CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In October 2021

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1151 CVE-2021-25495 787 Exec Code Overflow 2021-10-06 2021-10-14
4.6
None Local Low Not required Partial Partial Partial
A possible heap buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows arbitrary code execution.
1152 CVE-2021-25494 120 Exec Code Overflow 2021-10-06 2021-10-14
4.6
None Local Low Not required Partial Partial Partial
A possible buffer overflow vulnerability in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows arbitrary code execution.
1153 CVE-2021-25493 119 Overflow 2021-10-06 2021-10-13
3.6
None Local Low Not required Partial None Partial
Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read
1154 CVE-2021-25492 787 2021-10-06 2021-10-13
3.6
None Local Low Not required Partial None Partial
Lack of boundary checking of a buffer in libSPenBase library of Samsung Notes prior to Samsung Note version 4.3.02.61 allows OOB read.
1155 CVE-2021-25491 476 Mem. Corr. 2021-10-06 2021-10-13
2.1
None Local Low Not required None None Partial
A vulnerability in mfc driver prior to SMR Oct-2021 Release 1 allows memory corruption via NULL-pointer dereference.
1156 CVE-2021-25490 2021-10-06 2021-10-13
3.6
None Local Low Not required Partial Partial None
A keyblob downgrade attack in keymaster prior to SMR Oct-2021 Release 1 allows attacker to trigger IV reuse vulnerability with privileged process.
1157 CVE-2021-25489 20 2021-10-06 2021-10-13
4.9
None Local Low Not required None None Complete
Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic.
1158 CVE-2021-25488 125 2021-10-06 2021-10-13
2.1
None Local Low Not required Partial None None
Lack of boundary checking of a buffer in recv_data() of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read.
1159 CVE-2021-25487 125 Exec Code 2021-10-06 2021-10-13
4.6
None Local Low Not required Partial Partial Partial
Lack of boundary checking of a buffer in set_skb_priv() of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer.
1160 CVE-2021-25486 2021-10-06 2021-10-13
2.1
None Local Low Not required Partial None None
Exposure of information vulnerability in ipcdump prior to SMR Oct-2021 Release 1 allows an attacker detect device information via analyzing packet in log.
1161 CVE-2021-25485 22 Dir. Trav. 2021-10-06 2021-10-13
5.8
None Local Network Low Not required Partial Partial Partial
Path traversal vulnerability in FactoryAirCommnadManger prior to SMR Oct-2021 Release 1 allows attackers to write file as system UID via BT remote socket.
1162 CVE-2021-25484 287 2021-10-06 2021-10-13
2.1
None Local Low Not required Partial None None
Improper authentication in InputManagerService prior to SMR Oct-2021 Release 1 allows monitoring the touch event.
1163 CVE-2021-25483 125 2021-10-06 2021-10-13
5.0
None Remote Low Not required Partial None None
Lack of boundary checking of a buffer in livfivextractor library prior to SMR Oct-2021 Release 1 allows OOB read.
1164 CVE-2021-25482 89 Sql 2021-10-06 2021-10-13
3.6
None Local Low Not required None Partial Partial
SQL injection vulnerabilities in CMFA framework prior to SMR Oct-2021 Release 1 allow untrusted application to overwrite some CMFA framework information.
1165 CVE-2021-25481 754 Bypass 2021-10-06 2021-10-13
4.6
None Local Low Not required Partial Partial Partial
An improper error handling in Exynos CP booting driver prior to SMR Oct-2021 Release 1 allows local attackers to bypass a Secure Memory Protector of Exynos CP Memory.
1166 CVE-2021-25480 294 DoS 2021-10-06 2021-10-13
5.0
None Remote Low Not required None None Partial
A lack of replay attack protection in GUTI REALLOCATION COMMAND message process in Qualcomm modem prior to SMR Oct-2021 Release 1 can lead to remote denial of service on mobile network connection.
1167 CVE-2021-25479 787 Exec Code Overflow 2021-10-06 2021-10-13
6.5
None Remote Low ??? Partial Partial Partial
A possible heap-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution.
1168 CVE-2021-25478 787 Exec Code Overflow 2021-10-06 2021-10-13
6.5
None Remote Low ??? Partial Partial Partial
A possible stack-based buffer overflow vulnerability in Exynos CP Chipset prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution.
1169 CVE-2021-25477 415 DoS 2021-10-06 2021-10-13
4.0
None Remote Low ??? None None Partial
An improper error handling in Mediatek RRC Protocol stack prior to SMR Oct-2021 Release 1 allows modem crash and remote denial of service.
1170 CVE-2021-25476 863 Bypass 2021-10-06 2021-10-13
2.1
None Local Low Not required Partial None None
An information disclosure vulnerability in Widevine TA log prior to SMR Oct-2021 Release 1 allows attackers to bypass the ASLR protection mechanism in TEE.
1171 CVE-2021-25475 787 Exec Code Overflow 2021-10-06 2021-10-13
7.2
None Local Low Not required Complete Complete Complete
A possible heap-based buffer overflow vulnerability in DSP kernel driver prior to SMR Oct-2021 Release 1 allows arbitrary memory write and code execution.
