Authentication Algorithm Authentication Bypass Vulnerability |
| ZDI-21-1025 |
ZDI-CAN-12683 |
D-Link |
|
8.8 |
2021-08-26 |
|
(0Day) D-Link DIR-2055 HNAP Incorrect Comparison Authentication Bypass Vulnerability |
| ZDI-21-1024 |
ZDI-CAN-13401 |
Microsoft |
CVE-2021-34478 |
7.8 |
2021-08-26 |
|
Microsoft Word glTF-SDK Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1023 |
ZDI-CAN-13073 |
Delta Industrial Automation |
CVE-2021-33007 |
7.8 |
2021-08-26 |
|
Delta Industrial Automation TPEditor TPE File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1022 |
ZDI-CAN-13207 |
Microsoft |
CVE-2021-34516 |
7.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver ColorFillBitmap NULL Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1021 |
ZDI-CAN-13206 |
Microsoft |
CVE-2021-34516 |
7.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvFillPath NULL Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1020 |
ZDI-CAN-13205 |
Microsoft |
CVE-2021-34516 |
7.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvTextOut NULL Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1019 |
ZDI-CAN-13204 |
Microsoft |
CVE-2021-34516 |
7.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvGradientFill NULL Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1018 |
ZDI-CAN-13203 |
Microsoft |
CVE-2021-34516 |
7.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvStrokePath NULL Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1017 |
ZDI-CAN-13202 |
Microsoft |
CVE-2021-34516 |
7.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvStrokeAndFillPath NULL Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1016 |
ZDI-CAN-13201 |
Microsoft |
CVE-2021-34516 |
7.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvLineTo NULL Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1015 |
ZDI-CAN-13054 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvBitBltInternal Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1014 |
ZDI-CAN-12871 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvAlphaBlendInternal Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1013 |
ZDI-CAN-12870 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvBitBltInternal Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1012 |
ZDI-CAN-12869 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvStretchBltROPInternal Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1011 |
ZDI-CAN-12867 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvStretchBltInternal Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1010 |
ZDI-CAN-12866 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvPlgBltInternal Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1009 |
ZDI-CAN-12789 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvFillPath Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1008 |
ZDI-CAN-12788 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvTextOut Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1007 |
ZDI-CAN-12787 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvStrokeAndFillPath Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1006 |
ZDI-CAN-12786 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvStrokePath Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1005 |
ZDI-CAN-12785 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvGradientFill Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1004 |
ZDI-CAN-12784 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-08-26 |
|
Microsoft Windows Canonical Display Driver DrvLineTo Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-1003 |
ZDI-CAN-13697 |
TeamViewer |
CVE-2021-34859 |
7.8 |
2021-08-26 |
|
TeamViewer TVS File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-1002 |
ZDI-CAN-13607 |
TeamViewer |
CVE-2021-34858 |
7.8 |
2021-08-26 |
|
TeamViewer TVS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-1001 |
ZDI-CAN-13606 |
TeamViewer |
CVE-2021-34858 |
7.8 |
2021-08-26 |
|
Teamviewer TVS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-1000 |
ZDI-CAN-13543 |
Parallels |
CVE-2021-34864 |
8.8 |
2021-08-25 |
2021-08-26 |
(Pwn2Own) Parallels Desktop WinAppHelper Improper Access Control Privilege Escalation Vulnerability |
| ZDI-21-999 |
ZDI-CAN-12994 |
Siemens |
CVE-2021-31343 |
7.8 |
2021-08-24 |
|
Siemens Solid Edge Viewer DFT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-998 |
ZDI-CAN-12993 |
Siemens |
CVE-2021-31342 |
7.8 |
2021-08-24 |
|
Siemens Solid Edge Viewer DFT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-997 |
ZDI-CAN-14135 |
Adobe |
CVE-2021-36071 |
3.3 |
2021-08-18 |
|
Adobe Bridge PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-996 |
ZDI-CAN-13935 |
Adobe |
CVE-2021-36079 |
7.8 |
2021-08-18 |
|
Adobe Bridge SGI File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-995 |
ZDI-CAN-13900 |
Adobe |
CVE-2021-36074 |
3.3 |
2021-08-18 |
|
Adobe Bridge PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-994 |
ZDI-CAN-13854 |
Adobe |
CVE-2021-36073 |
7.8 |
2021-08-18 |
|
Adobe Bridge SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-993 |
ZDI-CAN-13853 |
Adobe |
CVE-2021-36072 |
7.8 |
2021-08-18 |
|
Adobe Bridge SGI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-992 |
ZDI-CAN-13851 |
Adobe |
CVE-2021-36066 |
7.8 |
2021-08-18 |
|
Adobe Photoshop U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-991 |
ZDI-CAN-13843 |
Adobe |
CVE-2021-36078 |
7.8 |
2021-08-18 |
|
Adobe Bridge PDF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-990 |
ZDI-CAN-13468 |
Siemens |
CVE-2021-32944 |
7.8 |
2021-08-18 |
|
Siemens JT2Go DGN File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-989 |
ZDI-CAN-13417 |
Siemens |
CVE-2021-32952 |
7.8 |
2021-08-18 |
|
Siemens JT2Go DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-988 |
ZDI-CAN-13415 |
Siemens |
CVE-2021-32950 |
3.3 |
2021-08-18 |
|
Siemens JT2Go DXF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-987 |
ZDI-CAN-13413 |
Siemens |
CVE-2021-32944 |
7.8 |
2021-08-18 |
|
Siemens JT2Go DGN File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-986 |
ZDI-CAN-13412 |
Siemens |
CVE-2021-32940 |
3.3 |
2021-08-18 |
|
Siemens JT2Go DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-985 |
ZDI-CAN-13411 |
Siemens |
CVE-2021-32946 |
7.8 |
2021-08-18 |
|
Siemens JT2Go DGN File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-984 |
ZDI-CAN-13410 |
Siemens |
CVE-2021-32948 |
7.8 |
2021-08-18 |
|
Siemens JT2Go DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-983 |
ZDI-CAN-13409 |
Siemens |
CVE-2021-32946 |
7.8 |
2021-08-18 |
|
Siemens JT2Go DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-982 |
ZDI-CAN-13408 |
Siemens |
CVE-2021-32936 |
7.8 |
2021-08-18 |
|
Siemens JT2Go DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-981 |
ZDI-CAN-13405 |
Siemens |
CVE-2021-33738 |
3.3 |
2021-08-18 |
|
Siemens JT2Go PAR File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-980 |
ZDI-CAN-13378 |
Siemens |
CVE-2021-32938 |
3.3 |
2021-08-18 |
|
Siemens JT2Go DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-979 |
ZDI-CAN-13271 |
D-Link |
CVE-2021-34863 |
8.8 |
2021-12-22 |
2021-12-22 |
D-Link DAP-2020 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-978 |
ZDI-CAN-13270 |
D-Link |
CVE-2021-34862 |
8.8 |
2021-12-22 |
2021-12-22 |
D-Link DAP-2020 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-977 |
ZDI-CAN-12104 |
D-Link |
CVE-2021-34861 |
8.8 |
2021-08-18 |
|
D-Link DAP-2020 webproc Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-976 |
ZDI-CAN-12103 |
D-Link |
CVE-2021-34860 |
6.5 |
2021-08-18 |
|
D-Link DAP-2020 webproc getpage Directory Traversal Information Disclosure Vulnerability |
| ZDI-21-975 |
ZDI-CAN-13444 |
Microsoft |
CVE-2021-34510 |
8.8 |
2021-08-18 |
|
(Pwn2Own) Microsoft Windows storport Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-974 |
ZDI-CAN-13143 |
Cisco |
|
7.5 |
2021-08-18 |
|
Cisco UCS Director AMF XML External Entity Information Disclosure Vulnerability |
| ZDI-21-973 |
ZDI-CAN-13617 |
Zoom |
|
5.3 |
2021-08-17 |
|
(Pwn2Own) Zoom Client GIPHY URL Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-972 |
ZDI-CAN-13616 |
Zoom |
|
5.3 |
2021-08-17 |
|
(Pwn2Own) Zoom Client Marketplace Use of Incorrectly-Resolved Name or Reference Information Disclosure Vulnerability |
| ZDI-21-971 |
ZDI-CAN-13587 |
Zoom |
CVE-2021-34407 |
7.3 |
2021-08-17 |
|
(Pwn2Own) Zoom Heap based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-970 |
ZDI-CAN-13875 |
Apple |
CVE-2021-30789 |
3.3 |
2021-08-11 |
|
Apple macOS CoreText TTF File Parsing Integer Overflow Information Disclosure Vulnerability |
| ZDI-21-969 |
ZDI-CAN-13508 |
Microsoft |
CVE-2021-34501 |
8.8 |
2021-08-11 |
|
Microsoft Excel XLS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-968 |
ZDI-CAN-13429 |
Microsoft |
CVE-2021-36945 |
7.3 |
2021-08-11 |
|
Microsoft Windows Update Assistant Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-967 |
ZDI-CAN-13691 |
Microsoft |
CVE-2021-34536 |
8.8 |
2021-08-11 |
|
Microsoft Windows storport Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-966 |
ZDI-CAN-13488 |
Microsoft |
CVE-2021-34484 |
7.8 |
2021-08-11 |
|
Microsoft Windows User Profile Service Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-965 |
ZDI-CAN-13486 |
Microsoft |
CVE-2021-26426 |
7.8 |
2021-08-11 |
|
Microsoft Windows User Profile Service Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-964 |
ZDI-CAN-13503 |
Microsoft |
CVE-2021-26425 |
6.1 |
2021-08-11 |
|
Microsoft Windows Event Tracing Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-963 |
ZDI-CAN-13457 |
Microsoft |
CVE-2021-26431 |
7.8 |
2021-08-11 |
|
Microsoft Windows Update Service Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-962 |
ZDI-CAN-13504 |
Microsoft |
CVE-2021-34471 |
6.1 |
2021-08-11 |
|
Microsoft Windows Defender Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-961 |
ZDI-CAN-14466 |
Apple |
CVE-2021-30789 |
3.3 |
2021-08-11 |
|
Apple macOS CoreText TTF Parsing Out-of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-960 |
ZDI-CAN-13127 |
Delta Industrial Automation |
CVE-2021-38406 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-959 |
ZDI-CAN-13128 |
Delta Industrial Automation |
CVE-2021-38402 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft DPS File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-958 |
ZDI-CAN-13126 |
Delta Industrial Automation |
CVE-2021-38406 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-957 |
ZDI-CAN-13125 |
Delta Industrial Automation |
CVE-2021-38406 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-956 |
ZDI-CAN-13124 |
Delta Industrial Automation |
CVE-2021-38406 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-955 |
ZDI-CAN-13123 |
Delta Industrial Automation |
CVE-2021-38406 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-954 |
ZDI-CAN-13122 |
Delta Industrial Automation |
CVE-2021-38406 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-953 |
ZDI-CAN-13121 |
Delta Industrial Automation |
CVE-2021-38406 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-952 |
ZDI-CAN-13120 |
Delta Industrial Automation |
CVE-2021-38406 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-951 |
ZDI-CAN-13071 |
Delta Industrial Automation |
CVE-2021-38404 |
7.8 |
2021-08-09 |
|
(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-950 |
ZDI-CAN-13578 |
Apple |
CVE-2021-30790 |
3.3 |
2021-08-09 |
|
Apple macOS AppKit PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-949 |
ZDI-CAN-13577 |
Apple |
CVE-2021-30790 |
7.8 |
2021-08-09 |
|
Apple macOS CoreGraphics JPG File Parsing Out-of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-948 |
ZDI-CAN-14011 |
Apple |
CVE-2021-30796 |
7.8 |
2021-08-05 |
|
Apple macOS ModelIO USD File Parsing Out-Of-Bounds Write Remote Code Execute Vulnerability |
| ZDI-21-947 |
ZDI-CAN-13761 |
Apple |
CVE-2021-30792 |
7.8 |
2021-08-05 |
|
Apple macOS ModelIO ABC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-946 |
ZDI-CAN-13759 |
Apple |
CVE-2021-30791 |
3.3 |
2021-08-05 |
|
Apple macOS ModelIO ABC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-945 |
ZDI-CAN-13505 |
Apple |
CVE-2021-30788 |
4.3 |
2021-08-05 |
|
Apple macOS libFontParser TTF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-944 |
ZDI-CAN-13479 |
Apple |
CVE-2021-30787 |
7.8 |
2021-08-05 |
|
Apple macOS process_token_BindQueryStoreRegisterToMemoryList Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-943 |
ZDI-CAN-13362 |
Apple |
CVE-2021-30706 |
3.3 |
2021-08-05 |
|
Apple macOS ImageIO WEBP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-942 |
ZDI-CAN-13360 |
Apple |
CVE-2021-30706 |
3.3 |
2021-08-05 |
|
Apple macOS ImageIO WEBP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-941 |
ZDI-CAN-13268 |
Apple |
CVE-2021-30759 |
7.8 |
2021-08-05 |
|
Apple macOS libType1Scaler PFB Font Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-940 |
ZDI-CAN-13601 |
Parallels |
CVE-2021-34857 |
8.2 |
2021-08-03 |
|
(Pwn2Own) Parallels Desktop Toolgate Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-939 |
ZDI-CAN-13592 |
Parallels |
CVE-2021-34855 |
6.5 |
2021-08-03 |
|
(Pwn2Own) Parallels Desktop Toolgate Uninitialized Memory Information Disclosure Vulnerability |
| ZDI-21-938 |
ZDI-CAN-13581 |
Parallels |
CVE-2021-34856 |
8.2 |
2021-08-03 |
|
(Pwn2Own) Parallels Desktop virtio-gpu Memory Corruption Privilege Escalation Vulnerability |
| ZDI-21-937 |
ZDI-CAN-13544 |
Parallels |
CVE-2021-34854 |
7.8 |
2021-08-03 |
|
(Pwn2Own) Parallels Desktop Toolgate Uncontrolled Memory Allocation Privilege Escalation Vulnerability |
| ZDI-21-936 |
ZDI-CAN-13799 |
Microsoft |
CVE-2021-36928 |
7.0 |
2021-08-03 |
|
Microsoft Edge Installer Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-935 |
ZDI-CAN-14013 |
Foxit |
CVE-2021-34853 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-934 |
ZDI-CAN-13929 |
Foxit |
CVE-2021-34852 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-933 |
ZDI-CAN-14016 |
Foxit |
CVE-2021-34851 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-932 |
ZDI-CAN-14529 |
Foxit |
CVE-2021-34850 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-931 |
ZDI-CAN-14531 |
Foxit |
CVE-2021-34849 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-930 |
ZDI-CAN-14532 |
Foxit |
CVE-2021-34848 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-929 |
ZDI-CAN-14270 |
Foxit |
CVE-2021-34847 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-928 |
ZDI-CAN-14120 |
Foxit |
CVE-2021-34846 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-927 |
ZDI-CAN-14034 |
Foxit |
CVE-2021-34845 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-926 |
ZDI-CAN-14033 |
Foxit |
CVE-2021-34844 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-925 |
ZDI-CAN-14025 |
Foxit |
CVE-2021-34843 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-924 |
ZDI-CAN-14024 |
Foxit |
CVE-2021-34842 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-923 |
ZDI-CAN-14022 |
Foxit |
CVE-2021-34841 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-922 |
ZDI-CAN-14021 |
Foxit |
CVE-2021-34840 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-921 |
ZDI-CAN-14020 |
Foxit |
CVE-2021-34839 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-920 |
ZDI-CAN-14019 |
Foxit |
CVE-2021-34838 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-919 |
ZDI-CAN-14018 |
Foxit |
CVE-2021-34837 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-918 |
ZDI-CAN-14017 |
Foxit |
CVE-2021-34836 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-917 |
ZDI-CAN-14015 |
Foxit |
CVE-2021-34835 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-916 |
ZDI-CAN-14014 |
Foxit |
CVE-2021-34834 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-915 |
ZDI-CAN-14023 |
Foxit |
CVE-2021-34833 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-914 |
ZDI-CAN-13928 |
Foxit |
CVE-2021-34832 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit PDF Reader delay Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-913 |
ZDI-CAN-13741 |
Foxit |
CVE-2021-34831 |
7.8 |
2021-07-30 |
2021-08-03 |
Foxit Reader embedDocAsDataObject Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-912 |
ZDI-CAN-14136 |
Adobe |
CVE-2021-36015 |
3.3 |
2021-07-30 |
|
Adobe Media Encoder PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-911 |
ZDI-CAN-13769 |
Trend Micro |
CVE-2021-32465 |
7.5 |
2021-07-30 |
|
Trend Micro Apex One Incorrect Permission Preservation Authentication Bypass Vulnerability |
| ZDI-21-910 |
ZDI-CAN-12851 |
Trend Micro |
CVE-2021-32464 |
7.8 |
2021-07-30 |
|
Trend Micro Worry-Free Business Security Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-909 |
ZDI-CAN-13085 |
Microsoft |
CVE-2021-43209 |
6.6 |
2021-07-29 |
|
(0Day) Microsoft 3D Viewer 3MF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-908 |
ZDI-CAN-13735 |
Adobe |
CVE-2021-36007 |
3.3 |
2021-07-28 |
|
Adobe Prelude MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability |
| ZDI-21-907 |
ZDI-CAN-13812 |
Adobe |
CVE-2021-36016 |
3.3 |
2021-07-28 |
|
Adobe Media Encoder FLV File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-906 |
ZDI-CAN-13733 |
Adobe |
CVE-2021-36014 |
3.3 |
2021-07-28 |
|
Adobe Media Encoder MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability |
| ZDI-21-905 |
ZDI-CAN-13974 |
Adobe |
CVE-2021-36001 |
3.3 |
2021-07-28 |
|
Adobe Character Animator PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-904 |
ZDI-CAN-13973 |
Adobe |
CVE-2021-40766 |
3.3 |
2021-07-28 |
2021-10-27 |
Adobe Character Animator SVG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-903 |
ZDI-CAN-13734 |
Adobe |
CVE-2021-36006 |
3.3 |
2021-07-28 |
|
Adobe Photoshop MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability |
| ZDI-21-902 |
ZDI-CAN-13753 |
Adobe |
CVE-2021-36003 |
3.3 |
2021-07-28 |
|
Adobe Audition MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-901 |
ZDI-CAN-14154 |
Adobe |
CVE-2021-36019 |
3.3 |
2021-07-28 |
|
Adobe After Effects PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-900 |
ZDI-CAN-13859 |
Adobe |
CVE-2021-36017 |
7.8 |
2021-07-28 |
|
Adobe After Effects PDF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-899 |
ZDI-CAN-13899 |
Adobe |
CVE-2021-36018 |
3.3 |
2021-07-28 |
|
Adobe After Effects PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-898 |
ZDI-CAN-13731 |
Adobe |
CVE-2021-35995 |
3.3 |
2021-07-28 |
|
Adobe After Effects MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability |
| ZDI-21-897 |
ZDI-CAN-13527 |
Adobe |
CVE-2021-35993 |
7.8 |
2021-07-28 |
|
Adobe After Effects PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-896 |
ZDI-CAN-13525 |
Adobe |
CVE-2021-35994 |
7.8 |
2021-07-28 |
|
Adobe After Effects JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-895 |
ZDI-CAN-12868 |
Microsoft |
CVE-2021-34516 |
8.8 |
2021-07-28 |
|
Microsoft Windows Canonical Display Driver DrvTransparentBltInternal Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-894 |
ZDI-CAN-13610 |
Microsoft |
CVE-2021-31198 |
8.8 |
2021-07-22 |
|
(Pwn2Own) Microsoft Exchange Server OAB Arbitrary File Write Remote Code Execution Vulnerability |
| ZDI-21-893 |
ZDI-CAN-12843 |
Apple |
CVE-2021-30764 |
3.3 |
2021-07-22 |
|
