CVEDB API

Vulnerabilities

Vulnerable Software

Security Vulnerabilities - CVEs Published In July 2021

CVE-2020-20582

A server side request forgery (SSRF) vulnerability in /ApiAdminDomainSettings.php of MipCMS 5.0.1 allows attackers to access sensitive information.

CVSS Score

7.5

EPSS Score

0.002

Published

2021-07-08

CVE-2020-20583

A SQL injection vulnerability in /question.php of LJCMS Version v4.3.R60321 allows attackers to obtain sensitive database information.

CVSS Score

7.5

EPSS Score

0.002

Published

2021-07-08

CVE-2020-20584

A cross site scripting vulnerability in baigo CMS v4.0-beta-1 allows attackers to execute arbitrary web scripts or HTML via the form parameter post to /public/console/profile/info-submit/.

CVSS Score

6.1

EPSS Score

0.005

Published

2021-07-08

CVE-2020-20585

A blind SQL injection in /admin/?n=logs&c=index&a=dode of Metinfo 7.0 beta allows attackers to access sensitive database information.

CVSS Score

7.5

EPSS Score

0.008

Published

2021-07-08

CVE-2020-20586

A cross site request forgery (CSRF) vulnerability in the /xyhai.php?s=/Auth/editUser URI of XYHCMS V3.6 allows attackers to edit any information of the administrator such as the name, e-mail, and password.

CVSS Score

4.5

EPSS Score

0.001

Published

2021-07-08

CVE-2021-29151

A remote authentication bypass vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.

CVSS Score

4.3

EPSS Score

0.001

Published

2021-07-08

CVE-2021-29152

A remote denial of service (DoS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.

CVSS Score

6.5

EPSS Score

0.006

Published

2021-07-08

CVE-2021-29711

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 6.2.7.8 , 6.2.7.9, 7.0.3.0, 7.0.4.0, 7.0.5.4, 7.1.0.0, 7.1.1.0, 7.1.1.1, and 7.1.1.2 could allow an authenticated user with certain permissions to initiate an agent upgrade through the CLI interface. IBM X-Force ID: 200965.

CVSS Score

4.9

EPSS Score

0.001

Published

2021-07-08

CVE-2021-34610

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability.

CVSS Score

7.2

EPSS Score

0.033

Published

2021-07-08

CVE-2021-34611

CVSS Score

7.2

EPSS Score

0.025

Published

2021-07-08

Prev Next

Page 129

Vulnerabilities

Vulnerable Software

Security Vulnerabilities - CVEs Published In July 2021

Products

Pricing

Contact Us