Export limit exceeded: 34967 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (34967 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-26585 | 1 Hpe | 1 Oneview Global Dashboard | 2024-11-21 | 5.5 Medium |
| A potential vulnerability has been identified in HPE OneView Global Dashboard release 2.31 which could lead to a local disclosure of privileged information. HPE has provided an update to OneView Global Dashboard. The issue is resolved in 2.32. | ||||
| CVE-2021-26583 | 1 Hp | 1 Ilo Amplifier Pack | 2024-11-21 | 9.8 Critical |
| A potential security vulnerability was identified in HPE iLO Amplifier Pack. The vulnerabilities could be remotely exploited to allow remote code execution. | ||||
| CVE-2021-26581 | 1 Hpe | 2 Superdome Flex Server, Superdome Flex Server Firmware | 2024-11-21 | 6.5 Medium |
| A potential security vulnerability has been identified in HPE Superdome Flex server. A denial of service attack can be remotely exploited leaving hung connections to the BMC web interface. The monarch BMC must be rebooted to recover from this situation. Other BMC management is not impacted. HPE has made the following software update to resolve the vulnerability in HPE Superdome Flex Server: Superdome Flex Server Firmware 3.30.142 or later. | ||||
| CVE-2021-26540 | 2 Apostrophecms, Redhat | 2 Sanitize-html, Openshift | 2024-11-21 | 5.3 Medium |
| Apostrophe Technologies sanitize-html before 2.3.2 does not properly validate the hostnames set by the "allowedIframeHostnames" option when the "allowIframeRelativeUrls" is set to true, which allows attackers to bypass hostname whitelist for iframe element, related using an src value that starts with "/\\example.com". | ||||
| CVE-2021-26539 | 2 Apostrophecms, Redhat | 2 Sanitize-html, Openshift | 2024-11-21 | 5.3 Medium |
| Apostrophe Technologies sanitize-html before 2.3.1 does not properly handle internationalized domain name (IDN) which could allow an attacker to bypass hostname whitelist validation set by the "allowedIframeHostnames" option. | ||||
| CVE-2021-26471 | 1 Vembu | 2 Bdr Suite, Offsite Dr | 2024-11-21 | 9.8 Critical |
| In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1, the http API located at /sgwebservice_o.php accepts a command argument. Using this command argument an unauthenticated attacker can execute arbitrary shell commands. | ||||
| CVE-2021-26444 | 1 Microsoft | 1 Azure Real Time Operating System | 2024-11-21 | 3.3 Low |
| Azure RTOS Information Disclosure Vulnerability | ||||
| CVE-2021-26443 | 1 Microsoft | 11 Windows 10, Windows 10 1809, Windows 10 1909 and 8 more | 2024-11-21 | 9 Critical |
| Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability | ||||
| CVE-2021-26442 | 1 Microsoft | 22 Windows 10, Windows 10 1507, Windows 10 1607 and 19 more | 2024-11-21 | 7 High |
| Windows HTTP.sys Elevation of Privilege Vulnerability | ||||
| CVE-2021-26439 | 2 Google, Microsoft | 2 Android, Edge | 2024-11-21 | 4.6 Medium |
| Microsoft Edge for Android Information Disclosure Vulnerability | ||||
| CVE-2021-26437 | 1 Microsoft | 1 Visual Studio Code | 2024-11-21 | 5.5 Medium |
| Visual Studio Code Spoofing Vulnerability | ||||
| CVE-2021-26436 | 1 Microsoft | 2 Edge, Edge Chromium | 2024-11-21 | 6.1 Medium |
| Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | ||||
| CVE-2021-26433 | 1 Microsoft | 15 Windows 10, Windows 10 1507, Windows 10 1607 and 12 more | 2024-11-21 | 7.5 High |
| Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability | ||||
| CVE-2021-26432 | 1 Microsoft | 15 Windows 10, Windows 10 1507, Windows 10 1607 and 12 more | 2024-11-21 | 9.8 Critical |
| Windows Services for NFS ONCRPC XDR Driver Remote Code Execution Vulnerability | ||||
| CVE-2021-26430 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 6 Medium |
| Azure Sphere Denial of Service Vulnerability | ||||
| CVE-2021-26429 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 7.7 High |
| Azure Sphere Elevation of Privilege Vulnerability | ||||
| CVE-2021-26428 | 1 Microsoft | 1 Azure Sphere | 2024-11-21 | 4.4 Medium |
| Azure Sphere Information Disclosure Vulnerability | ||||
| CVE-2021-26427 | 1 Microsoft | 1 Exchange Server | 2024-11-21 | 9 Critical |
| Microsoft Exchange Server Remote Code Execution Vulnerability | ||||
| CVE-2021-26424 | 1 Microsoft | 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more | 2024-11-21 | 9.9 Critical |
| Windows TCP/IP Remote Code Execution Vulnerability | ||||
| CVE-2021-26423 | 2 Microsoft, Redhat | 7 .net, .net Core, Powershell Core and 4 more | 2024-11-21 | 7.5 High |
| .NET Core and Visual Studio Denial of Service Vulnerability | ||||