(0Day) Apple macOS ImageIO WEBP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-892 |
ZDI-CAN-12842 |
Apple |
CVE-2021-30706 |
3.3 |
2021-07-22 |
|
(0Day) Apple macOS ImageIO WEBP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-891 |
ZDI-CAN-12811 |
Apple |
CVE-2021-30662 |
7.8 |
2021-07-22 |
|
(0Day) Apple macOS ImageIO TIFF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-890 |
ZDI-CAN-12997 |
Apple |
CVE-2021-30742 |
3.3 |
2021-07-22 |
|
(0Day) Apple macOS AudioToolboxCore LOAS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-889 |
ZDI-CAN-13551 |
Oracle |
CVE-2021-2429 |
8.1 |
2021-07-22 |
2021-08-23 |
MySQL InnoDB Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-888 |
ZDI-CAN-13478 |
Oracle |
CVE-2021-2409 |
7.5 |
2021-07-22 |
|
Oracle VirtualBox NAT Numeric Truncation Privilege Escalation Vulnerability |
| ZDI-21-887 |
ZDI-CAN-13067 |
Oracle |
CVE-2021-2401 |
7.5 |
2021-07-22 |
|
Oracle Business Intelligence DOMParser XML External Entity Processing Information Disclosure Vulnerability |
| ZDI-21-886 |
ZDI-CAN-13065 |
Oracle |
CVE-2021-2400 |
7.5 |
2021-07-22 |
|
Oracle Business Intelligence SAXParser XML External Entity Processing Information Disclosure Vulnerability |
| ZDI-21-885 |
ZDI-CAN-13036 |
Oracle |
CVE-2021-2456 |
9.8 |
2021-07-22 |
|
Oracle Business Intelligence BIRemotingServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-884 |
ZDI-CAN-13104 |
Oracle |
CVE-2021-2396 |
8.8 |
2021-07-22 |
|
Oracle Business Intelligence UpdateConnectionServlet JNDI Injection Remote Code Execution Vulnerability |
| ZDI-21-883 |
ZDI-CAN-13377 |
Oracle |
CVE-2021-2392 |
8.8 |
2021-07-22 |
|
Oracle Business Intelligence UploadFndDBCPage Arbitrary File Upload Remote Code Execution Vulnerability |
| ZDI-21-882 |
ZDI-CAN-13105 |
Oracle |
CVE-2021-2391 |
8.8 |
2021-07-22 |
|
Oracle Business Intelligence SchedulerConfigPage11g JNDI Injection Remote Code Execution Vulnerability |
| ZDI-21-881 |
ZDI-CAN-13266 |
Oracle |
CVE-2021-2390 |
9.8 |
2021-07-22 |
|
MySQL memcached Plugin Integer Underflow Remote Code Execution Vulnerability |
| ZDI-21-880 |
ZDI-CAN-13265 |
Oracle |
CVE-2021-2389 |
9.8 |
2021-07-22 |
|
MySQL memcached Plugin Integer Underflow Remote Code Execution Vulnerability |
| ZDI-21-879 |
ZDI-CAN-13449 |
WSO2 |
|
9.8 |
2021-07-19 |
|
(0Day) WSO2 API Manager JMX Use of Hard-coded Credentials Remote Code Execution Vulnerability |
| ZDI-21-878 |
ZDI-CAN-13170 |
Autodesk |
|
7.8 |
2021-07-19 |
|
(0Day) Autodesk Meshmixer 3MF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-877 |
ZDI-CAN-13169 |
Autodesk |
|
7.8 |
2021-07-19 |
|
(0Day) Autodesk Meshmixer 3MF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-876 |
ZDI-CAN-11883 |
Advantech |
CVE-2021-32951 |
5.3 |
2021-07-19 |
2021-08-25 |
(0Day) Advantech WebAccess/NMS DashBoardAction Missing Authentication Information Disclosure Vulnerability |
| ZDI-21-875 |
ZDI-CAN-13618 |
Microsoft |
CVE-2021-34513 |
8.8 |
2021-07-19 |
|
Microsoft Windows storport Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-874 |
ZDI-CAN-13199 |
Siemens |
CVE-2021-34304 |
3.3 |
2021-07-19 |
|
Siemens JT2Go TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-873 |
ZDI-CAN-13196 |
Siemens |
CVE-2021-34301 |
7.8 |
2021-07-19 |
|
Siemens JT2Go BMP File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-872 |
ZDI-CAN-13060 |
Siemens |
CVE-2021-34298 |
7.8 |
2021-07-19 |
|
Siemens JT2Go BMP File Parsing Double Free Remote Code Execution Vulnerability |
| ZDI-21-871 |
ZDI-CAN-12959 |
Siemens |
CVE-2021-34292 |
7.8 |
2021-07-19 |
|
Siemens JT2Go TIFF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-870 |
ZDI-CAN-12956 |
Siemens |
CVE-2021-34291 |
7.8 |
2021-07-19 |
|
Siemens JT2Go GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-869 |
ZDI-CAN-13442 |
Siemens |
CVE-2021-34331 |
7.8 |
2021-07-19 |
|
Siemens JT2Go JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-868 |
ZDI-CAN-13430 |
Siemens |
CVE-2021-34330 |
7.8 |
2021-07-19 |
|
Siemens JT2Go JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-867 |
ZDI-CAN-13427 |
Siemens |
CVE-2021-34329 |
7.8 |
2021-07-19 |
|
Siemens JT2Go PAR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-866 |
ZDI-CAN-13424 |
Siemens |
CVE-2021-34328 |
7.8 |
2021-07-19 |
|
Siemens JT2Go PAR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-865 |
ZDI-CAN-13423 |
Siemens |
CVE-2021-34327 |
7.8 |
2021-07-19 |
|
Siemens JT2Go ASM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-864 |
ZDI-CAN-13422 |
Siemens |
CVE-2021-34326 |
7.8 |
2021-07-19 |
|
Siemens JT2Go PAR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-863 |
ZDI-CAN-13421 |
Siemens |
CVE-2021-34325 |
3.3 |
2021-07-19 |
|
Siemens JT2Go JT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-862 |
ZDI-CAN-13420 |
Siemens |
CVE-2021-34324 |
7.8 |
2021-07-19 |
|
Siemens JT2Go JT File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-861 |
ZDI-CAN-13419 |
Siemens |
CVE-2021-34323 |
7.8 |
2021-07-19 |
|
Siemens JT2Go JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-860 |
ZDI-CAN-13418 |
Siemens |
CVE-2020-26999 |
7.8 |
2021-07-19 |
|
Siemens JT2Go PAR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-859 |
ZDI-CAN-13416 |
Siemens |
CVE-2021-34322 |
3.3 |
2021-07-19 |
|
Siemens JT2Go J2K File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-858 |
ZDI-CAN-13414 |
Siemens |
CVE-2021-34321 |
3.3 |
2021-07-19 |
|
Siemens JT2Go J2K File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-857 |
ZDI-CAN-13407 |
Siemens |
CVE-2020-26998 |
7.8 |
2021-07-19 |
|
Siemens JT2Go ASM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-856 |
ZDI-CAN-13406 |
Siemens |
CVE-2021-34320 |
3.3 |
2021-07-19 |
|
Siemens JT2Go JT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-855 |
ZDI-CAN-13404 |
Siemens |
CVE-2021-34319 |
7.8 |
2021-07-19 |
|
Siemens JT2Go SGI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-854 |
ZDI-CAN-13403 |
Siemens |
CVE-2021-34318 |
7.8 |
2021-07-19 |
|
Siemens JT2Go PCT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-853 |
ZDI-CAN-13402 |
Siemens |
CVE-2021-34317 |
7.8 |
2021-07-19 |
|
Siemens JT2Go PCX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-852 |
ZDI-CAN-13024 |
Siemens |
CVE-2021-34295 |
7.8 |
2021-07-19 |
|
Siemens JT2Go GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-851 |
ZDI-CAN-13023 |
Siemens |
CVE-2021-34294 |
7.8 |
2021-07-19 |
|
Siemens JT2Go GIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-850 |
ZDI-CAN-13020 |
Siemens |
CVE-2021-34293 |
7.8 |
2021-07-19 |
|
Siemens JT2Go GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-849 |
ZDI-CAN-13380 |
Siemens |
CVE-2021-34316 |
7.8 |
2021-07-19 |
|
Siemens JT2Go PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-848 |
ZDI-CAN-13198 |
Siemens |
CVE-2021-34303 |
3.3 |
2021-07-19 |
|
Siemens JT2Go TIFF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-847 |
ZDI-CAN-13197 |
Siemens |
CVE-2021-34302 |
3.3 |
2021-07-19 |
|
Siemens JT2Go BMP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-846 |
ZDI-CAN-13194 |
Siemens |
CVE-2021-34300 |
7.8 |
2021-07-19 |
|
Siemens JT2Go TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-845 |
ZDI-CAN-13192 |
Siemens |
CVE-2021-34299 |
3.3 |
2021-07-19 |
|
Siemens JT2Go TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-844 |
ZDI-CAN-13356 |
Siemens |
CVE-2021-34315 |
7.8 |
2021-07-19 |
|
Siemens JT2Go SGI File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-843 |
ZDI-CAN-13355 |
Siemens |
CVE-2021-34314 |
7.8 |
2021-07-19 |
|
Siemens JT2Go SGI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-842 |
ZDI-CAN-13354 |
Siemens |
CVE-2021-34313 |
7.8 |
2021-07-19 |
|
Siemens JT2Go TIF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-841 |
ZDI-CAN-13353 |
Siemens |
CVE-2021-34312 |
7.8 |
2021-07-19 |
|
Siemens JT2Go TIF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-840 |
ZDI-CAN-13352 |
Siemens |
CVE-2021-34311 |
7.8 |
2021-07-19 |
|
Siemens JT2Go J2K File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-839 |
ZDI-CAN-13351 |
Siemens |
CVE-2021-34310 |
7.8 |
2021-07-19 |
|
Siemens JT2Go TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-838 |
ZDI-CAN-13350 |
Siemens |
CVE-2021-34309 |
7.8 |
2021-07-19 |
|
Siemens JT2Go TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-837 |
ZDI-CAN-13344 |
Siemens |
CVE-2021-34308 |
3.3 |
2021-07-19 |
|
Siemens JT2Go BMP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-836 |
ZDI-CAN-13343 |
Siemens |
CVE-2021-34307 |
3.3 |
2021-07-19 |
|
Siemens JT2Go TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-835 |
ZDI-CAN-13342 |
Siemens |
CVE-2021-34306 |
7.8 |
2021-07-19 |
|
Siemens JT2Go BMP File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-834 |
ZDI-CAN-13341 |
Siemens |
CVE-2021-34305 |
7.8 |
2021-07-19 |
|
Siemens JT2Go GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-833 |
ZDI-CAN-13340 |
Siemens |
CVE-2021-34305 |
7.8 |
2021-07-19 |
|
Siemens JT2Go GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-832 |
ZDI-CAN-13059 |
Siemens |
CVE-2021-34297 |
7.8 |
2021-07-19 |
|
Siemens JT2Go BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-831 |
ZDI-CAN-13057 |
Siemens |
CVE-2021-34296 |
3.3 |
2021-07-19 |
|
Siemens JT2Go BMP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-830 |
ZDI-CAN-13682 |
Microsoft |
CVE-2021-34519 |
3.5 |
2021-07-19 |
|
Microsoft SharePoint Missing Check of Message Integrity Vulnerability |
| ZDI-21-829 |
ZDI-CAN-13584 |
Microsoft |
CVE-2021-34468 |
7.1 |
2021-07-19 |
|
Microsoft SharePoint CabUtility ExtractCab Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-828 |
ZDI-CAN-13358 |
Microsoft |
CVE-2021-34520 |
8.8 |
2021-07-19 |
|
Microsoft SharePoint SetVariableActivity Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-827 |
ZDI-CAN-13463 |
Microsoft |
CVE-2021-34529 |
7.8 |
2021-07-19 |
|
Microsoft Visual Studio Code maven.executable.options Command Injection Remote Code Execution Vulnerability |
| ZDI-21-826 |
ZDI-CAN-13595 |
Microsoft |
CVE-2021-31206 |
7.1 |
2021-07-19 |
|
(Pwn2Own) Microsoft Exchange Server CabUtility ExtractCab Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-825 |
ZDI-CAN-13580 |
Microsoft |
CVE-2021-34498 |
8.8 |
2021-07-19 |
|
(Pwn2Own) Microsoft Windows win32kfull Bitmap Use-After-Free Privilege Escalation Vulnerability |
| ZDI-21-824 |
ZDI-CAN-13561 |
Microsoft |
CVE-2021-33751 |
8.8 |
2021-07-19 |
|
(Pwn2Own) Microsoft Windows spaceport Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-823 |
ZDI-CAN-13600 |
Microsoft |
CVE-2021-34462 |
7.0 |
2021-07-19 |
|
(Pwn2Own) Microsoft Windows AppX Deployment Service Race Condition Privilege Escalation Vulnerability |
| ZDI-21-822 |
ZDI-CAN-13614 |
Microsoft |
CVE-2021-34523 |
9.8 |
2021-07-19 |
|
(Pwn2Own) Microsoft Exchange Server PowerShell Improper Authentication Remote Code Execution Vulnerability |
| ZDI-21-821 |
ZDI-CAN-13611 |
Microsoft |
CVE-2021-34473 |
10.0 |
2021-07-19 |
|
(Pwn2Own) Microsoft Exchange Server Autodiscover Server Side Request Forgery Authentication Bypass Vulnerability |
| ZDI-21-820 |
ZDI-CAN-13589 |
Microsoft |
CVE-2021-34512 |
8.8 |
2021-07-19 |
|
(Pwn2Own) Microsoft Windows storport Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-819 |
ZDI-CAN-13588 |
Microsoft |
CVE-2021-31207 |
8.8 |
2021-07-19 |
|
(Pwn2Own) Microsoft Exchange Server Arbitrary File Write Remote Code Execution Vulnerability |
| ZDI-21-818 |
ZDI-CAN-12925 |
Microsoft |
CVE-2021-31961 |
6.1 |
2021-07-19 |
|
Microsoft Windows InstallService Time-Of-Check Time-Of-Use Denial-of-Service Vulnerability |
| ZDI-21-817 |
ZDI-CAN-13458 |
Cisco |
|
3.3 |
2021-07-19 |
|
Cisco WebEx Network Recording Player ARF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-816 |
ZDI-CAN-13456 |
Cisco |
|
3.3 |
2021-07-19 |
|
Cisco WebEx Network Recording Player ARF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-815 |
ZDI-CAN-13455 |
Cisco |
|
3.3 |
2021-07-19 |
|
Cisco WebEx Network Recording Player ARF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-814 |
ZDI-CAN-12592 |
Schneider Electric |
CVE-2021-22784 |
6.5 |
2021-07-19 |
|
Schneider Electric C-Bus Toolkit Missing Authentication Vulnerability |
| ZDI-21-813 |
ZDI-CAN-13855 |
Adobe |
CVE-2021-28639 |
7.8 |
2021-07-15 |
|
Adobe Acrobat Reader DC setAction Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-812 |
ZDI-CAN-13766 |
Adobe |
CVE-2021-28638 |
7.8 |
2021-07-15 |
|
Adobe Acrobat Reader DC PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-811 |
ZDI-CAN-13558 |
Adobe |
CVE-2021-35986 |
3.3 |
2021-07-15 |
|
Adobe Acrobat Pro DC getAnnot Type Confusion Information Disclosure Vulnerability |
| ZDI-21-810 |
ZDI-CAN-13557 |
Adobe |
CVE-2021-28643 |
3.3 |
2021-07-15 |
|
Adobe Acrobat Pro DC embedDocAsDataObject Type Confusion Information Disclosure Vulnerability |
| ZDI-21-809 |
ZDI-CAN-13732 |
Adobe |
CVE-2021-35991 |
3.3 |
2021-07-15 |
|
Adobe Bridge MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability |
| ZDI-21-808 |
ZDI-CAN-13695 |
Adobe |
CVE-2021-28624 |
7.8 |
2021-07-15 |
|
Adobe Bridge SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-807 |
ZDI-CAN-13550 |
Adobe |
CVE-2021-35981 |
7.8 |
2021-07-15 |
|
Adobe Acrobat Reader DC launchURL Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-806 |
ZDI-CAN-13549 |
Adobe |
CVE-2021-35983 |
7.8 |
2021-07-15 |
|
Adobe Acrobat Reader DC AcroForm Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-805 |
ZDI-CAN-13448 |
Adobe |
CVE-2021-28596 |
7.8 |
2021-07-15 |
|
Adobe FrameMaker PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-804 |
ZDI-CAN-13539 |
Adobe |
CVE-2021-28592 |
7.8 |
2021-07-15 |
|
Adobe Illustrator JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-803 |
ZDI-CAN-13538 |
Adobe |
CVE-2021-28593 |
3.3 |
2021-07-15 |
|
Adobe Illustrator PostScript File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-802 |
ZDI-CAN-13537 |
Adobe |
CVE-2021-28591 |
7.8 |
2021-07-15 |
|
Adobe Illustrator PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-801 |
ZDI-CAN-13530 |
Adobe |
CVE-2021-35992 |
3.3 |
2021-07-15 |
|
Adobe Bridge PostScript Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-800 |
ZDI-CAN-13529 |
Adobe |
CVE-2021-35989 |
7.8 |
2021-07-15 |
|
Adobe Bridge PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-799 |
ZDI-CAN-13528 |
Adobe |
CVE-2021-35990 |
7.8 |
2021-07-15 |
|
Adobe Bridge JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-798 |
ZDI-CAN-13477 |
Microsoft |
CVE-2021-33766 |
6.5 |
2021-07-15 |
|
Microsoft Exchange Server ECP Authentication Bypass Information Disclosure Vulnerability |
| ZDI-21-797 |
ZDI-CAN-13282 |
Microsoft |
CVE-2021-31969 |
8.8 |
2021-07-15 |
|
Microsoft Windows CLDFLT Integer Underflow Privilege Escalation Vulnerability |
| ZDI-21-796 |
ZDI-CAN-13395 |
Apple |
CVE-2021-30723 |
3.3 |
2021-07-13 |
2021-07-13 |
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-795 |
ZDI-CAN-13394 |
Apple |
CVE-2021-30725 |
7.8 |
2021-07-13 |
2021-07-13 |
Apple macOS ModelIO USD Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-794 |
ZDI-CAN-13345 |
Apple |
CVE-2021-30724 |
7.8 |
2021-07-13 |
2021-07-13 |
Apple macOS CVMServer Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-793 |
ZDI-CAN-13627 |
Apple |
CVE-2021-30701 |
7.8 |
2021-07-13 |
|
Apple macOS vImage PICT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-792 |
ZDI-CAN-13807 |
Apple |
CVE-2021-30701 |
7.8 |
2021-07-13 |
|
Apple macOS vImage PICT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-791 |
ZDI-CAN-13386 |
Apple |
CVE-2021-30746 |
3.3 |
2021-07-13 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-790 |
ZDI-CAN-13596 |
Apple |
CVE-2021-30735 |
7.8 |
2021-07-13 |
|
(Pwn2Own) Apple macOS process_token_VPHAL Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-789 |
ZDI-CAN-13041 |
GoPro |
|
7.8 |
2021-07-13 |
|
(0Day) GoPro Player MOV File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-788 |
ZDI-CAN-12814 |
GoPro |
|
7.8 |
2021-07-13 |
|
(0Day) GoPro Player MOV File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-787 |
ZDI-CAN-12562 |
GoPro |
|
7.8 |
2021-07-13 |
|
(0Day) GoPro Player MOV File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-786 |
ZDI-CAN-12151 |
Trend Micro |
CVE-2021-32463 |
6.1 |
2021-07-13 |
|
Trend Micro Apex One Incorrect Permission Assignment Denial-of-Service Vulnerability |
| ZDI-21-785 |
ZDI-CAN-13232 |
Apple |
CVE-2021-30701 |
7.8 |
2021-07-12 |
|
Apple macOS ImageIO PICT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-784 |
ZDI-CAN-13231 |
Apple |
CVE-2021-30743 |
7.8 |
2021-07-12 |
|
Apple macOS ImageIO PICT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-783 |
ZDI-CAN-13810 |
QNAP |
CVE-2021-28809 |
9.8 |
2021-07-08 |
|
QNAP NAS Hybrid Backup Missing Authentication for Critical Function Remote Code Execution Vulnerability |
| ZDI-21-782 |
ZDI-CAN-13134 |
Phoenix Contact |
CVE-2021-33542 |
7.8 |
2021-07-07 |
|
Phoenix Contact Automationworx BCP File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-781 |
ZDI-CAN-12820 |
Siemens |
CVE-2021-27399 |
7.8 |
2021-07-07 |
|
Siemens Simcenter Femap modfem File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-780 |
ZDI-CAN-12819 |
Siemens |
CVE-2021-27387 |
7.8 |
2021-07-07 |
|
Siemens Simcenter Femap modfem File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-779 |
ZDI-CAN-13039 |
Advantech |
|
9.8 |
2021-07-05 |
2021-07-07 |
(0Day) Advantech WebAccess Node BwFreRPT Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-778 |
ZDI-CAN-13038 |
Advantech |
|
9.8 |
2021-07-05 |
2021-07-07 |
(0Day) Advantech WebAccess Node BwImgExe Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-777 |
ZDI-CAN-12984 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-07-07 |
2022-01-21 |
(0Day) Autodesk Design Review PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-776 |
ZDI-CAN-12954 |
Autodesk |
CVE-2021-40167 |
7.8 |
2021-07-07 |
2022-01-21 |
(0Day) Autodesk Design Review DWF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-775 |
ZDI-CAN-12953 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-07-05 |
2022-01-21 |
(0Day) Autodesk Design Review DWFX File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-774 |
ZDI-CAN-13363 |
Trend Micro |
CVE-2021-32462 |
8.8 |
2021-07-05 |
|
Trend Micro Password Manager Exposed Dangerous Function Remote Code Execution Vulnerability |
| ZDI-21-773 |
ZDI-CAN-13319 |
Trend Micro |
CVE-2021-32461 |
7.0 |
2021-07-05 |
|
Trend Micro Password Manager Integer Truncation Privilege Escalation Vulnerability |
| ZDI-21-772 |
ZDI-CAN-13612 |
Microsoft |
|
7.2 |
2021-07-05 |
|
(Pwn2Own) Microsoft Teams ElectronJS Frame Redirect Remote Code Execution Vulnerability |
| ZDI-21-771 |
ZDI-CAN-13482 |
Microsoft |
|
6.3 |
2021-07-05 |
|
(Pwn2Own) Microsoft Teams amsVideo Cross Site Scripting Vulnerability |
| ZDI-21-770 |
ZDI-CAN-13160 |
Apple |
CVE-2021-30719 |
6.5 |
2021-06-25 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x20006 Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-769 |
ZDI-CAN-13591 |
Apple |
CVE-2021-30734 |
8.8 |
2021-06-25 |
2022-01-03 |
(Pwn2Own) Apple Safari Integer Overflow Remote Code Execution Vulnerability |
| ZDI-21-768 |
ZDI-CAN-12999 |
Apple |
CVE-2021-30743 |
