CVEs from 2021
Total
4,866
critical
critical 279
high
high 997
medium
medium 1,154
low
low 137
% Critical
5.7%
% with KEV
4.4%
% with exploit
4.7%
Top vendors
Top products
- office 13
- primavera_gateway 10
- weblogic_server 9
- modicon_m340_bmxp342020 8
- log4j 8
- primavera_unifier 8
- retail_service_backbone 7
- communications_unified_inventory_management 7
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-46661 | medium | — | 5.5 | 4y ago | Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update | |||
| CVE-2021-46659 | medium | — | 5.5 | 4y ago | Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update | |||
| CVE-2021-46664 | medium | — | 5.5 | 4y ago | Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update | |||
| CVE-2021-46669 | medium | — | 5.5 | 4y ago | Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update | |||
| CVE-2021-46665 | medium | — | 5.5 | 4y ago | Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update | |||
| CVE-2021-46668 | medium | — | 5.5 | 4y ago | Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update | |||
| CVE-2021-46663 | medium | — | 5.5 | 4y ago | Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update | |||
| CVE-2021-4207 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-4206 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-42343 | medium | — | 5.5 | 4y ago | An issue was discovered in the Dask distributed package before 2021.10.0 for Python. Single machine Dask clusters started with dask.distributed.LocalCluster or dask.distributed.Client (which defaults… | |||
| CVE-2021-40528 | medium | — | 5.5 | 4y ago | Moderate: libgcrypt security update | |||
| CVE-2021-38297 | medium | — | 5.5 | 4y ago | Moderate: go-toolset:rhel8 security and bug fix update | |||
| CVE-2021-41800 | medium | — | 5.5 | 4y ago | MediaWiki allows a denial of service | |||
| CVE-2021-21682 | medium | — | 5.5 | 4y ago | Improper handling of equivalent directory names on Windows in Jenkins | |||
| CVE-2021-21683 | medium | — | 5.5 | 4y ago | Path traversal vulnerability on Windows in Jenkins | |||
| CVE-2021-40347 | medium | — | 5.5 | 4y ago | An issue was discovered in views/list.py in GNU Mailman Postorius before 1.3.5. An attacker (logged into any account) can send a crafted POST request to unsubscribe any user from a mailing list, also… | |||
| CVE-2021-31525 | medium | — | 5.5 | 4y ago | RHSA-2021:3076: go-toolset:rhel8 security, bug fix, and enhancement update (Moderate) | |||
| CVE-2021-30458 | medium | — | 5.5 | 4y ago | Wikimedia Parsoid vulnerable to Cross-site Scripting (XSS) | |||
| CVE-2021-21639 | medium | — | 5.5 | 4y ago | Lack of type validation in agent related REST API in Jenkins | |||
| CVE-2021-21640 | medium | — | 5.5 | 4y ago | View name validation bypass in Jenkins | |||
| CVE-2021-21615 | medium | — | 5.5 | 4y ago | Time-of-check Time-of-use (TOCTOU) Race Condition in Jenkins | |||
| CVE-2021-3517 | medium | — | 5.5 | 4y ago | RHSA-2021:2569: libxml2 security update (Moderate) | |||
| CVE-2021-3518 | medium | — | 5.5 | 4y ago | RHSA-2021:2569: libxml2 security update (Moderate) | |||
| CVE-2021-3537 | medium | — | 5.5 | 4y ago | RHSA-2021:2569: libxml2 security update (Moderate) | |||
| CVE-2021-39293 | medium | — | 5.5 | 4y ago | Moderate: go-toolset:rhel8 security and bug fix update | |||
| CVE-2021-46143 | medium | — | 5.5 | 4y ago | Moderate: xmlrpc-c security update | |||
| CVE-2021-3737 | medium | — | 5.5 | 4y ago | A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinit… | |||
| CVE-2021-4189 | medium | — | 5.5 | 4y ago | A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. … | |||
| CVE-2021-33515 | medium | — | 5.5 | 4y ago | Moderate: dovecot security update | |||
| CVE-2021-33193 | medium | — | 5.5 | 4y ago | Moderate: httpd:2.4 security and bug fix update | |||
| CVE-2021-44224 | medium | — | 5.5 | 4y ago | Moderate: httpd:2.4 security and bug fix update | |||
| CVE-2021-36160 | medium | — | 5.5 | 4y ago | Moderate: httpd:2.4 security and bug fix update | |||
| CVE-2021-4213 | medium | — | 5.5 | 4y ago | Moderate: pki-core:10.6 security and bug fix update | |||
| CVE-2021-38593 | medium | — | 5.5 | 4y ago | Moderate: qt5-qtbase security update | |||
| CVE-2021-43860 | medium | — | 5.5 | 4y ago | Moderate: flatpak security and bug fix update | |||
| CVE-2021-25635 | medium | — | 5.5 | 4y ago | Moderate: libreoffice security, bug fix, and enhancement update | |||
| CVE-2021-25633 | medium | — | 5.5 | 4y ago | Moderate: libreoffice security, bug fix, and enhancement update | |||
| CVE-2021-25634 | medium | — | 5.5 | 4y ago | Moderate: libreoffice security, bug fix, and enhancement update | |||
