Security Vulnerabilities - Known exploited
CVE-2021-27085
Internet Explorer Remote Code Execution Vulnerability
Known exploited
CVSS Score
8.8
EPSS Score
0.033
Published
2021-03-11
CVE-2021-27059
Microsoft Office Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.6
EPSS Score
0.016
Published
2021-03-11
CVE-2021-26411
Internet Explorer Memory Corruption Vulnerability
Known exploited
CVSS Score
8.8
EPSS Score
0.89
Published
2021-03-11
CVE-2021-21166
Data race in audio in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Known exploited
CVSS Score
8.8
EPSS Score
0.419
Published
2021-03-09
CVE-2021-25337
Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or write certain local files.
Known exploited
CVSS Score
4.4
EPSS Score
0.003
Published
2021-03-04
CVE-2021-26855
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
9.1
EPSS Score
0.943
Published
2021-03-03
CVE-2021-26857
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.096
Published
2021-03-03
CVE-2021-26858
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.752
Published
2021-03-03
CVE-2021-27065
Microsoft Exchange Server Remote Code Execution Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.942
Published
2021-03-03
CVE-2021-27876
An issue was discovered in Veritas Backup Exec before 21.2. The communication between a client and an Agent requires successful authentication, which is typically completed over a secure TLS communication. However, due to a vulnerability in the SHA Authentication scheme, an attacker is able to gain unauthorized access and complete the authentication process. Subsequently, the client can execute data management protocol commands on the authenticated connection. By using crafted input parameters in one of these commands, an attacker can access an arbitrary file on the system using System privileges.
Known exploited
CVSS Score
8.1
EPSS Score
0.006
Published
2021-03-01