3.3 |
2021-06-25 |
|
Apple macOS ImageIO PCT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-767 |
ZDI-CAN-13243 |
Apple |
CVE-2021-30708 |
3.3 |
2021-06-25 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-766 |
ZDI-CAN-13242 |
Apple |
CVE-2021-30709 |
3.3 |
2021-06-25 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-765 |
ZDI-CAN-12838 |
Apple |
CVE-2021-30707 |
7.8 |
2021-06-25 |
|
Apple macOS AudioToolboxCore RF64 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-764 |
ZDI-CAN-13235 |
Apple |
CVE-2021-30695 |
3.3 |
2021-06-25 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-763 |
ZDI-CAN-13234 |
Apple |
CVE-2021-30693 |
3.3 |
2021-06-25 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-762 |
ZDI-CAN-13233 |
Apple |
CVE-2021-30694 |
3.3 |
2021-06-25 |
2021-06-25 |
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-761 |
ZDI-CAN-12579 |
Apple |
CVE-2021-30749 |
8.8 |
2021-06-25 |
|
Apple WebKit KeyframeEffect Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-760 |
ZDI-CAN-13200 |
Apple |
CVE-2021-30692 |
3.3 |
2021-06-25 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-759 |
ZDI-CAN-13175 |
Apple |
CVE-2021-30691 |
3.3 |
2021-06-25 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-758 |
ZDI-CAN-13172 |
Apple |
CVE-2021-1772 |
7.8 |
2021-06-25 |
2021-06-25 |
Apple macOS CoreText TTF Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-757 |
ZDI-CAN-13118 |
Apple |
CVE-2021-30685 |
3.3 |
2021-06-25 |
|
Apple macOS AudioToolboxCore AAC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-756 |
ZDI-CAN-13013 |
Apple |
CVE-2021-30686 |
7.8 |
2021-06-25 |
|
Apple macOS AudioCodecs LOAS File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-755 |
ZDI-CAN-13349 |
Microsoft |
CVE-2021-26420 |
7.5 |
2021-06-23 |
|
Microsoft SharePoint WorkflowCompilerInternal Exposed Dangerous Function Remote Code Execution Vulnerability |
| ZDI-21-754 |
ZDI-CAN-13068 |
VMware |
CVE-2021-21999 |
7.8 |
2021-06-23 |
|
VMware Workstation Tools Uncontrolled Search Path Element Local Privilege Escalation Vulnerability |
| ZDI-21-753 |
ZDI-CAN-13382 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review TGA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-752 |
ZDI-CAN-13376 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review TGA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-751 |
ZDI-CAN-13373 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review TGA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-750 |
ZDI-CAN-13322 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-749 |
ZDI-CAN-13004 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-748 |
ZDI-CAN-13010 |
Autodesk |
CVE-2021-27033 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Double Free Remote Code Execution Vulnerability |
| ZDI-21-747 |
ZDI-CAN-12913 |
Autodesk |
CVE-2021-27033 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Double Free Remote Code Execution Vulnerability |
| ZDI-21-746 |
ZDI-CAN-13005 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-745 |
ZDI-CAN-12987 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-744 |
ZDI-CAN-12986 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-743 |
ZDI-CAN-12919 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-742 |
ZDI-CAN-13037 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-741 |
ZDI-CAN-12952 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review DWF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-740 |
ZDI-CAN-12951 |
Autodesk |
CVE-2021-27037 |
7.8 |
2021-06-22 |
|
Autodesk Design Review DWF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-739 |
ZDI-CAN-12932 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-738 |
ZDI-CAN-12931 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-737 |
ZDI-CAN-12930 |
Autodesk |
CVE-2021-27035 |
7.8 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-736 |
ZDI-CAN-12929 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-735 |
ZDI-CAN-12928 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-734 |
ZDI-CAN-12927 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-733 |
ZDI-CAN-12926 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-732 |
ZDI-CAN-12889 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-731 |
ZDI-CAN-12888 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-730 |
ZDI-CAN-12887 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-729 |
ZDI-CAN-12886 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-728 |
ZDI-CAN-12885 |
Autodesk |
CVE-2021-27039 |
7.8 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Uninitialized Variable Remote Code Execution Vulnerability |
| ZDI-21-727 |
ZDI-CAN-12884 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-726 |
ZDI-CAN-12883 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-725 |
ZDI-CAN-12882 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-724 |
ZDI-CAN-12881 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-723 |
ZDI-CAN-12880 |
Autodesk |
CVE-2021-27035 |
3.3 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-722 |
ZDI-CAN-12879 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-721 |
ZDI-CAN-12878 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-720 |
ZDI-CAN-12875 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PICT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-719 |
ZDI-CAN-12864 |
Autodesk |
CVE-2021-27037 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-718 |
ZDI-CAN-12795 |
Autodesk |
CVE-2021-27038 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-717 |
ZDI-CAN-12740 |
Autodesk |
CVE-2021-27037 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PNG File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-716 |
ZDI-CAN-12630 |
Autodesk |
CVE-2021-27034 |
7.8 |
2021-06-22 |
|
Autodesk Design Review TIFF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-715 |
ZDI-CAN-12632 |
Autodesk |
CVE-2021-27036 |
7.8 |
2021-06-22 |
|
Autodesk Design Review PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-714 |
ZDI-CAN-12281 |
Autodesk |
CVE-2021-27041 |
7.8 |
2021-06-22 |
|
Autodesk AutoCAD DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-713 |
ZDI-CAN-12181 |
Autodesk |
CVE-2021-27041 |
7.8 |
2021-06-22 |
|
Autodesk AutoCAD DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-712 |
ZDI-CAN-12150 |
Autodesk |
CVE-2021-27040 |
7.8 |
2021-06-22 |
|
Autodesk AutoCAD DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-711 |
ZDI-CAN-12119 |
Autodesk |
CVE-2021-27040 |
7.8 |
2021-06-22 |
|
Autodesk AutoCAD DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-710 |
ZDI-CAN-12118 |
Autodesk |
CVE-2021-27040 |
7.8 |
2021-06-22 |
|
Autodesk AutoCAD DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-709 |
ZDI-CAN-12117 |
Autodesk |
CVE-2021-27040 |
7.8 |
2021-06-22 |
|
Autodesk AutoCAD DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-708 |
ZDI-CAN-12094 |
Autodesk |
CVE-2021-27040 |
3.3 |
2021-06-22 |
|
Autodesk AutoCAD DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-707 |
ZDI-CAN-12077 |
Autodesk |
CVE-2021-27040 |
3.3 |
2021-06-22 |
|
Autodesk AutoCAD DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-706 |
ZDI-CAN-12076 |
Autodesk |
CVE-2021-27040 |
7.8 |
2021-06-22 |
|
Autodesk AutoCAD DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-705 |
ZDI-CAN-13146 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft 3D Builder GLB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-704 |
ZDI-CAN-13053 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft 3D Builder GLTF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-703 |
ZDI-CAN-13087 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft 3D Builder GLB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-702 |
ZDI-CAN-13086 |
Microsoft |
CVE-2021-43208 |
6.6 |
2021-06-17 |
|
(0Day) Microsoft 3D Viewer 3MF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-701 |
ZDI-CAN-13081 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft 3D Builder GLB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-700 |
ZDI-CAN-13079 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft Print 3D OBJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-699 |
ZDI-CAN-13078 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft 3D Builder OBJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-698 |
ZDI-CAN-13052 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft Print 3D PLY File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-697 |
ZDI-CAN-13051 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft 3D Builder PLY File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-696 |
ZDI-CAN-13050 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft Print 3D PLY File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-695 |
ZDI-CAN-13049 |
Microsoft |
|
6.6 |
2021-06-17 |
|
(0Day) Microsoft 3D Builder PLY File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-694 |
ZDI-CAN-13131 |
Siemens |
CVE-2021-27390 |
7.8 |
2021-06-17 |
|
Siemens JT2Go TIFF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-693 |
ZDI-CAN-12128 |
Fortinet |
CVE-2021-26089 |
7.8 |
2021-06-17 |
|
Fortinet FortiClient Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-692 |
ZDI-CAN-13679 |
OpenText |
CVE-2021-31514 |
7.8 |
2021-06-15 |
|
OpenText Brava! Desktop CGM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-691 |
ZDI-CAN-13678 |
OpenText |
CVE-2021-31513 |
7.8 |
2021-06-15 |
|
OpenText Brava! Desktop BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-690 |
ZDI-CAN-13677 |
OpenText |
CVE-2021-31512 |
7.8 |
2021-06-15 |
|
OpenText Brava! Desktop TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-689 |
ZDI-CAN-13676 |
OpenText |
CVE-2021-31511 |
7.8 |
2021-06-15 |
|
OpenText Brava! Desktop PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-688 |
ZDI-CAN-13675 |
OpenText |
CVE-2021-31510 |
7.8 |
2021-06-15 |
|
OpenText Brava! Desktop TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-687 |
ZDI-CAN-13309 |
OpenText |
CVE-2021-31509 |
7.8 |
2021-06-15 |
|
OpenText Brava! Desktop DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-686 |
ZDI-CAN-13306 |
OpenText |
CVE-2021-31508 |
7.8 |
2021-06-15 |
|
OpenText Brava! Desktop DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-685 |
ZDI-CAN-12653 |
OpenText |
CVE-2021-31507 |
7.8 |
2021-06-15 |
|
OpenText Brava! Desktop CGM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-684 |
ZDI-CAN-13080 |
Microsoft |
CVE-2021-31946 |
6.6 |
2021-06-14 |
|
Microsoft Paint 3D STL File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-683 |
ZDI-CAN-12890 |
Arlo |
CVE-2021-31505 |
6.8 |
2021-06-14 |
|
Arlo Q Plus SSH Use of Hard-coded Credentials Privilege Escalation Vulnerability |
| ZDI-21-682 |
ZDI-CAN-12028 |
D-Link |
CVE-2021-34830 |
8.8 |
2021-06-10 |
2021-09-27 |
(0Day) D-Link DAP-1330 HNAP Cookie Header Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-681 |
ZDI-CAN-12065 |
D-Link |
CVE-2021-34829 |
8.8 |
2021-06-10 |
2021-09-27 |
(0Day) D-Link DAP-1330 lighttpd http_parse_request Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-680 |
ZDI-CAN-12066 |
D-Link |
|
8.8 |
2021-06-10 |
|
(0Day) D-Link DAP-1330 lighttpd get_soap_action Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-679 |
ZDI-CAN-12029 |
D-Link |
CVE-2021-34827 |
8.8 |
2021-06-10 |
2021-09-27 |
(0Day) D-Link DAP-1330 HNAP checkValidRequest Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-678 |
ZDI-CAN-13668 |
Vector 35 |
CVE-2021-31515 |
7.8 |
2021-06-10 |
2021-06-29 |
Vector 35 Binary Ninja BNDB File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-677 |
ZDI-CAN-13670 |
Vector 35 |
CVE-2021-31516 |
7.8 |
2021-06-10 |
2021-06-29 |
Vector 35 Binary Ninja BNDB File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-676 |
ZDI-CAN-13663 |
Schneider Electric |
CVE-2021-22761 |
7.8 |
2021-06-10 |
|
Schneider Electric IGSS CGF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-675 |
ZDI-CAN-13657 |
Schneider Electric |
CVE-2021-22762 |
7.8 |
2021-06-10 |
|
Schneider Electric IGSS WSP and CGF File Parsing Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-674 |
ZDI-CAN-13554 |
Schneider Electric |
CVE-2021-22753 |
7.8 |
2021-06-10 |
|
Schneider Electric IGSS WSP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-673 |
ZDI-CAN-12773 |
Schneider Electric |
CVE-2021-22752 |
7.8 |
2021-06-10 |
|
Schneider Electric IGSS WSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-672 |
ZDI-CAN-12772 |
Schneider Electric |
CVE-2021-22750 |
7.8 |
2021-06-10 |
|
Schneider Electric IGSS CGF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-671 |
ZDI-CAN-12872 |
Microsoft |
CVE-2021-31946 |
6.6 |
2021-06-10 |
|
Microsoft Paint 3D GLB File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-670 |
ZDI-CAN-13681 |
Microsoft |
CVE-2021-31939 |
7.8 |
2021-06-10 |
|
Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-669 |
ZDI-CAN-13281 |
Microsoft |
CVE-2021-31941 |
7.8 |
2021-06-10 |
|
Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-668 |
ZDI-CAN-13097 |
Microsoft |
CVE-2021-31954 |
8.8 |
2021-06-10 |
|
Microsoft Windows CLFS Heap-based Buffer Overflow Privilege Escalation Vulnerability |
| ZDI-21-667 |
ZDI-CAN-12873 |
Microsoft |
CVE-2021-31945 |
6.6 |
2021-06-10 |
|
Microsoft Paint 3D GLB File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-666 |
ZDI-CAN-13738 |
Adobe |
CVE-2021-28630 |
3.3 |
2021-06-10 |
|
Adobe Animate FLA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-665 |
ZDI-CAN-13705 |
Adobe |
CVE-2021-28622 |
7.8 |
2021-06-10 |
|
Adobe Animate BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-664 |
ZDI-CAN-13737 |
Adobe |
CVE-2021-28621 |
7.8 |
2021-06-10 |
|
Adobe Animate FLA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-663 |
ZDI-CAN-13471 |
Adobe |
CVE-2021-28632 |
7.8 |
2021-06-10 |
|
Adobe Acrobat Reader DC AcroForm Field Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-662 |
ZDI-CAN-13481 |
Adobe |
CVE-2021-28631 |
7.8 |
2021-06-10 |
|
Adobe Acrobat Reader DC AcroForm Field Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-661 |
ZDI-CAN-13454 |
Adobe |
CVE-2021-28552 |
7.8 |
2021-06-10 |
|
Adobe Acrobat Reader DC XFA Template Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-660 |
ZDI-CAN-13088 |
Adobe |
CVE-2021-28588 |
8.8 |
2021-06-10 |
|
Adobe RoboHelp Server folderId Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-659 |
ZDI-CAN-13168 |
Adobe |
CVE-2021-28554 |
7.8 |
2021-06-10 |
|
Adobe Acrobat Reader DC Path Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-658 |
ZDI-CAN-13048 |
Microsoft |
CVE-2021-31983 |
6.6 |
2021-06-10 |
|
Microsoft Print 3D PLY File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-657 |
ZDI-CAN-13347 |
ISC |
CVE-2021-25216 |
8.1 |
2021-06-07 |
|
ISC BIND TKEY Query Integer Overflow Remote Code Execution Vulnerability |
| ZDI-21-656 |
ZDI-CAN-13141 |
Advantech |
CVE-2021-32932 |
7.5 |
2021-06-07 |
|
Advantech iView NetworkServlet getPSInventoryInfo SQL Injection Information Disclosure Vulnerability |
| ZDI-21-655 |
ZDI-CAN-13137 |
Advantech |
CVE-2021-32932 |
7.5 |
2021-06-07 |
|
Advantech iView NetworkServlet findUpdateDeviceListDetails SQL Injection Information Disclosure Vulnerability |
| ZDI-21-654 |
ZDI-CAN-11846 |
Advantech |
CVE-2021-32932 |
7.5 |
2021-06-07 |
|
Advantech iView deleteZtpConfig SQL Injection Information Disclosure Vulnerability |
| ZDI-21-653 |
ZDI-CAN-11838 |
Advantech |
CVE-2021-32932 |
7.5 |
2021-06-07 |
|
Advantech iView getAllActiveTraps SQL Injection Information Disclosure Vulnerability |
| ZDI-21-652 |
ZDI-CAN-11837 |
Advantech |
CVE-2021-32932 |
7.5 |
2021-06-07 |
|
Advantech iView setDeviceAuthentication SQL Injection Information Disclosure Vulnerability |
| ZDI-21-651 |
ZDI-CAN-11836 |
Advantech |
CVE-2021-32932 |
7.5 |
2021-06-07 |
|
Advantech iView saveZtpConfig SQL Injection Information Disclosure Vulnerability |
| ZDI-21-650 |
ZDI-CAN-11834 |
Advantech |
CVE-2021-32932 |
7.5 |
2021-06-07 |
|
Advantech iView getInventoryReportData SQL Injection Information Disclosure Vulnerability |
| ZDI-21-649 |
ZDI-CAN-11833 |
Advantech |
CVE-2021-32932 |
7.5 |
2021-06-07 |
|
Advantech iView getNextTrapPage SQL Injection Information Disclosure Vulnerability |
| ZDI-21-648 |
ZDI-CAN-11832 |
Advantech |
CVE-2021-32930 |
9.8 |
2021-06-07 |
|
Advantech iView runProViewUpgrade Missing Authentication Remote Code Execution Vulnerability |
| ZDI-21-647 |
ZDI-CAN-13674 |
OpenText |
CVE-2021-31506 |
3.3 |
2021-06-07 |
|
OpenText Brava! Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-646 |
ZDI-CAN-12691 |
OpenText |
CVE-2021-31504 |
7.8 |
2021-06-07 |
|
OpenText Brava! Desktop PDF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-645 |
ZDI-CAN-12690 |
OpenText |
CVE-2021-31503 |
7.8 |
2021-06-07 |
|
OpenText Brava! Desktop IGS File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-644 |
ZDI-CAN-13074 |
Bosch |
CVE-2021-23845 |
8.8 |
2021-06-03 |
2021-06-07 |
Bosch B426 Web Configuration Use of Hard-coded Password Authentication Bypass Vulnerability |
| ZDI-21-643 |
ZDI-CAN-13075 |
Bosch |
CVE-2021-23846 |
8.0 |
2021-06-02 |
2021-06-03 |
Bosch B426 Web Configuration Credential Information Disclosure Vulnerability |
| ZDI-21-642 |
ZDI-CAN-13673 |
OpenText |
CVE-2021-31502 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop PDF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-641 |
ZDI-CAN-13310 |
OpenText |
CVE-2021-31501 |
3.3 |
2021-06-02 |
|
OpenText Brava! Desktop DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-640 |
ZDI-CAN-12746 |
OpenText |
CVE-2021-31500 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-639 |
ZDI-CAN-12745 |
OpenText |
CVE-2021-31499 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-638 |
ZDI-CAN-12744 |
OpenText |
CVE-2021-31498 |
3.3 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-637 |
ZDI-CAN-13311 |
OpenText |
CVE-2021-31497 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWG File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-636 |
ZDI-CAN-13308 |
OpenText |
CVE-2021-31496 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-635 |
ZDI-CAN-13307 |
OpenText |
CVE-2021-31495 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DXF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-634 |
ZDI-CAN-13305 |
OpenText |
CVE-2021-31494 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-633 |
ZDI-CAN-13304 |
OpenText |
CVE-2021-31493 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DXF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-632 |
ZDI-CAN-12720 |
OpenText |
CVE-2021-31492 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-631 |
ZDI-CAN-12719 |
OpenText |
CVE-2021-31491 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-630 |
ZDI-CAN-12718 |
OpenText |
CVE-2021-31490 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-629 |
ZDI-CAN-12717 |
OpenText |
CVE-2021-31489 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-628 |
ZDI-CAN-12716 |
OpenText |
CVE-2021-31488 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-627 |
ZDI-CAN-12715 |
OpenText |
CVE-2021-31487 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-626 |
ZDI-CAN-12712 |
OpenText |
CVE-2021-31486 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-625 |
