Search Results (85585 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2021-42330 1 Xinheinformation 1 Xinhe Teaching Platform System 2024-11-21 8.8 High
The “Teacher Edit” function of ShinHer StudyOnline System does not perform authority control. After logging in with user’s privilege, remote attackers can access and edit other users’ credential and personal information by crafting URL parameters.
CVE-2021-42324 1 Dcnglobal 2 S4600-10p-si, S4600-10p-si Firmware 2024-11-21 7.4 High
An issue was discovered on DCN (Digital China Networks) S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to escape the sandbox environment and execute system commands as root via shell metacharacters in the capture command parameters. Command output will be shown on the Serial interface of the device. Exploitation requires both credentials and physical access.
CVE-2021-42322 1 Microsoft 1 Visual Studio Code 2024-11-21 7.8 High
Visual Studio Code Elevation of Privilege Vulnerability
CVE-2021-42320 1 Microsoft 2 Sharepoint Enterprise Server, Sharepoint Server 2024-11-21 8 High
Microsoft SharePoint Server Spoofing Vulnerability
CVE-2021-42316 1 Microsoft 1 Dynamics 365 2024-11-21 8.8 High
Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability
CVE-2021-42315 1 Microsoft 1 Defender For Iot 2024-11-21 8.8 High
Microsoft Defender for IoT Remote Code Execution Vulnerability
CVE-2021-42314 1 Microsoft 1 Defender For Iot 2024-11-21 8.8 High
Microsoft Defender for IoT Remote Code Execution Vulnerability
CVE-2021-42312 1 Microsoft 1 Defender For Iot 2024-11-21 7.8 High
Microsoft Defender for IoT Elevation of Privilege Vulnerability
CVE-2021-42310 1 Microsoft 1 Defender For Iot 2024-11-21 8.1 High
Microsoft Defender for IoT Remote Code Execution Vulnerability
CVE-2021-42309 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server 2024-11-21 8.8 High
Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2021-42298 1 Microsoft 1 Malware Protection Engine 2024-11-21 7.8 High
Microsoft Defender Remote Code Execution Vulnerability
CVE-2021-42294 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server 2024-11-21 7.2 High
Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2021-42291 1 Microsoft 11 Windows Server, Windows Server 2004, Windows Server 2008 and 8 more 2024-11-21 7.5 High
Active Directory Domain Services Elevation of Privilege Vulnerability
CVE-2021-42286 1 Microsoft 8 Windows 10, Windows 10 1809, Windows 10 20h2 and 5 more 2024-11-21 7.8 High
Windows Core Shell SI Host Extension Framework for Composable Shell Elevation of Privilege Vulnerability
CVE-2021-42285 1 Microsoft 22 Windows 10, Windows 10 1507, Windows 10 1607 and 19 more 2024-11-21 7.8 High
Windows Kernel Elevation of Privilege Vulnerability
CVE-2021-42283 1 Microsoft 23 Windows 10, Windows 10 1507, Windows 10 1607 and 20 more 2024-11-21 8.8 High
NTFS Elevation of Privilege Vulnerability
CVE-2021-42282 1 Microsoft 11 Windows Server, Windows Server 2004, Windows Server 2008 and 8 more 2024-11-21 7.5 High
Active Directory Domain Services Elevation of Privilege Vulnerability
CVE-2021-42276 1 Microsoft 14 Windows 10, Windows 10 1507, Windows 10 1607 and 11 more 2024-11-21 7.8 High
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2021-42275 1 Microsoft 21 Windows 10, Windows 10 1507, Windows 10 1607 and 18 more 2024-11-21 8.8 High
Microsoft COM for Windows Remote Code Execution Vulnerability
CVE-2021-42261 1 Revisorlab 1 Video Management System 2024-11-21 7.5 High
Revisor Video Management System (VMS) before 2.0.0 has a directory traversal vulnerability. Successful exploitation could allow an attacker to traverse the file system to access files or directories that are outside of restricted directory on the remote server. This could lead to the disclosure of sensitive data on the vulnerable server.