| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2021-31000 | A permissions issue was addressed with improved validation. This issue is fixed in iOS 15.2 and iPad... | | |
| CVE-2021-31001 | An access issue was addressed with improved access restrictions. This issue is fixed in iOS 15 and i... | | |
| CVE-2021-31002 | An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Mon... | | |
| CVE-2021-31003 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31004 | A race condition was addressed with improved locking. This issue is fixed in macOS Monterey 12.0.1, ... | | |
| CVE-2021-31005 | Description: A logic issue was addressed with improved state management. This issue is fixed in iOS ... | | |
| CVE-2021-31006 | Description: A permissions issue was addressed with improved validation. This issue is fixed in watc... | | |
| CVE-2021-31007 | Description: A permissions issue was addressed with improved validation. This issue is fixed in iOS ... | | |
| CVE-2021-31008 | A type confusion issue was addressed with improved memory handling. This issue is fixed in Safari 15... | | |
| CVE-2021-31009 | Multiple issues were addressed by removing HDF5. This issue is fixed in iOS 15.2 and iPadOS 15.2, ma... | | |
| CVE-2021-31010 | A deserialization issue was addressed through improved validation. This issue is fixed in Security U... | KEV | |
| CVE-2021-31011 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31012 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31013 | An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Mont... | | |
| CVE-2021-31014 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31015 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31016 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31017 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31018 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31019 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31020 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31021 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31022 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31023 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31024 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31025 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31026 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31027 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31028 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31029 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31030 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31031 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31032 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31033 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31034 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31035 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31036 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31037 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31038 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31039 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31040 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31041 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31042 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31043 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31044 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31045 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31046 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31047 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31048 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31049 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31050 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31051 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31052 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31053 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31054 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31055 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31056 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31057 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31058 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31059 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31060 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31061 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31062 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31063 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31064 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31065 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31066 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31067 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31068 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31069 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31070 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31071 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31072 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31073 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31074 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31075 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31076 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31077 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31078 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31079 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31080 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31081 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31082 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31083 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31084 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31085 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31086 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31087 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31088 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31089 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31090 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31091 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31092 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31093 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31094 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31095 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31096 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31097 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31098 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31099 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31100 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31101 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31102 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31103 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31104 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31105 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31106 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31107 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31108 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31109 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31110 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31111 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31112 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31113 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31114 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31115 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31116 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31117 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31118 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31119 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31120 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31121 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31122 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31123 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31124 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31125 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31126 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31127 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31128 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31129 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31130 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31131 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31132 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31133 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31134 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31135 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31136 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31137 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31138 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31139 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31140 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31141 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31142 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31143 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31144 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31145 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31146 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31147 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31148 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31149 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31150 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31151 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31152 | Multilaser Router AC1200 V02.03.01.45_pt contains a cross-site request forgery (CSRF) vulnerability.... | E | |
