Total
22706 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-31211 | 1 Microsoft | 1 Visual Studio Code | 2021-05-18 | 6.8 MEDIUM | 7.8 HIGH |
| Visual Studio Code Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31214. | |||||
| CVE-2021-31213 | 1 Microsoft | 1 Remote | 2021-05-18 | 6.8 MEDIUM | 7.8 HIGH |
| Visual Studio Code Remote Containers Extension Remote Code Execution Vulnerability | |||||
| CVE-2021-31205 | 1 Microsoft | 2 Windows 10, Windows Server 2016 | 2021-05-18 | 4.3 MEDIUM | 6.5 MEDIUM |
| Windows SMB Client Security Feature Bypass Vulnerability | |||||
| CVE-2021-31200 | 1 Microsoft | 1 Neural Network Intelligence | 2021-05-18 | 6.5 MEDIUM | 7.2 HIGH |
| Common Utilities Remote Code Execution Vulnerability | |||||
| CVE-2021-26421 | 1 Microsoft | 2 Lync Server, Skype For Business Server | 2021-05-18 | 5.8 MEDIUM | 7.1 HIGH |
| Skype for Business and Lync Spoofing Vulnerability | |||||
| CVE-2021-31182 | 1 Microsoft | 7 Windows 10, Windows 7, Windows 8.1 and 4 more | 2021-05-18 | 4.8 MEDIUM | 7.1 HIGH |
| Microsoft Bluetooth Driver Spoofing Vulnerability | |||||
| CVE-2021-31192 | 1 Microsoft | 1 Windows 10 | 2021-05-18 | 6.8 MEDIUM | 7.8 HIGH |
| Windows Media Foundation Core Remote Code Execution Vulnerability | |||||
| CVE-2021-31900 | 1 Jetbrains | 1 Code With Me | 2021-05-18 | 5.0 MEDIUM | 5.3 MEDIUM |
| In JetBrains Code With Me bundled to the compatible IDE versions before 2021.1, a client could open a browser on a host. | |||||
| CVE-2021-28478 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2021-05-18 | 5.8 MEDIUM | 7.1 HIGH |
| Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-26418, CVE-2021-31172. | |||||
| CVE-2021-31172 | 1 Microsoft | 2 Sharepoint Foundation, Sharepoint Server | 2021-05-18 | 5.8 MEDIUM | 7.1 HIGH |
| Microsoft SharePoint Spoofing Vulnerability This CVE ID is unique from CVE-2021-26418, CVE-2021-28478. | |||||
| CVE-2021-1079 | 2 Microsoft, Nvidia | 2 Windows, Geforce Experience | 2021-05-18 | 3.6 LOW | 6.1 MEDIUM |
| NVIDIA GeForce Experience, all versions prior to 3.22, contains a vulnerability in GameStream plugins where log files are created using NT/System level permissions, which may lead to code execution, denial of service, or local privilege escalation. The attacker does not have control over the consequence of a modification nor would they be able to leak information as a direct result of the overwrite. | |||||
| CVE-2020-1108 | 1 Microsoft | 14 .net Core, .net Framework, Powershell and 11 more | 2021-05-18 | 5.0 MEDIUM | 7.5 HIGH |
| A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'. | |||||
| CVE-2021-31899 | 1 Jetbrains | 1 Code With Me | 2021-05-18 | 6.5 MEDIUM | 8.8 HIGH |
| In JetBrains Code With Me bundled to the compatible IDEs before version 2021.1, the client could execute code in read-only mode. | |||||
| CVE-2021-31180 | 1 Microsoft | 3 365 Apps, Office, Word | 2021-05-18 | 6.8 MEDIUM | 7.8 HIGH |
| Microsoft Office Graphics Remote Code Execution Vulnerability | |||||
| CVE-2019-2904 | 1 Oracle | 22 Application Testing Suite, Banking Enterprise Collections, Banking Enterprise Originations and 19 more | 2021-05-18 | 7.5 HIGH | 9.8 CRITICAL |
| Vulnerability in the Oracle JDeveloper and ADF product of Oracle Fusion Middleware (component: ADF Faces). Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle JDeveloper and ADF. Successful attacks of this vulnerability can result in takeover of Oracle JDeveloper and ADF. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). | |||||
| CVE-2021-31185 | 1 Microsoft | 2 Windows 10, Windows Server 2016 | 2021-05-17 | 2.1 LOW | 5.5 MEDIUM |
| Windows Desktop Bridge Denial of Service Vulnerability | |||||
| CVE-2020-28499 | 1 Merge Project | 1 Merge | 2021-05-17 | 7.5 HIGH | 9.8 CRITICAL |
| All versions of package merge are vulnerable to Prototype Pollution via _recursiveMerge . | |||||
| CVE-2007-4476 | 3 Canonical, Debian, Gnu | 3 Ubuntu Linux, Debian Linux, Tar | 2021-05-17 | 7.5 HIGH | N/A |
| Buffer overflow in the safer_name_suffix function in GNU tar has unspecified attack vectors and impact, resulting in a "crashing stack." | |||||
| CVE-2021-31194 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-05-17 | 6.5 MEDIUM | 8.8 HIGH |
| OLE Automation Remote Code Execution Vulnerability | |||||
| CVE-2021-31195 | 1 Microsoft | 1 Exchange Server | 2021-05-17 | 6.8 MEDIUM | 8.8 HIGH |
| Microsoft Exchange Server Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-31198. | |||||