|
221
|
7.5 |
HIGH
Network
|
-
|
-
|
SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure custo…
New
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2026-28318
|
2026-06-5 00:35 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222
|
3.1 |
LOW
Network
|
-
|
-
|
Strawberry GraphQL is a library for creating GraphQL APIs. In versions 0.288.4 through 0.315.3, Strawberry's bundled GraphiQL template wrote values from the GraphiQL headers editor into the browser U…
New
|
CWE-200
CWE-201
Information Exposure
Insertion of Sensitive Information Into Sent Data
|
CVE-2026-45739
|
2026-06-5 00:35 |
2026-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
Dräger Infinity M300 patient worn monitors with software version VG2.3.1 and earlier contain a network-based denial of service vulnerability that allows network-adjacent attackers to repeatedly trigg…
New
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2019-25721
|
2026-06-5 00:29 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224
|
7.6 |
HIGH
Adjacent
|
-
|
-
|
Dräger SC Monitoring devices (SC 6002XL, SC 6802XL, SC 7000, SC 8000, SC 9000 XL) contain hard-coded plaintext credentials in source code and a denial-of-service vulnerability that allows local and r…
New
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2019-25722
|
2026-06-5 00:29 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
225
|
4.0 |
MEDIUM
Network
|
-
|
-
|
Dräger Perseus A500 software versions 2.00 through 2.02 contains an improper input handling vulnerability that allows external attackers to cause a denial of service by sending specifically crafted n…
New
|
CWE-1286
Improper Validation of Syntactic Correctness of Input
|
CVE-2019-25723
|
2026-06-5 00:29 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226
|
6.5 |
MEDIUM
Adjacent
|
-
|
-
|
Dräger Infinity M300 patient worn monitors with software version VG2.x and earlier contain a network-based denial of service vulnerability that allows attackers with access to the hospital or Infinit…
New
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2019-25724
|
2026-06-5 00:29 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
227
|
8.2 |
HIGH
Local
|
-
|
-
|
Dräger CC-Vision Basic before 7.5.3 and Dräger CC-Vision E-Cal before 7.2.5.0 contain an out-of-bounds write vulnerability when loading .gdt files. A crafted .gdt file can trigger a buffer overflow d…
New
|
CWE-787
Out-of-bounds Write
|
CVE-2021-4478
|
2026-06-5 00:29 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
228
|
4.0 |
MEDIUM
Network
|
-
|
-
|
Dräger Atlan A350 software versions 1.00 through 1.01 contains an improper input handling vulnerability that allows attackers to cause a denial of service by sending specifically crafted non-Medibus-…
New
|
CWE-1286
Improper Validation of Syntactic Correctness of Input
|
CVE-2021-4479
|
2026-06-5 00:29 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
229
|
8.2 |
HIGH
Local
|
-
|
-
|
Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with…
New
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-4480
|
2026-06-5 00:29 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
230
|
8.2 |
HIGH
Local
|
-
|
-
|
Dräger Protector Software prior to version 6.4.2 contains a local privilege escalation vulnerability due to insecure file system permissions that allows local attackers to execute arbitrary code with…
New
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2021-4481
|
2026-06-5 00:29 |
2026-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
