From cc3d0c84f6dcbeab2aa7ad2207c25535fdbec5c7 Mon Sep 17 00:00:00 2001 From: security tracker role Date: Mon, 29 Nov 2021 08:10:11 +0000 Subject: automatic update --- data/CVE/list.2021 | 23 +++++++++++++---------- 1 file changed, 13 insertions(+), 10 deletions(-) diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 30ea3cb6c7..25d156296e 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -1,3 +1,7 @@ +CVE-2021-4027 + RESERVED +CVE-2021-4026 + RESERVED CVE-2021-4025 RESERVED CVE-2021-44235 @@ -350,10 +354,10 @@ CVE-2021-44096 RESERVED CVE-2021-44095 RESERVED -CVE-2021-44094 - RESERVED -CVE-2021-44093 - RESERVED +CVE-2021-44094 (ZrLog 2.2.2 has a remote command execution vulnerability at plugin dow ...) + TODO: check +CVE-2021-44093 (A Remote Command Execution vulnerability on the background in zrlog 2. ...) + TODO: check CVE-2021-44092 RESERVED CVE-2021-44091 @@ -408,8 +412,8 @@ CVE-2021-3992 RESERVED CVE-2021-44078 RESERVED -CVE-2021-44077 - RESERVED +CVE-2021-44077 (Zoho ManageEngine ServiceDesk Plus before 11306 is vulnerable to unaut ...) + TODO: check CVE-2021-3991 RESERVED CVE-2021-3990 @@ -28742,8 +28746,8 @@ CVE-2021-3536 (A flaw was found in Wildfly in versions before 23.0.2.Final while - wildfly (bug #752018) CVE-2021-3535 (Rapid7 Nexpose is vulnerable to a non-persistent cross-site scripting ...) NOT-FOR-US: Rapid7 -CVE-2021-32061 - RESERVED +CVE-2021-32061 (S3Scanner before 2.0.2 allows Directory Traversal via a crafted bucket ...) + TODO: check CVE-2021-32060 RESERVED CVE-2021-32059 @@ -53592,8 +53596,7 @@ CVE-2021-21709 RESERVED CVE-2021-21708 RESERVED -CVE-2021-21707 [special character is breaking the path in xml function] - RESERVED +CVE-2021-21707 (In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below ...) - php8.1 8.1.0-1 - php8.0 - php7.4 -- cgit v1.2.3