2021 CVE Vulnerabilities
23,431 CVEs published in 2021.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2021-20523 | LOW | 2.7 | 1.0% | Jul 15, 2021 | IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to obtain sensitive information when a detailed t... |
| CVE-2021-20499 | LOW | 2.7 | 1.0% | Jul 15, 2021 | IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to obtain sensitive information when a detailed t... |
| CVE-2021-21587 | LOW | 3.3 | 0.9% | Jul 15, 2021 | Dell Wyse Management Suite versions 3.2 and earlier contain a full path disclosure vulnerability. A local unauthenticate... |
| CVE-2021-34688 | LOW | 3.3 | 0.2% | Jul 15, 2021 | iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read an enc... |
| CVE-2021-31224 | LOW | 3.5 | 0.3% | Jul 13, 2021 | SES Evolution before 2.1.0 allows duplicating an existing security policy by leveraging access of a user having read-onl... |
| CVE-2021-36382 | LOW | 3.7 | 0.5% | Jul 12, 2021 | Devolutions Server before 2021.1.18, and LTS before 2020.3.20, allows attackers to intercept private keys via a man-in-t... |
| CVE-2021-32680 | LOW | 3.3 | 0.4% | Jul 12, 2021 | Nextcloud Server is a Nextcloud package that handles data storage. In versions priot to 19.0.13, 20.0.11, and 21.0.3, Ne... |
| CVE-2021-36371 | LOW | 3.7 | 0.7% | Jul 9, 2021 | Emissary-Ingress (formerly Ambassador API Gateway) through 1.13.9 allows attackers to bypass client certificate requirem... |
| CVE-2021-25439 | LOW | 3.3 | 0.2% | Jul 8, 2021 | Improper access control vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.... |
| CVE-2021-25432 | LOW | 3.3 | 0.2% | Jul 8, 2021 | Information exposure vulnerability in Samsung Members prior to versions 2.4.85.11 in Android O(8.1) and below, and 3.9.1... |
| CVE-2021-29759 | LOW | 2.3 | 0.3% | Jul 7, 2021 | IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, and 1.3 could allow a privileged user to obtain sensitive ... |
| CVE-2021-36087 | LOW | 3.3 | 0.5% | Jul 1, 2021 | The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check... |
| CVE-2021-36086 | LOW | 3.3 | 0.6% | Jul 1, 2021 | The CIL compiler in SELinux 3.2 has a use-after-free in cil_reset_classpermission (called from cil_reset_classperms_set ... |
| CVE-2021-36085 | LOW | 3.3 | 0.5% | Jul 1, 2021 | The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperm... |
| CVE-2021-36084 | LOW | 3.3 | 0.5% | Jul 1, 2021 | The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermissio... |
| CVE-2021-29480 | LOW | 3.1 | 0.3% | Jun 29, 2021 | Ratpack is a toolkit for creating web applications. In versions prior to 1.9.0, the client side session module uses the ... |
| CVE-2021-31506 | LOW | 3.3 | 1.4% | Jun 29, 2021 | This vulnerability allows remote attackers to disclose sensitive information on affected installations of OpenText Brava... |
| CVE-2021-28587 | LOW | 3.3 | 1.7% | Jun 28, 2021 | After Effects versions 18.0 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclos... |
| CVE-2021-27040 | LOW | 3.3 | 2.7% | Jun 25, 2021 | A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnera... |
| CVE-2021-29948 | LOW | 2.5 | 0.3% | Jun 24, 2021 | Signatures are written to disk before and read during verification, which might be subject to a race condition when a ma... |
| CVE-2021-24000 | LOW | 3.1 | 0.6% | Jun 24, 2021 | A race condition with requestPointerLock() and setTimeout() could have resulted in a user interacting with one tab when ... |
| CVE-2021-33604 | LOW | 2.5 | 0.3% | Jun 24, 2021 | URL encoding error in development mode handler in com.vaadin:flow-server versions 2.0.0 through 2.6.1 (Vaadin 14.0.0 thr... |
| CVE-2021-32823 | LOW | 3.7 | 1.9% | Jun 24, 2021 | In the bindata RubyGem before version 2.4.10 there is a potential denial-of-service vulnerability. In affected versions ... |
| CVE-2021-34397 | LOW | 2.3 | 0.2% | Jun 22, 2021 | Bootloader contains a vulnerability in NVIDIA MB2, which may cause free-the-wrong-heap, which may lead to limited denial... |
| CVE-2021-34396 | LOW | 2.3 | 0.2% | Jun 22, 2021 | Bootloader contains a vulnerability in access permission settings where unauthorized software may be able to overwrite N... |
Check if your code is affected by 2021 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now