CVE-2026-21006

Improper access control in Samsung DeX prior to SMR Apr-2026 Release 1 allows physical attackers to access to hidden notification contents...

Oracle Linux 10 : kea (ELSA-2025-21006)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21006 advisory. - Fixes CVE-2025-11232 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...

CVE-2025-21006

Out-of-bounds write in handling of macro blocks for MPEG4 codec in libsavsvc.so prior to Android 15 allows local attackers to write out-of-bounds memory...

Exploit for Missing Authentication for Critical Function in Oracle Weblogic_Server

CVE-2024-21006 PoC A CVE-2024-21006 é uma vulnerabilidade de...

CVE-2023-21006

In multiple locations of p2piface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

CVE-2018-21006

The bbp-move-topics plugin before 1.1.6 for WordPress has CSRF...

CVE-2021-21006

creationtimestamp| type| source ---|---|--- 2025-04-23 20:04:55+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13143...

CVE-2024-21006

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic...

CVE-2024-21006

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic...

CVE-2024-21006

...

CVE-2024-21006

...

CVE-2024-21006

CVE-2024-21006 affects Oracle WebLogic Server (Core) in 12.2.1.4.0 and 14.1.1.0.0. The connected PoC demonstrates unauthenticated remote code execution via IIOP/JNDI (T3/IIOP access) leading to arbitrary code execution and data compromise. Oracle’s April 2024 CPU provides fixes (update to version...

CVE-2023-21006

In multiple locations of p2piface.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

CVE-2023-21006

CVE-2023-21006 affects Google Pixel/Android 13 where a missing bounds check in the p2p_iface.cpp file allows an out-of-bounds read, leading to local information disclosure with System privileges required. No user interaction is needed. Remediation: apply Android security updates; Pixel bulletin i...

Adobe Photoshop 22.x < 22.1.1 Vulnerability (macOS APSB21-01)

The version of Adobe Photoshop installed on the remote macOS or Mac OS X host is prior to 22.1.1. It is, therefore, affected by a vulnerability as referenced in the apsb21-01 advisory. - Adobe Photoshop version 22.1 and earlier is affected by a heap buffer overflow vulnerability when handling a...

Adobe Photoshop 22.x < 22.1.1 Vulnerability (APSB21-01)

The version of Adobe Photoshop installed on the remote Windows host is prior to 22.1.1. It is, therefore, affected by a vulnerability as referenced in the apsb21-01 advisory. - Adobe Photoshop version 22.1 and earlier is affected by a heap buffer overflow vulnerability when handling a specially...

CVE-2021-21006 Heap buffer overflow when handling crafted font file could lead to arbitrary code execution

Adobe Photoshop version 22.1 and earlier is affected by a heap buffer overflow vulnerability when handling a specially crafted font file. Successful exploitation could lead to arbitrary code execution. Exploitation of this issue requires user interaction in that a victim must open a malicious fil...

CVE-2021-21006

Adobe Photoshop versions 22.1 and earlier are affected by a heap-based/buffer overflow when processing a specially crafted font file, which could lead to arbitrary code execution. Exploitation requires user interaction (opening a malicious file). A patch exists: update to version 22.1.1 (per advi...

CVE-2018-21006

CVE-2018-21006 affects the WordPress plugin bbp-move-topics prior to version 1.1.6. The vulnerability is a CSRF flaw that could allow an attacker to cause unintended requests/actions on behalf of an authenticated user. The root cause is CSRF in the bbp-move-topics plugin, as documented in multipl...