| CVE-2021-31153 | please before 0.4 allows a local unprivileged attacker to gain knowledge about the existence of file... | E | |
| CVE-2021-31154 | pleaseedit in please before 0.4 uses predictable temporary filenames in /tmp and the target director... | E | |
| CVE-2021-31155 | Failure to normalize the umask in please before 0.4 allows a local attacker to gain full root privil... | E | |
| CVE-2021-31156 | Allied Telesis AT-S115 1.2.0 devices before 1.00.024 with Boot Loader 1.00.006 allow Directory Trave... | | |
| CVE-2021-31158 | In the Query Engine in Couchbase Server 6.5.x and 6.6.x through 6.6.1, Common Table Expression queri... | | |
| CVE-2021-31159 | Zoho ManageEngine ServiceDesk Plus MSP before 10519 is vulnerable to a User Enumeration bug due to i... | E | |
| CVE-2021-31160 | Zoho ManageEngine ServiceDesk Plus MSP before 10521 allows an attacker to access internal data.... | | |
| CVE-2021-31162 | In the standard library in Rust before 1.52.0, a double free can occur in the Vec::from_iter functio... | E S | |
| CVE-2021-31164 | Apache Unomi log injection | S | |
| CVE-2021-31165 | Windows Container Manager Service Elevation of Privilege Vulnerability | S | |
| CVE-2021-31166 | HTTP Protocol Stack Remote Code Execution Vulnerability | KEV S | |
| CVE-2021-31167 | Windows Container Manager Service Elevation of Privilege Vulnerability | S | |
| CVE-2021-31168 | Windows Container Manager Service Elevation of Privilege Vulnerability | S | |
| CVE-2021-31169 | Windows Container Manager Service Elevation of Privilege Vulnerability | S | |
| CVE-2021-31170 | Windows Graphics Component Elevation of Privilege Vulnerability | S | |
| CVE-2021-31171 | Microsoft SharePoint Information Disclosure Vulnerability | S | |
| CVE-2021-31172 | Microsoft SharePoint Server Spoofing Vulnerability | S | |
| CVE-2021-31173 | Microsoft SharePoint Server Information Disclosure Vulnerability | S | |
| CVE-2021-31174 | Microsoft Excel Information Disclosure Vulnerability | S | |
| CVE-2021-31175 | Microsoft Office Remote Code Execution Vulnerability | S | |
| CVE-2021-31176 | Microsoft Office Remote Code Execution Vulnerability | S | |
| CVE-2021-31177 | Microsoft Office Remote Code Execution Vulnerability | S | |
| CVE-2021-31178 | Microsoft Office Information Disclosure Vulnerability | S | |
| CVE-2021-31179 | Microsoft Office Remote Code Execution Vulnerability | S | |
| CVE-2021-31180 | Microsoft Office Graphics Remote Code Execution Vulnerability | S | |
| CVE-2021-31181 | Microsoft SharePoint Remote Code Execution Vulnerability | E S | |
| CVE-2021-31182 | Microsoft Bluetooth Driver Spoofing Vulnerability | S | |
| CVE-2021-31183 | Windows TCP/IP Driver Denial of Service Vulnerability | S | |
| CVE-2021-31184 | Microsoft Windows Infrared Data Association (IrDA) Information Disclosure Vulnerability | S | |
| CVE-2021-31185 | Windows Desktop Bridge Denial of Service Vulnerability | S | |
| CVE-2021-31186 | Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability | S | |
| CVE-2021-31187 | Windows WalletService Elevation of Privilege Vulnerability | S | |
| CVE-2021-31188 | Windows Graphics Component Elevation of Privilege Vulnerability | S | |
| CVE-2021-31190 | Windows Container Isolation FS Filter Driver Elevation of Privilege Vulnerability | S | |
| CVE-2021-31191 | Windows Projected File System FS Filter Driver Information Disclosure Vulnerability | S | |
| CVE-2021-31192 | Windows Media Foundation Core Remote Code Execution Vulnerability | S | |
| CVE-2021-31193 | Windows SSDP Service Elevation of Privilege Vulnerability | S | |
| CVE-2021-31194 | OLE Automation Remote Code Execution Vulnerability | S | |
| CVE-2021-31195 | Microsoft Exchange Server Remote Code Execution Vulnerability | S | |
| CVE-2021-31196 | Microsoft Exchange Server Remote Code Execution Vulnerability | KEV S | |
| CVE-2021-31198 | Microsoft Exchange Server Remote Code Execution Vulnerability | S | |
| CVE-2021-31199 | Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability | KEV S | |
| CVE-2021-31200 | Common Utilities Remote Code Execution Vulnerability | S | |
| CVE-2021-31201 | Microsoft Enhanced Cryptographic Provider Elevation of Privilege Vulnerability | KEV S | |
| CVE-2021-31204 | .NET and Visual Studio Elevation of Privilege Vulnerability | S | |
| CVE-2021-31205 | Windows SMB Client Security Feature Bypass Vulnerability | S | |
| CVE-2021-31206 | Microsoft Exchange Server Remote Code Execution Vulnerability | S | |
| CVE-2021-31207 | Microsoft Exchange Server Security Feature Bypass Vulnerability | KEV E S | |
| CVE-2021-31208 | Windows Container Manager Service Elevation of Privilege Vulnerability | S | |
| CVE-2021-31209 | Microsoft Exchange Server Spoofing Vulnerability | S | |
| CVE-2021-31211 | Visual Studio Code Remote Code Execution Vulnerability | S | |
| CVE-2021-31213 | Visual Studio Code Remote Containers Extension Remote Code Execution Vulnerability | S | |
| CVE-2021-31214 | Visual Studio Code Remote Code Execution Vulnerability | S | |
| CVE-2021-31215 | SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution... | | |
| CVE-2021-31216 | Siren Investigate before 11.1.1 contains a server side request forgery (SSRF) defect in the built-in... | S | |
| CVE-2021-31217 | In SolarWinds DameWare Mini Remote Control Server 12.0.1.200, insecure file permissions allow file d... | | |
| CVE-2021-31220 | SES Evolution before 2.1.0 allows modifying security policies by leveraging access of a user having ... | | |
| CVE-2021-31221 | SES Evolution before 2.1.0 allows deleting some parts of a security policy by leveraging access to a... | | |
| CVE-2021-31222 | SES Evolution before 2.1.0 allows updating some parts of a security policy by leveraging access to a... | | |
| CVE-2021-31223 | SES Evolution before 2.1.0 allows reading some parts of a security policy by leveraging access to a ... | | |
| CVE-2021-31224 | SES Evolution before 2.1.0 allows duplicating an existing security policy by leveraging access of a ... | | |
| CVE-2021-31225 | SES Evolution before 2.1.0 allows deleting some resources not currently in use by any security polic... | | |
| CVE-2021-31226 | An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in... | M | |
| CVE-2021-31227 | An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in... | M | |
| CVE-2021-31228 | An issue was discovered in HCC embedded InterNiche 4.0.1. This vulnerability allows the attacker to ... | M | |
| CVE-2021-31229 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd() performs inc... | E S | |
| CVE-2021-31231 | The Alertmanager in Grafana Enterprise Metrics before 1.2.1 and Metrics Enterprise 1.2.1 has a local... | | |
| CVE-2021-31232 | The Alertmanager in CNCF Cortex before 1.8.1 has a local file disclosure vulnerability when -experim... | S | |
| CVE-2021-31233 | SQL Injection vulnerability found in Fighting Cock Information System v.1.0 allows a remote attacker... | E | |
| CVE-2021-31239 | An issue found in SQLite SQLite3 v.3.35.4 that allows a remote attacker to cause a denial of service... | E S | |
| CVE-2021-31240 | An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF... | E | |
| CVE-2021-31245 | omr-admin.py in openmptcprouter-vps-admin 0.57.3 and earlier compares the user provided password wit... | E S | |
| CVE-2021-31249 | A CRLF injection vulnerability was found on BF-430, BF-431, and BF-450M TCP/IP Converter devices fro... | E | |
| CVE-2021-31250 | Multiple storage XSS vulnerabilities were discovered on BF-430, BF-431 and BF-450M TCP/IP Converter ... | E | |
| CVE-2021-31251 | An authentication bypass in telnet server in BF-430 and BF431 232/422 TCP/IP Converter, BF-450M and ... | E | |
| CVE-2021-31252 | An open redirect vulnerability exists in BF-630, BF-450M, BF-430, BF-431, BF631-W, BF830-W, Webpass,... | E | |
| CVE-2021-31254 | Buffer overflow in the tenc_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a de... | E S | |
| CVE-2021-31255 | Buffer overflow in the abst_box_read function in MP4Box in GPAC 1.0.1 allows attackers to cause a de... | E S | |
| CVE-2021-31256 | Memory leak in the stbl_GetSampleInfos function in MP4Box in GPAC 1.0.1 allows attackers to read mem... | E S | |
| CVE-2021-31257 | The HintFile function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer dere... | E S | |
| CVE-2021-31258 | The gf_isom_set_extraction_slc function in GPAC 1.0.1 allows attackers to cause a denial of service ... | E S | |
| CVE-2021-31259 | The gf_isom_cenc_get_default_info_internal function in GPAC 1.0.1 allows attackers to cause a denial... | E S | |
| CVE-2021-31260 | The MergeTrack function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL pointer de... | E S | |
| CVE-2021-31261 | The gf_hinter_track_new function in GPAC 1.0.1 allows attackers to read memory via a crafted file in... | E S | |
