• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

NVD-CWE-noinfo

CVE-2021-25771

February 23, 2023 by

In JetBrains YouTrack before 2020.6.1099, project information could be potentially disclosed.

CVE-2021-25772

February 23, 2023 by

In JetBrains TeamCity before 2020.2.2, TeamCity server DoS was possible via server integration.

CVE-2021-25775

February 23, 2023 by

In JetBrains TeamCity before 2020.2.1, the server admin could create and see access tokens for any other users.

CVE-2021-25646

February 23, 2023 by

Apache Druid includes the ability to execute user-provided JavaScript code embedded in various types of requests. This functionality is intended for use in high-trust environments, and is disabled by default. However, in Druid 0.20.0 and earlier, it is possible for an authenticated user to send a specially-crafted request that forces Druid to run user-provided JavaScript code for that request, regardless of server configuration. This can be leveraged to execute code on the target machine with the privileges of the Druid server process.

CVE-2021-25653

February 23, 2023 by

A privilege escalation vulnerability was discovered in Avaya Aura Appliance Virtualization Platform Utilities (AVPU) that may potentially allow a local user to escalate privileges. Affects 8.0.0.0 through 8.1.3.1 versions of AVPU.

CVE-2021-25654

February 23, 2023 by

An arbitrary code execution vulnerability was discovered in Avaya Aura Device Services that may potentially allow a local user to execute specially crafted scripts. Affects 7.0 through 8.1.4.0 versions of Avaya Aura Device Services.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 1771
  • Go to page 1772
  • Go to page 1773
  • Go to page 1774
  • Go to page 1775
  • Interim pages omitted …
  • Go to page 2387
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE