Security Vulnerabilities - CVEs Published In 2021
Microsoft Office app Remote Code Execution Vulnerability
CVSS Score
9.6
EPSS Score
0.008
Published
2021-12-15
Visual Studio Code WSL Extension Remote Code Execution Vulnerability
CVSS Score
9.8
EPSS Score
0.051
Published
2021-12-15
Visual Studio Code Spoofing Vulnerability
CVSS Score
4.3
EPSS Score
0.133
Published
2021-12-15
In StackStorm versions prior to 3.6.0, the jinja interpreter was not run in sandbox mode and thus allows execution of unsafe system commands. Jinja does not enable sandboxed mode by default due to backwards compatibility. Stackstorm now sets sandboxed mode for jinja by default.
CVSS Score
8.8
EPSS Score
0.026
Published
2021-12-15
yetiforcecrm is vulnerable to Business Logic Errors
CVSS Score
7.7
EPSS Score
0.002
Published
2021-12-15
Remote Desktop Client Remote Code Execution Vulnerability
CVSS Score
7.5
EPSS Score
0.01
Published
2021-12-15
Windows Fax Service Remote Code Execution Vulnerability
CVSS Score
7.8
EPSS Score
0.008
Published
2021-12-15
Storage Spaces Controller Information Disclosure Vulnerability
CVSS Score
5.5
EPSS Score
0.004
Published
2021-12-15
Microsoft Message Queuing Information Disclosure Vulnerability
CVSS Score
7.5
EPSS Score
0.09
Published
2021-12-15
Windows Setup Elevation of Privilege Vulnerability
CVSS Score
7.8
EPSS Score
0.007
Published
2021-12-15