| CVE-2021-20196 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39257 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-3716 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39254 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-3975 | medium | — | 5.5 | 4y ago | A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. … | |||
| CVE-2021-33287 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-33285 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-35269 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39259 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-4145 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-33289 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39263 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39253 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-3622 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-33286 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39255 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-3748 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-35267 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39256 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39260 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39258 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39261 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39251 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-35268 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39262 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-39252 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-35266 | medium | — | 5.5 | 4y ago | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | |||
| CVE-2021-38165 | medium | — | 5.5 | 4y ago | Moderate: lynx security update | |||
| CVE-2021-45444 | medium | — | 5.5 | 4y ago | Moderate: zsh security update | |||
| CVE-2021-25219 | medium | — | 5.5 | 4y ago | Moderate: bind security, bug fix, and enhancement update | |||
| CVE-2021-3660 | medium | — | 5.5 | 4y ago | Cockpit (and its plugins) do not seem to protect itself against clickjacking. It is possible to render a page from a cockpit server via another website, inside an <iFrame> HTML entry. This may be use… | |||
| CVE-2021-3698 | medium | — | 5.5 | 4y ago | A flaw was found in Cockpit in versions prior to 260 in the way it handles the certificate verification performed by the System Security Services Daemon (SSSD). This flaw allows client certificates t… | |||
| CVE-2021-38185 | medium | — | 5.5 | 4y ago | Moderate: cpio security update | |||
| CVE-2021-39272 | medium | — | 5.5 | 4y ago | Moderate: fetchmail security update | |||
| CVE-2021-36386 | medium | — | 5.5 | 4y ago | Moderate: fetchmail security update | |||
| CVE-2021-44225 | medium | — | 5.5 | 4y ago | Moderate: keepalived security and bug fix update | |||
| CVE-2021-45930 | medium | — | 5.5 | 4y ago | Moderate: qt5-qtsvg security update | |||
| CVE-2021-32792 | medium | — | 5.5 | 4y ago | Moderate: mod_auth_openidc:2.3 security update | |||
| CVE-2021-39191 | medium | — | 5.5 | 4y ago | Moderate: mod_auth_openidc:2.3 security update | |||
| CVE-2021-32791 | medium | — | 5.5 | 4y ago | Moderate: mod_auth_openidc:2.3 security update | |||
| CVE-2021-32786 | medium | — | 5.5 | 4y ago | Moderate: mod_auth_openidc:2.3 security update | |||
| CVE-2021-39358 | medium | — | 5.5 | 4y ago | Moderate: gfbgraph security update | |||
| CVE-2021-30846 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30884 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30809 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30889 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30888 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30936 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30851 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30849 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-45482 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30887 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30934 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30823 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30951 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30954 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30848 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30836 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30897 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-45483 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30890 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update | |||
| CVE-2021-30984 | medium | — | 5.5 | 4y ago | Moderate: webkit2gtk3 security, bug fix, and enhancement update |