| CVE-2021-31262 | The AV1_DuplicateConfig function in GPAC 1.0.1 allows attackers to cause a denial of service (NULL p... | E S | |
| CVE-2021-31272 | SerenityOS before commit 3844e8569689dd476064a0759d704bc64fb3ca2c contains a directory traversal vul... | S | |
| CVE-2021-31274 | In LibreNMS < 21.3.0, a stored XSS vulnerability was identified in the API Access page due to insuff... | S | |
| CVE-2021-31280 | An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has XSS via the keyw... | E | |
| CVE-2021-31291 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29457. Reason: This candidat... | R | |
| CVE-2021-31292 | An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based... | E S | |
| CVE-2021-31294 | Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by sending a... | E S | |
| CVE-2021-31314 | File upload vulnerability in ejinshan v8+ terminal security system allows attackers to upload arbitr... | E | |
| CVE-2021-31315 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Stack B... | E | |
| CVE-2021-31316 | The unprivileged user portal part of CentOS Web Panel is affected by a SQL Injection via the 'idsess... | E | |
| CVE-2021-31317 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Type Co... | E | |
| CVE-2021-31318 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Type Co... | E | |
| CVE-2021-31319 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by an Intege... | E | |
| CVE-2021-31320 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Bu... | E | |
| CVE-2021-31321 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Stack B... | E | |
| CVE-2021-31322 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Bu... | E | |
| CVE-2021-31323 | Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by a Heap Bu... | E | |
| CVE-2021-31324 | The unprivileged user portal part of CentOS Web Panel is affected by a Command Injection vulnerabili... | E | |
| CVE-2021-31326 | D-Link DIR-816 A2 1.10 B05 allows unauthenticated attackers to arbitrarily reset the device via a cr... | E | |
| CVE-2021-31327 | Stored XSS in Remote Clinic v2.0 in /medicines due to Medicine Name Field.... | E | |
| CVE-2021-31329 | Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Chat" and "Personal Address" field on staf... | E | |
| CVE-2021-31330 | A Cross-Site Scripting (XSS) vulnerability exists within Review Board versions 3.0.20 and 4.0 RC1 an... | E | |
| CVE-2021-31337 | The Telnet service of the SIMATIC HMI Comfort Panels system component in affected products does not ... | | |
| CVE-2021-31338 | A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.0 SP1). Affec... | S | |
| CVE-2021-31339 | A vulnerability has been identified in Mendix Excel Importer Module (All versions < V9.0.3). Uploadi... | | |
| CVE-2021-31340 | A vulnerability has been identified in SIMATIC RF166C (All versions > V1.1 and < V1.3.2), SIMATIC RF... | S | |
| CVE-2021-31341 | Uploading a table mapping using a manipulated XML file results in an exception that could expose inf... | | |
| CVE-2021-31342 | The ugeom2d.dll library in all versions of Solid Edge SE2020 before 2020MP14 and all versions of Sol... | | |
| CVE-2021-31343 | The jutil.dll library in all versions of Solid Edge SE2020 before 2020MP14 and all versions of Solid... | | |
| CVE-2021-31344 | A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital E... | | |
| CVE-2021-31345 | A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital E... | | |
| CVE-2021-31346 | A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital E... | | |
| CVE-2021-31347 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_parse_str() performs incorr... | E S | |
| CVE-2021-31348 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_parse_str() performs incorr... | E S | |
| CVE-2021-31349 | Session Smart Router: Authentication Bypass Vulnerability | S | |
| CVE-2021-31350 | Junos OS and Junos OS Evolved: Privilege escalation vulnerability in Juniper Extension Toolkit (JET) | S | |
| CVE-2021-31351 | Junos OS: MX Series: Receipt of specific packet on MS-MPC/MS-MIC causes line card reset | S | |
| CVE-2021-31352 | SRC Series: NETCONF over SSH allows negotiation of weak ciphers | E S | |
| CVE-2021-31353 | Junos OS and Junos OS Evolved: RPD core upon receipt of specific BGP update | E S | |
| CVE-2021-31354 | Junos OS and Junos OS Evolved: A vulnerability in the Juniper Agile License Client may allow an attacker to perform Remote Code Execution (RCE) | S | |
| CVE-2021-31355 | Junos OS: Stored Cross-Site Scripting (XSS) vulnerability in captive portal | S | |
| CVE-2021-31356 | Junos OS Evolved: Multiple shell-injection vulnerabilities in EVO UI wrapper scripts | S | |
| CVE-2021-31357 | Junos OS Evolved: shell-injection vulnerabilities in evo_tcpdump UI wrapper script | S | |
| CVE-2021-31358 | Junos OS Evolved: shell-injection vulnerabilities in evo_sftp UI wrapper script | S | |
| CVE-2021-31359 | Junos OS and Junos OS Evolved: Local Privilege Escalation vulnerability | S | |
| CVE-2021-31360 | Junos OS and Junos OS Evolved: Denial of Service vulnerability in local file processing | S | |
| CVE-2021-31361 | Junos OS: QFX Series and PTX Series: FPC resource usage increases when certain packets are processed which are being VXLAN encapsulated | S | |
| CVE-2021-31362 | Junos OS and Junos OS Evolved: An IS-IS adjacency might be taken down if a bad hello PDU is received for an existing adjacency causing a DoS | S | |
| CVE-2021-31363 | Junos OS and Junos OS Evolved: Receipt of a specific LDP message will cause a Denial of Service | S | |
| CVE-2021-31364 | Junos OS: SRX Series: The flowd process will crash if log session-close is configured and specific traffic is received | S | |
| CVE-2021-31365 | Junos OS: EX2300, EX3400 and EX4300 Series: An Aggregated Ethernet (AE) interface will go down due to a stream of specific layer 2 frames | S | |
| CVE-2021-31366 | Junos OS: MX Series: In subscriber management / BBE configuration authd can crash if a subscriber with a specific username tries to login leading to a DoS | S | |
| CVE-2021-31367 | Junos OS: PTX Series: An FPC heap memory leak will be triggered by certain Flowspec route operations which can lead to an FPC crash | S | |
| CVE-2021-31368 | Junos OS: EX2300 Series, EX3400 Series, and ACX710 might become unresponsive if the out-of-band management port receives a flood of traffic | S | |
| CVE-2021-31369 | Junos OS: MX Series: Traffic drops will be observed if MS-MPC/MS-PIC resources are consumed by certain traffic causing a partial DoS | S | |
| CVE-2021-31370 | Junos OS: QFX5000 Series and EX4600 Series: Control traffic might be dropped if a high rate of specific multicast traffic is received | S | |
| CVE-2021-31371 | Junos OS: QFX5000 Series: Traffic from the network internal to the device (128.0.0.0) may be forwarded to egress interfaces. | S | |
| CVE-2021-31372 | Junos OS: J-Web allows a locally authenticated attacker to escalate their privileges to root. | S | |
| CVE-2021-31373 | Junos OS: SRX Series: Persistent XSS vulnerability in J-Web | S | |
| CVE-2021-31374 | Junos OS and Junos OS Evolved: RPD crash while processing a specially crafted BGP UPDATE or KEEPALIVE message. | S | |
| CVE-2021-31375 | Junos OS: Receipt of a specific BGP update may cause RPKI policy-checks to be bypassed | S | |
| CVE-2021-31376 | Junos OS: ACX Series: Packet Forwarding Engine manager (FXPC) process crashes when processing DHCPv6 packets | S | |
| CVE-2021-31377 | Junos OS: A local authenticated attacker can cause RPD to core | S | |
| CVE-2021-31378 | Junos OS: An attacker sending spoofed RADIUS messages to a Junos OS device configured for broadband services may cause broadband subscribers to remain stuck in a "Terminating" state. | S | |
| CVE-2021-31379 | Junos OS: MX Series: MPC 7/8/9/10/11 cards with MAP-E: PFE halts when an attacker sends malformed IPv4 or IPv6 traffic inside the MAP-E tunnel. | E S | |
| CVE-2021-31380 | SRC Series: A remote attacker sending a specially crafted query may cause the web server to disclose sensitive information | S | |
| CVE-2021-31381 | SRC Series: A remote attacker sending a specially crafted query may cause the web server to delete files | S | |
| CVE-2021-31382 | Junos OS: PTX1000 System, PTX10002-60C System: After upgrading, configured firewall filters may be applied on incorrect interfaces | S | |
| CVE-2021-31383 | Junos OS and Junos OS Evolved: In Point to MultiPoint (P2MP) scenarios receipt of various crafted packets causes RPD to core. | S | |
| CVE-2021-31384 | Junos OS: SRX Series: Under a specific device configuration an attacker can access the devices J-Web management services from any interface, regardless of security settings protecting the service | S | |
| CVE-2021-31385 | Junos OS: J-Web: A path traversal vulnerability allows an authenticated attacker to elevate their privileges to root | S | |
| CVE-2021-31386 | Junos OS: When using J-Web with HTTP an attacker may retrieve encryption keys via Person-in-the-Middle attacks. | S | |
| CVE-2021-31399 | On 2N Access Unit 2.0 2.31.0.40.5 devices, an attacker can pose as the web relay for a man-in-the-mi... | | |
| CVE-2021-31400 | An issue was discovered in tcp_pulloutofband() in tcp_in.c in HCC embedded InterNiche 4.0.1. The TCP... | M | |
| CVE-2021-31401 | An issue was discovered in tcp_rcv() in nptcp.c in HCC embedded InterNiche 4.0.1. The TCP header pro... | M | |
