| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| An issue was discovered in VxWorks 6.9 through 7. In the IKE component, a specifically crafted packet may lead to reading beyond the end of a buffer, or a double free. |
| An issue was discovered in net/tipc/crypto.c in the Linux kernel before 5.14.16. The Transparent Inter-Process Communication (TIPC) functionality allows remote attackers to exploit insufficient validation of user-supplied sizes for the MSG_CRYPTO message type. |
| In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exporting collections via PDF export could lead to code execution via shell metacharacters in a collection name. Additional, in Mahara before 20.10.4, 21.04.3, and 21.10.1, exporting collections via PDF export could cause code execution |
| In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, certain tag syntax could be used for XSS, such as via a SCRIPT element. |
| In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, adjusting the path component for the page help file allows attackers to bypass the intended access control for HTML files via directory traversal. It replaces the - character with the / character. |
| Lack of Neutralization of Formula Elements in the CSV API of MantisBT before 2.25.3 allows an unprivileged attacker to execute code or gain access to information when a user opens the csv_export.php generated CSV file in Excel. |
| Windows Digital Media Receiver Elevation of Privilege Vulnerability |
| Windows TCP/IP Driver Elevation of Privilege Vulnerability |
| Windows Hyper-V Denial of Service Vulnerability |
| Windows Digital TV Tuner Elevation of Privilege Vulnerability |
| Windows Kernel Information Disclosure Vulnerability |
| Microsoft SharePoint Server Spoofing Vulnerability |
| NTFS Set Short Name Elevation of Privilege Vulnerability |
| Windows Recovery Environment Agent Elevation of Privilege Vulnerability |
| Windows Remote Access Elevation of Privilege Vulnerability |
| Windows Setup Elevation of Privilege Vulnerability |
| Microsoft Message Queuing Information Disclosure Vulnerability |
| Storage Spaces Controller Information Disclosure Vulnerability |
| Windows Fax Service Remote Code Execution Vulnerability |
| Remote Desktop Client Remote Code Execution Vulnerability |