ZDI-CAN-12711 |
OpenText |
CVE-2021-31485 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-624 |
ZDI-CAN-12710 |
OpenText |
CVE-2021-31484 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-623 |
ZDI-CAN-12709 |
OpenText |
CVE-2021-31483 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-622 |
ZDI-CAN-12708 |
OpenText |
CVE-2021-31482 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop DWF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-621 |
ZDI-CAN-12659 |
OpenText |
CVE-2021-31481 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop SLDPRT File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-620 |
ZDI-CAN-12654 |
OpenText |
CVE-2021-31480 |
7.8 |
2021-06-02 |
2021-06-11 |
OpenText Brava! Desktop dwg2dl Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-619 |
ZDI-CAN-12634 |
OpenText |
CVE-2021-31479 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop pdf2dl Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-618 |
ZDI-CAN-12633 |
OpenText |
CVE-2021-31478 |
7.8 |
2021-06-02 |
|
OpenText Brava! Desktop pdf2dl Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-617 |
ZDI-CAN-12626 |
Apple |
CVE-2021-1838 |
3.3 |
2021-06-02 |
|
Apple macOS ImageIO PICT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-616 |
ZDI-CAN-11852 |
GE |
CVE-2021-31477 |
6.3 |
2021-05-27 |
|
GE Reason RPV311 Use of Hard-coded Credentials Remote Code Execution Vulnerability |
| ZDI-21-615 |
ZDI-CAN-13594 |
Microsoft |
CVE-2021-31209 |
3.5 |
2021-05-26 |
|
(Pwn2Own) Microsoft Exchange Server Missing Check of Message Integrity Vulnerability |
| ZDI-21-614 |
ZDI-CAN-13531 |
Foxit |
CVE-2021-31476 |
7.8 |
2021-05-26 |
|
Foxit PhantomPDF XFA Template Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-613 |
ZDI-CAN-13480 |
Cisco |
|
3.3 |
2021-05-26 |
|
Cisco WebEx Network Recording Player ARF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-612 |
ZDI-CAN-13040 |
Siemens |
CVE-2021-27382 |
7.8 |
2021-05-25 |
|
Siemens Solid Edge Viewer DFT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-611 |
ZDI-CAN-12529 |
Siemens |
CVE-2021-25678 |
7.8 |
2021-05-25 |
2021-05-25 |
Siemens Solid Edge Viewer PAR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-610 |
ZDI-CAN-13026 |
VMware |
CVE-2021-21989 |
6.5 |
2021-05-25 |
|
VMware Workstation ThinPrint TTCHeader Integer Overflow Information Disclosure Vulnerability |
| ZDI-21-609 |
ZDI-CAN-12832 |
VMware |
CVE-2021-21988 |
6.5 |
2021-05-25 |
|
VMware Workstation ThinPrint JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-608 |
ZDI-CAN-12733 |
VMware |
CVE-2021-21987 |
5.6 |
2021-05-25 |
|
VMware Workstation ThinPrint TTCHeader Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-607 |
ZDI-CAN-12460 |
Synology |
CVE-2021-29084 |
7.5 |
2021-05-25 |
|
Synology DiskStation Manager webapi CRLF Injection Information Disclosure Vulnerability |
| ZDI-21-606 |
ZDI-CAN-13590 |
Canonical |
CVE-2021-3490 |
8.8 |
2021-05-25 |
|
(Pwn2Own) Canonical Ubuntu eBPF Out-Of-Bounds Access Privilege Escalation Vulnerability |
| ZDI-21-605 |
ZDI-CAN-12007 |
SolarWinds |
CVE-2021-31475 |
8.8 |
2021-05-21 |
|
SolarWinds Orion Job Scheduler JobRouterService Improper Authorization Remote Code Execution Vulnerability |
| ZDI-21-604 |
ZDI-CAN-11783 |
Dräger |
CVE-2021-28111 |
9.8 |
2021-05-21 |
|
Dräger X-dock Use of Hard-coded Credentials Remote Code Execution Vulnerability |
| ZDI-21-603 |
ZDI-CAN-12346 |
Trend Micro |
CVE-2021-32460 |
7.8 |
2021-05-21 |
|
Trend Micro Maximum Security Improper Access Control Privilege Escalation Vulnerability |
| ZDI-21-602 |
ZDI-CAN-12213 |
SolarWinds |
CVE-2021-31474 |
9.8 |
2021-09-20 |
2022-05-26 |
SolarWinds Network Performance Monitor FromJson Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-601 |
ZDI-CAN-11700 |
Ubiquiti Networks |
CVE-2021-22909 |
7.5 |
2021-05-20 |
|
Ubiquiti Networks EdgeOS Improper Certificate Validation Remote Code Execution Vulnerability |
| ZDI-21-600 |
ZDI-CAN-12776 |
Apple |
CVE-2021-1881 |
4.3 |
2021-05-20 |
2021-05-20 |
Apple macOS libFontParser OTF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-599 |
ZDI-CAN-12775 |
Apple |
CVE-2021-1858 |
4.3 |
2021-05-20 |
2021-05-20 |
Apple macOS KTX Image DecodeRow Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-598 |
ZDI-CAN-12688 |
Apple |
CVE-2021-1814 |
3.3 |
2021-05-20 |
2021-05-20 |
Apple macOS ImageIO DDS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-597 |
ZDI-CAN-12157 |
Apple |
CVE-2021-30745 |
7.8 |
2021-05-20 |
2021-05-20 |
Apple macOS QuartzCore Type Confusion Privilege Escalation Vulnerability |
| ZDI-21-596 |
ZDI-CAN-12195 |
Apple |
CVE-2021-1834 |
7.8 |
2021-05-20 |
2021-05-20 |
Apple macOS AppleIntelKBLGraphics IOCTL 0x30002 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-595 |
ZDI-CAN-12196 |
Apple |
CVE-2021-1834 |
7.8 |
2021-05-20 |
2021-05-20 |
Apple macOS AppleIntelKBLGraphics IOCTL 0x30005 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-594 |
ZDI-CAN-12334 |
Microsoft |
|
7.8 |
2021-05-18 |
|
(0Day) Microsoft Windows JET Database Engine Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-593 |
ZDI-CAN-11786 |
Advantech |
CVE-2021-22667 |
9.8 |
2021-05-25 |
2021-05-25 |
Advantech BB-ESWGP506-2SFP-T Use of Hard-coded Credentials Remote Code Execution Vulnerability |
| ZDI-21-592 |
ZDI-CAN-12891 |
QNAP |
CVE-2020-36198 |
6.7 |
2021-05-14 |
|
QNAP NAS Malware Remover Command Injection Privilege Escalation Vulnerability |
| ZDI-21-591 |
ZDI-CAN-12048 |
QNAP |
CVE-2020-36197 |
7.1 |
2021-05-14 |
|
QNAP NAS MusicStation Directory Traversal Arbitrary File Creation Vulnerability |
| ZDI-21-590 |
ZDI-CAN-13586 |
Canonical |
CVE-2021-3489 |
8.8 |
2021-05-14 |
|
(Pwn2Own) Canonical Ubuntu eBPF Out-Of-Bounds Access Privilege Escalation Vulnerability |
| ZDI-21-589 |
ZDI-CAN-13546 |
Canonical |
CVE-2021-3491 |
8.8 |
2021-05-13 |
|
(Pwn2Own) Canonical Ubuntu io_uring Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-588 |
ZDI-CAN-11845 |
Omron |
CVE-2021-27413 |
7.8 |
2021-05-13 |
|
Omron CX-One CX-Position NCI File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-587 |
ZDI-CAN-13526 |
Adobe |
CVE-2021-28587 |
3.3 |
2021-05-13 |
|
Adobe After Effects TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-586 |
ZDI-CAN-13524 |
Adobe |
CVE-2021-28586 |
7.8 |
2021-05-13 |
|
Adobe After Effects PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-585 |
ZDI-CAN-12752 |
Adobe |
CVE-2021-21090 |
7.8 |
2021-05-13 |
|
Adobe InCopy DOCX File Parsing Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-584 |
ZDI-CAN-12542 |
Adobe |
CVE-2021-21102 |
7.8 |
2021-05-13 |
|
Adobe Illustrator DOCX File Parsing Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-583 |
ZDI-CAN-12405 |
Adobe |
CVE-2021-21099 |
7.8 |
2021-05-13 |
|
Adobe InDesign PCX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-582 |
ZDI-CAN-12510 |
Adobe |
CVE-2021-21098 |
7.8 |
2021-05-13 |
|
Adobe InDesign PCX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-581 |
ZDI-CAN-12458 |
Adobe |
CVE-2021-21101 |
7.8 |
2021-05-13 |
|
Adobe Illustrator TTF Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-580 |
ZDI-CAN-13497 |
Microsoft |
CVE-2021-31175 |
7.8 |
2021-05-13 |
|
Microsoft Office Graph Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-579 |
ZDI-CAN-13237 |
Microsoft |
CVE-2021-28465 |
6.6 |
2021-05-13 |
|
Microsoft Windows Groove Music FLAC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-578 |
ZDI-CAN-13321 |
Microsoft |
CVE-2021-31170 |
8.8 |
2021-05-13 |
|
Microsoft Windows win32kfull Palette Use-After-Free Privilege Escalation Vulnerability |
| ZDI-21-577 |
ZDI-CAN-13320 |
Microsoft |
CVE-2021-31188 |
6.5 |
2021-05-13 |
|
Microsoft Windows win32kfull Font Entry Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-576 |
ZDI-CAN-12935 |
Microsoft |
CVE-2021-31177 |
7.8 |
2021-05-13 |
|
Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-575 |
ZDI-CAN-12934 |
Microsoft |
CVE-2021-31176 |
7.8 |
2021-05-13 |
|
Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-574 |
ZDI-CAN-12949 |
Microsoft |
CVE-2021-28474 |
8.8 |
2021-05-13 |
|
Microsoft SharePoint Server-Side Control Interpretation Conflict Remote Code Execution Vulnerability |
| ZDI-21-573 |
ZDI-CAN-12948 |
Microsoft |
CVE-2021-31181 |
8.8 |
2021-05-13 |
|
Microsoft SharePoint WebPart Interpretation Conflict Remote Code Execution Vulnerability |
| ZDI-21-572 |
ZDI-CAN-12806 |
Microsoft |
CVE-2021-28465 |
6.6 |
2021-05-13 |
|
Microsoft Windows Groove Music FLAC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-571 |
ZDI-CAN-12792 |
Microsoft |
CVE-2021-31187 |
7.8 |
2021-05-13 |
|
Microsoft Windows WalletService Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-570 |
ZDI-CAN-13290 |
Siemens |
CVE-2021-27398 |
7.8 |
2021-05-13 |
|
Siemens Tecnomatix Plant Simulation SPP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-569 |
ZDI-CAN-13287 |
Siemens |
CVE-2021-27397 |
7.8 |
2021-05-13 |
|
Siemens Tecnomatix Plant Simulation SPP File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-568 |
ZDI-CAN-13279 |
Siemens |
CVE-2021-27396 |
7.8 |
2021-05-13 |
|
Siemens Tecnomatix Plant Simulation SPP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-567 |
ZDI-CAN-11952 |
Siemens |
CVE-2021-27492 |
5.5 |
2021-05-12 |
|
(0Day) Siemens Solid Edge Viewer 3DXML File Parsing XML External Entity Processing Information Disclosure Vulnerability |
| ZDI-21-566 |
ZDI-CAN-12084 |
Siemens |
CVE-2021-27490 |
7.8 |
2021-05-12 |
|
(0Day) Siemens Solid Edge Viewer JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-565 |
ZDI-CAN-11962 |
Siemens |
CVE-2021-27496 |
7.8 |
2021-05-12 |
|
(0Day) Siemens Solid Edge Viewer PRT File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-564 |
ZDI-CAN-11953 |
Siemens |
CVE-2021-27494 |
7.8 |
2021-05-12 |
|
(0Day) Siemens Solid Edge Viewer STP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-563 |
ZDI-CAN-11950 |
Siemens |
CVE-2021-27488 |
7.8 |
2021-05-12 |
|
(0Day) Siemens Solid Edge Viewer CATPart File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-562 |
ZDI-CAN-12714 |
Schneider Electric |
CVE-2021-22716 |
7.8 |
2021-05-11 |
|
Schneider Electric C-Bus Toolkit Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-561 |
ZDI-CAN-13523 |
Foxit |
CVE-2021-31473 |
7.8 |
2021-05-11 |
|
Foxit Reader browseForDoc Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-560 |
ZDI-CAN-11800 |
Cisco |
CVE-2021-1415 |
5.5 |
2021-05-11 |
|
Cisco RV340 set_snmp usmUserEngineID Command Injection Remote Code Execution Vulnerability |
| ZDI-21-559 |
ZDI-CAN-11798 |
Cisco |
CVE-2021-1414 |
5.5 |
2021-05-11 |
|
Cisco RV340 set_snmp usmUserPrivKey Command Injection Remote Code Execution Vulnerability |
| ZDI-21-558 |
ZDI-CAN-11797 |
Cisco |
CVE-2021-1413 |
5.5 |
2021-05-11 |
|
Cisco RV340 set_snmp usmUserAuthKey Command Injection Remote Code Execution Vulnerability |
| ZDI-21-557 |
ZDI-CAN-13620 |
Foxit |
CVE-2021-31468 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-556 |
ZDI-CAN-13621 |
Foxit |
CVE-2021-31467 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-555 |
ZDI-CAN-13583 |
Foxit |
CVE-2021-31466 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-554 |
ZDI-CAN-13582 |
Foxit |
CVE-2021-31465 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-553 |
ZDI-CAN-13574 |
Foxit |
CVE-2021-31464 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-552 |
ZDI-CAN-13573 |
Foxit |
CVE-2021-31463 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-551 |
ZDI-CAN-13572 |
Foxit |
CVE-2021-31462 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-550 |
ZDI-CAN-13333 |
Foxit |
CVE-2021-31461 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader app.media Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-549 |
ZDI-CAN-13096 |
Foxit |
CVE-2021-31460 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader XFA Template Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-548 |
ZDI-CAN-13162 |
Foxit |
CVE-2021-31459 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-547 |
ZDI-CAN-13150 |
Foxit |
CVE-2021-31458 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-546 |
ZDI-CAN-13147 |
Foxit |
CVE-2021-31457 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-545 |
ZDI-CAN-13102 |
Foxit |
CVE-2021-31456 |
7.8 |
2021-05-07 |
2021-06-29 |
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-544 |
ZDI-CAN-13100 |
Foxit |
CVE-2021-31455 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-543 |
ZDI-CAN-13095 |
Foxit |
CVE-2021-31454 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader XFA leadDigits Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-542 |
ZDI-CAN-13092 |
Foxit |
CVE-2021-31453 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader XFA relayout Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-541 |
ZDI-CAN-13091 |
Foxit |
CVE-2021-31452 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader XFA Form Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-540 |
ZDI-CAN-13089 |
Foxit |
CVE-2021-31451 |
7.8 |
2021-05-07 |
2021-06-29 |
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-539 |
ZDI-CAN-13084 |
Foxit |
CVE-2021-31450 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-538 |
ZDI-CAN-13280 |
Foxit |
CVE-2021-31449 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Double Free Remote Code Execution Vulnerability |
| ZDI-21-537 |
ZDI-CAN-13273 |
Foxit |
CVE-2021-31448 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-536 |
ZDI-CAN-13269 |
Foxit |
CVE-2021-31447 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-535 |
ZDI-CAN-13245 |
Foxit |
CVE-2021-31446 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-534 |
ZDI-CAN-13244 |
Foxit |
CVE-2021-31445 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-533 |
ZDI-CAN-13241 |
Foxit |
CVE-2021-31444 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-532 |
ZDI-CAN-13240 |
Foxit |
CVE-2021-31443 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-531 |
ZDI-CAN-13239 |
Foxit |
CVE-2021-31442 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-530 |
ZDI-CAN-13101 |
Foxit |
CVE-2021-31441 |
7.8 |
2021-05-07 |
2021-06-29 |
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-529 |
ZDI-CAN-13011 |
Foxit |
CVE-2021-31472 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-528 |
ZDI-CAN-12955 |
Foxit |
CVE-2021-31471 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-527 |
ZDI-CAN-12947 |
Foxit |
CVE-2021-31470 |
7.8 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-526 |
ZDI-CAN-12936 |
Foxit |
CVE-2021-31469 |
3.3 |
2021-05-07 |
2021-05-07 |
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-525 |
ZDI-CAN-12023 |
Trend Micro |
CVE-2021-31520 |
7.3 |
2021-05-07 |
|
Trend Micro IM Security Weak Session Token Authentication Bypass Vulnerability |
| ZDI-21-524 |
ZDI-CAN-12977 |
Delta Industrial Automation |
CVE-2021-22672 |
7.8 |
2021-05-07 |
|
Delta Industrial Automation CNCSoft ScreenEditor DPB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-523 |
ZDI-CAN-12595 |
Esri |
|
3.3 |
2021-05-06 |
|
(0Day) Esri ArcReader PMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-522 |
ZDI-CAN-12580 |
Esri |
|
3.3 |
2021-05-06 |
|
(0Day) Esri ArcReader PMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-521 |
ZDI-CAN-12524 |
Esri |
|
3.3 |
2021-05-06 |
|
(0Day) Esri ArcReader PMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-520 |
ZDI-CAN-12502 |
Esri |
|
3.3 |
2021-05-06 |
|
(0Day) Esri ArcReader PMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-519 |
ZDI-CAN-12646 |
Delta Industrial Automation |
|
3.3 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-518 |
ZDI-CAN-12342 |
Delta Industrial Automation |
|
3.3 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-517 |
ZDI-CAN-12647 |
Delta Industrial Automation |
|
7.8 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-516 |
ZDI-CAN-12335 |
Delta Industrial Automation |
|
3.3 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-515 |
ZDI-CAN-12341 |
Delta Industrial Automation |
|
3.3 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-514 |
ZDI-CAN-12340 |
Delta Industrial Automation |
|
3.3 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-513 |
ZDI-CAN-12339 |
Delta Industrial Automation |
|
3.3 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-512 |
ZDI-CAN-12338 |
Delta Industrial Automation |
|
3.3 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-511 |
ZDI-CAN-12337 |
Delta Industrial Automation |
|
3.3 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-510 |
ZDI-CAN-12336 |
Delta Industrial Automation |
|
3.3 |
2021-05-06 |
|
(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-509 |
ZDI-CAN-12412 |
Delta Industrial Automation |
CVE-2021-22660 |
7.8 |
2021-05-06 |
|
Delta Industrial Automation CNCSoft-B DOPSoft DPA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-508 |
ZDI-CAN-12152 |
Microsoft |
|
4.5 |
2021-05-05 |
|
Microsoft Windows Raw Image Extension 3FR File Parsing Integer Underflow Remote Code Execution Vulnerability |
| ZDI-21-507 |
ZDI-CAN-12594 |
Microsoft |
CVE-2021-27054 |
7.8 |
2021-05-05 |
|
Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-506 |
ZDI-CAN-12635 |
Microsoft |
|
5.3 |
2021-05-04 |
|
Microsoft Windows Raw Image Extension X3F File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-505 |
ZDI-CAN-12462 |
Esri |
CVE-2021-29100 |
7.8 |
2021-05-03 |
|
Esri ArcGIS Earth KMZ File Parsing Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-504 |
ZDI-CAN-12781 |
Microsoft |
CVE-2021-1648 |
7.8 |
2021-05-03 |
|
Microsoft Windows splwow64 Out-Of-Bounds Read Privilege Escalation Vulnerability |
| ZDI-21-503 |
ZDI-CAN-13661 |
Linux |
CVE-2021-31440 |
8.8 |
2021-05-03 |
|
Linux Kernel eBPF Improper Input Validation Privilege Escalation Vulnerability |
| ZDI-21-502 |
ZDI-CAN-13506 |
ISC |
|
3.7 |
2021-04-30 |
|
ISC BIND TKEY Query Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-501 |
ZDI-CAN-12577 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-29 |
|
Microsoft Windows win32kfull MulDrawStream Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-500 |
ZDI-CAN-12575 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-29 |
|
Microsoft Windows win32kfull MulTransparentBlt Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-499 |
ZDI-CAN-12574 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-29 |
|
Microsoft Windows win32kfull MulStretchBlt Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-498 |
ZDI-CAN-12573 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-29 |
|
Microsoft Windows win32kfull MulFillPath Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-497 |
ZDI-CAN-12572 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-29 |
|
Microsoft Windows win32kfull MulAlphaBlend Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-496 |
ZDI-CAN-12571 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-29 |
|
Microsoft Windows win32kfull MulLineTo Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-495 |
ZDI-CAN-12570 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-29 |
|
Microsoft Windows win32kfull MulTextOut Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-494 |
ZDI-CAN-12569 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-29 |
