CVE.report

CVE.report is the most up-to-date database of common vulnerabilities and exposures. Information is pulled in from several sources and processed in to a mobile friendly, easy to use page. Use the site to quickly check for vulnerabilities in products such as operating systems, applications, hardware, networks, databases, browsers, e-mail clients and more.

CVEs provide a unique and common naming scheme for publicly known cyber security vulnerabilities in order to quickly identify and share these vulnerabilities. You can use the search below to look for vulnerabilities based on product, vendor, or common tags


The form you will see after following this link allows you to fill out the various variables in the CVSS scoring system and receive the corresponding score. The description of each of the variables is also included for additional information.

[rss]
Recent CVEs
CVE Description Date
CVE-2021-31758 An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in... Fri, 07 May 2021 18:42:26
CVE-2021-31757 An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in... Fri, 07 May 2021 18:41:59
CVE-2021-31756 An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in... Fri, 07 May 2021 18:41:29
CVE-2021-31755 An issue was discovered on Tenda AC11 devices with firmware through 02.03.01.104_CN. A stack buffer overflow vulnerability in... Fri, 07 May 2021 18:41:05
CVE-2021-29499 SIF is an open source implementation of the Singularity Container Image Format. The `siftool new` command and func siftool.Ne... Fri, 07 May 2021 16:57:12
CVE-2021-31472 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:32:37
CVE-2021-31471 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1... Fri, 07 May 2021 16:32:19
CVE-2021-31470 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:31:58
CVE-2021-31469 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1... Fri, 07 May 2021 16:31:29
CVE-2021-31468 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.3.37598. ... Fri, 07 May 2021 16:31:16
CVE-2021-31467 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.3... Fri, 07 May 2021 16:30:58
CVE-2021-31466 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.3.37598. ... Fri, 07 May 2021 16:30:37
CVE-2021-31465 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.3.37598. ... Fri, 07 May 2021 16:30:10
CVE-2021-31464 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.3... Fri, 07 May 2021 16:29:53
CVE-2021-31463 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.3... Fri, 07 May 2021 16:29:39
CVE-2021-31462 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.3... Fri, 07 May 2021 16:29:09
CVE-2021-31461 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:28:39
CVE-2021-31460 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:28:16
CVE-2021-31459 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:27:57
CVE-2021-31458 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:27:44
CVE-2021-31457 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:27:19
CVE-2021-31456 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:27:06
CVE-2021-31455 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:26:45
CVE-2021-31454 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:26:28
CVE-2021-31453 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:26:07
CVE-2021-31452 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:25:55
CVE-2021-31451 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:25:24
CVE-2021-31450 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:25:03
CVE-2021-31449 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:24:39
CVE-2021-31448 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1... Fri, 07 May 2021 16:24:16
CVE-2021-31447 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1... Fri, 07 May 2021 16:23:45
CVE-2021-31446 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1... Fri, 07 May 2021 16:23:24
CVE-2021-31445 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1... Fri, 07 May 2021 16:22:58
CVE-2021-31444 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1... Fri, 07 May 2021 16:22:32
CVE-2021-31443 This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1... Fri, 07 May 2021 16:22:20
CVE-2021-31442 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:22:00
CVE-2021-31441 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. ... Fri, 07 May 2021 16:21:31
CVE-2021-32470 Craft CMS before 3.6.13 has an XSS vulnerability. Fri, 07 May 2021 13:44:29
CVE-2021-27574 An issue was discovered in Emote Remote Mouse through 4.0.0.0. It uses cleartext HTTP to check, and request, updates. Thus, a... Fri, 07 May 2021 13:03:59
CVE-2021-27573 An issue was discovered in Emote Remote Mouse through 4.0.0.0. Remote unauthenticated users can execute arbitrary code via cr... Fri, 07 May 2021 13:03:47
