Filter and search through 887 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2021-42292 | A security feature bypass vulnerability in Microsoft Excel would allow a local user to perform arbitrary code execution. | 7.8 | 814 | Neutral | Yes |
| Yes |
| CVE-2021-42258 | BQE BillQuick Web Suite contains an SQL injection vulnerability when accessing the username parameter that may allow for unauthenticated, remote code ... | 9.8 | 999 | Neutral | Yes | Yes |
| CVE-2021-41773 | Apache HTTP Server contains a path traversal vulnerability that allows an attacker to perform remote code execution if files outside directories confi... | 7.5 | 805 | Viral | Yes | Yes |
| CVE-2021-41379 | Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation. | 5.5 | 422 | Neutral | Yes | Yes |
| CVE-2021-4102 | Google Chromium V8 Engine contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted H... | 8.8 | 970 | Neutral | Yes | Yes |
| CVE-2021-40539 | Zoho ManageEngine ADSelfService Plus contains an authentication bypass vulnerability affecting the REST API URLs which allow for remote code execution... | 9.8 | 928 | Neutral | Yes | Yes |
| CVE-2021-40449 | Unspecified vulnerability allows for an authenticated user to escalate privileges. | 7.8 | 857 | Neutral | Yes | Yes |
| CVE-2021-40444 | Microsoft MSHTML contains a unspecified vulnerability that allows for remote code execution. | 8.8 | 999 | Viral | Yes | Yes |
| CVE-2021-38003 | Google Chromium V8 Engine has a bug in JSON.stringify, where the internal TheHole value can leak to script code, causing memory corruption. This vulne... | 8.8 | 970 | Neutral | Yes | Yes |
| CVE-2021-38000 | Google Chromium Intents contains an improper input validation vulnerability that allows a remote attacker to arbitrarily browser to a malicious URL vi... | 6.1 | 547 | Neutral | Yes | Yes |
| CVE-2021-37976 | Google Chromium contains an information disclosure vulnerability within the core memory component that allows a remote attacker to obtain potentially ... | 6.5 | 570 | Neutral | Yes | Yes |
| CVE-2021-37975 | Google Chromium V8 Engine contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted H... | 8.8 | 970 | Neutral | Yes | Yes |
| CVE-2021-37973 | Google Chromium Portals contains a use-after-free vulnerability that allows a remote attacker, who has compromised the renderer process, to potentiall... | 9.6 | 999 | Neutral | Yes | Yes |
| CVE-2021-36948 | Microsoft Windows Update Medic Service contains an unspecified vulnerability that allows for privilege escalation. | 7.8 | 749 | Neutral | Yes | Yes |
| CVE-2021-36742 | Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security contain an improper input validation vulnerability that allows for privi... | 7.8 | 814 | Neutral | Yes | Yes |
| CVE-2021-36741 | Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security contain an improper input validation vulnerability that allows a remote ... | 8.8 | 970 | Neutral | Yes | Yes |
| CVE-2021-35941 | Western Digital WD My Book Live (2.x and later) and WD My Book Live Duo (all versions) have an administrator API that can perform a system factory res... | 7.5 | 725 | Neutral | Yes | Yes |
| CVE-2021-35211 | SolarWinds Serv-U contains an unspecified memory escape vulnerability which can allow for remote code execution. | 10.0 | 999 | Neutral | Yes | Yes |
| CVE-2021-34527 | Microsoft Windows Print Spooler contains an unspecified vulnerability due to the Windows Print Spooler service improperly performing privileged file o... | 8.8 | 999 | Viral | Yes | Yes |
| CVE-2021-34448 | Microsoft Windows Scripting Engine contains an unspecified vulnerability that allows for memory corruption. | 6.8 | 679 | Neutral | Yes | Yes |