21 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-21391
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CKEditor 5 provides a WYSIWYG editing solution. This CVE affects the following npm packages: ckeditor5-engine, ckeditor5-font, ckeditor5-image, ckeditor5-list,...
CVE-2023-21391
creationtimestamp| type| source ---|---|--- 2025-07-27 09:04:06+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3luwpu2m3xew2...
CVE-2021-21391
CKEditor 5 provides a WYSIWYG editing solution. This CVE affects the following npm packages: ckeditor5-engine, ckeditor5-font, ckeditor5-image, ckeditor5-list, ckeditor5-markdown-gfm, ckeditor5-media-embed, ckeditor5-paste-from-office, and ckeditor5-widget. Following an internal audit, a regular...
Microsoft Patch Tuesday, February 2025 Edition
Microsoft today issued security updates to fix at least 56 vulnerabilities in its Windows operating systems and supported software, including two zero-day flaws that are being actively exploited. All supported Windows operating systems will receive an update this month for a buffer overflow...
CVE-2025-21391
creationtimestamp| type| source ---|---|--- 2025-02-11 18:07:13+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113986583418117641 2025-02-11 18:08:38+00:00| seen| https://www.thezdi.com/blog/2025/2/11/the-february-2025-security-update-review 2025-02-11 18:18:12+00:00| seen|...
CVE-2025-21391
CVE-2025-21391 (Windows Storage Elevation of Privilege) describes a local privilege escalation in Windows Storage. The vulnerability allows an attacker with low privileges and no user interaction to elevate to SYSTEM by exploiting a link-following flaw in Windows Storage (root cause described as ...
CVE-2025-21391 Windows Storage Elevation of Privilege Vulnerability
...
VulnCheck KEV: CVE-2025-21391
Microsoft Windows Storage contains a link following vulnerability that could allow for privilege escalation. This vulnerability could allow an attacker to delete data including data that results in the service being unavailable...
CVE-2022-21391
Vulnerability in the Oracle Communications Billing and Revenue Management product of Oracle Communications Applications component: Connection Manager. Supported versions that are affected are 12.0.0.3 and 12.0.0.4. Easily exploitable vulnerability allows low privileged attacker with network acces...
CVE-2024-21391
creationtimestamp| type| source ---|---|--- 2024-02-13 20:36:48+00:00| seen| https://t.me/ctinow/184156...
CVE-2024-21391
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability...
CVE-2024-21391 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
...
CVE-2024-21391 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
...
CVE-2024-21391
CVE-2024-21391 affects Microsoft WDAC OLE DB provider for SQL Server and is described as a Remote Code Execution vulnerability. The initial document provides a CVSS 3.1 base score of 8.8 (HIGH) with NETWORK attack vector, LOW attack complexity, and user interaction required. No specific remediati...
KB5034819: Windows Server 2012 R2 Security Update (February 2024)
The remote Windows host is missing security update 5034819. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
KB5034763: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (February 2024)
The remote Windows host is missing security update 5034763. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2024-21350, CVE-2024-21352, CVE-2024-21358, CVE-2024-21359, CVE-2024-21360, CVE-2024-21361,...
CVE-2023-21391
In Messaging, there is a possible way to disable the messaging application due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-21391
CVE-2023-21391 is documented in Android 14 release notes as a DoS affecting the System area, attributed to improper input validation in the Messaging context. The impact is remote denial of service without user interaction or elevated privileges, with a network-based attack vector (AV:N, PR:N, UI...
CVE-2022-21391
CVE-2022-21391 affects Oracle Communications Billing and Revenue Management (BRM), specifically the Connection Manager component. Affected versions are 12.0.0.3 and 12.0.0.4. The issue is described as easily exploitable: a low-privilege attacker with network access via HTTP can compromise BRM, wi...
CVE-2021-21391
CKEditor 5 provides a WYSIWYG editing solution. This CVE affects the following npm packages: ckeditor5-engine, ckeditor5-font, ckeditor5-image, ckeditor5-list, ckeditor5-markdown-gfm, ckeditor5-media-embed, ckeditor5-paste-from-office, and ckeditor5-widget. Following an internal audit, a regular...