| CVE-2021-31402 | The dio package 4.0.0 for Dart allows CRLF injection if the attacker controls the HTTP method string... | E | |
| CVE-2021-31403 | Timing side channel vulnerability in UIDL request handler in Vaadin 7 and 8 | S | |
| CVE-2021-31404 | Timing side channel vulnerability in UIDL request handler in Vaadin 10, 11-14, and 15-18 | S | |
| CVE-2021-31405 | Regular expression denial of service (ReDoS) in EmailField component in Vaadin 14 and 15-17 | S | |
| CVE-2021-31406 | Timing side channel vulnerability in endpoint request handler in Vaadin 15-19 | S | |
| CVE-2021-31407 | Server classes and resources exposure in OSGi applications using Vaadin 12-14 and 19 | S | |
| CVE-2021-31408 | Server session is not invalidated when logout() helper method of Authentication module is used in Vaadin 18-19 | S | |
| CVE-2021-31409 | Server session is not invalidated when logout() helper method of Authentication module is used in Vaadin 18-19 | S | |
| CVE-2021-31410 | Project sources exposure in Vaadin Designer | | |
| CVE-2021-31411 | Insecure temporary directory usage in frontend build functionality of Vaadin 14 and 15-19 | S | |
| CVE-2021-31412 | Possible route enumeration in production mode via RouteNotFoundError view in Vaadin 10, 11-14, and 15-19 | S | |
| CVE-2021-31414 | The unofficial vscode-rpm-spec extension before 0.3.2 for Visual Studio Code allows remote code exec... | S | |
| CVE-2021-31417 | This vulnerability allows local attackers to disclose sensitive information on affected installation... | | |
| CVE-2021-31418 | This vulnerability allows local attackers to disclose sensitive information on affected installation... | | |
| CVE-2021-31419 | This vulnerability allows local attackers to disclose sensitive information on affected installation... | | |
| CVE-2021-31420 | This vulnerability allows local attackers to escalate privileges on affected installations of Parall... | | |
| CVE-2021-31421 | This vulnerability allows local attackers to delete arbitrary files on affected installations of Par... | | |
| CVE-2021-31422 | This vulnerability allows local attackers to escalate privileges on affected installations of Parall... | | |
| CVE-2021-31423 | This vulnerability allows local attackers to disclose sensitive information on affected installation... | | |
| CVE-2021-31424 | This vulnerability allows local attackers to escalate privileges on affected installations of Parall... | | |
| CVE-2021-31425 | This vulnerability allows local attackers to escalate privileges on affected installations of Parall... | | |
| CVE-2021-31426 | This vulnerability allows local attackers to escalate privileges on affected installations of Parall... | | |
| CVE-2021-31427 | This vulnerability allows local attackers to disclose sensitive information on affected installation... | | |
| CVE-2021-31428 | This vulnerability allows local attackers to escalate privileges on affected installations of Parall... | | |
| CVE-2021-31429 | This vulnerability allows local attackers to escalate privileges on affected installations of Parall... | | |
| CVE-2021-31430 | This vulnerability allows local attackers to disclose sensitive information on affected installation... | | |
| CVE-2021-31431 | This vulnerability allows local attackers to disclose sensitive information on affected installation... | | |
| CVE-2021-31432 | This vulnerability allows local attackers to disclose sensitive information on affected installation... | | |
| CVE-2021-31433 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31434 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31435 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31436 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31437 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31438 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31439 | This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installat... | | |
| CVE-2021-31440 | This vulnerability allows local attackers to escalate privileges on affected installations of Linux ... | S | |
| CVE-2021-31441 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31442 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31443 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31444 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31445 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31446 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31447 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31448 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31449 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31450 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31451 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31452 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31453 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31454 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31455 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31456 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | S | |
| CVE-2021-31457 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | S | |
| CVE-2021-31458 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | S | |
| CVE-2021-31459 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | S | |
| CVE-2021-31460 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | S | |
| CVE-2021-31461 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | S | |
| CVE-2021-31462 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | S | |
| CVE-2021-31463 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | S | |
| CVE-2021-31464 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | S | |
| CVE-2021-31465 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | S | |
| CVE-2021-31466 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31467 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | S | |
| CVE-2021-31468 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31469 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31470 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31471 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31472 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31473 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31474 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of So... | | |
| CVE-2021-31475 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of So... | | |
| CVE-2021-31476 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fo... | | |
| CVE-2021-31477 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of GE... | | |
| CVE-2021-31478 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31479 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31480 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31481 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31482 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31483 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31484 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31485 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31486 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31487 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31488 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31489 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31490 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31491 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31492 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31493 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31494 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31495 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31496 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31497 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31498 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31499 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31500 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31501 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31502 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31503 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31504 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31505 | This vulnerability allows attackers with physical access to escalate privileges on affected installa... | | |
| CVE-2021-31506 | This vulnerability allows remote attackers to disclose sensitive information on affected installatio... | | |
| CVE-2021-31507 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31508 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31509 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31510 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31511 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31512 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31513 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31514 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Op... | | |
| CVE-2021-31515 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ve... | | |
| CVE-2021-31516 | This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ve... | | |
| CVE-2021-31517 | Trend Micro Home Network Security 6.5.599 and earlier is vulnerable to a file-parsing vulnerability ... | | |
| CVE-2021-31518 | Trend Micro Home Network Security 6.5.599 and earlier is vulnerable to a file-parsing vulnerability ... | | |