|
Microsoft Windows win32kfull MulStrokeAndFillPath Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-493 |
ZDI-CAN-12511 |
Microsoft |
CVE-2021-1640 |
6.1 |
2021-04-29 |
|
Microsoft Windows Print Spooler Time-Of-Check Time-Of-Use Denial-of-Service Vulnerability |
| ZDI-21-492 |
ZDI-CAN-12326 |
Synology |
CVE-2021-31439 |
8.8 |
2021-04-29 |
2021-05-24 |
Synology DiskStation Manager Netatalk dsi_doff Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-491 |
ZDI-CAN-12101 |
Apache |
CVE-2021-30638 |
7.5 |
2021-04-29 |
|
Apache Tapestry ContextAssetRequestHandler Incorrect Authorization Information Disclosure Vulnerability |
| ZDI-21-490 |
ZDI-CAN-12276 |
Advantech |
CVE-2021-33000 |
7.8 |
2021-04-28 |
|
(0Day) Advantech WebAccess/HMI Designer PM3 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-489 |
ZDI-CAN-12274 |
Advantech |
CVE-2021-33004 |
7.8 |
2021-06-24 |
|
(0Day) Advantech WebAccess/HMI Designer PM3 File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-488 |
ZDI-CAN-12272 |
Advantech |
CVE-2021-33002 |
7.8 |
2021-06-24 |
|
(0Day) Advantech WebAccess/HMI Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-487 |
ZDI-CAN-12099 |
Advantech |
CVE-2021-33000 |
7.8 |
2021-06-24 |
|
(0Day) Advantech WebAccess/HMI Designer PM3 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-486 |
ZDI-CAN-11959 |
Apple |
CVE-2020-27897 |
7.8 |
2021-04-28 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10003 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-485 |
ZDI-CAN-11915 |
Siemens |
CVE-2021-31784 |
7.8 |
2021-04-28 |
|
(0Day) Siemens JT2Go DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-484 |
ZDI-CAN-13568 |
Oracle |
CVE-2021-2250 |
7.5 |
2021-04-28 |
|
(Pwn2Own) Oracle VirtualBox SLiRP Networking Heap-based Overflow Privilege Escalation Vulnerability |
| ZDI-21-483 |
ZDI-CAN-13545 |
Oracle |
CVE-2021-2321 |
5.3 |
2021-04-28 |
|
(Pwn2Own) Oracle VirtualBox e1000 Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-482 |
ZDI-CAN-12576 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-28 |
|
Microsoft Windows win32kfull MulStrokePath Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-481 |
ZDI-CAN-12443 |
Foxit |
CVE-2021-31438 |
7.8 |
2021-04-26 |
|
Foxit Studio Photo PSP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-480 |
ZDI-CAN-12384 |
Foxit |
CVE-2021-31437 |
7.8 |
2021-04-26 |
|
Foxit Studio Photo JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-479 |
ZDI-CAN-12376 |
Foxit |
CVE-2021-31436 |
7.8 |
2021-04-26 |
|
Foxit Studio Photo SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-478 |
ZDI-CAN-12331 |
Foxit |
CVE-2021-31435 |
7.8 |
2021-04-26 |
|
Foxit Studio Photo CMP File Parsing Uninitialized Variable Remote Code Execution Vulnerability |
| ZDI-21-477 |
ZDI-CAN-12377 |
Foxit |
CVE-2021-31434 |
7.8 |
2021-04-26 |
|
Foxit Studio Photo JPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-476 |
ZDI-CAN-12333 |
Foxit |
CVE-2021-31433 |
7.8 |
2021-04-26 |
|
Foxit Studio Photo ARW File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-475 |
ZDI-CAN-12553 |
Trend Micro |
CVE-2021-31519 |
7.3 |
2021-04-23 |
|
Trend Micro HouseCall for Home Networks Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-474 |
ZDI-CAN-12552 |
Trend Micro |
CVE-2021-28649 |
7.3 |
2021-04-23 |
|
Trend Micro HouseCall for Home Networks Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-473 |
ZDI-CAN-12615 |
Autodesk |
CVE-2021-27027 |
3.3 |
2021-04-23 |
|
Autodesk FBX Review FBX File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-472 |
ZDI-CAN-12613 |
Autodesk |
CVE-2021-27027 |
3.3 |
2021-04-23 |
|
Autodesk FBX Review FBX File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-471 |
ZDI-CAN-12200 |
Autodesk |
CVE-2021-27027 |
7.8 |
2021-04-23 |
|
Autodesk FBX Review FBX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-470 |
ZDI-CAN-12199 |
Autodesk |
CVE-2021-27027 |
7.8 |
2021-04-23 |
|
Autodesk FBX Review FBX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-469 |
ZDI-CAN-12201 |
Autodesk |
CVE-2021-27027 |
7.8 |
2021-04-23 |
|
Autodesk FBX Review FBX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-468 |
ZDI-CAN-12242 |
Autodesk |
CVE-2021-27031 |
7.8 |
2021-04-23 |
|
Autodesk FBX Review FBX File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-467 |
ZDI-CAN-12241 |
Autodesk |
CVE-2021-27028 |
7.8 |
2021-04-23 |
|
Autodesk FBX Review FBX File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-466 |
ZDI-CAN-12229 |
Autodesk |
CVE-2021-27030 |
7.8 |
2021-04-23 |
|
Autodesk FBX Review ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-465 |
ZDI-CAN-12212 |
Autodesk |
CVE-2021-27028 |
7.8 |
2021-04-23 |
|
Autodesk FBX Review FBX File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-464 |
ZDI-CAN-12211 |
Autodesk |
CVE-2021-27029 |
7.8 |
2021-04-23 |
|
Autodesk FBX Review FBX File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-463 |
ZDI-CAN-12549 |
X.Org |
CVE-2021-3472 |
7.8 |
2021-04-22 |
|
X.Org Server XChangeFeedbackControl Integer Underflow Privilege Escalation Vulnerability |
| ZDI-21-462 |
ZDI-CAN-12855 |
Oracle |
CVE-2021-2297 |
5.3 |
2021-04-22 |
|
Oracle VirtualBox LsiLogicSCSI Time-Of-Check Time-Of-Use Information Disclosure Vulnerability |
| ZDI-21-461 |
ZDI-CAN-12761 |
Oracle |
CVE-2021-2309 |
7.5 |
2021-04-22 |
|
Oracle VirtualBox VMSVGA Heap-based Buffer Overflow Privilege Escalation Vulnerability |
| ZDI-21-460 |
ZDI-CAN-12609 |
Oracle |
CVE-2021-2302 |
9.8 |
2021-04-22 |
|
Oracle Business Intelligence T3 Protocol Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-459 |
ZDI-CAN-12854 |
Oracle |
CVE-2021-2296 |
5.3 |
2021-04-22 |
|
Oracle VirtualBox LsiLogicSCSI Race Condition Information Disclosure Vulnerability |
| ZDI-21-458 |
ZDI-CAN-12564 |
Oracle |
CVE-2021-2303 |
4.9 |
2021-04-22 |
|
Oracle OSS Support Tools Diagnostic Assistant XML External Entity Processing Information Disclosure Vulnerability |
| ZDI-21-457 |
ZDI-CAN-12621 |
Oracle |
CVE-2021-2291 |
5.5 |
2021-04-22 |
|
Oracle VirtualBox VGA Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-456 |
ZDI-CAN-13428 |
Oracle |
CVE-2021-2310 |
7.5 |
2021-04-22 |
|
Oracle VirtualBox NAT Heap-based Buffer Overflow Privilege Escalation Vulnerability |
| ZDI-21-455 |
ZDI-CAN-13473 |
Oracle |
CVE-2021-2145 |
7.5 |
2021-04-22 |
|
Oracle VirtualBox NAT Integer Underflow Privilege Escalation Vulnerability |
| ZDI-21-454 |
ZDI-CAN-12492 |
Oracle |
CVE-2021-2211 |
4.9 |
2021-04-22 |
|
Oracle WebLogic Server T3 Protocol Deserialization of Untrusted Data Information Disclosure Vulnerability |
| ZDI-21-453 |
ZDI-CAN-12407 |
Oracle |
CVE-2021-2279 |
8.1 |
2021-04-22 |
|
Oracle VirtualBox VRDP Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-452 |
ZDI-CAN-11709 |
Oracle |
CVE-2021-2244 |
9.8 |
2021-04-22 |
2021-06-29 |
Oracle Business Intelligence APSWebModule Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-451 |
ZDI-CAN-13464 |
Oracle |
CVE-2021-2266 |
6.0 |
2021-04-22 |
|
Oracle VirtualBox VMSVGA Numeric Truncation Information Disclosure Vulnerability |
| ZDI-21-450 |
ZDI-CAN-12604 |
Schneider Electric |
CVE-2021-22720 |
6.5 |
2021-04-22 |
2023-09-20 |
Schneider Electric C-Bus Toolkit PROJECT RESTORE Directory Traversal Information Disclosure Vulnerability |
| ZDI-21-449 |
ZDI-CAN-12590 |
Schneider Electric |
CVE-2021-22719 |
8.8 |
2021-04-22 |
2023-09-20 |
Schneider Electric C-Bus Toolkit FILE UPLOAD Unrestricted File Upload Remote Code Execution Vulnerability |
| ZDI-21-448 |
ZDI-CAN-12589 |
Schneider Electric |
CVE-2021-22718 |
7.8 |
2021-04-22 |
2023-09-20 |
Schneider Electric C-Bus Toolkit CBZ File Parsing Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-447 |
ZDI-CAN-12586 |
Schneider Electric |
CVE-2021-22717 |
8.8 |
2021-04-22 |
2023-09-20 |
Schneider Electric C-Bus Toolkit ACCESS SAVE Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-446 |
ZDI-CAN-12656 |
Delta Industrial Automation |
CVE-2021-22660 |
7.8 |
2021-04-22 |
|
Delta Industrial Automation CNCSoft-B DOPSoft DPA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-445 |
ZDI-CAN-12413 |
Delta Industrial Automation |
CVE-2021-22660 |
7.8 |
2021-04-22 |
|
Delta Industrial Automation CNCSoft-B DOPSoft DPA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-444 |
ZDI-CAN-12418 |
Delta Industrial Automation |
CVE-2021-22664 |
7.8 |
2021-04-22 |
|
Delta Industrial Automation CNCSoft-B DOPSoft DPA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-443 |
ZDI-CAN-12419 |
Delta Industrial Automation |
CVE-2021-22668 |
7.8 |
2021-04-22 |
|
Delta Industrial Automation CNCSoft ScreenEditor DPB File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-442 |
ZDI-CAN-12477 |
Advantech |
CVE-2021-33004 |
7.8 |
2021-06-24 |
|
(0Day) Advantech WebAccess/HMI Designer SNF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-441 |
ZDI-CAN-12280 |
Advantech |
CVE-2021-33004 |
7.8 |
2021-04-27 |
2021-06-23 |
(0Day) Advantech WebAccess/HMI Designer PLF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-440 |
ZDI-CAN-13190 |
Parallels |
CVE-2021-31432 |
6.0 |
2021-04-21 |
|
Parallels Desktop IDE Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-439 |
ZDI-CAN-13189 |
Parallels |
CVE-2021-31431 |
6.0 |
2021-04-21 |
|
Parallels Desktop IDE Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-438 |
ZDI-CAN-13188 |
Parallels |
CVE-2021-31430 |
6.0 |
2021-04-21 |
|
Parallels Desktop IDE Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-437 |
ZDI-CAN-13187 |
Parallels |
CVE-2021-31429 |
8.2 |
2021-04-21 |
|
Parallels Desktop IDE Heap-based Buffer Overflow Privilege Escalation Vulnerability |
| ZDI-21-436 |
ZDI-CAN-13186 |
Parallels |
CVE-2021-31428 |
8.2 |
2021-04-21 |
|
Parallels Desktop IDE Heap-based Buffer Overflow Privilege Escalation Vulnerability |
| ZDI-21-435 |
ZDI-CAN-13082 |
Parallels |
CVE-2021-31427 |
7.3 |
2021-04-21 |
|
Parallels Desktop OTG Time-Of-Check Time-Of-Use Information Disclosure Vulnerability |
| ZDI-21-434 |
ZDI-CAN-12848 |
Parallels |
CVE-2021-31424 |
8.8 |
2021-04-21 |
|
Parallels Desktop OTG Heap-based Buffer Overflow Privilege Escalation Vulnerability |
| ZDI-21-433 |
ZDI-CAN-12791 |
Parallels |
CVE-2021-31426 |
8.8 |
2021-04-21 |
|
Parallels Desktop Tools Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-432 |
ZDI-CAN-12790 |
Parallels |
CVE-2021-31425 |
8.8 |
2021-04-21 |
|
Parallels Desktop Tools Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-431 |
ZDI-CAN-12528 |
Parallels |
CVE-2021-31423 |
6.0 |
2021-04-21 |
2024-02-07 |
Parallels Desktop Toolgate Uninitialized Memory Information Disclosure Vulnerability |
| ZDI-21-430 |
ZDI-CAN-12527 |
Parallels |
CVE-2021-31422 |
7.5 |
2021-04-21 |
2024-02-07 |
Parallels Desktop e1000e Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability |
| ZDI-21-429 |
ZDI-CAN-12221 |
Parallels |
CVE-2021-31418 |
6.5 |
2021-04-21 |
2021-06-29 |
Parallels Desktop Toolgate Uninitialized Memory Information Disclosure Vulnerability |
| ZDI-21-428 |
ZDI-CAN-12220 |
Parallels |
CVE-2021-31420 |
8.8 |
2021-04-21 |
2021-06-29 |
Parallels Desktop Toolgate Stack-based Buffer Overflow Privilege Escalation Vulnerability |
| ZDI-21-427 |
ZDI-CAN-12136 |
Parallels |
CVE-2021-31419 |
6.5 |
2021-04-21 |
|
Parallels Desktop Toolgate Uninitialized Memory Information Disclosure Vulnerability |
| ZDI-21-426 |
ZDI-CAN-12131 |
Parallels |
CVE-2021-31417 |
6.5 |
2021-04-21 |
|
Parallels Desktop Toolgate Uninitialized Memory Information Disclosure Vulnerability |
| ZDI-21-425 |
ZDI-CAN-12129 |
Parallels |
CVE-2021-31421 |
3.2 |
2021-04-21 |
2021-06-29 |
Parallels Desktop Toolgate Directory Traversal Arbitrary File Deletion Vulnerability |
| ZDI-21-424 |
ZDI-CAN-12445 |
Microsoft |
CVE-2021-28326 |
6.1 |
2021-04-21 |
|
Microsoft Windows AppX Deployment Service Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-423 |
ZDI-CAN-12701 |
Microsoft |
CVE-2021-28453 |
7.8 |
2021-04-21 |
|
Microsoft Word DOC File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-422 |
ZDI-CAN-13562 |
Canonical |
CVE-2021-3492 |
8.8 |
2021-04-21 |
|
(Pwn2Own) Canonical Ubuntu ShiftFS File System Double Free Privilege Escalation Vulnerability |
| ZDI-21-421 |
ZDI-CAN-12472 |
Microsoft |
CVE-2021-28468 |
7.8 |
2021-04-19 |
|
Microsoft Windows Raw Image Extension CR3 File Parsing Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-420 |
ZDI-CAN-12217 |
Trend Micro |
CVE-2021-28648 |
7.8 |
2021-04-15 |
|
Trend Micro Antivirus for Mac Improper Access Control Privilege Escalation Vulnerability |
| ZDI-21-419 |
ZDI-CAN-12608 |
Siemens |
CVE-2021-25670 |
7.8 |
2021-04-15 |
|
Siemens RobotExpert CELL File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-418 |
ZDI-CAN-12536 |
Adobe |
CVE-2021-21095 |
7.8 |
2021-04-15 |
|
Adobe Bridge TTF Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-417 |
ZDI-CAN-12735 |
Adobe |
CVE-2021-21096 |
6.1 |
2021-04-15 |
|
Adobe Bridge Genuine Software Service Incorrect Permission Assignment Denial-of-Service Vulnerability |
| ZDI-21-416 |
ZDI-CAN-12539 |
Adobe |
CVE-2021-21094 |
7.8 |
2021-04-15 |
|
Adobe Bridge PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-415 |
ZDI-CAN-12475 |
Adobe |
CVE-2021-21092 |
7.8 |
2021-04-15 |
|
Adobe Bridge DCM File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-414 |
ZDI-CAN-12474 |
Adobe |
CVE-2021-21093 |
7.8 |
2021-04-15 |
|
Adobe Bridge SGI File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-413 |
ZDI-CAN-12391 |
Adobe |
CVE-2021-21091 |
3.3 |
2021-04-15 |
|
Adobe Bridge HEIC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-412 |
ZDI-CAN-12130 |
Parallels |
CVE-2021-27278 |
8.2 |
2021-04-15 |
|
Parallels Desktop Toolgate Directory Traversal Privilege Escalation Vulnerability |
| ZDI-21-411 |
ZDI-CAN-13569 |
Google |
CVE-2021-21220 |
8.8 |
2021-04-15 |
2024-01-08 |
(Pwn2Own) Google Chromium V8 XOR Typer Mismatch Out-Of-Bounds Access Remote Code Execution Vulnerability |
| ZDI-21-410 |
ZDI-CAN-12703 |
Microsoft |
CVE-2021-28454 |
7.8 |
2021-04-15 |
|
Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-409 |
ZDI-CAN-12403 |
Microsoft |
CVE-2021-26415 |
7.3 |
2021-04-15 |
|
Microsoft Windows Installer Service Untrusted File Path Arbitrary File Write Vulnerability |
| ZDI-21-408 |
ZDI-CAN-12349 |
Samsung |
|
5.5 |
2021-04-13 |
|
(0Day) (Pwn2Own) Samsung Q60T TV Internet Browser Type-Confusion Remote Code Execution Vulnerability |
| ZDI-21-407 |
ZDI-CAN-12057 |
Samsung |
|
5.5 |
2021-04-13 |
|
(0Day) (Pwn2Own) Samsung Q60T TV Internet Browser Intermediate Representation Opcode Type-Confusion Remote Code Execution Vulnerability |
| ZDI-21-406 |
ZDI-CAN-13047 |
Microsoft |
|
6.6 |
2021-04-13 |
|
(0Day) Microsoft 3D Builder PLY File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-405 |
ZDI-CAN-12876 |
Microsoft |
|
6.6 |
2021-04-13 |
|
(0Day) Microsoft Print 3D PLY File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-404 |
ZDI-CAN-11919 |
Siemens |
CVE-2020-26997 |
7.8 |
2021-04-13 |
|
(0Day) Siemens Solid Edge Viewer PAR File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-403 |
ZDI-CAN-12568 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-04-12 |
|
Microsoft Windows win32kfull MulGradientFill Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-402 |
ZDI-CAN-12147 |
Trend Micro |
CVE-2021-28645 |
7.8 |
2021-04-12 |
|
Trend Micro Apex One Incorrect Permission Assignment Privilege Escalation Vulnerability |
| ZDI-21-401 |
ZDI-CAN-12148 |
Trend Micro |
CVE-2021-25253 |
7.8 |
2021-04-12 |
|
Trend Micro Apex One Improper Access Control Privilege Escalation Vulnerability |
| ZDI-21-400 |
ZDI-CAN-11951 |
Trend Micro |
CVE-2021-25250 |
7.8 |
2021-04-12 |
|
Trend Micro Apex One Improper Access Control Privilege Escalation Vulnerability |
| ZDI-21-399 |
ZDI-CAN-11682 |
D-Link |
|
8.8 |
2021-03-31 |
2021-09-27 |
(0Day) D-Link DIR-882 HNAP Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-398 |
ZDI-CAN-12244 |
Phoenix Contact |
CVE-2020-12497 |
7.8 |
2021-03-31 |
2021-04-16 |
Phoenix Contact Automationworx XML File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-397 |
ZDI-CAN-11961 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10011 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-396 |
ZDI-CAN-11960 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x30000 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-395 |
ZDI-CAN-11623 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10015 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-394 |
ZDI-CAN-11621 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10012 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-393 |
ZDI-CAN-11619 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10013 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-392 |
ZDI-CAN-11618 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x1000F Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-391 |
ZDI-CAN-11617 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10010 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-390 |
ZDI-CAN-11616 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10014 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-389 |
ZDI-CAN-11615 |
Apple |
CVE-2020-29612 |
7.8 |
2021-03-30 |
|
Apple macOS patch_encoding_common Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-388 |
ZDI-CAN-11587 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10008 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-387 |
ZDI-CAN-11586 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x1000C Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-386 |
ZDI-CAN-11585 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x1000A Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-385 |
ZDI-CAN-11584 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x1000B Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-384 |
ZDI-CAN-11496 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x30004 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-383 |
ZDI-CAN-11494 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x1000E Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-382 |
ZDI-CAN-11493 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x30003 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-381 |
ZDI-CAN-11473 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10009 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-380 |
ZDI-CAN-11472 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x1000D Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-379 |
ZDI-CAN-11470 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x20001 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-378 |
ZDI-CAN-11469 |
Apple |
CVE-2020-27897 |
7.8 |
2021-03-30 |
|
Apple macOS AppleIntelKBLGraphics IOCTL 0x10004 Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-377 |
ZDI-CAN-11468 |
Apple |
CVE-2020-27947 |
7.8 |
2021-03-30 |
|
Apple macOS process_token_AVCDecode Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-376 |
ZDI-CAN-11449 |
Apple |
CVE-2020-29610 |
3.3 |
2021-03-30 |
|
Apple macOS AudioToolboxCore MP4 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-375 |
ZDI-CAN-11448 |
Apple |
CVE-2020-27908 |
7.8 |
2021-03-30 |
|