1172 CVE-2021-25474 755 DoS +Priv 2021-10-06 2021-10-13
4.9
None Local Low Not required None None Complete
Assuming a shell privilege is gained, an improper exception handling for multi_sim_bar_show_on_qspanel value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent denial of service in user device before factory reset.
1173 CVE-2021-25473 755 DoS +Priv 2021-10-06 2021-10-13
4.9
None Local Low Not required None None Complete
Assuming a shell privilege is gained, an improper exception handling for multi_sim_bar_hide_by_meadia_full value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent denial of service in user device before factory reset.
1174 CVE-2021-25472 863 2021-10-06 2021-10-13
2.1
None Local Low Not required None Partial None
An improper access control vulnerability in BluetoothSettingsProvider prior to SMR Oct-2021 Release 1 allows untrusted application to overwrite some Bluetooth information.
1175 CVE-2021-25471 DoS 2021-10-06 2021-10-13
5.0
None Remote Low Not required None None Partial
A lack of replay attack protection in Security Mode Command process prior to SMR Oct-2021 Release 1 can lead to denial of service on mobile network connection and battery depletion.
1176 CVE-2021-25470 863 2021-10-06 2021-10-13
3.6
None Local Low Not required Partial Partial None
An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1 can be used to compromise TEE.
1177 CVE-2021-25469 787 Exec Code Overflow 2021-10-06 2021-10-13
4.6
None Local Low Not required Partial Partial Partial
A possible stack-based buffer overflow vulnerability in Widevine trustlet prior to SMR Oct-2021 Release 1 allows arbitrary code execution.
1178 CVE-2021-25468 20 2021-10-06 2021-10-14
2.1
None Local Low Not required Partial None None
A possible guessing and confirming a byte memory vulnerability in Widevine trustlet prior to SMR Oct-2021 Release 1 allows attackers to read arbitrary memory address.
1179 CVE-2021-25467 120 Overflow +Priv 2021-10-06 2021-10-14
7.2
None Local Low Not required Complete Complete Complete
Assuming system privilege is gained, possible buffer overflow vulnerabilities in the Vision DSP kernel driver prior to SMR Oct-2021 Release 1 allows privilege escalation to Root by hijacking loaded library.
1180 CVE-2021-25271 269 2021-10-08 2021-10-15
3.6
None Local Low Not required Partial Partial None
A local attacker could read or write arbitrary files with administrator privileges in HitmanPro before version Build 318.
1181 CVE-2021-25270 269 Exec Code 2021-10-08 2021-10-15
7.2
None Local Low Not required Complete Complete Complete
A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901.
1182 CVE-2021-25219 2021-10-27 2021-11-28
5.0
None Remote Low Not required None None Partial
In BIND 9.3.0 -> 9.11.35, 9.12.0 -> 9.16.21, and versions 9.9.3-S1 -> 9.11.35-S1 and 9.16.8-S1 -> 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response processing can cause degradation in BIND resolver performance. The way the lame cache is currently designed makes it possible for its internal data structures to grow almost infinitely, which may cause significant delays in client query processing.
1183 CVE-2021-24885 79 XSS 2021-10-25 2021-10-28
4.3
None Remote Medium Not required None Partial None
The YOP Poll WordPress plugin before 6.1.2 does not escape the perpage parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting
1184 CVE-2021-24884 79 Exec Code XSS CSRF 2021-10-25 2021-10-28
6.8
None Remote Medium Not required Partial Partial Partial
The Formidable Form Builder WordPress plugin before 4.09.05 allows to inject certain HTML Tags like <audio>,<video>,<img>,<a> and<button>.This could allow an unauthenticated, remote attacker to exploit a HTML-injection byinjecting a malicous link. The HTML-injection may trick authenticated users to follow the link. If the Link gets clicked, Javascript code can be executed. The vulnerability is due to insufficient sanitization of the "data-frmverify" tag for links in the web-based entry inspection page of affected systems. A successful exploitation incomibantion with CSRF could allow the attacker to perform arbitrary actions on an affected system with the privileges of the user. These actions include stealing the users account by changing their password or allowing attackers to submit their own code through an authenticated user resulting in Remote Code Execution. If an authenticated user who is able to edit Wordpress PHP Code in any kind, clicks the malicious link, PHP code can be edited.
1185 CVE-2021-24785 79 XSS 2021-10-25 2021-10-27
3.5
None Remote Medium ??? None Partial None
The Great Quotes WordPress plugin through 1.0.0 does not sanitise and escape the Quote and Author fields of its Quotes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed.
1186 CVE-2021-24779 862 CSRF 2021-10-25 2021-11-28
4.3
None Remote Medium Not required None Partial None
The WP Debugging WordPress plugin before 2.11.0 has its update_settings() function hooked to admin_init and is missing any authorisation and CSRF checks, as a result, the settings can be updated by unauthenticated users.
