Main entries ~3681 : No results found. Remaining NVD entries (unprocessed / no code available): ~167140 :
Date Id Summary Products Score Patch
2021-10-15 CVE-2018-16060 Mitsubishi Electric SmartRTU devices allow remote attackers to obtain sensitive information (directory listing and source code) via a direct request to the /web URI. N/A N/A
2021-10-15 CVE-2018-16061 Mitsubishi Electric SmartRTU devices allow XSS via the username parameter or PATH_INFO to login.php. N/A N/A
2021-10-15 CVE-2021-27561 Yealink Device Management (DM) allows command injection as root via the /sm/api/v1/firewall/zone/services URI, without authentication. N/A N/A
2021-10-15 CVE-2021-41320 A technical user has hardcoded credentials in Wallstreet Suite TRM 7.4.83 (64-bit edition) with higher privilege than the average authenticated user. N/A N/A
2021-10-15 CVE-2020-4951 IBM Cognos Analytics 11.1.7 and 11.2.0 contains locally cached browser data, that could allow a local attacker to obtain sensitive information. N/A N/A
2021-10-15 CVE-2021-28021 Buffer overflow vulnerability in function stbi__extend_receive in stb_image.h in stb 2.26 via a crafted JPEG file. N/A N/A
2021-10-15 CVE-2021-29679 IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated user to execute code remotely due to incorrectly neutralizaing user-contrlled input that could be interpreted a a server-side include (SSI) directive. IBM X-Force ID: 199915. N/A N/A