Apple macOS AudioCodecs MP4 File Parsing Signed to Unsigned Conversion Remote Code Execution Vulnerability |
| ZDI-21-374 |
ZDI-CAN-11447 |
Apple |
CVE-2020-27909 |
7.8 |
2021-03-30 |
|
Apple macOS AudioCodecs MP4 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-373 |
ZDI-CAN-11955 |
SolarWinds |
CVE-2021-27277 |
7.8 |
2021-03-30 |
|
SolarWinds Orion Virtual Infrastructure Monitor OneTimeJobSchedulerEventsService Deserialization of Untrusted Data Privilege Escalation Vulnerability |
| ZDI-21-372 |
ZDI-CAN-12596 |
Esri |
CVE-2021-29098 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-371 |
ZDI-CAN-12612 |
Esri |
CVE-2021-29097 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-370 |
ZDI-CAN-12581 |
Esri |
CVE-2021-29096 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-369 |
ZDI-CAN-12548 |
Esri |
CVE-2021-29097 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-368 |
ZDI-CAN-12503 |
Esri |
CVE-2021-29097 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-367 |
ZDI-CAN-12490 |
Esri |
CVE-2021-29097 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-366 |
ZDI-CAN-12489 |
Esri |
CVE-2021-29097 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-365 |
ZDI-CAN-12488 |
Esri |
CVE-2021-29097 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-364 |
ZDI-CAN-12483 |
Esri |
CVE-2021-29097 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-363 |
ZDI-CAN-12399 |
Esri |
CVE-2021-29097 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-362 |
ZDI-CAN-12398 |
Esri |
CVE-2021-29098 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-361 |
ZDI-CAN-12397 |
Esri |
CVE-2021-29098 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-360 |
ZDI-CAN-12348 |
Esri |
CVE-2021-29097 |
7.8 |
2021-03-30 |
|
Esri ArcReader PMF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-359 |
ZDI-CAN-12122 |
NETGEAR |
CVE-2021-27276 |
7.1 |
2021-03-26 |
|
NETGEAR ProSAFE Network Management System MibController realName Directory Traversal Denial-of-Service Vulnerability |
| ZDI-21-358 |
ZDI-CAN-12125 |
NETGEAR |
CVE-2021-27275 |
8.3 |
2021-03-26 |
|
NETGEAR ProSAFE Network Management System ConfigFileController realName Directory Traversal Information Disclosure and Denial-of-Service Vulnerability |
| ZDI-21-357 |
ZDI-CAN-12124 |
NETGEAR |
CVE-2021-27274 |
9.8 |
2021-03-26 |
|
NETGEAR ProSAFE Network Management System MFileUploadController Unrestricted File Upload Remote Code Execution Vulnerability |
| ZDI-21-356 |
ZDI-CAN-12121 |
NETGEAR |
CVE-2021-27273 |
8.8 |
2021-03-26 |
|
NETGEAR ProSAFE Network Management System SettingConfigController fileName Command Injection Remote Code Execution Vulnerability |
| ZDI-21-355 |
ZDI-CAN-12123 |
NETGEAR |
CVE-2021-27272 |
7.1 |
2021-03-26 |
|
NETGEAR ProSAFE Network Management System ReportTemplateController Directory Traversal Denial-of-Service Vulnerability |
| ZDI-21-354 |
ZDI-CAN-12008 |
Lepide |
|
7.5 |
2021-03-23 |
|
(0Day) Lepide Active Directory Self Service Backup Missing Authentication Information Disclosure Vulnerability |
| ZDI-21-353 |
ZDI-CAN-12438 |
Foxit |
CVE-2021-27271 |
7.8 |
2021-03-22 |
2022-09-26 |
Foxit PhantomPDF U3DBrowser Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-352 |
ZDI-CAN-12230 |
Foxit |
CVE-2021-27270 |
7.8 |
2021-03-22 |
|
Foxit PhantomPDF JPEG2000 Parsing Out-Of Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-351 |
ZDI-CAN-12390 |
Foxit |
CVE-2021-27269 |
7.8 |
2021-03-22 |
|
Foxit PhantomPDF U3DBrowser U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-350 |
ZDI-CAN-12295 |
Foxit |
CVE-2021-27268 |
7.8 |
2021-03-22 |
|
Foxit PhantomPDF U3D File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-349 |
ZDI-CAN-12294 |
Foxit |
CVE-2021-27267 |
7.8 |
2021-03-22 |
|
Foxit PhantomPDF U3D File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-348 |
ZDI-CAN-12293 |
Foxit |
CVE-2021-27266 |
3.3 |
2021-03-22 |
|
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-347 |
ZDI-CAN-12292 |
Foxit |
CVE-2021-27265 |
3.3 |
2021-03-22 |
|
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-346 |
ZDI-CAN-12291 |
Foxit |
CVE-2021-27264 |
3.3 |
2021-03-22 |
|
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-345 |
ZDI-CAN-12290 |
Foxit |
CVE-2021-27263 |
3.3 |
2021-03-22 |
|
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-344 |
ZDI-CAN-12270 |
Foxit |
CVE-2021-27262 |
3.3 |
2021-03-22 |
|
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-343 |
ZDI-CAN-12269 |
Foxit |
CVE-2021-27261 |
7.8 |
2021-03-22 |
|
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-342 |
ZDI-CAN-11806 |
Samsung |
CVE-2021-25346 |
3.3 |
2021-03-22 |
|
Samsung Galaxy S20 libimagecodec Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-341 |
ZDI-CAN-12060 |
Sony |
|
5.9 |
2021-03-18 |
|
(0Day) (Pwn2Own) Sony X800H Smart TV Vewd Type-Confusion Remote Code Execution Vulnerability |
| ZDI-21-340 |
ZDI-CAN-13476 |
Synology |
CVE-2021-27646 |
6.3 |
2021-03-22 |
2021-05-24 |
(Pwn2Own) Synology DiskStation Manager iscsi_snapshot_comm_core Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-339 |
ZDI-CAN-12361 |
Synology |
CVE-2021-27647 |
4.3 |
2021-03-22 |
2021-05-24 |
(Pwn2Own) Synology DiskStation Manager StartEngCommPipeServer HandleSendMsg Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-338 |
ZDI-CAN-12305 |
Synology |
CVE-2021-26569 |
6.3 |
2021-03-18 |
2021-05-24 |
(Pwn2Own) Synology DiskStation Manager iscsi_snapshot_comm_core Race Condition Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-337 |
ZDI-CAN-12187 |
Hewlett Packard Enterprise |
CVE-2021-26578 |
7.5 |
2021-03-18 |
|
Hewlett Packard Enterprise Network Orchestrator uaf-token SQL Injection Information Disclosure Vulnerability |
| ZDI-21-336 |
ZDI-CAN-12856 |
Adobe |
CVE-2021-21089 |
3.3 |
2021-03-18 |
|
Adobe Acrobat Reader DC URI Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-335 |
ZDI-CAN-12441 |
Adobe |
CVE-2021-21088 |
7.8 |
2021-03-18 |
|
Adobe Acrobat Pro DC colorConvertPage Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-334 |
ZDI-CAN-12753 |
Microsoft |
CVE-2021-27057 |
7.8 |
2021-03-17 |
|
Microsoft Office Graph Uninitialized Variable Remote Code Execution Vulnerability |
| ZDI-21-333 |
ZDI-CAN-12518 |
Microsoft |
CVE-2021-27056 |
7.8 |
2021-03-17 |
|
Microsoft PowerPoint PPTX File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-332 |
ZDI-CAN-12485 |
Microsoft |
CVE-2021-27053 |
7.8 |
2021-03-17 |
|
Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-331 |
ZDI-CAN-12484 |
Microsoft |
CVE-2021-26900 |
8.8 |
2021-03-17 |
2021-03-17 |
Microsoft Windows CInteractionTrackerMarshaler Use-After-Free Privilege Escalation Vulnerability |
| ZDI-21-330 |
ZDI-CAN-12299 |
Microsoft |
CVE-2021-26892 |
5.5 |
2021-03-17 |
|
Microsoft Windows EFI Partition Incorrect Authorization Denial-of-Service Vulnerability |
| ZDI-21-329 |
ZDI-CAN-12110 |
Microsoft |
CVE-2021-27070 |
7.3 |
2021-03-17 |
|
Microsoft Windows Update Assistant Improper Access Control Privilege Escalation Vulnerability |
| ZDI-21-328 |
ZDI-CAN-12109 |
Microsoft |
CVE-2021-26889 |
7.8 |
2021-03-17 |
|
Microsoft Windows Setup Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-327 |
ZDI-CAN-12108 |
Microsoft |
CVE-2021-26886 |
6.1 |
2021-03-17 |
|
Microsoft Windows User Profile Service Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-326 |
ZDI-CAN-11948 |
Siemens |
CVE-2021-22647 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer CATPart File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-325 |
ZDI-CAN-12064 |
Siemens |
CVE-2021-22649 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer JT File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-324 |
ZDI-CAN-11983 |
Siemens |
CVE-2021-22651 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer ZIP Path Traversal Remote Code Execution Vulnerability |
| ZDI-21-323 |
ZDI-CAN-11940 |
Siemens |
CVE-2021-22645 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer Insufficient UI Warning Remote Code Execution Vulnerability |
| ZDI-21-322 |
ZDI-CAN-11984 |
Siemens |
CVE-2021-22647 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer FBX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-321 |
ZDI-CAN-11944 |
Siemens |
CVE-2021-22647 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer FBX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-320 |
ZDI-CAN-11941 |
Siemens |
CVE-2021-22647 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer 3DS File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-319 |
ZDI-CAN-11938 |
Siemens |
CVE-2021-22643 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer 3DS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-318 |
ZDI-CAN-11946 |
Siemens |
CVE-2021-22647 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer FBX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-317 |
ZDI-CAN-11942 |
Siemens |
CVE-2021-22649 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer 3DS File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-316 |
ZDI-CAN-11939 |
Siemens |
CVE-2021-22643 |
7.8 |
2021-03-16 |
|
Siemens Solid Edge Viewer 3DS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-315 |
ZDI-CAN-12423 |
SAP |
CVE-2021-27586 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer IFF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-314 |
ZDI-CAN-12425 |
SAP |
CVE-2021-27592 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-313 |
ZDI-CAN-12426 |
SAP |
CVE-2021-27592 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-312 |
ZDI-CAN-12433 |
SAP |
CVE-2021-27587 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-311 |
ZDI-CAN-12470 |
SAP |
CVE-2021-27592 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-310 |
ZDI-CAN-12435 |
SAP |
CVE-2021-27587 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer JT File Parsing Null Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-309 |
ZDI-CAN-12174 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-308 |
ZDI-CAN-12173 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-307 |
ZDI-CAN-12172 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-306 |
ZDI-CAN-12139 |
SAP |
CVE-2021-27589 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer SVG File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-305 |
ZDI-CAN-12322 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-304 |
ZDI-CAN-12321 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-303 |
ZDI-CAN-12320 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-302 |
ZDI-CAN-12319 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-301 |
ZDI-CAN-12318 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-300 |
ZDI-CAN-12317 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-299 |
ZDI-CAN-12316 |
SAP |
CVE-2021-27585 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer CGM File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-298 |
ZDI-CAN-12239 |
SAP |
CVE-2021-27591 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer PDF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-297 |
ZDI-CAN-12171 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-296 |
ZDI-CAN-12225 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-295 |
ZDI-CAN-12224 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-294 |
ZDI-CAN-12205 |
SAP |
CVE-2021-27590 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-293 |
ZDI-CAN-12175 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-292 |
ZDI-CAN-12116 |
SAP |
CVE-2021-27588 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer HPGL File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-291 |
ZDI-CAN-12098 |
SAP |
CVE-2021-21493 |
3.3 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-290 |
ZDI-CAN-12097 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-289 |
ZDI-CAN-12092 |
SAP |
CVE-2021-21493 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-288 |
ZDI-CAN-12078 |
SAP |
CVE-2021-27585 |
7.8 |
2021-03-15 |
|
SAP 3D Visual Enterprise Viewer CGM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-287 |
ZDI-CAN-12672 |
Microsoft |
CVE-2021-27077 |
7.8 |
2021-03-15 |
|
Microsoft Windows win32kfull bStretch NULL Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-286 |
ZDI-CAN-12442 |
Microsoft |
CVE-2021-26866 |
6.1 |
2021-03-15 |
|
Microsoft Windows Update Agent Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-285 |
ZDI-CAN-12324 |
Microsoft |
CVE-2021-26862 |
7.8 |
2021-03-15 |
|
Microsoft Windows Installer Service Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-284 |
ZDI-CAN-12093 |
Microsoft |
CVE-2021-1729 |
6.1 |
2021-03-15 |
|
Microsoft Windows Setup Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-283 |
ZDI-CAN-12194 |
Microsoft |
CVE-2021-26873 |
7.0 |
2021-03-15 |
|
Microsoft Windows User Profile Service Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-282 |
ZDI-CAN-12514 |
Adobe |
CVE-2021-21056 |
7.8 |
2021-03-15 |
|
Adobe FrameMaker PDF File Parsing Out-of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-281 |
ZDI-CAN-12450 |
Adobe |
CVE-2021-21069 |
7.8 |
2021-03-15 |
|
Adobe Creative Cloud Improper Privilege Management Privilege Escalation Vulnerability |
| ZDI-21-280 |
ZDI-CAN-11102 |
Google |
CVE-2021-0458 |
5.5 |
2021-03-12 |
2021-06-29 |
Google Android fts_driver_test_write Integer Overflow Information Disclosure Vulnerability |
| ZDI-21-279 |
ZDI-CAN-11094 |
Google |
CVE-2021-0457 |
7.8 |
2021-03-12 |
2021-06-29 |
Google Android fts_driver_test_write Heap-based Buffer Overflow Privilege Escalation Vulnerability |
| ZDI-21-278 |
ZDI-CAN-11093 |
Google |
CVE-2021-0459 |
5.5 |
2021-03-12 |
2021-06-29 |
Google Android fts_driver_test_write Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-277 |
ZDI-CAN-12455 |
Western Digital |
CVE-2021-3310 |
7.5 |
2021-03-11 |
2021-06-29 |
Western Digital MyCloud PR4100 Link Resolution Information Disclosure Vulnerability |
| ZDI-21-276 |
ZDI-CAN-12086 |
Microsoft |
CVE-2021-27076 |
8.8 |
2021-03-11 |
|
Microsoft SharePoint InfoPath List Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-275 |
ZDI-CAN-12049 |
Siemens |
CVE-2020-28385 |
7.8 |
2021-03-11 |
|
Siemens Solid Edge Viewer DFT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-274 |
ZDI-CAN-12532 |
Siemens |
CVE-2021-27380 |
7.8 |
2021-03-11 |
|
Siemens Solid Edge Viewer PAR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-273 |
ZDI-CAN-12666 |
Schneider Electric |
CVE-2021-22711 |
7.8 |
2021-03-11 |
|
Schneider Electric IGSS CGF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-272 |
ZDI-CAN-12599 |
Schneider Electric |
CVE-2021-22709 |
7.8 |
2021-03-11 |
|
Schneider Electric IGSS CGF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-271 |
ZDI-CAN-12600 |
Schneider Electric |
CVE-2021-22710 |
7.8 |
2021-03-11 |
|
Schneider Electric IGSS CGF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-270 |
ZDI-CAN-12534 |
Siemens |
CVE-2021-27381 |
7.8 |
2021-03-11 |
2021-03-12 |
Siemens Solid Edge Viewer PAR File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-269 |
ZDI-CAN-12669 |
Schneider Electric |
CVE-2021-22712 |
7.8 |
2021-03-11 |
|
Schneider Electric IGSS CGF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-268 |
ZDI-CAN-11708 |
Lepide |
|
9.8 |
2021-03-11 |
|
(0Day) Lepide Active Directory Self Service Unsafe Interaction Authentication Bypass Vulnerability |
| ZDI-21-267 |
ZDI-CAN-12001 |
Fatek Automation |
|
7.8 |
2021-03-11 |
|
(0Day) Fatek Automation PLC WinProladder PWD File Parsing Integer Underflow Remote Code Execution Vulnerability |
| ZDI-21-266 |
ZDI-CAN-11923 |
Siemens |
CVE-2020-28387 |
5.5 |
2021-03-11 |
|
Siemens Solid Edge Viewer SEECTCXML File Parsing XML External Entity Processing Information Disclosure Vulnerability |
| ZDI-21-265 |
ZDI-CAN-11087 |
Google |
CVE-2021-0460 |
5.5 |
2021-03-09 |
2021-06-29 |
Google Android fts_driver_test_write Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-264 |
ZDI-CAN-12362 |
NETGEAR |
CVE-2021-27257 |
6.5 |
2021-02-26 |
2021-06-29 |
(Pwn2Own) NETGEAR R7800 ready-genie-cloud Improper Certificate Validation Remote Code Execution Vulnerability |
| ZDI-21-263 |
ZDI-CAN-12360 |
NETGEAR |
CVE-2021-27255 |
6.3 |
2021-02-26 |
|
(Pwn2Own) NETGEAR R7800 funjsq_httpd Missing Authentication for Critical Function Remote Code Execution Vulnerability |
| ZDI-21-262 |
ZDI-CAN-12355 |
NETGEAR |
CVE-2021-27256 |
8.8 |
2021-02-26 |
|
(Pwn2Own) NETGEAR R7800 apply_save.cgi rc_service Command Injection Remote Code Execution Vulnerability |
| ZDI-21-261 |
ZDI-CAN-12000 |
Fatek Automation |
CVE-2021-22670 |
7.8 |
2021-02-26 |
|
Fatek Automation FvDesigner FPJ File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-260 |
ZDI-CAN-11999 |
Fatek Automation |
CVE-2021-22666 |
7.8 |
2021-02-26 |
|
Fatek Automation FvDesigner FPJ File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-259 |
ZDI-CAN-11998 |
Fatek Automation |
CVE-2021-22670 |
7.8 |
2021-02-26 |
|
Fatek Automation FvDesigner FPJ File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-258 |
ZDI-CAN-11997 |
Fatek Automation |
CVE-2021-22662 |
7.8 |
2021-02-26 |
|
Fatek Automation FvDesigner FPJ File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-257 |
ZDI-CAN-11996 |
Fatek Automation |
CVE-2021-22662 |
7.8 |
2021-02-26 |
|
Fatek Automation FvDesigner FPJ File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-256 |
ZDI-CAN-11995 |
Fatek Automation |
CVE-2021-22662 |
7.8 |
2021-02-26 |
|
Fatek Automation FvDesigner FPJ File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-255 |
ZDI-CAN-11802 |
Fatek Automation |
CVE-2021-22638 |
7.8 |
2021-02-26 |
|
Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-254 |
ZDI-CAN-11704 |
Fatek Automation |
CVE-2021-22683 |
7.8 |
2021-02-26 |
|
Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-253 |
ZDI-CAN-12054 |
Siemens |
CVE-2020-25237 |
8.8 |
2021-02-25 |
|
Siemens SINEC NMS FirmwareFileUtils extractToFolder Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-252 |
ZDI-CAN-12287 |
NETGEAR |
CVE-2021-27254 |
6.3 |
2021-02-25 |
|
(Pwn2Own) NETGEAR Nighthawk R7800 Use of Hard-coded Password Authentication Bypass Vulnerability |
| ZDI-21-251 |
ZDI-CAN-12053 |
Apple |
CVE-2021-1791 |
5.6 |
2021-02-03 |
2021-02-24 |
Apple iOS FairplayIOKit Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-250 |
ZDI-CAN-12232 |
VMware |
CVE-2021-21974 |
8.8 |
2021-02-24 |
|
VMware ESXi SLP Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-249 |
ZDI-CAN-12303 |
NETGEAR |
CVE-2021-27253 |
8.8 |
2021-02-24 |
|
(Pwn2Own) NETGEAR Nighthawk R7800 Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-248 |
ZDI-CAN-12216 |
NETGEAR |
CVE-2021-27252 |
8.8 |
2021-02-24 |
|
(Pwn2Own) NETGEAR R7800 udchpd DHCP_REQUEST Command Injection Remote Code Execution Vulnerability |
| ZDI-21-247 |
ZDI-CAN-12308 |
NETGEAR |
CVE-2021-27251 |
8.8 |
2021-02-24 |
2021-02-24 |
(Pwn2Own) NETGEAR Nighthawk R7800 ready-genie-cloud Insecure Download of Critical Component Remote Code Execution Vulnerability |
| ZDI-21-246 |
ZDI-CAN-11911 |
Siemens |
CVE-2021-25175 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-245 |
ZDI-CAN-11910 |
Siemens |
CVE-2021-25175 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-244 |
ZDI-CAN-11914 |
Siemens |
CVE-2021-25175 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-243 |
ZDI-CAN-12166 |
Siemens |
