CVE-2021-34710

HIGH Year: 2021
CVSS v3 Score
8.8
High
CVSS v2 Score
9.0
Critical
Weakness Type
CWE-770
View all →

Vulnerability Description

Multiple vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter Software could allow an attacker to perform a command injection attack resulting in remote code execution or cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

Related Vulnerabilities

CVE-2019-10088

HIGH
CVSS:8.8(High)

A carefully crafted or corrupt zip file can cause an OOM in Apache Tika's RecursiveParserWrapper in versions 1.7-1.21. Users should upgrade to 1.22 or later.

CWE-7702019

CVE-2019-7581

HIGH
CVSS:8.8(High)

The parseSWF_ACTIONRECORD function in util/parser.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure, a diff...

CWE-7702019

CVE-2019-7582

HIGH
CVSS:8.8(High)

The readBytes function in util/read.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure.

CWE-7702019

CVE-2019-9291

HIGH
CVSS:8.8(High)

In Bluetooth, there is a possible remote code execution due to an improper memory allocation. This could lead to remote code execution in Bluetooth with no additional execution privileges needed. User...

CWE-7702019

CVE-2020-24994

HIGH
CVSS:8.8(High)

Stack overflow in the parse_tag function in libass/ass_parse.c in libass before 0.15.0 allows remote attackers to cause a denial of service or remote code execution via a crafted file.

CWE-7702020

CVE-2023-38543

HIGH
CVSS:8.8(High)

A vulnerability exists on all versions of the Ivanti Secure Access Client below 22.6R1.1, which could allow a locally authenticated attacker to exploit a vulnerable configuration, potentially leading ...

CWE-7702023