Cybersecurity Alerts

Actively Exploited Vulnerabilities

The vulnerabilities listed below are sourced from the CISA Known Exploited Vulnerabilities catalog and represent security flaws that are actively being exploited in the wild. This list is updated daily. If you are unsure whether your systems are affected, contact us and we will help you assess your exposure.

CVE-2021-21220
Google | Chromium V8
Google Chromium V8 Improper Input Validation Vulnerability
Google Chromium V8 Engine contains an improper input validation vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-21206
Google | Chromium Blink
Google Chromium Blink Use-After-Free Vulnerability
Google Chromium Blink contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-21193
Google | Chromium Blink
Google Chromium Blink Use-After-Free Vulnerability
Google Chromium Blink contains a use-after-free vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-21166
Google | Chromium
Google Chromium Race Condition Vulnerability
Google Chromium contains a race condition vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-21148
Google | Chromium V8
Google Chromium V8 Heap Buffer Overflow Vulnerability
Google Chromium V8 Engine contains a heap buffer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-21017
Adobe | Acrobat and Reader
Adobe Acrobat and Reader Heap-based Buffer Overflow Vulnerability
Acrobat Acrobat and Reader contain a heap-based buffer overflow vulnerability that could allow an unauthenticated attacker to achieve code execution in the context of the current user.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-20090
Arcadyan | Buffalo Firmware
Arcadyan Buffalo Firmware Path Traversal Vulnerability
Arcadyan Buffalo firmware contains a path traversal vulnerability that could allow unauthenticated, remote attackers to bypass authentication and access sensitive information. This vulnerability affects multiple routers across several different vendors.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-20023Active Ransomware Campaign
SonicWall | SonicWall Email Security
SonicWall Email Security Path Traversal Vulnerability
SonicWall Email Security contains a path traversal vulnerability that allows a post-authenticated attacker to read files on the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20021 and CVE-2021-20022 to achieve privilege escalation.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-20022Active Ransomware Campaign
SonicWall | SonicWall Email Security
SonicWall Email Security Unrestricted Upload of File Vulnerability
SonicWall Email Security contains an unrestricted upload of file with dangerous type vulnerability that allows a post-authenticated attacker to upload a file to the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20021 and CVE-2021-20023 to achieve privilege escalation.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-20021Active Ransomware Campaign
SonicWall | SonicWall Email Security
SonicWall Email Security Improper Privilege Management Vulnerability
SonicWall Email Security contains an improper privilege management vulnerability that allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host. This vulnerability has known usage in a SonicWall Email Security exploit chain along with CVE-2021-20022 and CVE-2021-20023 to achieve privilege escalation.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-20016Active Ransomware Campaign
SonicWall | SSLVPN SMA100
SonicWall SSLVPN SMA100 SQL Injection Vulnerability
SonicWall SSLVPN SMA100 contains a SQL injection vulnerability that allows remote exploitation for credential access by an unauthenticated attacker.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1906
Qualcomm | Multiple Chipsets
Qualcomm Multiple Chipsets Detection of Error Condition Without Action Vulnerability
Multiple Qualcomm chipsets contain a detection of error condition without action vulnerability when improper handling of address deregistration on failure can lead to new GPU address allocation failure.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1905
Qualcomm | Multiple Chipsets
Qualcomm Multiple Chipsets Use-After-Free Vulnerability
Multiple Qualcomm Chipsets contain a use after free vulnerability due to improper handling of memory mapping of multiple processes simultaneously.
Added 2021-11-03
Remediation Deadline 2022-05-03
CVE-2021-1879
Apple | iOS, iPadOS, and watchOS
Apple iOS, iPadOS, and watchOS WebKit Cross-Site Scripting (XSS) Vulnerability
Apple iOS, iPadOS, and watchOS WebKit contain an unspecified vulnerability that allows for universal cross-site scripting (XSS) when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1871
Apple | iOS, iPadOS, and macOS
Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability
Apple iOS, iPadOS, and macOS WebKit contain an unspecified logic vulnerability that allows a remote attacker to execute code. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1870
Apple | iOS, iPadOS, and macOS
Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability
Apple iOS, iPadOS, and macOS WebKit contain an unspecified logic vulnerability that allows a remote attacker to execute code. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1782
Apple | Multiple Products
Apple Multiple Products Race Condition Vulnerability
Apple iOS, iPadOs, macOS, watchOS, and tvOS contain a race condition vulnerability that may allow a malicious application to elevate privileges.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1732Active Ransomware Campaign
Microsoft | Win32k
Microsoft Win32k Privilege Escalation Vulnerability
Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1675Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows Print Spooler Remote Code Execution Vulnerability
Microsoft Windows Print Spooler contains an unspecified vulnerability that allows for remote code execution.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1647
Microsoft | Defender
Microsoft Defender Remote Code Execution Vulnerability
Microsoft Defender contains an unspecified vulnerability that allows for remote code execution.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1498
Cisco | HyperFlex HX
Cisco HyperFlex HX Data Platform Command Injection Vulnerability
Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the tomcat8 user.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2021-1497
Cisco | HyperFlex HX
Cisco HyperFlex HX Installer Virtual Machine Command Injection Vulnerability
Cisco HyperFlex HX Installer Virtual Machine contains an insufficient input validation vulnerability which could allow an attacker to execute commands on an affected device as the root user.
Added 2021-11-03
Remediation Deadline 2021-11-17
CVE-2020-9859
Apple | Multiple Products
Apple Multiple Products Code Execution Vulnerability
Apple iOS, iPadOS, macOS, watchOS, and tvOS contain an unspecified vulnerability that may allow an application to execute code with kernel privileges.
Added 2021-11-03
Remediation Deadline 2022-05-03
CVE-2020-9819
Apple | iOS, iPadOS, and watchOS
Apple iOS, iPadOS, and watchOS Memory Corruption Vulnerability
Apple iOS, iPadOS, and watchOS Mail contains a memory corruption vulnerability that may allow heap corruption when processing a maliciously crafted mail message.
Added 2021-11-03
Remediation Deadline 2022-05-03
CVE-2020-9818
Apple | iOS, iPadOS, and watchOS
Apple iOS, iPadOS, and watchOS Out-of-Bounds Write Vulnerability
Apple iOS, iPadOS, and watchOS Mail contains an out-of-bounds write vulnerability which may allow memory modification or application termination when processing a maliciously crafted mail message.
Added 2021-11-03
Remediation Deadline 2022-05-03
CVE-2020-8657
EyesOfNetwork | EyesOfNetwork
EyesOfNetwork Use of Hard-Coded Credentials Vulnerability
EyesOfNetwork contains a use of hard-coded credentials vulnerability, as it uses the same API key by default. Exploitation allows an attacker to calculate or guess the admin access token.
Added 2021-11-03
Remediation Deadline 2022-05-03
CVE-2020-8655
EyesOfNetwork | EyesOfNetwork
EyesOfNetwork Improper Privilege Management Vulnerability
EyesOfNetwork contains an improper privilege management vulnerability that may allow a user to run commands as root via a crafted Nmap Scripting Engine (NSE) script to nmap7.
Added 2021-11-03
Remediation Deadline 2022-05-03
CVE-2020-8644
PlaySMS | PlaySMS
PlaySMS Server-Side Template Injection Vulnerability
PlaySMS contains a server-side template injection vulnerability that allows for remote code execution.
Added 2021-11-03
Remediation Deadline 2022-05-03
CVE-2020-8599
Trend Micro | Apex One and OfficeScan
Trend Micro Apex One and OfficeScan Authentication Bypass Vulnerability
Trend Micro Apex One and OfficeScan server contain a vulnerable EXE file that could allow a remote attacker to write data to a path on affected installations and bypass root login.
Added 2021-11-03
Remediation Deadline 2022-05-03
CVE-2020-8515
DrayTek | Multiple Vigor Routers
Multiple DrayTek Vigor Routers Web Management Page Vulnerability
DrayTek Vigor3900, Vigor2960, and Vigor300B routers contain an unspecified vulnerability that allows for remote code execution.
Added 2021-11-03
Remediation Deadline 2022-05-03