CVE-2021-25178 |
3.3 |
2021-02-24 |
|
Siemens JT2Go DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-242 |
ZDI-CAN-12176 |
Siemens |
CVE-2020-26995 |
3.3 |
2021-02-24 |
|
Siemens JT2Go SGI File Parsing Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-241 |
ZDI-CAN-12168 |
Siemens |
CVE-2020-26995 |
7.8 |
2021-02-24 |
|
Siemens JT2Go PCX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-240 |
ZDI-CAN-12165 |
Siemens |
CVE-2021-25178 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DWG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-239 |
ZDI-CAN-12042 |
Siemens |
CVE-2020-26999 |
7.8 |
2021-02-24 |
2021-06-08 |
Siemens JT2Go PAR File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-238 |
ZDI-CAN-12040 |
Siemens |
CVE-2020-26998 |
7.8 |
2021-02-24 |
2021-06-08 |
Siemens JT2Go PAR File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-237 |
ZDI-CAN-12018 |
Siemens |
CVE-2020-27000 |
7.8 |
2021-02-24 |
|
Siemens JT2Go BMP File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-236 |
ZDI-CAN-12283 |
Siemens |
CVE-2020-28394 |
3.3 |
2021-02-24 |
|
Siemens JT2Go RAS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-235 |
ZDI-CAN-12209 |
Siemens |
CVE-2020-27008 |
3.3 |
2021-02-24 |
|
Siemens JT2Go PLT File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-234 |
ZDI-CAN-12208 |
Siemens |
CVE-2020-27007 |
3.3 |
2021-02-24 |
|
Siemens JT2Go HPG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-233 |
ZDI-CAN-12207 |
Siemens |
CVE-2020-27007 |
3.3 |
2021-02-24 |
|
Siemens JT2Go HPG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-232 |
ZDI-CAN-12182 |
Siemens |
CVE-2020-27006 |
7.8 |
2021-02-24 |
|
Siemens JT2Go PCT File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-231 |
ZDI-CAN-12178 |
Siemens |
CVE-2020-27005 |
7.8 |
2021-02-24 |
|
Siemens JT2Go TGA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-230 |
ZDI-CAN-12163 |
Siemens |
CVE-2020-27004 |
2.5 |
2021-02-24 |
|
Siemens JT2Go CGM File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-229 |
ZDI-CAN-12158 |
Siemens |
CVE-2020-27003 |
7.8 |
2021-02-24 |
|
Siemens JT2Go TIFF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-228 |
ZDI-CAN-12043 |
Siemens |
CVE-2020-27002 |
3.3 |
2021-02-24 |
2021-06-08 |
Siemens JT2Go PAR File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-227 |
ZDI-CAN-12041 |
Siemens |
CVE-2020-27001 |
7.8 |
2021-02-24 |
2021-06-08 |
Siemens JT2Go PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-226 |
ZDI-CAN-12026 |
Siemens |
CVE-2021-25174 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DGN File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-225 |
ZDI-CAN-12019 |
Siemens |
CVE-2021-25173 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-224 |
ZDI-CAN-11988 |
Siemens |
CVE-2021-25175 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-223 |
ZDI-CAN-11993 |
Siemens |
CVE-2021-25175 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-222 |
ZDI-CAN-11989 |
Siemens |
CVE-2021-25176 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-221 |
ZDI-CAN-11913 |
Siemens |
CVE-2021-25176 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-220 |
ZDI-CAN-11901 |
Siemens |
CVE-2021-25178 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF and DWG File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-219 |
ZDI-CAN-11927 |
Siemens |
CVE-2021-25177 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-218 |
ZDI-CAN-11912 |
Siemens |
CVE-2021-25175 |
7.8 |
2021-02-24 |
|
Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-217 |
ZDI-CAN-11907 |
Tencent |
CVE-2021-27247 |
6.5 |
2021-02-24 |
|
Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-216 |
ZDI-CAN-12197 |
Mozilla |
CVE-2020-16048 |
4.3 |
2021-02-24 |
|
Mozilla Firefox WebGL2 compressedTexImage3D Handling Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-215 |
ZDI-CAN-12306 |
TP-Link |
CVE-2021-27246 |
8.0 |
2021-02-24 |
2021-03-19 |
TP-Link AC1750 sync-server Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-214 |
ZDI-CAN-12309 |
TP-Link |
CVE-2021-27245 |
8.1 |
2021-02-24 |
2021-03-19 |
TP-Link Archer A7 Protection Mechanism Failure Firewall Bypass Vulnerability |
| ZDI-21-213 |
ZDI-CAN-12068 |
Parallels |
CVE-2021-27260 |
3.2 |
2021-02-24 |
|
Parallels Desktop Toolgate Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-212 |
ZDI-CAN-12021 |
Parallels |
CVE-2021-27259 |
7.8 |
2021-02-24 |
|
Parallels Desktop Toolgate Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-211 |
ZDI-CAN-11925 |
Parallels |
CVE-2021-27244 |
6.5 |
2021-02-24 |
|
Parallels Desktop Toolgate Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-210 |
ZDI-CAN-11924 |
Parallels |
CVE-2021-27243 |
8.8 |
2021-02-24 |
|
Parallels Desktop Toolgate Integer Overflow Privilege Escalation Vulnerability |
| ZDI-21-209 |
ZDI-CAN-11926 |
Parallels |
CVE-2021-27242 |
8.8 |
2021-02-24 |
2022-09-26 |
Parallels Desktop Toolgate Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-208 |
ZDI-CAN-12082 |
Avast |
CVE-2021-27241 |
6.1 |
2021-02-24 |
|
Avast Premium Security AvastSvc Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-207 |
ZDI-CAN-12009 |
SolarWinds |
CVE-2021-27240 |
7.8 |
2021-02-24 |
|
SolarWinds Patch Manager DataGridService Deserialization of Untrusted Data Privilege Escalation Vulnerability |
| ZDI-21-206 |
ZDI-CAN-11851 |
NETGEAR |
CVE-2021-27239 |
8.8 |
2021-02-24 |
|
NETGEAR Multiple Routers SSDP Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-205 |
ZDI-CAN-11856 |
D-Link |
CVE-2021-27250 |
6.5 |
2021-02-24 |
|
D-Link DAP-2020 errorpage External Control of File Name Information Disclosure Vulnerability |
| ZDI-21-204 |
ZDI-CAN-11369 |
D-Link |
CVE-2021-27249 |
8.8 |
2021-02-24 |
|
D-Link DAP-2020 WEB_CmdFileList Command Injection Remote Code Execution Vulnerability |
| ZDI-21-203 |
ZDI-CAN-10932 |
D-Link |
CVE-2021-27248 |
8.8 |
2021-02-24 |
2021-09-27 |
D-Link DAP-2020 webproc getpage Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-202 |
ZDI-CAN-11495 |
Apple |
CVE-2021-1805 |
7.8 |
2021-02-24 |
|
Apple macOS process_token_BindQueryBufferMultiple Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-201 |
ZDI-CAN-11438 |
Apple |
CVE-2021-1806 |
7.8 |
2021-02-24 |
|
Apple macOS process_token_BlitLibSetup2D Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability |
| ZDI-21-200 |
ZDI-CAN-11422 |
Apple |
CVE-2021-1806 |
7.8 |
2021-02-24 |
|
Apple macOS process_token_BindQueryStoreRegisterToMemoryList Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability |
| ZDI-21-199 |
ZDI-CAN-11421 |
Apple |
CVE-2021-1805 |
7.8 |
2021-02-24 |
|
Apple macOS process_token_BindQueryStoreRegisterToMemoryList Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-198 |
ZDI-CAN-11420 |
Apple |
CVE-2021-1806 |
7.8 |
2021-02-24 |
|
Apple macOS process_token_BindQueryStoreRegisterToMemoryList Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability |
| ZDI-21-197 |
ZDI-CAN-11419 |
Apple |
CVE-2021-1806 |
7.8 |
2021-02-24 |
|
Apple macOS process_token_BindQueryBufferMultiple Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability |
| ZDI-21-196 |
ZDI-CAN-11418 |
Apple |
CVE-2021-1805 |
7.8 |
2021-02-24 |
|
Apple macOS process_token_BindQueryStoreRegisterToMemoryList Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-195 |
ZDI-CAN-12302 |
ISC |
CVE-2020-8625 |
8.1 |
2021-02-24 |
|
ISC BIND TKEY Query Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-194 |
ZDI-CAN-12135 |
Microsoft |
CVE-2021-24066 |
8.8 |
2021-02-12 |
|
Microsoft SharePoint Workflow Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-193 |
ZDI-CAN-12628 |
Apple |
CVE-2021-1737 |
7.8 |
2021-02-12 |
|
Apple macOS ImageIO PIC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-192 |
ZDI-CAN-11903 |
SolarWinds |
CVE-2021-27258 |
8.8 |
2021-12-08 |
2022-05-26 |
SolarWinds Orion Platform NCM SCM IPAM SaveUserSetting Improper Access Control Privilege Escalation Vulnerability |
| ZDI-21-191 |
ZDI-CAN-12344 |
Advantech |
CVE-2021-22658 |
8.8 |
2021-02-11 |
|
Advantech iView UserServlet SQL Injection Privilege Escalation Vulnerability |
| ZDI-21-190 |
ZDI-CAN-12343 |
Advantech |
CVE-2021-22654 |
7.5 |
2021-02-11 |
|
Advantech iView NetworkServlet ztp_config_name SQL Injection Information Disclosure Vulnerability |
| ZDI-21-189 |
ZDI-CAN-12096 |
Advantech |
CVE-2021-22656 |
7.5 |
2021-02-11 |
|
Advantech iView CommandServlet Directory Traversal Information Disclosure Vulnerability |
| ZDI-21-188 |
ZDI-CAN-12095 |
Advantech |
CVE-2021-22654 |
7.5 |
2021-02-11 |
|
Advantech iView UserServlet SQL Injection Information Disclosure Vulnerability |
| ZDI-21-187 |
ZDI-CAN-11850 |
Schneider Electric |
CVE-2021-22698 |
7.8 |
2021-02-10 |
|
Schneider Electric EcoStruxure Power Build SSD File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-186 |
ZDI-CAN-11849 |
Schneider Electric |
CVE-2021-22697 |
7.8 |
2021-02-10 |
|
Schneider Electric EcoStruxure Power Build SSD File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-185 |
ZDI-CAN-11810 |
Omron |
CVE-2020-27261 |
7.8 |
2021-02-10 |
|
Omron CX-One NCI File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-184 |
ZDI-CAN-11809 |
Omron |
CVE-2020-27257 |
7.8 |
2021-02-10 |
|
Omron CX-One PSW File Parsing Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-183 |
ZDI-CAN-11808 |
Omron |
CVE-2020-27261 |
7.8 |
2021-02-10 |
|
Omron CX-One NCI File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-182 |
ZDI-CAN-11807 |
Omron |
CVE-2020-27259 |
7.8 |
2021-02-10 |
|
Omron CX-One NCI File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-181 |
ZDI-CAN-12114 |
Microsoft |
CVE-2021-24070 |
7.8 |
2021-02-10 |
|
Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-180 |
ZDI-CAN-12223 |
Microsoft |
CVE-2021-24067 |
7.8 |
2021-02-10 |
|
Microsoft Excel XLSX File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-179 |
ZDI-CAN-12218 |
Microsoft |
CVE-2021-24081 |
7.8 |
2021-02-10 |
|
Microsoft Windows Camera Codec Pack Image Processing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-178 |
ZDI-CAN-12154 |
Microsoft |
CVE-2021-24084 |
5.5 |
2021-02-10 |
|
Microsoft Windows Device Management Enrollment Service Directory Junction Information Disclosure Vulnerability |
| ZDI-21-177 |
ZDI-CAN-12169 |
Microsoft |
CVE-2021-24091 |
8.8 |
2021-02-10 |
|
Microsoft Windows Camera Codec Pack Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-176 |
ZDI-CAN-12162 |
Microsoft |
CVE-2021-24083 |
7.8 |
2021-02-10 |
|
Microsoft Windows wab32 WAB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-175 |
ZDI-CAN-12081 |
McAfee |
CVE-2021-23873 |
6.1 |
2021-02-10 |
|
McAfee Total Protection Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-174 |
ZDI-CAN-12478 |
IBM |
CVE-2021-20353 |
7.5 |
2021-02-10 |
|
IBM WebSphere EDataGraphImpl Deserialization of Untrusted Data Information Disclosure Vulnerability |
| ZDI-21-173 |
ZDI-CAN-12088 |
Adobe |
CVE-2021-21021 |
7.8 |
2021-02-10 |
2021-03-08 |
Adobe Acrobat Reader DC Annotation getAnnots Method Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-172 |
ZDI-CAN-12546 |
Adobe |
CVE-2021-21044 |
7.8 |
2021-02-10 |
|
Adobe Acrobat Reader DC JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-171 |
ZDI-CAN-12429 |
Adobe |
CVE-2021-21042 |
3.3 |
2021-02-10 |
|
Adobe Acrobat Reader DC Annots File ID Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-170 |
ZDI-CAN-12440 |
Adobe |
CVE-2021-21061 |
3.3 |
2021-02-10 |
|
Adobe Acrobat Pro DC setAction Use-After-Free Information Disclosure Vulnerability |
| ZDI-21-169 |
ZDI-CAN-12074 |
Adobe |
CVE-2021-21028 |
7.8 |
2021-03-08 |
2021-06-29 |
Adobe Acrobat Reader DC Annotation page Property Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-168 |
ZDI-CAN-12072 |
Adobe |
CVE-2021-21033 |
7.8 |
2021-02-10 |
2021-03-08 |
Adobe Acrobat Reader DC Annotation setProps Method Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-167 |
ZDI-CAN-12071 |
Adobe |
CVE-2021-21035 |
7.8 |
2021-02-10 |
2021-03-08 |
Adobe Acrobat Reader DC Annotation popupOpen Method Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-166 |
ZDI-CAN-12067 |
Adobe |
CVE-2021-21034 |
3.3 |
2021-02-10 |
|
Adobe Acrobat Reader DC URI Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-165 |
ZDI-CAN-12501 |
Adobe |
CVE-2021-21054 |
7.8 |
2021-02-10 |
|
Adobe Illustrator CDR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-164 |
ZDI-CAN-12500 |
Adobe |
CVE-2021-21053 |
7.8 |
2021-02-10 |
|
Adobe Illustrator DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-163 |
ZDI-CAN-12543 |
Adobe |
CVE-2021-21050 |
7.8 |
2021-02-10 |
|
Adobe Photoshop U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-162 |
ZDI-CAN-12544 |
Adobe |
CVE-2021-21049 |
7.8 |
2021-02-10 |
|
Adobe Photoshop U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-161 |
ZDI-CAN-12476 |
Adobe |
CVE-2021-21048 |
7.8 |
2021-02-10 |
|
Adobe Photoshop DCM File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-160 |
ZDI-CAN-12448 |
Adobe |
CVE-2021-21047 |
7.8 |
2021-02-10 |
|
Adobe Photoshop TTF Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-159 |
ZDI-CAN-10904 |
QEMU |
CVE-2021-20181 |
7.5 |
2021-02-10 |
|
QEMU Plan 9 File System Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability |
| ZDI-21-158 |
ZDI-CAN-11111 |
Horner Automation |
CVE-2021-22663 |
7.8 |
2021-02-09 |
|
Horner Automation Cscape CSP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-157 |
ZDI-CAN-11610 |
Squid |
|
3.7 |
2021-02-09 |
|
(0Day) Squid Cache WCCP Protocol Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-156 |
ZDI-CAN-11609 |
Squid |
|
5.6 |
2021-02-09 |
|
(0Day) Squid Cache WCCP Protocol Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-155 |
ZDI-CAN-11206 |
D-Link |
|
8.8 |
2021-02-09 |
|
(0Day) D-Link DAP-3662 httpd Authentication Bypass Remote Code Execution Vulnerability |
| ZDI-21-154 |
ZDI-CAN-12025 |
Micro Focus |
CVE-2021-22502 |
9.8 |
2021-02-09 |
2021-06-29 |
Micro Focus Operations Bridge Reporter Token Command Injection Remote Code Execution Vulnerability |
| ZDI-21-153 |
ZDI-CAN-11074 |
Micro Focus |
CVE-2021-22502 |
9.8 |
2021-02-09 |
|
Micro Focus Operations Bridge Reporter userName Command Injection Remote Code Execution Vulnerability |
| ZDI-21-152 |
ZDI-CAN-11694 |
Cisco |
|
8.8 |
2021-02-09 |
|
Cisco Multiple Routers Authorization Header Command Injection Remote Code Execution Vulnerability |
| ZDI-21-151 |
ZDI-CAN-11830 |
Hewlett Packard Enterprise |
|
9.8 |
2021-02-04 |
|
(0Day) Hewlett Packard Enterprise Moonshot Provisioning Manager khuploadfile Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-150 |
ZDI-CAN-11707 |
Hewlett Packard Enterprise |
|
9.8 |
2021-02-04 |
|
(0Day) Hewlett Packard Enterprise Moonshot Provisioning Manager khuploadfile Directory Traversal Remote Code Execution Vulnerability |
| ZDI-21-149 |
ZDI-CAN-12825 |
Apple |
CVE-2021-1772 |
7.8 |
2021-02-04 |
|
Apple macOS CoreText TTF Parsing Out-of-Bounds Write Remote Code Execution |
| ZDI-21-148 |
ZDI-CAN-12754 |
Apple |
CVE-2021-1792 |
3.3 |
2021-02-04 |
|
Apple macOS CoreText TTF Parsing Out-of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-147 |
ZDI-CAN-12627 |
Apple |
CVE-2021-1743 |
7.8 |
2021-02-04 |
|
Apple macOS ImageIO EXR Parsing Integer Overflow Remote Code Execution Vulnerability |
| ZDI-21-146 |
ZDI-CAN-12328 |
Apple |
CVE-2021-1746 |
7.8 |
2021-02-04 |
|
Apple macOS ImageIO PICT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-145 |
ZDI-CAN-12198 |
Apple |
CVE-2021-1768 |
3.3 |
2021-02-04 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-144 |
ZDI-CAN-12193 |
Apple |
CVE-2021-1767 |
3.3 |
2021-02-04 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-143 |
ZDI-CAN-12233 |
Apple |
CVE-2021-1763 |
7.8 |
2021-02-04 |
|
Apple macOS ModelIO USD Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-142 |
ZDI-CAN-12188 |
Apple |
CVE-2021-1762 |
7.8 |
2021-02-04 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-141 |
ZDI-CAN-12185 |
Apple |
CVE-2021-1745 |
3.3 |
2021-02-04 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-140 |
ZDI-CAN-12153 |
Apple |
|
7.8 |
2021-02-04 |
|
Apple macOS CoreText ApplyContextPosFormat2 TTF Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-139 |
ZDI-CAN-12143 |
Apple |
CVE-2021-1753 |
3.3 |
2021-02-04 |
|
Apple macOS ModelIO USD Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-138 |
ZDI-CAN-11876 |
Apple |
CVE-2021-1775 |
3.3 |
2021-02-04 |
|
Apple macOS libFontParser TTF Parsing Integer Underflow Information Disclosure Vulnerability |
| ZDI-21-137 |
ZDI-CAN-11848 |
Cisco |
CVE-2021-1294 |
8.8 |
2021-02-04 |
|
Cisco Multiple Routers RESTCONF file-upload Command Injection Remote Code Execution Vulnerability |
| ZDI-21-136 |
ZDI-CAN-11726 |
Cisco |
CVE-2021-1293 |
8.8 |
2021-02-04 |
|
Cisco Multiple Routers Cookie Header Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-135 |
ZDI-CAN-11716 |
Cisco |
CVE-2021-1297 |
8.8 |
2021-02-04 |
|
Cisco Multiple Routers DNIAPI Directory Traversal Arbitrary File Creation Vulnerability |
| ZDI-21-134 |
ZDI-CAN-11693 |
Cisco |
CVE-2021-1296 |
6.5 |
2021-02-04 |
|
Cisco Multiple Routers RESTCONF file-upload Directory Traversal Arbitrary File Write Vulnerability |
| ZDI-21-133 |
ZDI-CAN-11690 |
Cisco |
CVE-2021-1292 |
8.8 |
2021-02-04 |
|
Cisco Multiple Routers RESTCONF URL Command Injection Remote Code Execution Vulnerability |
| ZDI-21-132 |
ZDI-CAN-11688 |
Cisco |
CVE-2021-1291 |
8.8 |
2021-02-04 |
|
Cisco Multiple Routers RESTCONF Content-Type Header Command Injection Remote Code Execution Vulnerability |
| ZDI-21-131 |
ZDI-CAN-11689 |
Cisco |
CVE-2021-1290 |
8.8 |
2021-02-04 |
|
Cisco Multiple Routers Accept Header Command Injection Remote Code Execution Vulnerability |
| ZDI-21-130 |
ZDI-CAN-11686 |
Cisco |
CVE-2021-1289 |
8.8 |
2021-02-04 |
|
Cisco Multiple Routers Authorization Header Command Injection Remote Code Execution Vulnerability |
| ZDI-21-129 |
ZDI-CAN-12046 |
Siemens |
CVE-2020-15798 |
9.8 |
2021-02-04 |
|
Siemens Comfort Panel Telnet Service Missing Authentication Remote Code Execution Vulnerability |
| ZDI-21-128 |
ZDI-CAN-11483 |
Apache |
|
9.8 |
2021-02-02 |
|
(0Day) Apache Dubbo decodeBody Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-127 |
ZDI-CAN-11482 |
Apache |
|
9.8 |
2021-02-02 |
|
(0Day) Apache Dubbo readUTF Deserialization of Untrusted Data Remote Code Execution Vulnerability |
| ZDI-21-126 |
ZDI-CAN-11270 |
Schneider Electric |
CVE-2020-7551 |
7.8 |
2021-02-01 |
|
Schneider Electric IGSS CGF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-125 |
ZDI-CAN-11269 |
Schneider Electric |
CVE-2020-7552 |
7.8 |
2021-02-01 |
|
Schneider Electric IGSS CGF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-124 |
ZDI-CAN-11268 |
Schneider Electric |
CVE-2020-7553 |
7.8 |
2021-02-01 |
|
Schneider Electric IGSS CGF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-123 |
ZDI-CAN-11765 |
Trend Micro |
CVE-2021-25244 |
5.3 |
2021-01-29 |
|
Trend Micro Worry-Free Business Security Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-122 |
ZDI-CAN-11760 |
Trend Micro |
CVE-2021-25245 |
5.3 |
2021-01-29 |
|
Trend Micro Worry-Free Business Security Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-121 |
ZDI-CAN-11607 |
Trend Micro |
CVE-2021-25238 |