| CVE-2021-31519 | An incorrect permission vulnerability in the product installer folders for Trend Micro HouseCall for... | | |
| CVE-2021-31520 | A weak session token authentication bypass vulnerability in Trend Micro IM Security 1.6 and 1.6.5 co... | S | |
| CVE-2021-31521 | Trend Micro InterScan Web Security Virtual Appliance version 6.5 was found to have a reflected cross... | S | |
| CVE-2021-31522 | Apache Kylin unsafe class loading | S | |
| CVE-2021-31523 | The Debian xscreensaver 5.42+dfsg1-1 package for XScreenSaver has cap_net_raw enabled for the /usr/l... | S | |
| CVE-2021-31525 | net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote attackers to cause a denial of ... | S | |
| CVE-2021-31530 | Zoho ManageEngine ServiceDesk Plus MSP before 10522 is vulnerable to Information Disclosure.... | | |
| CVE-2021-31531 | Zoho ManageEngine ServiceDesk Plus MSP before 10521 is vulnerable to Server-Side Request Forgery (SS... | | |
| CVE-2021-31532 | NXP LPC55S6x microcontrollers (0A and 1B), i.MX RT500 (silicon rev B1 and B2), i.MX RT600 (silicon r... | E | |
| CVE-2021-31535 | LookupCol.c in X.Org X through X11R7.7 and libX11 before 1.7.1 might allow remote attackers to execu... | E | |
| CVE-2021-31537 | SIS SIS-REWE Go before 7.7 SP17 allows XSS: rewe/prod/web/index.php (affected parameters are config,... | E | |
| CVE-2021-31538 | LANCOM R&S Unified Firewall (UF) devices running LCOS FX 10.5 allow Relative Path Traversal.... | E | |
| CVE-2021-31539 | Wowza Streaming Engine before 4.8.8.01 (in a default installation) has cleartext passwords stored in... | E | |
| CVE-2021-31540 | Wowza Streaming Engine through 4.8.5 (in a default installation) has incorrect file permissions of c... | E | |
| CVE-2021-31542 | In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, ... | S | |
| CVE-2021-31545 | An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. The page_recent_c... | | |
| CVE-2021-31546 | An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly lo... | | |
| CVE-2021-31547 | An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. Its AbuseFilterCh... | | |
| CVE-2021-31548 | An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. A MediaWiki user ... | | |
| CVE-2021-31549 | An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. The Special:Abuse... | | |
| CVE-2021-31550 | An issue was discovered in the CommentBox extension for MediaWiki through 1.35.2. Via crafted config... | | |
| CVE-2021-31551 | An issue was discovered in the PageForms extension for MediaWiki through 1.35.2. Crafted payloads fo... | | |
| CVE-2021-31552 | An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly ex... | | |
| CVE-2021-31553 | An issue was discovered in the CheckUser extension for MediaWiki through 1.35.2. MediaWiki usernames... | | |
| CVE-2021-31554 | An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It improperly han... | | |
| CVE-2021-31555 | An issue was discovered in the Oauth extension for MediaWiki through 1.35.2. It did not validate the... | | |
| CVE-2021-31556 | An issue was discovered in the Oauth extension for MediaWiki through 1.35.2. MWOAuthConsumerSubmitCo... | S | |
| CVE-2021-31558 | Delta Electronics DIAEnergie (Update A) | S | |
| CVE-2021-31559 | S2S TcpToken authentication bypass | | |
| CVE-2021-31562 | Fresenius Kabi Agilia Connect Infusion System use of a broken or risky cryptographic algorithm | S | |
| CVE-2021-31566 | An improper link resolution flaw can occur while extracting an archive leading to changing modes, ti... | S | |
| CVE-2021-31567 | WordPress Download Monitor plugin <= 4.4.6 - Authenticated Arbitrary File Download vulnerability | S | |
| CVE-2021-31571 | The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in queue.c for queu... | S | |
| CVE-2021-31572 | The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in stream_buffer.c ... | S | |
| CVE-2021-31573 | In Config Manager, there is a possible command injection due to improper input validation. This coul... | | |
| CVE-2021-31574 | In Config Manager, there is a possible command injection due to improper input validation. This coul... | | |
| CVE-2021-31575 | In Config Manager, there is a possible command injection due to improper input validation. This coul... | | |
| CVE-2021-31576 | In Boa, there is a possible information disclosure due to a missing permission check. This could lea... | | |
| CVE-2021-31577 | In Boa, there is a possible escalation of privilege due to a missing permission check. This could le... | | |
| CVE-2021-31578 | In Boa, there is a possible escalation of privilege due to a stack buffer overflow. This could lead ... | | |
| CVE-2021-31579 | Akkadian Provisioning Manager Engine (PME) Hard-Coded Credentials | E | |
| CVE-2021-31580 | Akkadian Provisioning Manager Engine (PME) Shell Escape via 'exec' command | E | |
| CVE-2021-31581 | Akkadian Provisioning Manager Engine (PME) Shell Escape via 'vi' editor interface | E | |
| CVE-2021-31583 | Sipwise C5 NGCP WWW Admin version 3.6.7 up to and including platform version NGCP CE 3.0 has multipl... | E | |
| CVE-2021-31584 | Sipwise C5 NGCP www_csc version 3.6.4 up to and including platform NGCP CE mr3.8.13 allows call/clic... | E | |
| CVE-2021-31585 | Accellion Kiteworks before 7.3.1 allows a user with Admin privileges to escalate their privileges by... | | |
| CVE-2021-31586 | Accellion Kiteworks before 7.4.0 allows an authenticated user to perform SQL Injection via LDAPGroup... | | |
| CVE-2021-31589 | A cross-site scripting (XSS) vulnerability has been reported and confirmed for BeyondTrust Secure Re... | E | |
| CVE-2021-31590 | PwnDoc all versions until 0.4.0 (2021-08-23) has incorrect JSON Webtoken handling, leading to incorr... | E S | |
| CVE-2021-31597 | The xmlhttprequest-ssl package before 1.6.1 for Node.js disables SSL certificate validation by defau... | E S | |
| CVE-2021-31598 | An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_decode() performs incorrect... | S | |
| CVE-2021-31599 | An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence Ser... | E | |
| CVE-2021-31600 | An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence Ser... | E | |
| CVE-2021-31601 | An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence Ser... | E | |
| CVE-2021-31602 | An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence Ser... | E | |
| CVE-2021-31604 | furlongm openvpn-monitor through 1.1.3 allows CSRF to disconnect an arbitrary client.... | E | |
| CVE-2021-31605 | furlongm openvpn-monitor through 1.1.3 allows %0a command injection via the OpenVPN management inter... | | |
| CVE-2021-31606 | furlongm openvpn-monitor through 1.1.3 allows Authorization Bypass to disconnect arbitrary clients.... | S | |
| CVE-2021-31607 | In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper mod... | E S | |
| CVE-2021-31608 | Proofpoint Enterprise Protection before 18.8.0 allows a Bypass of a Security Control.... | | |
| CVE-2021-31609 | The Bluetooth Classic implementation in Silicon Labs iWRAP 6.3.0 and earlier does not properly handl... | | |
| CVE-2021-31610 | The Bluetooth Classic implementation on AB32VG1 devices does not properly handle the reception of co... | | |
| CVE-2021-31611 | The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly han... | | |
| CVE-2021-31612 | The Bluetooth Classic implementation on Zhuhai Jieli AC690X devices does not properly handle the rec... | | |
| CVE-2021-31613 | The Bluetooth Classic implementation on Zhuhai Jieli AC690X and AC692X devices does not properly han... | | |
| CVE-2021-31615 | Unencrypted Bluetooth Low Energy baseband links in Bluetooth Core Specifications 4.0 through 5.2 may... | | |
| CVE-2021-31616 | Insufficient length checks in the ShapeShift KeepKey hardware wallet firmware before 7.1.0 allow a s... | E S | |
| CVE-2021-31617 | In ASQ in Stormshield Network Security (SNS) 1.0.0 through 2.7.8, 2.8.0 through 2.16.0, 3.0.0 throug... | | |
| CVE-2021-31618 | NULL pointer dereference on specially crafted HTTP/2 request | S | |
| CVE-2021-31624 | Buffer Overflow vulnerability in Tenda AC9 V1.0 through V15.03.05.19(6318), and AC9 V3.0 V15.03.06.4... | E | |
| CVE-2021-31627 | Buffer Overflow vulnerability in Tenda AC9 V1.0 through V15.03.05.19(6318), and AC9 V3.0 V15.03.06.4... | E | |
| CVE-2021-31630 | Command Injection in Open PLC Webserver v3 allows remote attackers to execute arbitrary code via the... | E | |
| CVE-2021-31631 | b2evolution CMS v7.2.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the User lo... | E | |
| CVE-2021-31632 | b2evolution CMS v7.2.3 was discovered to contain a SQL injection vulnerability via the parameter cfq... | E | |
| CVE-2021-31635 | Server-Side Template Injection (SSTI) vulnerability in jFinal v.4.9.08 allows a remote attacker to e... | | |
| CVE-2021-31637 | An issue found in UwAmp v.1.1, 1.2, 1.3, 2.0, 2.1, 2.2, 2.2.1, 3.0.0, 3.0.1, 3.0.2 allows a remote a... | | |
| CVE-2021-31641 | An unauthenticated XSS vulnerability exists in several IoT devices from CHIYU Technology, including ... | E | |
| CVE-2021-31642 | A denial of service condition exists after an integer overflow in several IoT devices from CHIYU Tec... | E | |
| CVE-2021-31643 | An XSS vulnerability exists in several IoT devices from CHIYU Technology, including SEMAC, Biosense,... | E | |
