CVE-2025-21489

Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite component: Region Mapping. Supported versions that are affected are 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Advance...

CVE-2022-21489

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior and 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

CVE-2021-21489

SAP NetWeaver Enterprise Portal versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently encode user related data, resulting in Stored Cross-Site Scripting XSS vulnerability. This would allow an attacker with administrative privileges to store a malicious script on the portal. T...

Linux Distros Unpatched Vulnerability : CVE-2024-21489

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Versions of the package uplot before 1.6.31 are vulnerable to Prototype Pollution via the uplot.assign function due to missing check if the attribute resolves t...

CVE-2025-21489

Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite component: Region Mapping. Supported versions that are affected are 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Advance...

Important: Red Hat Security Advisory: grafana security update

An update for grafana is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as...

RHEL 8 : grafana (RHSA-2024:8083)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:8083 advisory. Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fixes: uplot: Prototype...

@automattic/jetpack-ai-client (>=0.1.5 <=0.16.1), @automattic/jetpack-components (>=0.41.2 <=0.56.0) +41 more potentially affected by CVE-2024-21489 via uplot (>=1.1.2 <=1.6.30)

uplot NPM version =1.1.2, =0.1.5, =0.41.2, =0.29.8, =0.11.2, =5.0.2, =1.0.0, =8.3.0, =10.2.0, =0.0.1, =0.8.0, =0.0.1-preview1, =0.1.10, =10.4.0, =11.3.0-199210 and more Source cves: CVE-2024-21489 Source advisory: SNYK:JS-UPLOT-6209224...

CVE-2020-21489

File Upload vulnerability in Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component...

CVE-2020-21489

File Upload vulnerability in Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component...

CVE-2020-21489

CVE-2020-21489 affects FeehiCMS v2.0.8, describing an arbitrary file upload vulnerability that enables a remote attacker to execute code via the /admin/index.php?r=admin-user%2Fupdate-self component. Multiple sources (NVD, Red Hat, CNVD, OSV, GHSA, CNNVD) reiterate the same vulnerability with a h...

CVE-2023-21489

CVE-2023-21489 is a heap out-of-bounds write vulnerability in the bootloader of Samsung Mobile devices, prior to SMR May-2023 Release 1, allowing a physical attacker to execute arbitrary code. The issue affects the bootloader function/section used during device startup and is exploitable with phy...

CVE-2023-21489

Heap out-of-bounds write vulnerability in bootloader prior to SMR May-2023 Release 1 allows a physical attacker to execute arbitrary code...

CBL Mariner 2.0 Security Update: mysql (CVE-2022-21489)

The version of mysql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-21489 advisory. - Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions th...

CVE-2022-21489 affecting package mysql for versions less than 8.0.29-1

CVE-2022-21489 affecting package mysql for versions less than 8.0.29-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-21489 affecting package mysql 8.0.28-1

CVE-2022-21489 affecting package mysql 8.0.28-1. An upgraded version of the package is available that resolves this issue...

CVE-2022-21489

CVE-2022-21489 affects Oracle MySQL Cluster, specifically the Cluster: General component. Affected versions are 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior, and 8.0.28 and prior. The root cause is a vulnerability in MySQL Cluster that, under certain conditions, could allow a high-privile...

CVE-2021-21489

creationtimestamp| type| source ---|---|--- 2021-09-14 16:22:08+00:00| seen| https://t.me/cibsecurity/28811...

CVE-2021-21489

CVE-2021-21489 affects SAP NetWeaver Enterprise Portal versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, and 7.50. Root cause: insufficient encoding of user-related data leading to Stored XSS, enabling an attacker with administrative privileges to store malicious scripts that could affect portal conte...