5.3 |
2021-01-29 |
|
Trend Micro OfficeScan Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-120 |
ZDI-CAN-11594 |
Trend Micro |
CVE-2021-25236 |
5.3 |
2021-01-29 |
|
Trend Micro OfficeScan Server-Side Request Forgery Information Disclosure Vulnerability |
| ZDI-21-119 |
ZDI-CAN-11896 |
Trend Micro |
CVE-2021-25249 |
7.8 |
2021-01-29 |
|
Trend Micro Apex One TmCCSF Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-118 |
ZDI-CAN-11895 |
Trend Micro |
CVE-2021-25248 |
2.5 |
2021-01-29 |
|
Trend Micro Apex One Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-117 |
ZDI-CAN-11841 |
Trend Micro |
CVE-2021-25246 |
6.5 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-116 |
ZDI-CAN-11746 |
Trend Micro |
CVE-2021-25243 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-115 |
ZDI-CAN-11749 |
Trend Micro |
CVE-2021-25242 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-114 |
ZDI-CAN-11595 |
Trend Micro |
CVE-2021-25241 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Server-Side Request Forgery Information Disclosure Vulnerability |
| ZDI-21-113 |
ZDI-CAN-11737 |
Trend Micro |
CVE-2021-25240 |
5.3 |
2021-01-29 |
|
Trend Micro OfficeScan Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-112 |
ZDI-CAN-11745 |
Trend Micro |
CVE-2021-25239 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-111 |
ZDI-CAN-11606 |
Trend Micro |
CVE-2021-25237 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-110 |
ZDI-CAN-11635 |
Trend Micro |
CVE-2021-25235 |
5.3 |
2021-01-29 |
|
Trend Micro OfficeScan Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-109 |
ZDI-CAN-11685 |
Trend Micro |
CVE-2021-25234 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-108 |
ZDI-CAN-11691 |
Trend Micro |
CVE-2021-25233 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-107 |
ZDI-CAN-11642 |
Trend Micro |
CVE-2021-25232 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-106 |
ZDI-CAN-11640 |
Trend Micro |
CVE-2021-25231 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-105 |
ZDI-CAN-11639 |
Trend Micro |
CVE-2021-25230 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-104 |
ZDI-CAN-11638 |
Trend Micro |
CVE-2021-25229 |
5.3 |
2021-01-29 |
|
Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-103 |
ZDI-CAN-11633 |
Trend Micro |
CVE-2021-25228 |
5.3 |
2021-01-29 |
|
Trend Micro OfficeScan Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-102 |
ZDI-CAN-11605 |
Trend Micro |
CVE-2021-25227 |
3.3 |
2021-01-29 |
|
Trend Micro Antivirus for Mac Memory Exhaustion Denial-Of-Service Vulnerability |
| ZDI-21-101 |
ZDI-CAN-12547 |
Linux |
|
8.8 |
2021-01-29 |
|
Linux Kernel eBPF Improper Input Validation Privilege Escalation Vulnerability |
| ZDI-21-100 |
ZDI-CAN-11171 |
Linux |
|
6.5 |
2021-01-29 |
|
Linux Kernel setsockopt System Call Untrusted Pointer Dereference Information Disclosure Vulnerability |
| ZDI-21-099 |
ZDI-CAN-11669 |
Fuji Electric |
CVE-2021-22641 |
7.8 |
2021-01-29 |
2021-06-29 |
Fuji Electric V-Server Lite VPR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-098 |
ZDI-CAN-11668 |
Fuji Electric |
CVE-2021-22639 |
7.8 |
2021-01-29 |
2021-06-29 |
Fuji Electric V-Server Lite VPR File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
| ZDI-21-097 |
ZDI-CAN-11170 |
Fuji Electric |
CVE-2021-22637 |
7.8 |
2021-01-29 |
|
Fuji Electric V-Server Lite VPR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-096 |
ZDI-CAN-11297 |
Schneider Electric |
CVE-2020-7557 |
7.8 |
2021-01-29 |
2021-01-29 |
Schneider Electric IGSS CGF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-095 |
ZDI-CAN-11296 |
Schneider Electric |
CVE-2020-7556 |
7.8 |
2021-01-29 |
2021-01-29 |
Schneider Electric IGSS CGF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-094 |
ZDI-CAN-11295 |
Schneider Electric |
CVE-2020-7555 |
7.8 |
2021-01-29 |
2021-01-29 |
Schneider Electric IGSS CGF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-093 |
ZDI-CAN-11271 |
Schneider Electric |
CVE-2020-7554 |
7.8 |
2021-01-29 |
2021-01-29 |
Schneider Electric IGSS CGF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-092 |
ZDI-CAN-11168 |
Schneider Electric |
CVE-2020-7550 |
7.8 |
2021-01-29 |
2021-01-29 |
Schneider Electric IGSS CGF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-091 |
ZDI-CAN-11298 |
Schneider Electric |
CVE-2020-7558 |
7.8 |
2021-01-29 |
2021-01-29 |
Schneider Electric IGSS CGF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-090 |
ZDI-CAN-12671 |
Microsoft |
|
7.8 |
2021-01-27 |
|
(0Day) Microsoft Windows win32kfull bRotate NULL Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-089 |
ZDI-CAN-12565 |
Microsoft |
|
6.4 |
2021-01-27 |
|
(0Day) Microsoft Windows PowerShell Shell Handler Command Injection Remote Code Execution Vulnerability |
| ZDI-21-088 |
ZDI-CAN-12674 |
Microsoft |
CVE-2021-1682 |
7.8 |
2021-01-27 |
|
Microsoft Windows Event Tracing Out-Of-Bounds Access Privilege Escalation Vulnerability |
| ZDI-21-087 |
ZDI-CAN-11569 |
Trend Micro |
CVE-2021-25226 |
4.3 |
2021-01-27 |
|
Trend Micro ServerProtect vsapiapp Memory Exhaustion Denial-Of-Service Vulnerability |
| ZDI-21-086 |
ZDI-CAN-11568 |
Trend Micro |
CVE-2021-25225 |
4.3 |
2021-01-27 |
|
Trend Micro ServerProtect splx_schedule_scan Memory Exhaustion Denial-Of-Service Vulnerability |
| ZDI-21-085 |
ZDI-CAN-11049 |
Trend Micro |
CVE-2021-25224 |
3.3 |
2021-01-27 |
|
Trend Micro ServerProtect splx_manual_scan Memory Exhaustion Denial-Of-Service Vulnerability |
| ZDI-21-084 |
ZDI-CAN-11580 |
Tencent |
CVE-2020-27874 |
8.8 |
2021-01-22 |
|
Tencent WeChat WXAM Decoder Out-Of-Bounds Access Remote Code Execution Vulnerability |
| ZDI-21-083 |
ZDI-CAN-12156 |
Oracle |
CVE-2021-2054 |
8.8 |
2021-01-22 |
|
Oracle Database Procedure Improper Privilege Management Privilege Escalation Vulnerability |
| ZDI-21-082 |
ZDI-CAN-11758 |
Delta Industrial Automation |
CVE-2020-27284 |
7.8 |
2021-01-22 |
|
Delta Industrial Automation TPEditor TPE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-081 |
ZDI-CAN-11757 |
Delta Industrial Automation |
CVE-2020-27284 |
7.8 |
2021-01-22 |
|
Delta Industrial Automation TPEditor TPE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-080 |
ZDI-CAN-11714 |
Delta Industrial Automation |
CVE-2020-27288 |
7.8 |
2021-01-22 |
|
Delta Industrial Automation TPEditor TPE File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-079 |
ZDI-CAN-11489 |
Delta Industrial Automation |
CVE-2020-27280 |
7.8 |
2021-01-22 |
|
Delta Industrial Automation ISPSoft ISP File Parsing Use-After-Free Remote Code Execution Vulnerability |
| ZDI-21-078 |
ZDI-CAN-12782 |
Microsoft |
CVE-2021-1648 |
7.8 |
2021-01-21 |
|
Microsoft Windows splwow64 Out-Of-Bounds Read Privilege Escalation Vulnerability |
| ZDI-21-077 |
ZDI-CAN-12050 |
Siemens |
CVE-2020-28386 |
7.8 |
2021-01-20 |
|
Siemens Solid Edge Viewer DFT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-076 |
ZDI-CAN-11922 |
Siemens |
CVE-2020-28384 |
7.8 |
2021-01-20 |
|
Siemens Solid Edge Viewer PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-075 |
ZDI-CAN-11920 |
Siemens |
CVE-2020-28382 |
7.8 |
2021-01-20 |
|
Siemens Solid Edge Viewer PAR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-074 |
ZDI-CAN-11918 |
Siemens |
CVE-2020-28381 |
7.8 |
2021-01-20 |
|
Siemens Solid Edge Viewer PAR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-073 |
ZDI-CAN-11921 |
Siemens |
CVE-2020-28383 |
7.8 |
2021-01-19 |
|
Siemens Solid Edge Viewer PAR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-072 |
ZDI-CAN-11559 |
NETGEAR |
CVE-2020-27873 |
6.5 |
2021-01-18 |
|
NETGEAR R7450 SOAP API RecoverAdminPassword Improper Access Control Information Disclosure Vulnerability |
| ZDI-21-071 |
ZDI-CAN-11365 |
NETGEAR |
CVE-2020-27872 |
8.8 |
2021-01-18 |
|
NETGEAR R7450 Password Recovery External Control of Critical State Data Authentication Bypass Vulnerability |
| ZDI-21-070 |
ZDI-CAN-11792 |
Apple |
CVE-2020-29616 |
3.3 |
2021-01-18 |
|
Apple macOS CoreGraphics Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
| ZDI-21-069 |
ZDI-CAN-11439 |
Apple |
CVE-2020-10015 |
7.8 |
2021-01-18 |
|
Apple macOS process_token_BlitLibSetup2D Out-Of-Bounds Write Privilege Escalation Vulnerability |
| ZDI-21-068 |
ZDI-CAN-11579 |
Panasonic |
CVE-2020-16236 |
7.8 |
2021-01-14 |
|
Panasonic Control FPWIN Pro Project File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-067 |
ZDI-CAN-11902 |
SolarWinds |
CVE-2020-27871 |
7.2 |
2021-09-20 |
2022-05-26 |
SolarWinds Orion Platform NCM VulnerabilitySettings Directory Traversal Arbitrary File Creation Vulnerability |
| ZDI-21-066 |
ZDI-CAN-11917 |
SolarWinds |
CVE-2020-27870 |
7.5 |
2021-09-20 |
2022-05-26 |
SolarWinds Orion Platform ExportToPDF Directory Traversal Information Disclosure Vulnerability |
| ZDI-21-065 |
ZDI-CAN-11859 |
SolarWinds |
CVE-2020-14005 |
8.8 |
2021-09-20 |
2022-05-26 |
SolarWinds Network Performance Monitor ExecuteVBScript Command Injection Remote Code Execution Vulnerability |
| ZDI-21-064 |
ZDI-CAN-11804 |
SolarWinds |
CVE-2020-27869 |
8.8 |
2021-09-20 |
2022-05-26 |
SolarWinds Network Performance Monitor WriteToFile SQL Injection Privilege Escalation Vulnerability |
| ZDI-21-063 |
ZDI-CAN-11858 |
SolarWinds |
CVE-2020-14005 |
8.8 |
2021-09-20 |
2022-05-26 |
SolarWinds Network Performance Monitor ExecuteExternalProgram Command Injection Remote Code Execution Vulnerability |
| ZDI-21-062 |
ZDI-CAN-12027 |
Siemens |
CVE-2020-26996 |
7.8 |
2021-01-14 |
|
Siemens JT2Go CG4 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-061 |
ZDI-CAN-12016 |
Siemens |
CVE-2020-26987 |
7.8 |
2021-01-14 |
|
Siemens JT2Go TGA File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-060 |
ZDI-CAN-11992 |
Siemens |
CVE-2020-26995 |
7.8 |
2021-01-14 |
|
Siemens JT2Go SGI and RGB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-059 |
ZDI-CAN-12017 |
Siemens |
CVE-2020-26987 |
7.8 |
2021-01-14 |
|
Siemens JT2Go TGA File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-058 |
ZDI-CAN-11986 |
Siemens |
CVE-2020-26985 |
7.8 |
2021-01-14 |
|
Siemens JT2Go RGB and SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-057 |
ZDI-CAN-12014 |
Siemens |
CVE-2020-26986 |
7.8 |
2021-01-14 |
|
Siemens JT2Go JT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-056 |
ZDI-CAN-11994 |
Siemens |
CVE-2020-26985 |
7.8 |
2021-01-14 |
|
Siemens JT2Go RGB and SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-055 |
ZDI-CAN-11897 |
Siemens |
CVE-2020-26990 |
7.8 |
2021-01-14 |
|
Siemens JT2Go ASM File Parsing Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-054 |
ZDI-CAN-11900 |
Siemens |
CVE-2020-26983 |
7.8 |
2021-01-14 |
|
Siemens JT2Go PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-053 |
ZDI-CAN-11899 |
Siemens |
CVE-2020-26991 |
7.8 |
2021-01-15 |
2021-06-08 |
Siemens JT2Go ASM File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-052 |
ZDI-CAN-11898 |
Siemens |
CVE-2020-26982 |
7.8 |
2021-01-14 |
|
Siemens JT2Go CG4 and CGM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-051 |
ZDI-CAN-11972 |
Siemens |
CVE-2020-26984 |
7.8 |
2021-01-14 |
|
Siemens JT2Go JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-050 |
ZDI-CAN-11892 |
Siemens |
CVE-2020-26989 |
7.8 |
2021-01-14 |
|
Siemens JT2Go PAR File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-049 |
ZDI-CAN-11891 |
Siemens |
CVE-2020-26988 |
7.8 |
2021-01-14 |
|
Siemens JT2Go PAR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-048 |
ZDI-CAN-11890 |
Siemens |
CVE-2020-26981 |
5.5 |
2021-01-14 |
|
Siemens JT2Go PLMXML File Parsing XML External Entity Processing Information Disclosure Vulnerability |
| ZDI-21-047 |
ZDI-CAN-11885 |
Siemens |
CVE-2020-28383 |
7.8 |
2021-01-14 |
|
Siemens JT2Go PAR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-046 |
ZDI-CAN-11881 |
Siemens |
CVE-2020-26980 |
7.8 |
2021-01-14 |
|
Siemens JT2Go JT File Parsing Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-045 |
ZDI-CAN-11795 |
Delta Industrial Automation |
CVE-2020-27293 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation CNCSoft-B DOPSoft DPA File Parsing Type Confusion Remote Code Execution Vulnerability |
| ZDI-21-044 |
ZDI-CAN-11825 |
Delta Industrial Automation |
CVE-2020-27287 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation CNCSoft-B DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-043 |
ZDI-CAN-11824 |
Delta Industrial Automation |
CVE-2020-27287 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation CNCSoft-B DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-042 |
ZDI-CAN-11823 |
Delta Industrial Automation |
CVE-2020-27291 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation CNCSoft-B DOPSoft XLS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-041 |
ZDI-CAN-11822 |
Delta Industrial Automation |
CVE-2020-27287 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation CNCSoft-B DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-040 |
ZDI-CAN-11794 |
Delta Industrial Automation |
CVE-2020-27289 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation CNCSoft-B DOPSoft DPA File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-039 |
ZDI-CAN-11713 |
Delta Industrial Automation |
CVE-2020-27281 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation CNCSoft ScreenEditor DPB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-038 |
ZDI-CAN-11662 |
Delta Industrial Automation |
CVE-2020-27275 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-037 |
ZDI-CAN-11660 |
Delta Industrial Automation |
CVE-2020-27275 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-036 |
ZDI-CAN-11666 |
Delta Industrial Automation |
CVE-2020-27275 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-035 |
ZDI-CAN-11658 |
Delta Industrial Automation |
CVE-2020-27275 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-034 |
ZDI-CAN-11664 |
Delta Industrial Automation |
CVE-2020-27275 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-033 |
ZDI-CAN-11663 |
Delta Industrial Automation |
CVE-2020-27277 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation DOPSoft XLS File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
| ZDI-21-032 |
ZDI-CAN-11661 |
Delta Industrial Automation |
CVE-2020-27275 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-031 |
ZDI-CAN-11712 |
Delta Industrial Automation |
CVE-2020-27287 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation CNCSoft-B DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-030 |
ZDI-CAN-11793 |
Delta Industrial Automation |
CVE-2020-27287 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation CNCSoft-B DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-029 |
ZDI-CAN-11645 |
Delta Industrial Automation |
CVE-2020-27275 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-028 |
ZDI-CAN-11644 |
Delta Industrial Automation |
CVE-2020-27275 |
7.8 |
2021-01-14 |
|
Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-027 |
ZDI-CAN-12087 |
Microsoft |
CVE-2021-1642 |
6.1 |
2021-01-14 |
|
Microsoft Windows AppX Deployment Service Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-026 |
ZDI-CAN-12184 |
Microsoft |
CVE-2021-1715 |
7.8 |
2021-01-14 |
|
Microsoft Word DOC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-025 |
ZDI-CAN-12170 |
Microsoft |
CVE-2021-1685 |
7.0 |
2021-01-14 |
|
Microsoft Windows AppX Deployment Service Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-024 |
ZDI-CAN-12052 |
Microsoft |
CVE-2021-1648 |
7.0 |
2021-01-14 |
|
Microsoft Windows splwow64 Out-Of-Bounds Read Privilege Escalation Vulnerability |
| ZDI-21-023 |
ZDI-CAN-12044 |
Microsoft |
CVE-2021-1713 |
7.8 |
2021-01-14 |
|
Microsoft Excel XLS File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-022 |
ZDI-CAN-12033 |
Microsoft |
CVE-2021-1648 |
7.0 |
2021-01-14 |
2021-06-29 |
Microsoft Windows splwow64 Untrusted Pointer Dereference Privilege Escalation Vulnerability |
| ZDI-21-021 |
ZDI-CAN-11982 |
Microsoft |
CVE-2021-1697 |
6.1 |
2021-01-14 |
2021-01-21 |
Microsoft Windows InstallService Directory Junction Denial-of-Service Vulnerability |
| ZDI-21-020 |
ZDI-CAN-12034 |
Microsoft |
CVE-2021-1648 |
7.0 |
2021-01-14 |
|
Microsoft Windows splwow64 Out-Of-Bounds Read Privilege Escalation Vulnerability |
| ZDI-21-019 |
ZDI-CAN-11909 |
Microsoft |
CVE-2021-1695 |
7.8 |
2021-01-14 |
|
Microsoft Windows Print Spooler Directory Junction Privilege Escalation Vulnerability |
| ZDI-21-018 |
ZDI-CAN-12452 |
Adobe |
CVE-2021-21065 |
7.8 |
2021-01-12 |
|
Adobe Bridge TTF Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-017 |
ZDI-CAN-12451 |
Adobe |
CVE-2021-21066 |
7.8 |
2021-01-12 |
|
Adobe Bridge TTF Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-016 |
ZDI-CAN-12314 |
SAP |
CVE-2021-21463 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer PCX File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
| ZDI-21-015 |
ZDI-CAN-12313 |
SAP |
CVE-2021-21462 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer PCX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-014 |
ZDI-CAN-12037 |
SAP |
CVE-2021-21461 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-013 |
ZDI-CAN-11968 |
SAP |
CVE-2021-21449 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer IFF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-012 |
ZDI-CAN-11966 |
SAP |
CVE-2021-21450 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer PSD File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-011 |
ZDI-CAN-11956 |
SAP |
CVE-2021-21451 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer SGI File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-010 |
ZDI-CAN-11954 |
SAP |
CVE-2021-21452 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer GIF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-009 |
ZDI-CAN-11937 |
SAP |
CVE-2021-21453 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer RLE File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-008 |
ZDI-CAN-11936 |
SAP |
CVE-2021-21454 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer RLE File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-007 |
ZDI-CAN-11934 |
SAP |
CVE-2021-21455 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer DIB File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-006 |
ZDI-CAN-11932 |
SAP |
CVE-2021-21456 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer DIB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-005 |
ZDI-CAN-11931 |
SAP |
CVE-2021-21457 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer IFF File Parsing Memory Corruption Remote Code Execution Vulnerabililty |
| ZDI-21-004 |
ZDI-CAN-11930 |
SAP |
CVE-2021-21458 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer IFF File Parsing Memory Corruption Remote Code Execution Vulnerability |
| ZDI-21-003 |
ZDI-CAN-11929 |
SAP |
CVE-2021-21460 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer DIB File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
| ZDI-21-002 |
ZDI-CAN-11928 |
SAP |
CVE-2021-21459 |
7.8 |
2021-01-12 |
|
SAP 3D Visual Enterprise Viewer IFF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
| ZDI-21-001 |
ZDI-CAN-11480 |
Linux |
CVE-2021-20226 |
8.8 |
2021-01-04 |
|
Linux Kernel io_uring Use-After-Free Privilege Escalation Vulnerability |
