VIR Vulnerability Intelligence Relay

CVEs from 2021

4,867 normalized CVEs published or assigned in this year.

Total
4,867
critical
critical 280
high
high 983
medium
medium 1,157
low
low 134
% Critical
5.8%
% with KEV
4.4%
% with exploit
4.7%

Top vendors

Top products

  • office 13
  • retail_service_backbone 7
  • retail_integration_bus 7
  • communications_unified_inventory_management 7
  • universal_forwarder 6
  • 365_apps 6
  • retail_store_inventory_management 6
  • retail_eftlink 6

Top packages

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2021-35624 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35602 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35647 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35646 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35645 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35648 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35626 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35637 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35625 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35644 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35643 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35641 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35591 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35546 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35627 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35628 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35633 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35639 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35640 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35634 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35638 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35630 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35631 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35597 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-2479 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35632 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35636 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35612 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-2481 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-35635 medium 5.5 4y ago Moderate: mysql:8.0 security, bug fix, and enhancement update
CVE-2021-34485 medium 5.5 4y ago .NET Core Information Disclosure Vulnerability
CVE-2021-3807 medium 5.5 4y ago Moderate: nodejs:14 security, bug fix, and enhancement update
CVE-2021-33502 medium 5.5 4y ago Moderate: nodejs:14 security, bug fix, and enhancement update
CVE-2021-3563 medium 5.5 4y ago A flaw was found in openstack-keystone. Only the first 72 characters of an application secret are verified allowing attackers bypass some password complexity which administrators may be counting on. …
CVE-2021-46664 medium 5.5 4y ago Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
CVE-2021-46668 medium 5.5 4y ago Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
CVE-2021-46663 medium 5.5 4y ago Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
CVE-2021-46661 medium 5.5 4y ago Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
CVE-2021-46659 medium 5.5 4y ago Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
CVE-2021-46665 medium 5.5 4y ago Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
CVE-2021-46669 medium 5.5 4y ago Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
CVE-2021-4207 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-4206 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-42343 medium 5.5 4y ago An issue was discovered in the Dask distributed package before 2021.10.0 for Python. Single machine Dask clusters started with dask.distributed.LocalCluster or dask.distributed.Client (which defaults…
CVE-2021-40528 medium 5.5 4y ago Moderate: libgcrypt security update
CVE-2021-38297 medium 5.5 4y ago Moderate: go-toolset:rhel8 security and bug fix update
CVE-2021-41800 medium 5.5 4y ago MediaWiki allows a denial of service
CVE-2021-21683 medium 5.5 4y ago Path traversal vulnerability on Windows in Jenkins
CVE-2021-21682 medium 5.5 4y ago Improper handling of equivalent directory names on Windows in Jenkins
CVE-2021-40347 medium 5.5 4y ago An issue was discovered in views/list.py in GNU Mailman Postorius before 1.3.5. An attacker (logged into any account) can send a crafted POST request to unsubscribe any user from a mailing list, also…
CVE-2021-31525 medium 5.5 4y ago Moderate: go-toolset:rhel8 security, bug fix, and enhancement update
CVE-2021-30458 medium 5.5 4y ago Wikimedia Parsoid vulnerable to Cross-site Scripting (XSS)
CVE-2021-21640 medium 5.5 4y ago View name validation bypass in Jenkins
CVE-2021-21639 medium 5.5 4y ago Lack of type validation in agent related REST API in Jenkins
CVE-2021-21615 medium 5.5 4y ago Time-of-check Time-of-use (TOCTOU) Race Condition in Jenkins
CVE-2021-3517 medium 5.5 4y ago Moderate: libxml2 security update
CVE-2021-3518 medium 5.5 4y ago Moderate: libxml2 security update
CVE-2021-3537 medium 5.5 4y ago Moderate: libxml2 security update
CVE-2021-39293 medium 5.5 4y ago Moderate: go-toolset:rhel8 security and bug fix update
CVE-2021-46143 medium 5.5 4y ago Moderate: xmlrpc-c security update
CVE-2021-4189 medium 5.5 4y ago A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. …
CVE-2021-3737 medium 5.5 4y ago A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinit…
CVE-2021-33515 medium 5.5 4y ago Moderate: dovecot security update
CVE-2021-33193 medium 5.5 4y ago Moderate: httpd:2.4 security and bug fix update
CVE-2021-44224 medium 5.5 4y ago Moderate: httpd:2.4 security and bug fix update
CVE-2021-36160 medium 5.5 4y ago Moderate: httpd:2.4 security and bug fix update
CVE-2021-4213 medium 5.5 4y ago Moderate: pki-core:10.6 security and bug fix update
CVE-2021-38593 medium 5.5 4y ago Moderate: qt5-qtbase security update
CVE-2021-43860 medium 5.5 4y ago Moderate: flatpak security and bug fix update
CVE-2021-25635 medium 5.5 4y ago Moderate: libreoffice security, bug fix, and enhancement update
CVE-2021-25634 medium 5.5 4y ago Moderate: libreoffice security, bug fix, and enhancement update
CVE-2021-25633 medium 5.5 4y ago Moderate: libreoffice security, bug fix, and enhancement update
CVE-2021-33286 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39259 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-20196 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-33289 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39254 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-35268 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-35269 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-3748 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39257 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-3622 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-3716 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39255 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39262 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39261 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39253 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39251 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-33285 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39252 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39260 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-4145 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39256 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39258 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-35267 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-39263 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-35266 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-33287 medium 5.5 4y ago Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
CVE-2021-3975 medium 5.5 4y ago A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. …
CVE-2021-38165 medium 5.5 4y ago Moderate: lynx security update