PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS
PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
EPSS
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
EPSS
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.8.1 via the 'map_style' parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute...
8.8CVSS
7.7AI Score
EPSS
The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.8.1 via the 'map_style' parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute...
8.8CVSS
EPSS
The Void Contact Form 7 Widget For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cf7_redirect_page' attribute within the plugin's Void Contact From 7 widget in all versions up to, and including, 2.4 due to insufficient input sanitization and...
6.4CVSS
EPSS
The Void Contact Form 7 Widget For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cf7_redirect_page' attribute within the plugin's Void Contact From 7 widget in all versions up to, and including, 2.4 due to insufficient input sanitization and...
6.4CVSS
5.7AI Score
EPSS
The Void Contact Form 7 Widget For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cf7_redirect_page' attribute within the plugin's Void Contact From 7 widget in all versions up to, and including, 2.4 due to insufficient input sanitization and...
6.4CVSS
EPSS
6.5CVSS
7.1AI Score
0.003EPSS
7.5AI Score
7.5AI Score
7.5CVSS
7.8AI Score
0.002EPSS
7.5AI Score
7.5CVSS
6.8AI Score
0.001EPSS
7.5CVSS
6.8AI Score
0.001EPSS
7.5AI Score
7.5AI Score
7.5CVSS
7.9AI Score
0.001EPSS
CVE-2021-38561 vulnerabilities
Vulnerabilities for packages: vt-cli, dynamic-localpv-provisioner, hey, k3d,...
7.5CVSS
7.9AI Score
0.001EPSS
GHSA-VVPX-J8F3-3W6H vulnerabilities
Vulnerabilities for packages: go, grpcurl, falco, gke-gcloud-auth-plugin, wireguard-go, restic, dynamic-localpv-provisioner, hey,...
7.5AI Score
9.8CVSS
10AI Score
0.003EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
5.5CVSS
7.7AI Score
0.001EPSS
7.1AI Score
0.0004EPSS
7.1AI Score
0.0004EPSS
7.1AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
9.8CVSS
7.2AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5CVSS
8.1AI Score
0.001EPSS
8.1CVSS
7.1AI Score
0.0004EPSS
7.5AI Score
9.8CVSS
7.7AI Score
0.001EPSS
7.5AI Score
6.8AI Score
0.0005EPSS
7.5AI Score
7.5AI Score
7.5CVSS
6.6AI Score
0.001EPSS
6CVSS
7.2AI Score
0.0004EPSS
7.2CVSS
7.7AI Score
0.002EPSS
7.5AI Score