diff options
author | security tracker role <sectracker@soriano.debian.org> | 2021-11-02 20:10:18 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2021-11-02 20:10:18 +0000 |
commit | 993399452d7caf726f36a7b5447f95c947b28db3 (patch) | |
tree | cb38718ef304c58ea42644264492f734f882d912 /data/CVE/list.2021 | |
parent | 2cb5198331b08957611d8c193925d1c1c0f7f37a (diff) |
automatic update
Diffstat (limited to 'data/CVE/list.2021')
-rw-r--r-- | data/CVE/list.2021 | 254 |
1 files changed, 183 insertions, 71 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 8f7fb981f8..4908a3f99e 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -1,3 +1,115 @@ +CVE-2021-43256 + RESERVED +CVE-2021-43255 + RESERVED +CVE-2021-43254 + RESERVED +CVE-2021-43253 + RESERVED +CVE-2021-43252 + RESERVED +CVE-2021-43251 + RESERVED +CVE-2021-43250 + RESERVED +CVE-2021-43249 + RESERVED +CVE-2021-43248 + RESERVED +CVE-2021-43247 + RESERVED +CVE-2021-43246 + RESERVED +CVE-2021-43245 + RESERVED +CVE-2021-43244 + RESERVED +CVE-2021-43243 + RESERVED +CVE-2021-43242 + RESERVED +CVE-2021-43241 + RESERVED +CVE-2021-43240 + RESERVED +CVE-2021-43239 + RESERVED +CVE-2021-43238 + RESERVED +CVE-2021-43237 + RESERVED +CVE-2021-43236 + RESERVED +CVE-2021-43235 + RESERVED +CVE-2021-43234 + RESERVED +CVE-2021-43233 + RESERVED +CVE-2021-43232 + RESERVED +CVE-2021-43231 + RESERVED +CVE-2021-43230 + RESERVED +CVE-2021-43229 + RESERVED +CVE-2021-43228 + RESERVED +CVE-2021-43227 + RESERVED +CVE-2021-43226 + RESERVED +CVE-2021-43225 + RESERVED +CVE-2021-43224 + RESERVED +CVE-2021-43223 + RESERVED +CVE-2021-43222 + RESERVED +CVE-2021-43221 + RESERVED +CVE-2021-43220 + RESERVED +CVE-2021-43219 + RESERVED +CVE-2021-43218 + RESERVED +CVE-2021-43217 + RESERVED +CVE-2021-43216 + RESERVED +CVE-2021-43215 + RESERVED +CVE-2021-43214 + RESERVED +CVE-2021-43213 + RESERVED +CVE-2021-43212 + RESERVED +CVE-2021-43211 + RESERVED +CVE-2021-43210 + RESERVED +CVE-2021-43209 + RESERVED +CVE-2021-43208 + RESERVED +CVE-2021-43207 + RESERVED +CVE-2021-43206 + RESERVED +CVE-2021-43205 + RESERVED +CVE-2021-43204 + RESERVED +CVE-2021-3921 + RESERVED +CVE-2021-3920 + RESERVED +CVE-2021-3919 + RESERVED CVE-2021-43203 RESERVED CVE-2021-43202 @@ -949,8 +1061,8 @@ CVE-2021-42765 (The Proof-of-Stake (PoS) Ethereum consensus protocol through 202 NOT-FOR-US: Proof-of-Stake (PoS) Ethereum consensus protocol CVE-2021-42764 (The Proof-of-Stake (PoS) Ethereum consensus protocol through 2021-10-1 ...) NOT-FOR-US: Proof-of-Stake (PoS) Ethereum consensus protocol -CVE-2021-42763 - RESERVED +CVE-2021-42763 (Couchbase Server before 6.6.3 and 7.x before 7.0.2 stores Sensitive In ...) + TODO: check CVE-2021-42762 (BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allow ...) {DSA-4996-1 DSA-4995-1} - webkit2gtk 2.34.1-1 @@ -972,8 +1084,8 @@ CVE-2021-42756 RESERVED CVE-2021-42755 RESERVED -CVE-2021-42754 - RESERVED +CVE-2021-42754 (An improper control of generation of code vulnerability [CWE-94] in Fo ...) + TODO: check CVE-2021-42753 RESERVED CVE-2021-42752 @@ -1360,8 +1472,8 @@ CVE-2021-42570 RESERVED CVE-2021-42569 RESERVED -CVE-2021-42568 - RESERVED +CVE-2021-42568 (Sonatype Nexus Repository Manager 3.x through 3.35.0 allows attackers ...) + TODO: check CVE-2021-42567 RESERVED CVE-2021-42566 (myfactory.FMS before 7.1-912 allows XSS via the Error parameter. ...) @@ -4377,8 +4489,8 @@ CVE-2021-41240 RESERVED CVE-2021-41239 RESERVED -CVE-2021-41238 - RESERVED +CVE-2021-41238 (Hangfire is an open source system to perform background job processing ...) + TODO: check CVE-2021-41237 RESERVED CVE-2021-41236 @@ -4389,8 +4501,8 @@ CVE-2021-41234 RESERVED CVE-2021-41233 RESERVED -CVE-2021-41232 - RESERVED +CVE-2021-41232 (Thunderdome is an open source agile planning poker tool in the theme o ...) + TODO: check CVE-2021-41231 RESERVED CVE-2021-41230 @@ -4879,16 +4991,16 @@ CVE-2021-41025 RESERVED CVE-2021-41024 RESERVED -CVE-2021-41023 - RESERVED -CVE-2021-41022 - RESERVED +CVE-2021-41023 (A unprotected storage of credentials in Fortinet FortiSIEM Windows Age ...) + TODO: check +CVE-2021-41022 (A improper privilege management in Fortinet FortiSIEM Windows Agent ve ...) + TODO: check CVE-2021-41021 RESERVED CVE-2021-41020 RESERVED -CVE-2021-41019 - RESERVED +CVE-2021-41019 (An improper validation of certificate with host mismatch [CWE-297] vul ...) + TODO: check CVE-2021-41018 RESERVED CVE-2021-41017 @@ -9797,8 +9909,8 @@ CVE-2021-38950 RESERVED CVE-2021-38949 RESERVED -CVE-2021-38948 - RESERVED +CVE-2021-38948 (IBM InfoSphere Information Server 11.7 is vulnerable to an XML Externa ...) + TODO: check CVE-2021-38947 RESERVED CVE-2021-38946 @@ -12504,8 +12616,8 @@ CVE-2021-3675 RESERVED CVE-2021-37843 (The resolution SAML SSO apps for Atlassian products allow a remote att ...) NOT-FOR-US: resolution SAML SSO apps for Atlassian products -CVE-2021-37842 - RESERVED +CVE-2021-37842 (metakv in Couchbase Server 7.0.0 uses Cleartext for Storage of Sensiti ...) + TODO: check CVE-2021-37841 (Docker Desktop before 3.6.0 suffers from incorrect access control. If ...) NOT-FOR-US: Docker Desktop on Windows CVE-2021-37840 (aaPanel through 6.8.12 allows Cross-Site WebSocket Hijacking (CSWH) in ...) @@ -14596,14 +14708,14 @@ CVE-2021-36927 (Windows Digital TV Tuner device registration application Elevati NOT-FOR-US: Microsoft CVE-2021-36926 (Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vuln ...) NOT-FOR-US: Microsoft -CVE-2021-36925 - RESERVED -CVE-2021-36924 - RESERVED -CVE-2021-36923 - RESERVED -CVE-2021-36922 - RESERVED +CVE-2021-36925 (RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio t ...) + TODO: check +CVE-2021-36924 (RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio t ...) + TODO: check +CVE-2021-36923 (RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio t ...) + TODO: check +CVE-2021-36922 (RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio t ...) + TODO: check CVE-2021-36921 (AIMANAGER before B115 on MONITORAPP Application Insight Web Applicatio ...) NOT-FOR-US: MONITORAPP Application Insight Web Application Firewall (AIWAF) devices CVE-2021-36920 @@ -14858,8 +14970,8 @@ CVE-2021-36796 RESERVED CVE-2021-36795 (A permission issue in the Cohesity Linux agent may allow privilege esc ...) NOT-FOR-US: Cohesity -CVE-2021-36794 - RESERVED +CVE-2021-36794 (In Siren Investigate before 11.1.4, when enabling the cluster feature ...) + TODO: check CVE-2021-36793 (The routes (aka Extbase Yaml Routes) extension before 2.1.1 for TYPO3, ...) NOT-FOR-US: routes (aka Extbase Yaml Routes) extension for TYPO3 CVE-2021-36792 (The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 has ...) @@ -15407,8 +15519,8 @@ CVE-2021-36562 RESERVED CVE-2021-36561 RESERVED -CVE-2021-36560 - RESERVED +CVE-2021-36560 (Phone Shop Sales Managements System using PHP with Source Code 1.0 is ...) + TODO: check CVE-2021-36559 RESERVED CVE-2021-36558 @@ -16213,20 +16325,20 @@ CVE-2021-36189 RESERVED CVE-2021-36188 RESERVED -CVE-2021-36187 - RESERVED -CVE-2021-36186 - RESERVED -CVE-2021-36185 - RESERVED -CVE-2021-36184 - RESERVED -CVE-2021-36183 - RESERVED +CVE-2021-36187 (A uncontrolled resource consumption in Fortinet FortiWeb version 6.4.0 ...) + TODO: check +CVE-2021-36186 (A stack-based buffer overflow in Fortinet FortiWeb version 6.4.0, vers ...) + TODO: check +CVE-2021-36185 (A improper neutralization of special elements used in an OS command (' ...) + TODO: check +CVE-2021-36184 (A improper neutralization of Special Elements used in an SQL Command ( ...) + TODO: check +CVE-2021-36183 (An improper authorization vulnerability [CWE-285] in FortiClient for W ...) + TODO: check CVE-2021-36182 (A Improper neutralization of special elements used in a command ('Comm ...) NOT-FOR-US: FortiGuard -CVE-2021-36181 - RESERVED +CVE-2021-36181 (A concurrent execution using shared resource with improper Synchroniza ...) + TODO: check CVE-2021-36180 RESERVED CVE-2021-36179 (A stack-based buffer overflow in Fortinet FortiWeb version 6.3.14 and ...) @@ -16235,16 +16347,16 @@ CVE-2021-36178 (A insufficiently protected credentials in Fortinet FortiSDNConne NOT-FOR-US: Fortiguard CVE-2021-36177 RESERVED -CVE-2021-36176 - RESERVED +CVE-2021-36176 (Multiple uncontrolled resource consumption vulnerabilities in the web ...) + TODO: check CVE-2021-36175 (An improper neutralization of input vulnerability [CWE-79] in FortiWeb ...) NOT-FOR-US: Fortiguard -CVE-2021-36174 - RESERVED +CVE-2021-36174 (A memory allocation with excessive size value vulnerability in the lic ...) + TODO: check CVE-2021-36173 RESERVED -CVE-2021-36172 - RESERVED +CVE-2021-36172 (An improper restriction of XML external entity reference vulnerability ...) + TODO: check CVE-2021-36171 RESERVED CVE-2021-36170 (An information disclosure vulnerability [CWE-200] in FortiAnalyzerVM a ...) @@ -22131,8 +22243,8 @@ CVE-2021-33613 RESERVED CVE-2021-33612 RESERVED -CVE-2021-33611 - RESERVED +CVE-2021-33611 (Missing output sanitization in test sources in org.webjars.bowergithub ...) + TODO: check CVE-2021-33610 RESERVED CVE-2021-33609 (Missing check in DataCommunicator class in com.vaadin:vaadin-server ve ...) @@ -24687,8 +24799,8 @@ CVE-2021-32597 (Multiple improper neutralization of input during web page genera NOT-FOR-US: Fortiguard CVE-2021-32596 (A use of one-way hash with a predictable salt vulnerability in the pas ...) NOT-FOR-US: FortiPortal -CVE-2021-32595 - RESERVED +CVE-2021-32595 (Multiple uncontrolled resource consumption vulnerabilities in the web ...) + TODO: check CVE-2021-32594 (An unrestricted file upload vulnerability in the web interface of Fort ...) NOT-FOR-US: FortiPortal CVE-2021-32593 @@ -31604,8 +31716,8 @@ CVE-2021-29890 RESERVED CVE-2021-29889 RESERVED -CVE-2021-29888 - RESERVED +CVE-2021-29888 (IBM InfoSphere Information Server 11.7 is vulnerable to cross-site req ...) + TODO: check CVE-2021-29887 RESERVED CVE-2021-29886 @@ -31630,8 +31742,8 @@ CVE-2021-29877 RESERVED CVE-2021-29876 RESERVED -CVE-2021-29875 - RESERVED +CVE-2021-29875 (IBM InfoSphere Information Server 11.7 could allow an attacker to obta ...) + TODO: check CVE-2021-29874 RESERVED CVE-2021-29873 (IBM Flash System 900 could allow an authenticated attacker to obtain s ...) @@ -31838,8 +31950,8 @@ CVE-2021-29773 (IBM Security Guardium 10.6 and 11.3 could allow a remote authent NOT-FOR-US: IBM CVE-2021-29772 (IBM API Connect 5.0.0.0 through 5.0.8.11 could allow a user to potenti ...) NOT-FOR-US: IBM -CVE-2021-29771 - RESERVED +CVE-2021-29771 (IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scr ...) + TODO: check CVE-2021-29770 (IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4. ...) NOT-FOR-US: IBM CVE-2021-29769 (IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4. ...) @@ -31904,10 +32016,10 @@ CVE-2021-29740 (IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0 NOT-FOR-US: IBM CVE-2021-29739 (IBM Planning Analytics Local 2.0 could allow a remote attacker to obta ...) NOT-FOR-US: IBM -CVE-2021-29738 - RESERVED -CVE-2021-29737 - RESERVED +CVE-2021-29738 (IBM InfoSphere Data Flow Designer (IBM InfoSphere Information Server 1 ...) + TODO: check +CVE-2021-29737 (IBM InfoSphere Data Flow Designer Engine (IBM InfoSphere Information S ...) + TODO: check CVE-2021-29736 (IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a ...) NOT-FOR-US: IBM CVE-2021-29735 @@ -33810,7 +33922,7 @@ CVE-2021-28962 RESERVED CVE-2021-28961 (applications/luci-app-ddns/luasrc/model/cbi/ddns/detail.lua in the DDN ...) NOT-FOR-US: DDNS package for OpenWrt -CVE-2021-28960 (ManageEngine Desktop Central before build 10.0.683 allows Unauthentica ...) +CVE-2021-28960 (Zoho ManageEngine Desktop Central before build 10.0.683 allows unauthe ...) NOT-FOR-US: ManageEngine CVE-2021-28959 (Zoho ManageEngine Eventlog Analyzer through 12147 is vulnerable to una ...) NOT-FOR-US: Zoho ManageEngine @@ -36817,10 +36929,10 @@ CVE-2021-27725 RESERVED CVE-2021-27724 RESERVED -CVE-2021-27723 - RESERVED -CVE-2021-27722 - RESERVED +CVE-2021-27723 (An issue was discovered in Nsasoft US LLC Product Key Explorer 4.2.7. ...) + TODO: check +CVE-2021-27722 (An issue was discovered in Nsasoft US LLC SpotAuditor 5.3.5. The progr ...) + TODO: check CVE-2021-27721 RESERVED CVE-2021-27720 @@ -40673,8 +40785,8 @@ CVE-2021-26109 RESERVED CVE-2021-26108 RESERVED -CVE-2021-26107 - RESERVED +CVE-2021-26107 (An improper access control vulnerability [CWE-284] in FortiManager ver ...) + TODO: check CVE-2021-26106 (An improper neutralization of special elements used in an OS Command v ...) NOT-FOR-US: Fortiguard CVE-2021-26105 |