| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, user authentication can be bypassed when API access is enabled via the JSON-RPC APIs. This issue affects: Arista Metamako Operating System All releases in the MOS-0.1x train MOS-0.13 and post releases in the MOS-0.1x train MOS-0.26.6 and below releases in the MOS-0.2x train MOS-0.31.1 and below releases in the MOS-0.3x train |
| In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, a user may be able to execute commands despite not having the privileges to do so. This issue affects: Arista Metamako Operating System All releases in the MOS-0.1x train MOS-0.32.0 and prior releases |
| In OWASP CSRFGuard through 3.1.0, CSRF can occur because the CSRF cookie may be retrieved by using only a session token. |
| An issue was discovered in the /api/connector endpoint handler in Yubico yubihsm-connector before 3.0.1 (in YubiHSM SDK before 2021.04). The handler did not validate the length of the request, which can lead to a state where yubihsm-connector becomes stuck in a loop waiting for the YubiHSM to send it data, preventing any further operations until the yubihsm-connector is restarted. An attacker can send 0, 1, or 2 bytes to trigger this. |
| Microsoft Exchange Server Remote Code Execution Vulnerability |
| Visual Studio Code Remote Code Execution Vulnerability |
| Visual Studio Code Remote Code Execution Vulnerability |
| Microsoft SharePoint Server Remote Code Execution Vulnerability |
| Visual Studio Code Remote Code Execution Vulnerability |
| Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability |
| Remote Development Extension for Visual Studio Code Remote Code Execution Vulnerability |
| Visual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability |
| Visual Studio Code Remote Code Execution Vulnerability |
| Raw Image Extension Remote Code Execution Vulnerability |
| Raw Image Extension Remote Code Execution Vulnerability |
| Web Media Extensions Remote Code Execution Vulnerability |
| VP9 Video Extensions Remote Code Execution Vulnerability |
| Azure Sphere Unsigned Code Execution Vulnerability |
| Azure ms-rest-nodeauth Library Elevation of Privilege Vulnerability |
| Visual Studio Code Remote Code Execution Vulnerability |