1187 CVE-2021-24774 89 Sql 2021-10-25 2021-10-27
6.5
None Remote Low ??? Partial Partial Partial
The Check & Log Email WordPress plugin before 1.0.3 does not validate and escape the "order" and "orderby" GET parameters before using them in a SQL statement when viewing logs, leading to SQL injections issues
1188 CVE-2021-24769 89 Sql 2021-10-25 2021-10-27
6.5
None Remote Low ??? Partial Partial Partial
The Permalink Manager Lite WordPress plugin before 2.2.13.1 does not validate and escape the orderby parameter before using it in a SQL statement in the Permalink Manager page, leading to a SQL Injection
1189 CVE-2021-24760 79 XSS 2021-10-18 2021-10-21
3.5
None Remote Medium ??? None Partial None
The Gutenberg PDF Viewer Block WordPress plugin before 1.0.1 does not sanitise and escape its block, which could allow users with a role as low as Contributor to perform Cross-Site Scripting attacks.
1190 CVE-2021-24754 89 Sql 2021-10-18 2021-10-21
6.5
None Remote Low ??? Partial Partial Partial
The MainWP Child Reports WordPress plugin before 2.0.8 does not validate or sanitise the order parameter before using it in a SQL statement in the admin dashboard, leading to an SQL injection issue
1191 CVE-2021-24752 352 CSRF 2021-10-18 2021-10-22
3.5
None Remote Medium ??? None Partial None
Multiple Plugins from the CatchThemes vendor do not perform capability and CSRF checks in the ctp_switch AJAX action, which could allow any authenticated users, such as Subscriber to change the Essential Widgets WordPress plugin before 1.9, To Top WordPress plugin before 2.3, Header Enhancement WordPress plugin before 1.5, Generate Child Theme WordPress plugin before 1.6, Essential Content Types WordPress plugin before 1.9, Catch Web Tools WordPress plugin before 2.7, Catch Under Construction WordPress plugin before 1.4, Catch Themes Demo Import WordPress plugin before 1.6, Catch Sticky Menu WordPress plugin before 1.7, Catch Scroll Progress Bar WordPress plugin before 1.6, Social Gallery and Widget WordPress plugin before 2.3, Catch Infinite Scroll WordPress plugin before 1.9, Catch Import Export WordPress plugin before 1.9, Catch Gallery WordPress plugin before 1.7, Catch Duplicate Switcher WordPress plugin before 1.6, Catch Breadcrumb WordPress plugin before 1.7, Catch IDs WordPress plugin before 2.4's configurations.
1192 CVE-2021-24744 79 XSS 2021-10-25 2021-10-27
3.5
None Remote Medium ??? None Partial None
The WordPress Contact Forms by Cimatti WordPress plugin before 1.4.12 does not sanitise and escape the Form Title before outputting it in some admin pages. which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed.
1193 CVE-2021-24743 79 XSS 2021-10-18 2021-10-22
3.5
None Remote Medium ??? None Partial None
The Podcast Subscribe Buttons WordPress plugin before 1.4.2 allows users with any role capable of editing or adding posts to perform stored XSS.
1194 CVE-2021-24740 79 XSS 2021-10-18 2021-10-22
3.5
None Remote Medium ??? None Partial None
The Tutor LMS WordPress plugin before 1.9.9 does not escape some of its settings before outputting them in attributes, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
1195 CVE-2021-24737 79 XSS 2021-10-11 2021-10-15
3.5
None Remote Medium ??? None Partial None
The Comments – wpDiscuz WordPress plugin through 7.3.0 does not properly sanitise or escape the Follow and Unfollow messages before outputting them in the page, which could allow high privilege users to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
1196 CVE-2021-24736 79 XSS 2021-10-18 2021-10-22
3.5
None Remote Medium ??? None Partial None
The Easy Download Manager and File Sharing Plugin with frontend file upload – a better Media Library — Shared Files WordPress plugin before 1.6.57 does not sanitise and escape some of its settings before outputting them in attributes, which could lead to Stored Cross-Site Scripting issues.
1197 CVE-2021-24735 352 CSRF 2021-10-18 2021-10-22
4.3
None Remote Medium Not required None Partial None
The Compact WP Audio Player WordPress plugin before 1.9.7 does not implement nonce checks, which could allow attackers to make a logged in admin change the "Disable Simultaneous Play" setting via a CSRF attack.
1198 CVE-2021-24734 79 XSS 2021-10-18 2021-10-21
3.5
None Remote Medium ??? None Partial None
The Compact WP Audio Player WordPress plugin before 1.9.7 does not escape some of its shortcodes attributes, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks.
1199 CVE-2021-24732 79 XSS 2021-10-18 2021-10-21
3.5
None Remote Medium ??? None Partial None
The PDF Flipbook, 3D Flipbook WordPress – DearFlip WordPress plugin before 1.7.10 does not escape the class attribute of its shortcode before outputting it back in an attribute, which could allow users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks
1200 CVE-2021-24720 79 XSS 2021-10-11 2021-10-15
3.5
None Remote Medium ??? None Partial None
The GeoDirectory Business Directory WordPress plugin before 2.1.1.3 was vulnerable to Authenticated Stored Cross-Site Scripting (XSS).
Total number of vulnerabilities : 1708   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 (This Page)25 26 27 28 29 30 31 32 33 34 35
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.