Export limit exceeded: 35194 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (35194 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2021-36953 | 1 Microsoft | 23 Windows 10, Windows 10 1507, Windows 10 1607 and 20 more | 2024-11-21 | 7.5 High |
| Windows TCP/IP Denial of Service Vulnerability | ||||
| CVE-2021-36947 | 1 Microsoft | 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more | 2024-11-21 | 8.8 High |
| Windows Print Spooler Remote Code Execution Vulnerability | ||||
| CVE-2021-36941 | 1 Microsoft | 2 365 Apps, Office | 2024-11-21 | 7.8 High |
| Microsoft Word Remote Code Execution Vulnerability | ||||
| CVE-2021-36940 | 1 Microsoft | 2 Sharepoint Enterprise Server, Sharepoint Server | 2024-11-21 | 7.6 High |
| Microsoft SharePoint Server Spoofing Vulnerability | ||||
| CVE-2021-36938 | 1 Microsoft | 6 Windows 10, Windows 10 1507, Windows 10 1607 and 3 more | 2024-11-21 | 5.5 Medium |
| Windows Cryptographic Primitives Library Information Disclosure Vulnerability | ||||
| CVE-2021-36937 | 1 Microsoft | 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more | 2024-11-21 | 7.8 High |
| Windows Media MPEG-4 Video Decoder Remote Code Execution Vulnerability | ||||
| CVE-2021-36936 | 1 Microsoft | 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more | 2024-11-21 | 8.8 High |
| Windows Print Spooler Remote Code Execution Vulnerability | ||||
| CVE-2021-36933 | 1 Microsoft | 15 Windows 10, Windows 10 1507, Windows 10 1607 and 12 more | 2024-11-21 | 7.5 High |
| Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability | ||||
| CVE-2021-36932 | 1 Microsoft | 17 Windows 10, Windows 10 1507, Windows 10 1607 and 14 more | 2024-11-21 | 7.5 High |
| Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability | ||||
| CVE-2021-36929 | 1 Microsoft | 1 Edge Chromium | 2024-11-21 | 6.3 Medium |
| Microsoft Edge (Chromium-based) Information Disclosure Vulnerability | ||||
| CVE-2021-36926 | 1 Microsoft | 15 Windows 10, Windows 10 1507, Windows 10 1607 and 12 more | 2024-11-21 | 7.5 High |
| Windows Services for NFS ONCRPC XDR Driver Information Disclosure Vulnerability | ||||
| CVE-2021-36925 | 1 Realtek | 1 Rtsupx Usb Utility Driver | 2024-11-21 | 7.8 High |
| RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve an arbitrary read or write operation from/to physical memory (leading to Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure) via a crafted Device IO Control packet to a device. | ||||
| CVE-2021-36923 | 1 Realtek | 1 Rtsupx Usb Utility Driver | 2024-11-21 | 7.8 High |
| RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve unauthorized access to USB device privileged IN and OUT instructions (leading to Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure) via a crafted Device IO Control packet to a device. | ||||
| CVE-2021-36922 | 1 Realtek | 1 Rtsupx Usb Utility Driver | 2024-11-21 | 7.8 High |
| RtsUpx.sys in Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio through 1.14.0.0 allows local low-privileged users to achieve unauthorized access to USB devices (Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure) via a crafted Device IO Control packet to a device. | ||||
| CVE-2021-36809 | 1 Sophos | 1 Ssl Vpn Client | 2024-11-21 | 6.1 Medium |
| A local attacker can overwrite arbitrary files on the system with VPN client logs using administrator privileges, potentially resulting in a denial of service and data loss, in all versions of Sophos SSL VPN client. | ||||
| CVE-2021-36797 | 1 Victronenergy | 1 Venus Os | 2024-11-21 | 6.8 Medium |
| In Victron Energy Venus OS through 2.72, root access is granted by default to anyone with physical access to the device. NOTE: the vendor disagrees with the reporter's opinion about an alleged "security best practices" violation | ||||
| CVE-2021-36794 | 1 Siren | 1 Investigate | 2024-11-21 | 9.8 Critical |
| In Siren Investigate before 11.1.4, when enabling the cluster feature of the Siren Alert application, TLS verifications are disabled globally in the Siren Investigate main process. | ||||
| CVE-2021-36791 | 1 Dated News Project | 1 Dated News | 2024-11-21 | 5.3 Medium |
| The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows Information Disclosure of application registration data. | ||||
| CVE-2021-36774 | 1 Apache | 1 Kylin | 2024-11-21 | 6.5 Medium |
| Apache Kylin allows users to read data from other database systems using JDBC. The MySQL JDBC driver supports certain properties, which, if left unmitigated, can allow an attacker to execute arbitrary code from a hacker-controlled malicious MySQL server within Kylin server processes. This issue affects Apache Kylin 2 version 2.6.6 and prior versions; Apache Kylin 3 version 3.1.2 and prior versions. | ||||
| CVE-2021-36769 | 1 Telegram | 2 Telegram, Telegram Desktop | 2024-11-21 | 5.3 Medium |
| A reordering issue exists in Telegram before 7.8.1 for Android, Telegram before 7.8.3 for iOS, and Telegram Desktop before 2.8.8. An attacker can cause the server to receive messages in a different order than they were sent a client. | ||||