Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49 (CVE-2021-41773)
CVE number = CVE-2021-41773 A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49.
Read MoreSecurity Vulnerabilities
The latest Security Vulnerabilities
Path Traversal and Remote Code Execution in Apache HTTP Server (incomplete fix of CVE-2021-41773) (CVE-2021-42013)
It was discovered that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a
Read More
Google Chrome Blink setBaseAndExtent use after free vulnerability [CVE-2021-30625]
CVE number = CVE-2021-30625 A use-after-free vulnerability exists in the Selection API of Blink rendering engine in Google Chrome 92.0.4515.131
Read More
Adobe Creative Cloud Incorrect Permission Assignment Privilege Escalation Vulnerability [CVE-2021-43019]
CVE number = CVE-2021-43019 This vulnerability allows local attackers to escalate privileges on affected installations of Adobe Creative Cloud. An
Read More
Panda Security Free Antivirus Unnecessary Privileges Local Privilege Escalation Vulnerability [CVE-2021-34998]
CVE number = CVE-2021-34998 This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Free Antivirus.
Read More
VMware vCenter Server updates address arbitrary file read and SSRF vulnerabilities (CVE-2021-21980, CVE-2021-22049)
CVE numbers = CVE-2021-21980 and CVE-2021-22049 Multiple vulnerabilities in VMware vCenter Server were privately reported to VMware. Updates are available
Read More
Microsoft Remote Desktop Client Remote Code Execution Vulnerability [CVE-2021-38666]
CVE number -= CVE-2021-38666 In the case of a Remote Desktop connection, an attacker with control of a Remote Desktop
Read More
Advanced Content Filter (ACF) vulnerability allowing to execute JavaScript code using malformed HTML [CVE-2021-41164]
CVE number = CVE-2021-41164 Affected packages The vulnerability has been discovered in the Advanced Content Filter (ACF) module and may
Read More
CKEditor HTML comments vulnerability allowing to execute JavaScript code [CVE-2021-41165]
CVE number = CVE-2021-41165 The vulnerability has been discovered in the core HTML processing module and may affect all plugins
Read More
Cisco Common Services Platform Collector Improper Logging Restriction Vulnerability [CVE-2021-40130]
CVE number = CVE-2021-40130 A vulnerability in the web application of Cisco Common Services Platform Collector (CSPC) could allow an
Read More