Security Vulnerabilities - CVEs Published In October 2021
Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVSS Score
7.8
EPSS Score
0.004
Published
2021-10-13
CVE-2021-40449
Win32k Elevation of Privilege Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.834
Published
2021-10-13
CVE-2021-40450
Win32k Elevation of Privilege Vulnerability
Known exploited
CVSS Score
7.8
EPSS Score
0.151
Published
2021-10-13
Rich Text Edit Control Information Disclosure Vulnerability
CVSS Score
5.5
EPSS Score
0.001
Published
2021-10-13
Windows Installer Spoofing Vulnerability
CVSS Score
5.5
EPSS Score
0.006
Published
2021-10-13
Windows AD FS Security Feature Bypass Vulnerability
CVSS Score
5.3
EPSS Score
0.013
Published
2021-10-13
Microsoft Dynamics 365 Customer Engagement Cross-Site Scripting Vulnerability
CVSS Score
7.4
EPSS Score
0.012
Published
2021-10-13
Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability
CVSS Score
6.5
EPSS Score
0.009
Published
2021-10-13
A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect firewall management users to arbitrary web domains.
CVSS Score
6.1
EPSS Score
0.413
Published
2021-10-12
Unexpected Pointer Aliasing in IEEE 802154 Fragment Reassembly in Zephyr. Zephyr versions >= >=2.4.0 contain NULL Pointer Dereference (CWE-476). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-p86r-gc4r-4mq3
CVSS Score
6.5
EPSS Score
0.001
Published
2021-10-12