Vulnerabilities (CVE)

Total 165320 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-34170 1 Fromsoftware 1 Dark Souls Iii 2021-06-23 7.5 HIGH 9.8 CRITICAL
Bandai Namco FromSoftware Dark Souls III allows remote attackers to execute arbitrary code.
CVE-2021-22768 1 Se 4 Egx100, Egx100 Firmware, Egx300 and 1 more 2021-06-23 7.5 HIGH 9.8 CRITICAL
** UNSUPPORTED WHEN ASSIGNED ** A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet.This CVE ID is unique from CVE-2021-22767.
CVE-2021-22767 1 Se 4 Egx100, Egx100 Firmware, Egx300 and 1 more 2021-06-23 7.5 HIGH 9.8 CRITICAL
** UNSUPPORTED WHEN ASSIGNED ** A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet.This CVE ID is unique from CVE-2021-22768
CVE-2021-3256 1 Kuaifan 1 Kuaifancms 2021-06-23 4.0 MEDIUM 6.5 MEDIUM
KuaiFanCMS V5.x contains an arbitrary file read vulnerability in the html_url parameter of the chakanhtml.module.php file.
CVE-2021-22766 1 Se 4 Egx100, Egx100 Firmware, Egx300 and 1 more 2021-06-23 5.0 MEDIUM 7.5 HIGH
** UNSUPPORTED WHEN ASSIGNED ** A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service via a specially crafted HTTP packet.
CVE-2021-22765 1 Se 4 Egx100, Egx100 Firmware, Egx300 and 1 more 2021-06-23 7.5 HIGH 9.8 CRITICAL
** UNSUPPORTED WHEN ASSIGNED ** A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code execution via a specially crafted HTTP packet.
CVE-2021-3526 2021-06-23 N/A N/A
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.
CVE-2021-35438 2021-06-23 N/A N/A
phpIPAM 1.4.3 allows Reflected XSS via app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php of the IP calculator.
CVE-2020-20392 2021-06-23 N/A N/A
SQL Injection vulnerability in imcat v5.2 via the fm[auser] parameters in coms/add_coms.php.
CVE-2020-20391 2021-06-23 N/A N/A
Cross Site Scripting vulnerability in GetSimpleCMS 3.4.0a in admin/snippets.php via (1) Add Snippet and (2) Save snippets.
CVE-2020-20389 2021-06-23 N/A N/A
Cross Site Scripting (XSS) vulnerability in GetSimpleCMS 3.4.0a in admin/edit.php.
CVE-2021-28977 2021-06-23 N/A N/A
Cross Site Scripting vulnerability in GetSimpleCMS 3.3.16 in admin/upload.php by adding comments or jpg and other file header information to the content of xla, pages, and gzip files,
CVE-2021-28976 2021-06-23 N/A N/A
Remote Code Execution vulnerability in GetSimpleCMS before 3.3.16 in admin/upload.php via phar filess.
CVE-2021-0094 1 Intel 1 Driver \& Support Assistant 2021-06-23 4.6 MEDIUM 7.8 HIGH
Improper link resolution before file access in Intel(R) DSA before version 20.11.50.9 may allow an authenticated user to potentially enable an escalation of privilege via local access.
CVE-2021-0090 1 Intel 1 Driver \& Support Assistant 2021-06-23 4.4 MEDIUM 7.3 HIGH
Uncontrolled search path element in Intel(R) DSA before version 20.11.50.9 may allow an authenticated user to potentially enable an escalation of privilege via local access.
CVE-2021-32930 1 Advantech 1 Iview 2021-06-23 7.5 HIGH 9.8 CRITICAL
The affected product’s configuration is vulnerable due to missing authentication, which may allow an attacker to change configurations and execute arbitrary code on the iView (versions prior to v5.7.03.6182).
CVE-2021-0098 1 Intel 1 Unite 2021-06-23 4.6 MEDIUM 7.8 HIGH
Improper access control in the Intel Unite(R) Client for Windows before version 4.2.25031 may allow an authenticated user to potentially enable an escalation of privilege via local access.
CVE-2021-0073 1 Intel 1 Driver \& Support Assistant 2021-06-23 4.6 MEDIUM 7.8 HIGH
Insufficient control flow management in Intel(R) DSA before version 20.11.50.9 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2021-0532 1 Google 1 Android 2021-06-23 4.4 MEDIUM 7.0 HIGH
In memory management driver, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185196177
CVE-2021-0531 1 Google 1 Android 2021-06-23 4.6 MEDIUM 7.8 HIGH
In memory management driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-185195272