Security Vulnerabilities - CVEs Published In February 2021
An issue was discovered in Acronis Cyber Protect before 15 Update 1 build 26172. There is cross-site scripting (XSS) in the console.
CVSS Score
6.1
EPSS Score
0.003
Published
2021-02-22
Django Channels 3.x before 3.0.3 allows remote attackers to obtain sensitive information from a different request scope. The legacy channels.http.AsgiHandler class, used for handling HTTP type requests in an ASGI environment prior to Django 3.0, did not correctly separate request scopes in Channels 3.0. In many cases this would result in a crash but, with correct timing, responses could be sent to the wrong client, resulting in potential leakage of session identifiers and other sensitive data. Note that this affects only the legacy Channels provided class, and not Django's similar ASGIHandler, available from Django 3.0.
CVSS Score
7.4
EPSS Score
0.008
Published
2021-02-22
In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and hex).
CVSS Score
9.8
EPSS Score
0.007
Published
2021-02-22
Smarty before 3.1.39 allows a Sandbox Escape because $smarty.template_object can be accessed in sandbox mode.
CVSS Score
7.5
EPSS Score
0.599
Published
2021-02-22
Smarty before 3.1.39 allows code injection via an unexpected function name after a {function name= substring.
CVSS Score
9.8
EPSS Score
0.788
Published
2021-02-22
On Netshield NANO 25 10.2.18 devices, /usr/local/webmin/System/manual_ping.cgi allows OS command injection (after authentication by the attacker) because the system C library function is used unsafely.
CVSS Score
7.2
EPSS Score
0.026
Published
2021-02-22
The module admin_ITSM in EyesOfNetwork 5.3-10 allows remote authenticated users to upload arbitrary .xml.php files because it relies on "le filtre userside."
CVSS Score
8.8
EPSS Score
0.45
Published
2021-02-22
EyesOfNetwork 5.3-10 uses an integer of between 8 and 10 digits for the session ID, which might be leveraged for brute-force authentication bypass (such as in CVE-2021-27513 exploitation).
CVSS Score
9.8
EPSS Score
0.137
Published
2021-02-22
url-parse before 1.5.0 mishandles certain uses of backslash such as http:\/ and interprets the URI as a relative path.
CVSS Score
5.3
EPSS Score
0.002
Published
2021-02-22
URI.js (aka urijs) before 1.19.6 mishandles certain uses of backslash such as http:\/ and interprets the URI as a relative path.
CVSS Score
7.5
EPSS Score
0.006
Published
2021-02-22