Security Vulnerabilities - CVEs Published In February 2021
The function CheckMic() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, _rt_md5_hmac_veneer() or _rt_hmac_sha1_veneer(), resulting in a stack buffer over-read which can be exploited for denial of service. An attacker can impersonate an Access Point and attack a vulnerable Wi-Fi client, by injecting a crafted packet into the WPA2 handshake. The attacker does not need to know the network's PSK.
CVSS Score
7.5
EPSS Score
0.001
Published
2021-02-03
The function DecWPA2KeyData() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, rt_arc4_crypt_veneer() or _AES_UnWRAP_veneer(), resulting in a stack buffer overflow which can be exploited for remote code execution or denial of service. An attacker can impersonate an Access Point and attack a vulnerable Wi-Fi client, by injecting a crafted packet into the WPA2 handshake. The attacker needs to know the network's PSK in order to exploit this.
CVSS Score
8.1
EPSS Score
0.011
Published
2021-02-03
Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc' or 'rack' internode_encryption setting, allows both encrypted and unencrypted internode connections. A misconfigured node or a malicious user can use the unencrypted connection despite not being in the same rack or dc, and bypass mutual TLS requirement.
CVSS Score
7.5
EPSS Score
0.009
Published
2021-02-03
Apache Shiro before 1.7.1, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass.
CVSS Score
9.8
EPSS Score
0.888
Published
2021-02-03
In JetBrains YouTrack before 2020.6.1767, an issue's existence could be disclosed via YouTrack command execution.
CVSS Score
5.3
EPSS Score
0.0
Published
2021-02-03
In JetBrains YouTrack before 2020.4.4701, permissions for attachments actions were checked improperly.
CVSS Score
5.3
EPSS Score
0.0
Published
2021-02-03
In JetBrains YouTrack before 2020.4.6808, the YouTrack administrator wasn't able to access attachments.
CVSS Score
7.5
EPSS Score
0.0
Published
2021-02-03
In JetBrains YouTrack before 2020.5.3123, server-side template injection (SSTI) was possible, which could lead to code execution.
CVSS Score
9.8
EPSS Score
0.0
Published
2021-02-03
In JetBrains YouTrack before 2020.6.1099, project information could be potentially disclosed.
CVSS Score
4.3
EPSS Score
0.0
Published
2021-02-03
In JetBrains TeamCity before 2020.2.2, TeamCity server DoS was possible via server integration.
CVSS Score
5.3
EPSS Score
0.0
Published
2021-02-03