| CVE-2021-31645 | An issue was discovered in glFTPd 2.11a that allows remote attackers to cause a denial of service vi... | E | |
| CVE-2021-31646 | Gestsup before 3.2.10 allows account takeover through the password recovery functionality (remote). ... | S | |
| CVE-2021-31649 | In applications using jfinal 4.9.08 and below, there is a deserialization vulnerability when using r... | E | |
| CVE-2021-31650 | A SQL injection vulnerability in Sourcecodester Online Grading System 1.0 allows remote attackers to... | E | |
| CVE-2021-31651 | Cross Site Scripting (XSS) vulnerability in neofarg-cms 0.2.3 allows remoate attacker to run arbitra... | | |
| CVE-2021-31655 | Cross Site Scripting (XSS) vulnerability in TRENDnet TV-IP110WN V1.2.2.64 V1.2.2.65 V1.2.2.68 via th... | E | |
| CVE-2021-31658 | TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is affected by an Array index erro... | E | |
| CVE-2021-31659 | TP-Link TL-SG2005, TL-SG2008, etc. 1.0.0 Build 20180529 Rel.40524 is vulnerable to Cross Site Reques... | E | |
| CVE-2021-31660 | RIOT-OS 2021.01 before commit 85da504d2dc30188b89f44c3276fc5a25b31251f contains a buffer overflow wh... | S | |
| CVE-2021-31661 | RIOT-OS 2021.01 before commit 609c9ada34da5546cffb632a98b7ba157c112658 contains a buffer overflow th... | S | |
| CVE-2021-31662 | RIOT-OS 2021.01 before commit 07f1254d8537497552e7dce80364aaead9266bbe contains a buffer overflow wh... | S | |
| CVE-2021-31663 | RIOT-OS 2021.01 before commit bc59d60be60dfc0a05def57d74985371e4f22d79 contains a buffer overflow wh... | S | |
| CVE-2021-31664 | RIOT-OS 2021.01 before commit 44741ff99f7a71df45420635b238b9c22093647a contains a buffer overflow wh... | | |
| CVE-2021-31671 | pgsync before 0.6.7 is affected by Information Disclosure of sensitive information. Syncing the sche... | E | |
| CVE-2021-31673 | A Dom-based Cross-site scripting (XSS) vulnerability at registration account in Cyclos 4 PRO.14.7 an... | E | |
| CVE-2021-31674 | Cyclos 4 PRO 4.14.7 and before does not validate user input at error inform, which allows remote una... | E | |
| CVE-2021-31676 | A reflected XSS was discovered in PESCMS-V2.3.3. When combined with CSRF in the same file, they can ... | E | |
| CVE-2021-31677 | An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that can modify admin and ot... | E | |
| CVE-2021-31678 | An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that can delete import infor... | E | |
| CVE-2021-31679 | An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that allows attackers to del... | E | |
| CVE-2021-31680 | Deserialization of Untrusted Data vulnerability in yolo 5 allows attackers to execute arbitrary code... | E | |
| CVE-2021-31681 | Deserialization of Untrusted Data vulnerability in yolo 3 allows attackers to execute arbitrary code... | E | |
| CVE-2021-31682 | The login portal for the Automated Logic WebCTRL/WebCTRL OEM web application contains a vulnerabilit... | E | |
| CVE-2021-31684 | A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions... | E S | |
| CVE-2021-31693 | The 10Web Photo Gallery plugin through 1.5.68 for WordPress allows XSS via album_gallery_id_0, bwg_a... | | |
| CVE-2021-31698 | Quectel EG25-G devices through 202006130814 allow executing arbitrary code remotely by using an AT c... | E | |
| CVE-2021-31701 | Mintty before 3.4.7 mishandles Bracketed Paste Mode.... | | |
| CVE-2021-31702 | Frontier ichris through 5.18 mishandles making a DNS request for the hostname in the HTTP Host heade... | E | |
| CVE-2021-31703 | Frontier ichris through 5.18 allows users to upload malicious executable files that might later be d... | | |
| CVE-2021-31707 | Permissions vulnerability found in KiteCMS allows a remote attacker to execute arbitrary code via th... | | |
| CVE-2021-31711 | Cross Site Scripting vulnerability found in Trippo ResponsiveFilemanager v.9.14.0 and before allows ... | E S | |
| CVE-2021-31712 | react-draft-wysiwyg (aka React Draft Wysiwyg) before 1.14.6 allows a javascript: URi in a Link Targe... | E S | |
| CVE-2021-31718 | The server in npupnp before 4.1.4 is affected by DNS rebinding in the embedded web server (including... | | |
| CVE-2021-31721 | Chevereto before 3.17.1 allows Cross Site Scripting (XSS) via an image title at the image upload sta... | E | |
| CVE-2021-31726 | Akuvox C315 115.116.2613 allows remote command Injection via the cfgd_server service. The attack vec... | | |
| CVE-2021-31727 | Incorrect access control in zam64.sys, zam32.sys in MalwareFox AntiMalware 2.74.0.150 where IOCTL's ... | | |
| CVE-2021-31728 | Incorrect access control in zam64.sys, zam32.sys in MalwareFox AntiMalware 2.74.0.150 allows a non-p... | | |
| CVE-2021-31731 | A directory traversal issue in KiteCMS 1.1.1 allows remote administrators to overwrite arbitrary fil... | E | |
| CVE-2021-31737 | emlog v5.3.1 and emlog v6.0.0 have a Remote Code Execution vulnerability due to upload of database b... | E | |
| CVE-2021-31738 | Adiscon LogAnalyzer 4.1.10 and 4.1.11 allow login.php XSS.... | E | |
| CVE-2021-31739 | The SEPPmail solution is vulnerable to a Cross-Site Scripting vulnerability (XSS), because user inpu... | E | |
| CVE-2021-31740 | SEPPMail's web frontend, user input is not embedded correctly in the web page and therefore leads to... | E | |
| CVE-2021-31745 | Session Fixation vulnerability in login.php in Pluck-CMS Pluck 4.7.15 allows an attacker to sustain ... | E | |
| CVE-2021-31746 | Zip Slip vulnerability in Pluck-CMS Pluck 4.7.15 allows an attacker to upload specially crafted zip ... | E | |
| CVE-2021-31747 | Missing SSL Certificate Validation issue exists in Pluck 4.7.15 in update_applet.php, which could le... | | |
| CVE-2021-31755 | An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer ... | KEV E | |
| CVE-2021-31756 | An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer ... | E | |
| CVE-2021-31757 | An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer ... | E | |
| CVE-2021-31758 | An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer ... | E | |
| CVE-2021-31760 | Webmin 1.973 is affected by Cross Site Request Forgery (CSRF) to achieve Remote Command Execution (R... | E | |
| CVE-2021-31761 | Webmin 1.973 is affected by reflected Cross Site Scripting (XSS) to achieve Remote Command Execution... | E | |
| CVE-2021-31762 | Webmin 1.973 is affected by Cross Site Request Forgery (CSRF) to create a privileged user through We... | E | |
| CVE-2021-31769 | MyQ Server in MyQ X Smart before 8.2 allows remote code execution by unprivileged users because admi... | E | |
| CVE-2021-31771 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31776 | Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privile... | | |
| CVE-2021-31777 | The dce (aka Dynamic Content Element) extension 2.2.0 through 2.6.x before 2.6.2, and 2.7.x before 2... | E S | |
| CVE-2021-31778 | The media2click (aka 2 Clicks for External Media) extension 1.x before 1.3.3 for TYPO3 allows XSS by... | S | |
| CVE-2021-31779 | The yoast_seo (aka Yoast SEO) extension before 7.2.1 for TYPO3 allows SSRF via a backend user accoun... | S | |
| CVE-2021-31780 | In app/Model/MispObject.php in MISP 2.4.141, an incorrect sharing group association could lead to in... | S | |
| CVE-2021-31783 | show_default.php in the LocalFilesEditor extension before 11.4.0.1 for Piwigo allows Local File Incl... | S | |
| CVE-2021-31784 | An out-of-bounds write vulnerability exists in the file-reading procedure in Open Design Alliance Dr... | S | |
| CVE-2021-31785 | The Bluetooth Classic implementation on Actions ATS2815 and ATS2819 chipsets does not properly handl... | | |
| CVE-2021-31786 | The Bluetooth Classic Audio implementation on Actions ATS2815 and ATS2819 devices does not properly ... | | |
| CVE-2021-31787 | The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the recept... | | |
| CVE-2021-31791 | In Hardware Sentry KM before 10.0.01 for BMC PATROL, a cleartext password may be discovered after a ... | | |
| CVE-2021-31792 | XSS in the client account page in SuiteCRM before 7.11.19 allows an attacker to inject JavaScript vi... | E | |
| CVE-2021-31793 | An issue exists on NightOwl WDB-20-V2 WDB-20-V2_20190314 devices that allows an unauthenticated user... | | |
| CVE-2021-31794 | Settings.aspx?view=About in Directum 5.8.2 allows XSS via the HTTP User-Agent header.... | | |
| CVE-2021-31795 | The PowerVR GPU kernel driver in pvrsrvkm.ko through 2021-04-24 for the Linux kernel, as used on Alc... | E | |
| CVE-2021-31796 | An inadequate encryption vulnerability discovered in CyberArk Credential Provider before 12.1 may le... | | |
| CVE-2021-31797 | The user identification mechanism used by CyberArk Credential Provider prior to 12.1 is susceptible ... | | |
| CVE-2021-31798 | The effective key space used to encrypt the cache in CyberArk Credential Provider prior to 12.1 has ... | | |
| CVE-2021-31799 | In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to exe... | S | |
| CVE-2021-31800 | Multiple path traversal vulnerabilities exist in smbserver.py in Impacket through 0.9.22. An attacke... | S | |
| CVE-2021-31802 | NETGEAR R7000 1.0.11.116 devices have a heap-based Buffer Overflow that is exploitable from the loca... | E | |
| CVE-2021-31803 | cPanel before 94.0.3 allows self-XSS via EasyApache 4 Save Profile (SEC-581).... | | |
