Количество 18 824
Количество 18 824
CVE-2021-43908
Visual Studio Code Spoofing Vulnerability
CVE-2021-43907
Visual Studio Code WSL Extension Remote Code Execution Vulnerability
CVE-2021-43905
Microsoft Office app Remote Code Execution Vulnerability
CVE-2021-43899
Microsoft 4K Wireless Display Adapter Remote Code Execution Vulnerability
CVE-2021-43896
Microsoft PowerShell Spoofing Vulnerability
CVE-2021-43893
Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability
CVE-2021-43892
Microsoft BizTalk ESB Toolkit Spoofing Vulnerability
CVE-2021-43891
Visual Studio Code Remote Code Execution Vulnerability
CVE-2021-43890
Windows AppX Installer Spoofing Vulnerability
CVE-2021-43889
Microsoft Defender for IoT Remote Code Execution Vulnerability
CVE-2021-43888
Microsoft Defender for IoT Information Disclosure Vulnerability
CVE-2021-43883
Windows Installer Elevation of Privilege Vulnerability
CVE-2021-43882
Microsoft Defender for IoT Remote Code Execution Vulnerability
CVE-2021-43880
Windows Mobile Device Management Elevation of Privilege Vulnerability
CVE-2021-43877
ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
CVE-2021-43876
Microsoft SharePoint Elevation of Privilege Vulnerability
CVE-2021-43875
Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2021-43818
HTML Cleaner allows crafted and SVG embedded scripts to pass through
CVE-2021-43784
Overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration
CVE-2021-43767
Odyssey passes to client unencrypted bytes from man-in-the-middle When Odyssey storage is configured to use the PostgreSQL server using 'trust' authentication with a 'clientcert' requirement or to use 'cert' authentication a man-in-the-middle attacker can inject false responses to the client's first few queries. Despite the use of SSL certificate verification and encryption Odyssey will pass these results to client as if they originated from valid server. This is similar to CVE-2021-23222 for PostgreSQL.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-43908 Visual Studio Code Spoofing Vulnerability | CVSS3: 4.3 | 10% Низкий | около 4 лет назад |
| CVE-2021-43907 Visual Studio Code WSL Extension Remote Code Execution Vulnerability | CVSS3: 9.8 | 10% Средний | около 4 лет назад |
| CVE-2021-43905 Microsoft Office app Remote Code Execution Vulnerability | CVSS3: 9.6 | 1% Низкий | около 4 лет назад |
| CVE-2021-43899 Microsoft 4K Wireless Display Adapter Remote Code Execution Vulnerability | CVSS3: 9.8 | 1% Низкий | около 4 лет назад |
| CVE-2021-43896 Microsoft PowerShell Spoofing Vulnerability | CVSS3: 5.5 | 3% Низкий | около 4 лет назад |
| CVE-2021-43893 Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability | CVSS3: 7.5 | 7% Низкий | около 4 лет назад |
| CVE-2021-43892 Microsoft BizTalk ESB Toolkit Spoofing Vulnerability | CVSS3: 7.4 | 2% Низкий | около 4 лет назад |
| CVE-2021-43891 Visual Studio Code Remote Code Execution Vulnerability | CVSS3: 7.8 | 12% Средний | около 4 лет назад |
| CVE-2021-43890 Windows AppX Installer Spoofing Vulnerability | CVSS3: 7.1 | 19% Средний | около 4 лет назад |
| CVE-2021-43889 Microsoft Defender for IoT Remote Code Execution Vulnerability | CVSS3: 7.2 | 1% Низкий | около 4 лет назад |
| CVE-2021-43888 Microsoft Defender for IoT Information Disclosure Vulnerability | CVSS3: 7.5 | 10% Низкий | около 4 лет назад |
| CVE-2021-43883 Windows Installer Elevation of Privilege Vulnerability | CVSS3: 7.8 | 9% Низкий | около 4 лет назад |
| CVE-2021-43882 Microsoft Defender for IoT Remote Code Execution Vulnerability | CVSS3: 9 | 0% Низкий | около 4 лет назад |
| CVE-2021-43880 Windows Mobile Device Management Elevation of Privilege Vulnerability | CVSS3: 5.5 | 0% Низкий | около 4 лет назад |
| CVE-2021-43877 ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability | CVSS3: 8.8 | 1% Низкий | около 4 лет назад |
| CVE-2021-43876 Microsoft SharePoint Elevation of Privilege Vulnerability | CVSS3: 8.8 | 1% Низкий | около 4 лет назад |
| CVE-2021-43875 Microsoft Office Graphics Remote Code Execution Vulnerability | CVSS3: 7.8 | 1% Низкий | около 4 лет назад |
| CVE-2021-43818 HTML Cleaner allows crafted and SVG embedded scripts to pass through | CVSS3: 7.1 | 4% Низкий | около 4 лет назад |
| CVE-2021-43784 Overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration | CVSS3: 5 | 0% Низкий | около 4 лет назад |
| CVE-2021-43767 Odyssey passes to client unencrypted bytes from man-in-the-middle When Odyssey storage is configured to use the PostgreSQL server using 'trust' authentication with a 'clientcert' requirement or to use 'cert' authentication a man-in-the-middle attacker can inject false responses to the client's first few queries. Despite the use of SSL certificate verification and encryption Odyssey will pass these results to client as if they originated from valid server. This is similar to CVE-2021-23222 for PostgreSQL. | CVSS3: 5.9 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу