All Posts by: Virtual Patching

Synology Download Station prior 3.8.16-3566 Task Management command injection

A vulnerability was found in Synology Download Station. It has been declared as critical. This vulnerability affects an unknown function

Common Vulnerabilities and Exposures

Synology Download Station prior 3.8.16-3566 privileges management

A vulnerability was found in Synology Download Station. It has been rated as critical. This issue affects an unknown functionality.

Common Vulnerabilities and Exposures

MantisBT up to 2.25.1 manage_custom_field_edit_page.php return cross site scripting

A vulnerability, which was classified as problematic, has been found in MantisBT up to 2.25.1 (Bug Tracking Software). Affected by

Common Vulnerabilities and Exposures

Symfony 5.3.0/5.3.1 improper authentication [CVE-2021-32693]

A vulnerability, which was classified as critical, was found in Symfony 5.3.0/5.3.1. This affects an unknown functionality. Upgrading to version

Common Vulnerabilities and Exposures

Nextcloud App up to 3.16.0 on Android information disclosure

A vulnerability has been found in Nextcloud App up to 3.16.0 on Android (Android App Software) and classified as problematic.

Common Vulnerabilities and Exposures

CiviCRM up to 5.21.2/5.24.2 PHAR Archive unrestricted upload

A vulnerability was found in CiviCRM up to 5.21.2/5.24.2 and classified as critical. This issue affects an unknown part of

Common Vulnerabilities and Exposures

HashiCorp Nomad/Nomad Enterprise up to 1.0.4 Bridge Networking Mode unknown vulnerability

A vulnerability was found in HashiCorp Nomad and Nomad Enterprise up to 1.0.4. It has been classified as problematic. Affected

Common Vulnerabilities and Exposures

TrendNet TW100-S4W1CA 2.3.32 Web Page cross-site request forgery

A vulnerability was found in TrendNet TW100-S4W1CA 2.3.32. It has been declared as problematic. Affected by this vulnerability is an

Common Vulnerabilities and Exposures

TrendNet TW100-S4W1CA 2.3.32 Web Interface cross site scripting

A vulnerability was found in TrendNet TW100-S4W1CA 2.3.32. It has been rated as problematic. Affected by this issue is some

Common Vulnerabilities and Exposures

CiviCRM up to 5.27.4 ESR/5.28.0 CKEditor Configuration cross-site request forgery

A vulnerability classified as problematic has been found in CiviCRM up to 5.27.4 ESR/5.28.0. This affects an unknown function of

Common Vulnerabilities and Exposures

Nextcloud App up to 3.15.0 on Android denial of service [CVE-2021-32694]

A vulnerability classified as problematic was found in Nextcloud App up to 3.15.0 on Android (Android App Software). This vulnerability

Common Vulnerabilities and Exposures

Trojan-Dropper.Win32.Googite.b Service Port 10002 backdoor

A vulnerability, which was classified as critical, has been found in Trojan-Dropper.Win32.Googite.b (unknown version). This issue affects some unknown functionality

Common Vulnerabilities and Exposures Cross Site Scripting

CVE-2021-34815

CheckSec Canopy before 3.5.2 allows XSS attacks against the login page via the LOGIN_PAGE_DISCLAIMER parameter. (CVSS:0.0) (Last Update:2021-06-18)

Common Vulnerabilities and Exposures

Open Design Alliance Drawings SDK up to 2022.3 DXF File out-of-bounds write

A vulnerability has been found in Open Design Alliance Drawings SDK up to 2022.3 and classified as critical. This vulnerability

Common Vulnerabilities and Exposures

Open Design Alliance Drawings SDK up to 2022.3 DWG File out-of-bounds read

A vulnerability was found in Open Design Alliance Drawings SDK up to 2022.3 and classified as problematic. This issue affects

Common Vulnerabilities and Exposures

Open Design Alliance Drawings SDK up to 2022.3 DWG File Recovery out-of-bounds read

A vulnerability was found in Open Design Alliance Drawings SDK up to 2022.3. It has been classified as problematic. Affected

Common Vulnerabilities and Exposures

Open Design Alliance Drawings SDK up to 2022.4 DGN File out-of-bounds read

A vulnerability was found in Open Design Alliance Drawings SDK up to 2022.4. It has been declared as problematic. Affected

Common Vulnerabilities and Exposures

Open Design Alliance Drawings SDK up to 2022.3 out-of-bounds write

A vulnerability was found in Open Design Alliance Drawings SDK up to 2022.3. It has been rated as critical. Affected

Common Vulnerabilities and Exposures

Open Design Alliance Drawings SDK up to 2022.3 DXF File out-of-bounds read

A vulnerability classified as problematic has been found in Open Design Alliance Drawings SDK up to 2022.3. This affects an

Common Vulnerabilities and Exposures

Open Design Alliance Drawings SDK up to 2022.4 DGN File out-of-bounds write

A vulnerability classified as critical was found in Open Design Alliance Drawings SDK up to 2022.4. This vulnerability affects an

Common Vulnerabilities and Exposures

Intel Brand Verification Tool prior 11.0.0.1225 permission [CVE-2021-0143]

A vulnerability, which was classified as critical, has been found in Intel Brand Verification Tool. This issue affects an unknown

Common Vulnerabilities and Exposures

Quassel up to 0.13.1 x.509 Certificate cryptographic issues

A vulnerability, which was classified as problematic, was found in Quassel up to 0.13.1. Affected is some unknown processing of

Common Vulnerabilities and Exposures

Trend Micro InterScan Web Security Virtual Appliance 6.5 Captive Portal cross site scripting

A vulnerability has been found in Trend Micro InterScan Web Security Virtual Appliance 6.5 (Anti-Malware Software) and classified as problematic.

Common Vulnerabilities and Exposures

IBM AIX 7.1 Remote Privilege Escalation [CVE-2021-29706]

A vulnerability was found in IBM AIX 7.1 (Operating System) and classified as critical. Upgrading eliminates this vulnerability.