2021 CVE Vulnerabilities
23,431 CVEs published in 2021.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2021-2147 | LOW | 1.8 | 0.3% | Apr 22, 2021 | Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Installation). The supported... |
| CVE-2021-2141 | LOW | 2 | 0.6% | Apr 22, 2021 | Vulnerability in the Oracle FLEXCUBE Direct Banking product of Oracle Financial Services Applications (component: Pre Lo... |
| CVE-2021-24242 | LOW | 3.8 | 0.8% | Apr 22, 2021 | The Tutor LMS – eLearning and online course solution WordPress plugin before 1.8.8 is affected by a local file inclusion... |
| CVE-2021-3037 | LOW | 2.3 | 0.3% | Apr 20, 2021 | An information exposure through log file vulnerability exists in Palo Alto Networks PAN-OS software where the connection... |
| CVE-2021-30487 | LOW | 2.7 | 0.7% | Apr 15, 2021 | In the topic moving API in Zulip Server 3.x before 3.4, organization administrators were able to move messages to stream... |
| CVE-2021-26076 | LOW | 3.7 | 1.2% | Apr 15, 2021 | The jira.editor.user.mode cookie set by the Jira Editor Plugin in Jira Server and Data Center before version 8.5.12, fro... |
| CVE-2021-27260 | LOW | 3.2 | 0.5% | Apr 14, 2021 | This vulnerability allows local attackers to disclose sensitive information on affected installations of Parallels Deskt... |
| CVE-2021-25316 | LOW | 3.3 | 0.3% | Apr 14, 2021 | A Insecure Temporary File vulnerability in s390-tools of SUSE Linux Enterprise Server 12-SP5, SUSE Linux Enterprise Serv... |
| CVE-2021-28312 | LOW | 3.3 | 6.6% | Apr 13, 2021 | Windows NTFS Denial of Service Vulnerability |
| CVE-2021-25379 | LOW | 3.3 | 0.2% | Apr 9, 2021 | Intent redirection vulnerability in Gallery prior to version 5.4.16.1 allows attacker to execute privileged action. |
| CVE-2021-25364 | LOW | 3.3 | 0.1% | Apr 9, 2021 | A pendingIntent hijacking vulnerability in Secure Folder prior to SMR APR-2021 Release 1 allows unprivileged application... |
| CVE-2021-25359 | LOW | 3.3 | 0.1% | Apr 9, 2021 | An improper SELinux policy prior to SMR APR-2021 Release 1 allows local attackers to access AP information without prope... |
| CVE-2021-25358 | LOW | 3.3 | 0.1% | Apr 9, 2021 | A vulnerability that stores IMSI values in an improper path prior to SMR APR-2021 Release 1 allows local attackers to ac... |
| CVE-2021-29671 | LOW | 3.3 | 0.2% | Apr 9, 2021 | IBM Spectrum Scale 5.1.0.1 could allow a local attacker to bypass the filesystem audit logging mechanism when file audit... |
| CVE-2021-1803 | LOW | 3.3 | 0.6% | Apr 2, 2021 | The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.0.1. A local applicatio... |
| CVE-2021-1771 | LOW | 3.3 | 0.5% | Apr 2, 2021 | This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catal... |
| CVE-2021-1756 | LOW | 2.4 | 0.3% | Apr 2, 2021 | A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state manageme... |
| CVE-2021-1755 | LOW | 2.4 | 0.3% | Apr 2, 2021 | A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state manageme... |
| CVE-2021-21416 | LOW | 2.6 | 0.4% | Apr 1, 2021 | django-registration is a user registration package for Django. The django-registration package provides tools for implem... |
| CVE-2021-22890 | LOW | 3.7 | 3.1% | Apr 1, 2021 | curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due ... |
| CVE-2021-28163 | LOW | 2.7 | 4.2% | Apr 1, 2021 | In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and 11.0.0.beta2 to 11.0.1, if a user uses a webapps director... |
| CVE-2021-26071 | LOW | 3.5 | 0.5% | Apr 1, 2021 | The SetFeatureEnabled.jspa resource in Jira Server and Data Center before version 8.5.13, from version 8.6.0 before vers... |
| CVE-2021-27266 | LOW | 3.3 | 2.2% | Mar 30, 2021 | This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomP... |
| CVE-2021-27265 | LOW | 3.3 | 2.0% | Mar 30, 2021 | This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomP... |
| CVE-2021-27264 | LOW | 3.3 | 2.2% | Mar 30, 2021 | This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomP... |
Check if your code is affected by 2021 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now