22 matches found
CVE-2026-21353
DNG SDK versions 1.7.1 2410 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2021-21353 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce...
Unspecified vulnerability in Xen (CNVD-2025-21353)
Xen is an open source virtual machine monitor product from Xen Open Source. The product enables different and incompatible operating systems to run on the same computer and supports migration at runtime to ensure uptime and avoid downtime. Xen has a security vulnerability that can be exploited by...
CVE-2022-21353
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogi...
CVE-2020-21353
A stored cross site scripting XSS vulnerability in /admin/snippets.php of GetSimple CMS 3.4.0a allows attackers to execute arbitrary web scripts or HTML via crafted payload in the Edit Snippets module...
CVE-2021-21353
creationtimestamp| type| source ---|---|--- 2025-03-31 21:02:06+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3llpaxs4utj2p 2025-04-16 22:57:50+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12168...
CVE-2024-21353
creationtimestamp| type| source ---|---|--- 2024-02-13 19:31:36+00:00| seen| https://t.me/ctinow/184066...
CVE-2024-21353
Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability...
CVE-2024-21353
Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability...
CVE-2024-21353
CVE-2024-21353 affects Microsoft WDAC ODBC Driver. The connected sources confirm a Remote Code Execution vulnerability in the WDAC ODBC Driver (Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability). CVSSv3.1 indicates Network access, no privileges, user interaction required, with high i...
CVE-2024-21353 Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability
...
KLA63958 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, gain privileges, spoof user interface, bypass security restrictions. Below is a complete list of...
CVE-2023-21353
CVE-2023-21353 affects a component labeled NFA in Android, where a missing bounds check can cause an out-of-bounds read. The resulting vulnerability leads to remote information disclosure without requiring privileges or user interaction. Documents consistently describe the impact as information d...
CVE-2022-21353
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogi...
CVE-2022-21353
CVE-2022-21353 affects Oracle WebLogic Server (Core) with affected versions 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. An unauthenticated attacker can exploit over the network via T3 to modify or delete data and cause a partial denial of service. The vulnerability is described with a CVSS v3.1 base s...
CVE-2020-21353
CVE-2020-21353 affects GetSimple CMS version 3.4.0a. A stored XSS exists in /admin/snippets.php via crafted payload in the Edit Snippets module, enabling execution of arbitrary web scripts/HTML if a user views the crafted content. No exploitation details or fixes are provided in the supplied docu...
Security Bulletin: A security vulnerability in Node.js pug and pug-code-gen module affects IBM Cloud Pak for Multicloud Management Managed Service.
Summary A security vulnerability in Node.js pug and pug-code-gen module affects IBM Cloud Pak for Multicloud Management Managed Service. Vulnerability Details CVEID: CVE-2021-21353 DESCRIPTION: Node.js pug and pug-code-gen could allow a remote attacker to execute arbitrary code on the system,...
CVE-2021-21353
Pug is an npm package which is a high-performance template engine. In pug before version 3.0.1, if a remote attacker was able to control the pretty option of the pug compiler, e.g. if you spread a user provided object such as the query parameters of a request into the pug template inputs, it was...
pug (=3.0.1-canary-5) potentially affected by CVE-2021-21353 via pug-code-gen (=3.0.2-canary-5)
pug-code-gen NPM version =3.0.2-canary-5 is affected by a known vulnerability. The following packages have a transitive dependency on pug-code-gen and may be impacted: - pug =3.0.1-canary-5 Source cves: CVE-2021-21353 Source advisory: OSV:GHSA-P493-635Q-R6GR...
@3kmfi6hp/nodejs-proxy (>=1.0.0 <=1.0.4), @aarhus-university/au-designsystem-delphinus (>=1.0.0 <=1.2.0) +342 more potentially affected by CVE-2021-21353 via pug-code-gen (>=0.0.0 <=1.1.1)
pug-code-gen NPM version =0.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.0, =0.2.0, =0.0.1, =0.0.2, =0.8.10, =0.0.9, =1.0.0, =2.1.1-alpha.1 and more Source cves: CVE-2021-21353 Source advisory: OSV:GHSA-P493-635Q-R6GR...