Количество 18 763
Количество 18 763
CVE-2021-33750
Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-33749
Windows DNS Snap-in Remote Code Execution Vulnerability
CVE-2021-33746
Windows DNS Server Remote Code Execution Vulnerability
CVE-2021-33745
Windows DNS Server Denial of Service Vulnerability
CVE-2021-33744
Windows Secure Kernel Mode Security Feature Bypass Vulnerability
CVE-2021-33743
Windows Projected File System Elevation of Privilege Vulnerability
CVE-2021-33742
Windows MSHTML Platform Remote Code Execution Vulnerability
CVE-2021-33741
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2021-33740
Windows Media Remote Code Execution Vulnerability
CVE-2021-33739
Microsoft DWM Core Library Elevation of Privilege Vulnerability
CVE-2021-33656
When setting font with malicous data by ioctl cmd PIO_FONTkernel will write memory out of bounds.
CVE-2021-33655
When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFOkernel will write memory out of bounds.
CVE-2021-33646
CVE-2021-33645
CVE-2021-33644
CVE-2021-33643
CVE-2021-33640
CVE-2021-33624
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13 a branch can be mispredicted (e.g. because of type confusion) and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack aka CID-9183671af6db.
CVE-2021-33574
The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller leading to a denial of service (application crash) or possibly unspecified other impact.
CVE-2021-33560
Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm and the window size is not chosen appropriately. This for example affects use of ElGamal in OpenPGP.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-33750 Windows DNS Snap-in Remote Code Execution Vulnerability | CVSS3: 8.8 | 3% Низкий | больше 4 лет назад |
| CVE-2021-33749 Windows DNS Snap-in Remote Code Execution Vulnerability | CVSS3: 8.8 | 9% Низкий | больше 4 лет назад |
| CVE-2021-33746 Windows DNS Server Remote Code Execution Vulnerability | CVSS3: 8 | 8% Низкий | больше 4 лет назад |
| CVE-2021-33745 Windows DNS Server Denial of Service Vulnerability | CVSS3: 6.5 | 4% Низкий | больше 4 лет назад |
| CVE-2021-33744 Windows Secure Kernel Mode Security Feature Bypass Vulnerability | CVSS3: 5.3 | 0% Низкий | больше 4 лет назад |
| CVE-2021-33743 Windows Projected File System Elevation of Privilege Vulnerability | CVSS3: 7.8 | 0% Низкий | больше 4 лет назад |
| CVE-2021-33742 Windows MSHTML Platform Remote Code Execution Vulnerability | CVSS3: 7.5 | 72% Высокий | больше 4 лет назад |
| CVE-2021-33741 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability | CVSS3: 8.2 | 2% Низкий | больше 4 лет назад |
| CVE-2021-33740 Windows Media Remote Code Execution Vulnerability | CVSS3: 7.8 | 2% Низкий | больше 4 лет назад |
| CVE-2021-33739 Microsoft DWM Core Library Elevation of Privilege Vulnerability | CVSS3: 8.4 | 19% Средний | больше 4 лет назад |
| CVE-2021-33656 When setting font with malicous data by ioctl cmd PIO_FONTkernel will write memory out of bounds. | CVSS3: 6.8 | 0% Низкий | больше 3 лет назад |
| CVE-2021-33655 When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFOkernel will write memory out of bounds. | CVSS3: 6.7 | 0% Низкий | больше 3 лет назад |
| CVSS3: 7.5 | 0% Низкий | больше 3 лет назад | |
| CVSS3: 7.5 | 0% Низкий | больше 3 лет назад | |
| CVSS3: 8.1 | 0% Низкий | больше 3 лет назад | |
| CVSS3: 9.1 | 0% Низкий | больше 3 лет назад | |
| CVSS3: 9.8 | 0% Низкий | около 3 лет назад | |
| CVE-2021-33624 In kernel/bpf/verifier.c in the Linux kernel before 5.12.13 a branch can be mispredicted (e.g. because of type confusion) and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack aka CID-9183671af6db. | CVSS3: 4.7 | 0% Низкий | больше 4 лет назад |
| CVE-2021-33574 The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller leading to a denial of service (application crash) or possibly unspecified other impact. | CVSS3: 9.8 | 0% Низкий | больше 4 лет назад |
| CVE-2021-33560 Libgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm and the window size is not chosen appropriately. This for example affects use of ElGamal in OpenPGP. | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу