» 2021 » 6월

CVE-2021-26314

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2021-26314

Potential floating point value injection in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution with incorrect floating point results, may cause the use of incorrect data from FPVI and may result in data leakage.

Source: CVE-2021-26314

CVE-2021-26313

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2021-26313

Potential speculative code store bypass in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution of overwritten instructions, may cause an incorrect speculation and could result in data leakage.

Source: CVE-2021-26313

CVE-2021-33841

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2021-33841

SGE-PLC1000 device, in its 0.9.2b firmware version, does not handle some requests correctly, allowing a remote attacker to inject code into the operating system with maximum privileges.

Source: CVE-2021-33841

CVE-2021-33829

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2021-33829

A cross-site scripting (XSS) vulnerability in the HTML Data Processor in CKEditor 4 4.14.0 through 4.16.x before 4.16.1 allows remote attackers to inject executable JavaScript code through a crafted comment because –!> is mishandled.

Source: CVE-2021-33829

CVE-2021-34364

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2021-34364

The Refined GitHub browser extension before 21.6.8 might allow XSS via a link in a document. NOTE: github.com sends Content-Security-Policy headers to address this.

Source: CVE-2021-34364

CVE-2020-11306

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11306

Possible integer overflow in RPMB counter due to lack of length check on user provided data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

Source: CVE-2020-11306

CVE-2021-1937

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2021-1937

Reachable assertion is possible while processing peer association WLAN message from host and nonstandard incoming packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Source: CVE-2021-1937

CVE-2021-1900

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2021-1900

Possible use after free in Display due to race condition while creating an external display in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Source: CVE-2021-1900

CVE-2020-11304

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11304

Possible out of bound read in DRM due to improper buffer length check. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Source: CVE-2020-11304

CVE-2020-11291

Posted on 2021년 6월 9일2021년 6월 9일 by admin

CVE-2020-11291

Possible buffer overflow while updating ikev2 parameters for delete payloads received during informational exchange due to lack of check of input validation for certain parameters received from the ePDG server in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile

Source: CVE-2020-11291