CVE-2021-27572 An issue was discovered in Emote Remote Mouse through 4.0.0.0. Authentication Bypass can occur via Packet Replay. Remote unau... Fri, 07 May 2021 13:03:34
CVE-2021-27571 An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can retrieve recently used and running applications,... Fri, 07 May 2021 13:03:13
CVE-2021-27570 An issue was discovered in Emote Remote Mouse through 3.015. Attackers can close any running process by sending the process n... Fri, 07 May 2021 13:02:43
CVE-2021-27569 An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can maximize or minimize the window of a running pro... Fri, 07 May 2021 13:02:15
CVE-2021-22677 An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network may lead to issues such as a... Fri, 07 May 2021 12:08:14
CVE-2020-4901 IBM Robotic Process Automation with Automation Anywhere 11.0 could allow an attacker on the network to obtain sensitive infor... Fri, 07 May 2021 11:52:03
CVE-2021-29495 Nim is a statically typed compiled systems programming language. In Nim standard library before 1.4.2, httpClient SSL/TLS cer... Fri, 07 May 2021 11:23:34
CVE-2021-29488 SABnzbd is an open source binary newsreader. A vulnerability was discovered in SABnzbd that could trick the `filesystem.renam... Fri, 07 May 2021 11:05:36
CVE-2021-27437 The affected product allows attackers to obtain sensitive information from the WISE-PaaS dashboard. The system contains a har... Fri, 07 May 2021 11:05:11
CVE-2021-21419 Eventlet is a concurrent networking library for Python. A websocket peer may exhaust memory on Eventlet side by sending very ... Fri, 07 May 2021 10:35:08
CVE-2021-22673 The affected product is vulnerable to stack-based buffer overflow while processing over-the-air firmware updates from the CDN... Fri, 07 May 2021 10:04:04
CVE-2021-22671 Multiple integer overflow issues exist while processing long domain names, which may allow an attacker to remotely execute co... Fri, 07 May 2021 10:03:43
CVE-2021-22679 The affected product is vulnerable to an integer overflow while processing HTTP headers, which may allow an attacker to remot... Fri, 07 May 2021 09:04:44
CVE-2021-22675 The affected product is vulnerable to integer overflow while parsing malformed over-the-air firmware update files, which may ... Fri, 07 May 2021 09:04:29
CVE-2021-21984 VMware vRealize Business for Cloud 7.x prior to 7.6.0 contains a remote code execution vulnerability due to an unauthorised e... Fri, 07 May 2021 08:04:13
CVE-2021-3502 A flaw was found in avahi 0.8-5. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a loc... Fri, 07 May 2021 08:03:45
CVE-2020-14009 Proofpoint Enterprise Protection (PPS/PoD) before 8.17.0 contains a vulnerability that could allow an attacker to deliver an ... Fri, 07 May 2021 08:03:18
CVE-2021-26123 LivingLogic XIST4C before 0.107.8 allows XSS via login.htm, login.wihtm, or login-form.htm. Fri, 07 May 2021 07:46:16
CVE-2021-26122 LivingLogic XIST4C before 0.107.8 allows XSS via feedback.htm or feedback.wihtm. Fri, 07 May 2021 07:45:58
CVE-2020-36128 Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by a token spoofing vulnerability. Each payment terminal ... Fri, 07 May 2021 07:09:00
CVE-2020-36127 Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by an information disclosure vulnerability. Through the P... Fri, 07 May 2021 07:08:40
CVE-2020-36126 Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control that can lead to remote privi... Fri, 07 May 2021 07:08:25
CVE-2020-36125 Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control where password revalidation i... Fri, 07 May 2021 07:07:56
CVE-2020-36124 Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by XML External Entity (XXE) injection. An authenticated ... Fri, 07 May 2021 07:07:32
CVE-2021-30173 Local File Inclusion vulnerability of the omni-directional communication system allows remote authenticated attacker inject a... Fri, 07 May 2021 05:38:48
CVE-2021-30172 Special characters of picture preview page in the Quan-Fang-Wei-Tong-Xun system are not filtered in users’ input, which all... Fri, 07 May 2021 05:38:31
CVE-2021-30171 Special characters of ERP POS news page are not filtered in users’ input, which allow remote authenticated attackers can in... Fri, 07 May 2021 05:38:09
CVE-2021-30170 Special characters of ERP POS customer profile page are not filtered in users’ input, which allow remote authenticated atta... Fri, 07 May 2021 05:37:39
CVE-2021-1927 Possible use after free due to lack of null check while memory is being freed in FastRPC driver in Snapdragon Auto, Snapdrago... Fri, 07 May 2021 05:21:47
CVE-2021-1925 Possible denial of service scenario due to improper handling of group management action frame in Snapdragon Auto, Snapdragon ... Fri, 07 May 2021 05:21:26
