Total
22706 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-28444 | 1 Microsoft | 5 Windows 10, Windows 8.1, Windows Server 2012 and 2 more | 2021-04-20 | 4.0 MEDIUM | 6.5 MEDIUM |
| Windows Hyper-V Security Feature Bypass Vulnerability | |||||
| CVE-2021-28441 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2021-04-20 | 2.1 LOW | 6.5 MEDIUM |
| Windows Hyper-V Information Disclosure Vulnerability | |||||
| CVE-2021-28456 | 1 Microsoft | 5 365 Apps, Excel, Office and 2 more | 2021-04-20 | 4.3 MEDIUM | 5.5 MEDIUM |
| Microsoft Excel Information Disclosure Vulnerability | |||||
| CVE-2021-28457 | 1 Microsoft | 1 Visual Studio Code | 2021-04-20 | 6.8 MEDIUM | 7.8 HIGH |
| Visual Studio Code Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28469, CVE-2021-28473, CVE-2021-28475, CVE-2021-28477. | |||||
| CVE-2021-28460 | 1 Microsoft | 1 Azure Sphere | 2021-04-20 | 4.6 MEDIUM | 7.8 HIGH |
| Azure Sphere Unsigned Code Execution Vulnerability | |||||
| CVE-2021-28464 | 1 Microsoft | 1 Vp9 Video Extensions | 2021-04-20 | 6.8 MEDIUM | 7.8 HIGH |
| VP9 Video Extensions Remote Code Execution Vulnerability | |||||
| CVE-2021-28446 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-04-20 | 2.1 LOW | 5.5 MEDIUM |
| Windows Portmapping Information Disclosure Vulnerability | |||||
| CVE-2021-28443 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-04-20 | 2.1 LOW | 5.5 MEDIUM |
| Windows Console Driver Denial of Service Vulnerability This CVE ID is unique from CVE-2021-28438. | |||||
| CVE-2021-28442 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2021-04-20 | 4.0 MEDIUM | 6.5 MEDIUM |
| Windows TCP/IP Information Disclosure Vulnerability | |||||
| CVE-2017-14581 | 1 Sap | 1 Netweaver Application Server Java | 2021-04-20 | 5.0 MEDIUM | 7.5 HIGH |
| The Host Control web service in SAP NetWeaver AS JAVA 7.0 through 7.5 allows remote attackers to cause a denial of service (service crash) via a crafted request, aka SAP Security Note 2389181. | |||||
| CVE-2021-28439 | 1 Microsoft | 8 Windows 10, Windows 7, Windows 8.1 and 5 more | 2021-04-20 | 5.0 MEDIUM | 7.5 HIGH |
| Windows TCP/IP Driver Denial of Service Vulnerability This CVE ID is unique from CVE-2021-28319. | |||||
| CVE-2021-28438 | 1 Microsoft | 3 Windows 10, Windows Server 2016, Windows Server 2019 | 2021-04-20 | 2.1 LOW | 5.5 MEDIUM |
| Windows Console Driver Denial of Service Vulnerability This CVE ID is unique from CVE-2021-28443. | |||||
| CVE-2010-5326 | 1 Sap | 1 Netweaver Application Server Java | 2021-04-20 | 10.0 HIGH | 10.0 CRITICAL |
| The Invoker Servlet on SAP NetWeaver Application Server Java platforms, possibly before 7.3, does not require authentication, which allows remote attackers to execute arbitrary code via an HTTP or HTTPS request, as exploited in the wild in 2013 through 2016, aka a "Detour" attack. | |||||
| CVE-2019-12165 | 1 Mitel | 2 Micollab, Micollab Audio\, Web \& Video Conferencing | 2021-04-20 | 10.0 HIGH | 9.8 CRITICAL |
| MiCollab 7.3 PR2 (7.3.0.204) and earlier, 7.2 (7.2.2.13) and earlier, and 7.1 (7.1.0.57) and earlier and MiCollab AWV 6.3 (6.3.0.103), 6.2 (6.2.2.8), 6.1 (6.1.0.28), 6.0 (6.0.0.61), and 5.0 (5.0.5.7) have a Command Execution Vulnerability. Successful exploit of this vulnerability could allow an attacker to execute arbitrary system commands. | |||||
| CVE-2021-28466 | 1 Microsoft | 1 Raw Image Extension | 2021-04-20 | 6.8 MEDIUM | 7.8 HIGH |
| Raw Image Extension Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28468. | |||||
| CVE-2021-28469 | 1 Microsoft | 1 Visual Studio Code | 2021-04-20 | 6.8 MEDIUM | 7.8 HIGH |
| Visual Studio Code Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-28457, CVE-2021-28473, CVE-2021-28475, CVE-2021-28477. | |||||
| CVE-2021-28470 | 1 Microsoft | 1 Visual Studio Code Github Pull Requests And Issues | 2021-04-20 | 6.8 MEDIUM | 7.8 HIGH |
| Visual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability | |||||
| CVE-2021-28471 | 1 Microsoft | 1 Visual Studio Code | 2021-04-20 | 6.8 MEDIUM | 7.8 HIGH |
| Remote Development Extension for Visual Studio Code Remote Code Execution Vulnerability | |||||
| CVE-2021-28472 | 1 Microsoft | 1 Vscode-maven | 2021-04-20 | 6.8 MEDIUM | 7.8 HIGH |
| Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability | |||||
| CVE-2017-11449 | 1 Imagemagick | 1 Imagemagick | 2021-04-20 | 6.8 MEDIUM | 8.8 HIGH |
| coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an image received from stdin. | |||||