| CVE-2021-31804 | LeoCAD before 21.03 sometimes allows a use-after-free during the opening of a new document.... | E S | |
| CVE-2021-31805 | Forced OGNL evaluation, when evaluated on raw not validated user input in tag attributes, may lead to RCE. | S | |
| CVE-2021-31806 | An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a memory-management bug, i... | S | |
| CVE-2021-31807 | An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. An integer overflow problem allow... | S | |
| CVE-2021-31808 | An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to an input-validation bug, i... | E S | |
| CVE-2021-31810 | An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. A malicio... | E S | |
| CVE-2021-31811 | A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading a tiny file | S | |
| CVE-2021-31812 | A carefully crafted PDF file can trigger an infinite loop while loading the file | S | |
| CVE-2021-31813 | Zoho ManageEngine Applications Manager before 15130 is vulnerable to Stored XSS while importing mali... | E | |
| CVE-2021-31814 | In Stormshield 1.1.0, and 2.1.0 through 2.9.0, an attacker can block a client from accessing the VPN... | | |
| CVE-2021-31815 | GAEN (aka Google/Apple Exposure Notifications) through 2021-04-27 on Android allows attackers to obt... | E | |
| CVE-2021-31816 | When configuring Octopus Server if it is configured with an external SQL database, on initial config... | | |
| CVE-2021-31817 | When configuring Octopus Server if it is configured with an external SQL database, on initial config... | | |
| CVE-2021-31818 | Affected versions of Octopus Server are prone to an authenticated SQL injection vulnerability in the... | | |
| CVE-2021-31819 | In Halibut versions prior to 4.4.7 there is a deserialisation vulnerability that could allow remote ... | | |
| CVE-2021-31820 | In Octopus Server after version 2018.8.2 if the Octopus Server Web Request Proxy is configured with ... | | |
| CVE-2021-31821 | When the Windows Tentacle docker image starts up it logs all the commands that it runs along with th... | | |
| CVE-2021-31822 | When Octopus Tentacle is installed on a Linux operating system, the systemd service file permissions... | | |
| CVE-2021-31826 | Shibboleth Service Provider 3.x before 3.2.2 is prone to a NULL pointer dereference flaw involving t... | E S | |
| CVE-2021-31827 | In Progress MOVEit Transfer before 2021.0 (13.0), a SQL injection vulnerability has been found in th... | S | |
| CVE-2021-31828 | An SSRF issue in Open Distro for Elasticsearch (ODFE) before 1.13.1.0 allows an existing privileged ... | S | |
| CVE-2021-31829 | kernel/bpf/verifier.c in the Linux kernel through 5.12.1 performs undesirable speculative loads, lea... | S | |
| CVE-2021-31830 | Cross site Scripting (XSS) vulnerability in McAfee DBSec | | |
| CVE-2021-31831 | Incorrect access to deleted scripts vulnerability in McAfee DBSec | | |
| CVE-2021-31832 | Cross site scripting vulnerability in DLP Endpoint for Windows | | |
| CVE-2021-31833 | Potential product security bypass vulnerability in McAfee Application and Change Control (MACC) prio... | | |
| CVE-2021-31834 | McAfee ePO Cross-Site Scripting vulnerability | | |
| CVE-2021-31835 | McAfee ePO Cross-Site Scripting vulnerability | | |
| CVE-2021-31836 | Improper Privilege Management in MA for Windows | | |
| CVE-2021-31837 | Out of bounds write vulnerability in McAfee GetSusp | | |
| CVE-2021-31838 | Command injection through environment variable in MVISION EDR | | |
| CVE-2021-31839 | Incorrect permissions on McAfee Agent for Windows event folder | | |
| CVE-2021-31840 | DLL preload vulnerability in McAfee Agent for Windows | | |
| CVE-2021-31841 | DLL side loading vulnerability in MA for Windows | | |
| CVE-2021-31842 | XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows prior to ... | | |
| CVE-2021-31843 | Improper access control vulnerability in McAfee ENS for Windows | | |
| CVE-2021-31844 | Local Privilege Escalation in McAfee DLP Endpoint for Windows | | |
| CVE-2021-31845 | Remote Code Execution in McAfee DLP Discover | | |
| CVE-2021-31847 | Improper privilege management in repair process of MA for Windows | | |
| CVE-2021-31848 | Data Loss Prevention (DLP) ePO extension - Cross site scripting (XSS) | | |
| CVE-2021-31849 | Data Loss Prevention (DLP) ePO extension - SQL injection | | |
| CVE-2021-31850 | Denial of Service in Database Security on Windows | | |
| CVE-2021-31851 | Cross-Site Scripting vulnerability in Policy Auditor | | |
| CVE-2021-31852 | Cross-Site Scripting vulnerability in Policy Auditor | | |
| CVE-2021-31853 | MDE DLL Search Order Hijacking vulnerability | | |
| CVE-2021-31854 | Code injection vulnerability in McAfee Agent | | |
| CVE-2021-31855 | KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting a... | | |
| CVE-2021-31856 | A SQL Injection vulnerability in the REST API in Layer5 Meshery 0.5.2 allows an attacker to execute ... | S | |
| CVE-2021-31857 | In Zoho ManageEngine Password Manager Pro before 11.1 build 11104, attackers are able to retrieve cr... | | |
| CVE-2021-31858 | DotNetNuke (DNN) 9.9.1 CMS is vulnerable to a Stored Cross-Site Scripting vulnerability in the user ... | | |
| CVE-2021-31859 | Incorrect privileges in the MU55 FlexiSpooler service in YSoft SafeQ 6 6.0.55 allows local user priv... | | |
| CVE-2021-31862 | SysAid 20.4.74 allows XSS via the KeepAlive.jsp stamp parameter without any authentication.... | E | |
| CVE-2021-31863 | Insufficient input validation in the Git repository integration of Redmine before 4.0.9, 4.1.x befor... | | |
| CVE-2021-31864 | Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the add_... | | |
| CVE-2021-31865 | Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows users to circumvent the allo... | | |
| CVE-2021-31866 | Redmine before 4.0.9 and 4.1.x before 4.1.3 allows an attacker to learn the values of internal authe... | | |
| CVE-2021-31867 | Pimcore Customer Data Framework 'SegmentAssignmentController.php' Blind SQL Injection | E | |
| CVE-2021-31868 | Rapid7 Nexpose Security Console Ticket Access Authentication Vulnerability | | |
| CVE-2021-31869 | Pimcore AdminBundle 'specificID' SQL Injection | E | |
| CVE-2021-31870 | An issue was discovered in klibc before 2.0.9. Multiplication in the calloc() function may result in... | S | |
| CVE-2021-31871 | An issue was discovered in klibc before 2.0.9. An integer overflow in the cpio command may result in... | S | |
| CVE-2021-31872 | An issue was discovered in klibc before 2.0.9. Multiple possible integer overflows in the cpio comma... | S | |
| CVE-2021-31873 | An issue was discovered in klibc before 2.0.9. Additions in the malloc() function may result in an i... | S | |
| CVE-2021-31874 | Zoho ManageEngine ADSelfService Plus before 6104, in rare situations, allows attackers to obtain sen... | E | |
| CVE-2021-31875 | In mjs_json.c in Cesanta MongooseOS mJS 1.26, a maliciously formed JSON string can trigger an off-by... | E S | |
| CVE-2021-31876 | Bitcoin Core 0.12.0 through 0.21.1 does not properly implement the replacement policy specified in B... | | |
| CVE-2021-31877 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2021-31878 | An issue was discovered in PJSIP in Asterisk before 16.19.1 and before 18.5.1. To exploit, a re-INVI... | E S | |
| CVE-2021-31879 | GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin... | | |
| CVE-2021-31881 | A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital E... | | |
| CVE-2021-31882 | A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital E... | | |
| CVE-2021-31883 | A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital E... | | |
| CVE-2021-31884 | A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P... | | |
| CVE-2021-31885 | A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P... | | |
| CVE-2021-31886 | A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P... | | |
| CVE-2021-31887 | A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P... | | |
| CVE-2021-31888 | A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P... | | |
| CVE-2021-31889 | A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital E... | | |
| CVE-2021-31890 | A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital E... | | |
| CVE-2021-31891 | A vulnerability has been identified in Desigo CC (All versions with OIS Extension Module), GMA-Manag... | S | |
| CVE-2021-31892 | A vulnerability has been identified in SINUMERIK Analyse MyCondition (All versions), SINUMERIK Analy... | | |
| CVE-2021-31893 | A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 ... | S | |
| CVE-2021-31894 | A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 ... | S | |
| CVE-2021-31895 | A vulnerability has been identified in RUGGEDCOM i800 (All versions < V4.3.7), RUGGEDCOM i801 (All v... | | |
| CVE-2021-31897 | In JetBrains WebStorm before 2021.1, code execution without user confirmation was possible for untru... | | |
| CVE-2021-31898 | In JetBrains WebStorm before 2021.1, HTTP requests were used instead of HTTPS.... | | |
| CVE-2021-31899 | In JetBrains Code With Me bundled to the compatible IDEs before version 2021.1, the client could exe... | | |
| CVE-2021-31900 | In JetBrains Code With Me bundled to the compatible IDE versions before 2021.1, a client could open ... | | |