CVE-2021-1915 Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Com... Fri, 07 May 2021 05:21:00
CVE-2021-1910 Double free in video due to lack of input buffer length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity... Fri, 07 May 2021 05:20:46
CVE-2021-1906 Improper handling of address deregistration on failure can lead to new GPU address allocation failure. in Snapdragon Auto, Sn... Fri, 07 May 2021 05:20:17
CVE-2021-1905 Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, ... Fri, 07 May 2021 05:19:55
CVE-2021-1895 Possible integer overflow due to improper length check while flashing an image in Snapdragon Consumer IOT, Snapdragon Industr... Fri, 07 May 2021 05:19:31
CVE-2021-1891 A possible use-after-free occurrence in audio driver can happen when pointers are not properly handled in Snapdragon Auto, Sn... Fri, 07 May 2021 05:19:08
CVE-2020-11295 Use after free in camera If the threadmanager is being cleaned up while the worker thread is processing objects in Snapdragon... Fri, 07 May 2021 05:18:41
CVE-2020-11294 Out of bound write in logger due to prefix size is not validated while prepended to logging string in Snapdragon Auto, Snapdr... Fri, 07 May 2021 05:18:27
CVE-2020-11293 Out of bound read can happen in Widevine TA while copying data to buffer from user data due to lack of check of buffer length... Fri, 07 May 2021 05:18:15
CVE-2020-11289 Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Com... Fri, 07 May 2021 05:18:01
CVE-2020-11288 Out of bound write can occur in playready while processing command due to lack of input validation in Snapdragon Auto, Snapdr... Fri, 07 May 2021 05:17:42
CVE-2020-11285 Buffer over-read while unpacking the RTCP packet we may read extra byte if wrong length is provided in RTCP packets in Snapdr... Fri, 07 May 2021 05:17:23
CVE-2020-11284 Locked memory can be unlocked and modified by non secure boot loader through improper system call sequence making the memory ... Fri, 07 May 2021 05:17:11
CVE-2020-11279 Memory corruption while processing crafted SDES packets due to improper length check in sdes packets recieved in Snapdragon A... Fri, 07 May 2021 05:16:42
CVE-2020-11274 Denial of service in MODEM due to assert to the invalid configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Conn... Fri, 07 May 2021 05:16:27
CVE-2020-11273 Histogram type KPI was teardown with the assumption of the existence of histogram binning info and will lead to null pointer ... Fri, 07 May 2021 05:16:13
CVE-2020-11268 Potential UE reset while decoding a crafted Sib1 or SIB1 that schedules unsupported SIBs and can lead to denial of service in... Fri, 07 May 2021 05:15:54
CVE-2020-11254 Memory corruption during buffer allocation due to dereferencing session ctx pointer without checking if pointer is valid in S... Fri, 07 May 2021 05:15:24
CVE-2020-29445 Affected versions of Confluence Server before 7.11.0 allow attackers to identify internal hosts and ports via a blind server-... Fri, 07 May 2021 02:11:55
CVE-2020-29444 Affected versions of Team Calendar in Confluence Server before 7.11.0 allow attackers to inject arbitrary HTML or Javascript ... Fri, 07 May 2021 02:11:42
CVE-2021-32093 The ConfigFileAction component of U.S. National Security Agency (NSA) Emissary 5.9.0 allows an authenticated user to read arb... Fri, 07 May 2021 00:43:04
CVE-2021-32092 A Cross-site scripting (XSS) vulnerability in the DocumentAction component of U.S. National Security Agency (NSA) Emissary 5.... Fri, 07 May 2021 00:42:45
CVE-2021-32091 A Cross-site scripting (XSS) vulnerability exists in StackLift LocalStack 0.12.6. Fri, 07 May 2021 00:42:30
CVE-2021-32090 The dashboard component of StackLift LocalStack 0.12.6 allows attackers to inject arbitrary shell commands via the functionNa... Fri, 07 May 2021 00:42:16
CVE-2021-32074 HashiCorp vault-action (aka Vault GitHub Action) before 2.2.0 allows attackers to obtain sensitive information from log files... Fri, 07 May 2021 00:42:00
CVE-2021-32104 A SQL injection vulnerability exists (with user privileges) in interface/forms/eye_mag/save.php in OpenEMR 5.0.2.1. Fri, 07 May 2021 00:09:45
CVE-2021-32103 A Stored XSS vulnerability in interface/usergroup/usergroup_admin.php in OpenEMR before 5.0.2.1 allows a admin authenticated ... Fri, 07 May 2021 00:09:25
CVE-2021-32102 A SQL injection vulnerability exists (with user privileges) in library/custom_template/ajax_code.php in OpenEMR 5.0.2.1. Fri, 07 May 2021 00:09:02
CVE-2021-32101 The Patient Portal of OpenEMR 5.0.2.1 is affected by a incorrect access control system in portal/patient/_machine_config.php.... Fri, 07 May 2021 00:08:37
CVE-2021-32100 A remote file inclusion vulnerability exists in Artica Pandora FMS 742, exploitable by the lowest privileged user. Fri, 07 May 2021 00:08:16
© CVE.report 2021 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report