CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

BDU FSTEC•added 2021/10/20 12:0 a.m.•2 views

The vulnerability of the Media Audio Decoder decoder in the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Media Audio Decoder driver for the Windows operating system is related to errors in code generation. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7CVSS0.05174EPSS

BDU FSTEC•added 2021/10/20 12:0 a.m.•1 views

The vulnerability of the Microsoft DWM Core Library in the Windows operating system allows attackers to escalate their privileges.

The vulnerability of the Microsoft DWM Core Library in the Windows operating system is related to privilege management errors. Exploiting this vulnerability can allow an attacker to elevate their privileges...

7CVSS0.0021EPSS

BDU FSTEC•added 2021/10/20 12:0 a.m.•1 views

The vulnerability of the Microsoft Dynamics 365 resource planning software, related to errors in the user interface’s information presentation, allows a perpetrator to carry out spear-phishing attacks.

The vulnerability of the Microsoft Dynamics 365 resource planning software is related to errors in information presentation by the user interface. Exploiting this vulnerability allows a malicious actor to carry out spear-phishing attacks using specially crafted requests...

5.5CVSS0.00586EPSS

Exploits0References3Affected Software1

UbuntuCve•added 2021/10/19 12:0 a.m.•94 views

CVE-2021-20322

A flaw in the processing of received ICMP errors ICMP fragment needed and ICMP redirect in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP randomization. The highest...

7.4CVSS6.7AI score0.00136EPSS

RedhatCVE•added 2021/10/18 11:13 a.m.•47 views

CVE-2021-20322

7.4CVSS1.4AI score0.0101EPSS

Exploits1References7

CNVD•added 2021/10/18 12:0 a.m.•17 views

Adobe Acrobat Reader Path Traversal Vulnerability

Adobe Acrobat Reader is the United States of America Audobee Adobe, a PDF viewer. A path traversal vulnerability exists in Adobe Acrobat Reader, which stems from a configuration or other error in the operation of the product. An unauthorized attacker could exploit the vulnerability to obtain...

7.8CVSS7.3AI score0.02551EPSS

Exploits0References1

The vulnerability of the driver for providing functionality for Storage Spaces on Windows operating systems, related to privilege management errors, allows a perpetrator to escalate their privileges.

The vulnerability of the driver for enabling Storage Spaces on Windows operating systems is related to privilege management errors. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS0.00297EPSS

BDU FSTEC•added 2021/10/15 12:0 a.m.•2 views

The vulnerability of the Windows Common Log File System Driver in Windows operating systems, related to privilege management errors, allows a perpetrator to obtain system privileges.

The vulnerability of the Windows Common Log File System Driver in the operating system is related to privilege management errors. Exploiting this vulnerability can allow an attacker to gain system privileges...

7.8CVSS0.00312EPSS

The vulnerability of the Windows operating system, related to errors in security settings, allows a perpetrator to bypass the security mechanisms.

The vulnerability of the Windows operating system is related to security configuration errors. Exploiting this vulnerability can allow a remote attacker to bypass security measures...

6.8CVSS0.01755EPSS

The vulnerability of the win32k component of the Windows operating system, related to privilege management errors, allows a perpetrator to escalate their privileges.

The vulnerability of the win32k component of the Windows operating system is related to privilege management errors. Exploiting this vulnerability can allow an attacker to enhance their privileges...

7.8CVSS0.04133EPSS

The vulnerability of the Nearby Share function in the Windows operating system, related to privilege management errors, allows a perpetrator to escalate their privileges.

The vulnerability of the Nearby Share function in the Windows operating system is related to privilege management errors. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

8CVSS0.00578EPSS

The vulnerability of Microsoft SharePoint Server’s software packages, related to errors in information presentation by the user interface, allows attackers to carry out spoofing attacks.

The vulnerability of Microsoft SharePoint Server packages is related to errors in information presentation by the user interface. Exploiting this vulnerability can allow a malicious actor to carry out spoofing attacks remotely...

7.5CVSS0.03074EPSS

The vulnerability of the win32k component of the Windows operating system, related to privilege management errors, allows a perpetrator to escalate their privileges.

The vulnerability of the win32k component of the Windows operating system is related to privilege management errors. Exploiting this vulnerability can allow an attacker to enhance their privileges...

7.8CVSS0.04042EPSS

RedHat Linux•added 2021/10/14 8:21 p.m.•3 views

Ansible: ansible-connection module discloses sensitive info in traceback error message

A flaw was found in Ansible Engine's ansible-connection module, where sensitive information such as the Ansible user credentials is disclosed by default in the traceback error message. The highest threat from this vulnerability is to confidentiality...

5.5CVSS6.8AI score0.0029EPSS

RedHat Linux•added 2021/10/14 7:42 p.m.•4 views

Ansible: ansible-connection module discloses sensitive info in traceback error message

5.5CVSS6.8AI score0.0029EPSS