Security Vulnerabilities - Known exploited
CVE-2021-25371
A vulnerability in DSP driver prior to SMR Mar-2021 Release 1 allows attackers load arbitrary ELF libraries inside DSP.
Known exploited
CVSS Score
6.1
EPSS Score
0.016
Published
2021-03-26
CVE-2021-25372
An improper boundary check in DSP driver prior to SMR Mar-2021 Release 1 allows out of bounds memory access.
Known exploited
CVSS Score
6.1
EPSS Score
0.018
Published
2021-03-26
CVE-2021-22506
Advance configuration exposing Information Leakage vulnerability in Micro Focus Access Manager product, affects all versions prior to version 5.0. The vulnerability could cause information leakage.
Known exploited
CVSS Score
7.5
EPSS Score
0.105
Published
2021-03-26
CVE-2021-21193
Use after free in Blink in Google Chrome prior to 89.0.4389.90 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Known exploited
CVSS Score
8.8
EPSS Score
0.213
Published
2021-03-16
CVE-2021-27085
Internet Explorer Remote Code Execution Vulnerability
Known exploited
CVSS Score
8.8
EPSS Score
0.016
Published
2021-03-11
CVE-2021-27059
Microsoft Office Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.6
EPSS Score
0.03
Published
2021-03-11
CVE-2021-26411
Internet Explorer Memory Corruption Vulnerability
Known exploited
CVSS Score
8.8
EPSS Score
0.925
Published
2021-03-11
CVE-2021-21166
Data race in audio in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Known exploited
CVSS Score
8.8
EPSS Score
0.363
Published
2021-03-09
CVE-2021-25337
Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or write certain local files.
Known exploited
CVSS Score
4.4
EPSS Score
0.008
Published
2021-03-04
CVE-2021-22681
Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 use a key to verify Logix controllers are communicating with Rockwell Automation CompactLogix 1768, 1769, 5370, 5380, 5480: ControlLogix 5550, 5560, 5570, 5580; DriveLogix 5560, 5730, 1794-L34; Compact GuardLogix 5370, 5380; GuardLogix 5570, 5580; SoftLogix 5800. Rockwell Automation Studio 5000 Logix Designer Versions 21 and later and RSLogix 5000: Versions 16 through 20 are vulnerable because an unauthenticated attacker could bypass this verification mechanism and authenticate with Rockwell Automation CompactLogix 1768, 1769, 5370, 5380, 5480: ControlLogix 5550, 5560, 5570, 5580; DriveLogix 5560, 5730, 1794-L34; Compact GuardLogix 5370, 5380; GuardLogix 5570, 5580; SoftLogix 5800.
Known exploited
CVSS Score
9.8
EPSS Score
0.18
Published
2021-03-03