| CVE-2021-31901 | In JetBrains Hub before 2021.1.13079, two-factor authentication wasn't enabled properly for the All ... | | |
| CVE-2021-31902 | In JetBrains YouTrack before 2020.6.6600, access control during the exporting of issues was implemen... | | |
| CVE-2021-31903 | In JetBrains YouTrack before 2021.1.9819, a pull request's title was sanitized insufficiently, leadi... | | |
| CVE-2021-31904 | In JetBrains TeamCity before 2020.2.2, XSS was potentially possible on the test history page.... | | |
| CVE-2021-31905 | In JetBrains YouTrack before 2020.6.8801, information disclosure in an issue preview was possible.... | | |
| CVE-2021-31906 | In JetBrains TeamCity before 2020.2.2, audit logs were not sufficient when an administrator uploaded... | | |
| CVE-2021-31907 | In JetBrains TeamCity before 2020.2.2, permission checks for changing TeamCity plugins were implemen... | | |
| CVE-2021-31908 | In JetBrains TeamCity before 2020.2.3, stored XSS was possible on several pages.... | | |
| CVE-2021-31909 | In JetBrains TeamCity before 2020.2.3, argument injection leading to remote code execution was possi... | | |
| CVE-2021-31910 | In JetBrains TeamCity before 2020.2.3, information disclosure via SSRF was possible.... | | |
| CVE-2021-31911 | In JetBrains TeamCity before 2020.2.3, reflected XSS was possible on several pages.... | | |
| CVE-2021-31912 | In JetBrains TeamCity before 2020.2.3, account takeover was potentially possible during a password r... | | |
| CVE-2021-31913 | In JetBrains TeamCity before 2020.2.3, insufficient checks of the redirect_uri were made during GitH... | | |
| CVE-2021-31914 | In JetBrains TeamCity before 2020.2.4 on Windows, arbitrary code execution on TeamCity Server was po... | | |
| CVE-2021-31915 | In JetBrains TeamCity before 2020.2.4, OS command injection leading to remote code execution was pos... | | |
| CVE-2021-31916 | An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the M... | S | |
| CVE-2021-31917 | A flaw was found in Red Hat DataGrid 8.x (8.0.0, 8.0.1, 8.1.0 and 8.1.1) and Infinispan (10.0.0 thro... | | |
| CVE-2021-31918 | A flaw was found in tripleo-ansible version as shipped in Red Hat Openstack 16.1. The Ansible log fi... | | |
| CVE-2021-31919 | An issue was discovered in the rkyv crate before 0.6.0 for Rust. When an archive is created via seri... | | |
| CVE-2021-31920 | Istio before 1.8.6 and 1.9.x before 1.9.5 has a remotely exploitable vulnerability where an HTTP req... | E | |
| CVE-2021-31921 | Istio before 1.8.6 and 1.9.x before 1.9.5 contains a remotely exploitable vulnerability where an ext... | E | |
| CVE-2021-31922 | An HTTP Request Smuggling vulnerability in Pulse Secure Virtual Traffic Manager before 21.1 could al... | E S | |
| CVE-2021-31923 | Ping Identity PingAccess before 5.3.3 allows HTTP request smuggling via header manipulation.... | | |
| CVE-2021-31924 | Yubico pam-u2f before 1.1.1 has a logic issue that, depending on the pam-u2f configuration and the a... | | |
| CVE-2021-31925 | Pexip Infinity 25.x before 25.4 has Improper Input Validation, and thus an unauthenticated remote at... | | |
| CVE-2021-31926 | AMP Application Deployment Service in CubeCoders AMP 2.1.x before 2.1.1.2 allows a remote, authentic... | E | |
| CVE-2021-31927 | An Insecure Direct Object Reference (IDOR) vulnerability in Annex Cloud Loyalty Experience Platform ... | | |
| CVE-2021-31928 | Annex Cloud Loyalty Experience Platform <2021.1.0.1 allows any authenticated attacker to escalate pr... | | |
| CVE-2021-31929 | Annex Cloud Loyalty Experience Platform <2021.1.0.1 allows any authenticated attacker to modify loya... | | |
| CVE-2021-31930 | Persistent cross-site scripting (XSS) in the web interface of Concerto through 2.3.6 allows an unaut... | | |
| CVE-2021-31932 | Nokia BTS TRS web console FTM_W20_FP2_2019.08.16_0010 allows Authentication Bypass. A malicious unau... | E | |
| CVE-2021-31933 | A remote code execution vulnerability exists in Chamilo through 1.11.14 due to improper input saniti... | E S | |
| CVE-2021-31934 | OX App Suite 7.10.4 and earlier allows XSS via a crafted contact object (payload in the position or ... | | |
| CVE-2021-31935 | OX App Suite 7.10.4 and earlier allows XSS via a crafted distribution list (payload in the common na... | | |
| CVE-2021-31936 | Microsoft Accessibility Insights for Web Information Disclosure Vulnerability | S | |
| CVE-2021-31937 | Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | S | |
| CVE-2021-31938 | Microsoft VsCode Kubernetes Tools Extension Elevation of Privilege Vulnerability | S | |
| CVE-2021-31939 | Microsoft Excel Remote Code Execution Vulnerability | S | |
| CVE-2021-31940 | Microsoft Office Graphics Remote Code Execution Vulnerability | S | |
| CVE-2021-31941 | Microsoft Office Graphics Remote Code Execution Vulnerability | S | |
| CVE-2021-31942 | 3D Viewer Remote Code Execution Vulnerability | S | |
| CVE-2021-31943 | 3D Viewer Remote Code Execution Vulnerability | S | |
| CVE-2021-31944 | 3D Viewer Information Disclosure Vulnerability | S | |
| CVE-2021-31945 | Paint 3D Remote Code Execution Vulnerability | S | |
| CVE-2021-31946 | Paint 3D Remote Code Execution Vulnerability | S | |
| CVE-2021-31947 | HEVC Video Extensions Remote Code Execution Vulnerability | S | |
| CVE-2021-31948 | Microsoft SharePoint Server Spoofing Vulnerability | S | |
| CVE-2021-31949 | Microsoft Outlook Remote Code Execution Vulnerability | S | |
| CVE-2021-31950 | Microsoft SharePoint Server Spoofing Vulnerability | E S | |
| CVE-2021-31951 | Windows Kernel Elevation of Privilege Vulnerability | S | |
| CVE-2021-31952 | Windows Kernel-Mode Driver Elevation of Privilege Vulnerability | S | |
| CVE-2021-31953 | Windows Filter Manager Elevation of Privilege Vulnerability | S | |
| CVE-2021-31954 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | S | |
| CVE-2021-31955 | Windows Kernel Information Disclosure Vulnerability | KEV S | |
| CVE-2021-31956 | Windows NTFS Elevation of Privilege Vulnerability | KEV S | |
| CVE-2021-31957 | ASP.NET Core Denial of Service Vulnerability | S | |
| CVE-2021-31958 | Windows NTLM Elevation of Privilege Vulnerability | S | |
| CVE-2021-31959 | Scripting Engine Memory Corruption Vulnerability | S | |
| CVE-2021-31960 | Windows Bind Filter Driver Information Disclosure Vulnerability | S | |
| CVE-2021-31961 | Windows InstallService Elevation of Privilege Vulnerability | S | |
| CVE-2021-31962 | Kerberos AppContainer Security Feature Bypass Vulnerability | S | |
| CVE-2021-31963 | Microsoft SharePoint Server Remote Code Execution Vulnerability | S | |
| CVE-2021-31964 | Microsoft SharePoint Server Spoofing Vulnerability | S | |
| CVE-2021-31965 | Microsoft SharePoint Server Information Disclosure Vulnerability | S | |
| CVE-2021-31966 | Microsoft SharePoint Server Remote Code Execution Vulnerability | S | |
| CVE-2021-31967 | VP9 Video Extensions Remote Code Execution Vulnerability | S | |
| CVE-2021-31968 | Windows Remote Desktop Services Denial of Service Vulnerability | S | |
| CVE-2021-31969 | Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability | S | |
| CVE-2021-31970 | Windows TCP/IP Driver Security Feature Bypass Vulnerability | S | |
| CVE-2021-31971 | Windows HTML Platforms Security Feature Bypass Vulnerability | S | |
| CVE-2021-31972 | Event Tracing for Windows Information Disclosure Vulnerability | S | |
| CVE-2021-31973 | Windows GPSVC Elevation of Privilege Vulnerability | S | |
| CVE-2021-31974 | Server for NFS Denial of Service Vulnerability | S | |
| CVE-2021-31975 | Server for NFS Information Disclosure Vulnerability | S | |
| CVE-2021-31976 | Server for NFS Information Disclosure Vulnerability | S | |
| CVE-2021-31977 | Windows Hyper-V Denial of Service Vulnerability | S | |
| CVE-2021-31978 | Microsoft Defender Denial of Service Vulnerability | S | |
| CVE-2021-31979 | Windows Kernel Elevation of Privilege Vulnerability | KEV S | |
| CVE-2021-31980 | Microsoft Intune Management Extension Remote Code Execution Vulnerability | S | |
| CVE-2021-31982 | Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability | S | |
| CVE-2021-31983 | Paint 3D Remote Code Execution Vulnerability | S | |
| CVE-2021-31984 | Power BI Remote Code Execution Vulnerability | S | |
| CVE-2021-31985 | Microsoft Defender Remote Code Execution Vulnerability | S | |
| CVE-2021-31986 | User controlled parameters related to SMTP notifications are not correctly validated. This can lead ... | | |
| CVE-2021-31987 | A user controlled parameter related to SMTP test functionality is not correctly validated making it ... | | |
| CVE-2021-31988 | A user controlled parameter related to SMTP test functionality is not correctly validated making it ... | | |
| CVE-2021-31989 | A user with permission to log on to the machine hosting the AXIS Device Manager client could under c... | | |
| CVE-2021-31996 | An issue was discovered in the algorithmica crate through 2021-03-07 for Rust. There is a double fre... | | |
| CVE-2021-31997 | python-postorius: postorius-permissions.sh used during %post allows local privilege escalation from postorius user to root | | |
| CVE-2021-31998 | inn: %post calls user owned file allowing local privilege escalation to root | E | |
| CVE-2021-31999 | Rancher: Privilege escalation vulnerability via malicious Connection header | |