Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2022-41223 KEV |
|
[KEV] Code Injection in Mitel mivoice-connect (CVE-2022-41223)
code injection in Mitel mivoice-connect (CVE-2022-41223). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-47986 KEV |
|
[KEV] Unsafe Deserialization in Ibm aspera-faspex (CVE-2022-47986)
vulnerability in Ibm aspera-faspex (CVE-2022-47986). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-46169 KEV |
|
[KEV] Vulnerability in cacti (CVE-2022-46169)
vulnerability in cacti (CVE-2022-46169). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-21823 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-21823)
vulnerability in Microsoft windows (CVE-2023-21823). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-21715 KEV |
|
[KEV] Authorization Flaw in Microsoft office (CVE-2023-21715)
vulnerability in Microsoft office (CVE-2023-21715). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-23376 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-23376)
vulnerability in Microsoft windows (CVE-2023-23376). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-23529 KEV |
|
[KEV] Vulnerability in Apple multiple-products (CVE-2023-23529)
vulnerability in Apple multiple-products (CVE-2023-23529). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-2291 KEV |
|
[KEV] Vulnerability in Intel ethernet-diagnostics-driver-for-windows (CVE-2015-2291)
vulnerability in Intel ethernet-diagnostics-driver-for-windows (CVE-2015-2291). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-0669 KEV |
|
[KEV] Unsafe Deserialization in Fortra goanywhere-mft (CVE-2023-0669)
vulnerability in Fortra goanywhere-mft (CVE-2023-0669). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-24990 KEV |
|
[KEV] Vulnerability in terramaster (CVE-2022-24990)
vulnerability in terramaster (CVE-2022-24990). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-22952 KEV |
|
[KEV] Vulnerability in Sugarcrm multiple-products (CVE-2023-22952)
vulnerability in Sugarcrm multiple-products (CVE-2023-22952). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-21587 KEV |
|
[KEV] Vulnerability in Oracle e-business-suite (CVE-2022-21587)
vulnerability in Oracle e-business-suite (CVE-2022-21587). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-11357 KEV |
|
[KEV] Vulnerability in Telerik user-interface-ui-for-aspnet-ajax (CVE-2017-11357)
vulnerability in Telerik user-interface-ui-for-aspnet-ajax (CVE-2017-11357). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-44877 KEV |
|
[KEV] OS Command Injection in Cwp control-web-panel (CVE-2022-44877)
OS command injection in Cwp control-web-panel (CVE-2022-44877). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-21674 KEV |
|
[KEV] Use-After-Free in Microsoft windows (CVE-2023-21674)
vulnerability in Microsoft windows (CVE-2023-21674). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-5430 KEV |
|
[KEV] Path Traversal in Tibco jasperreports (CVE-2018-5430)
path traversal in Tibco jasperreports (CVE-2018-5430). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-18809 KEV |
|
[KEV] Path Traversal in Tibco jasperreports (CVE-2018-18809)
path traversal in Tibco jasperreports (CVE-2018-18809). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-42856 KEV |
|
[KEV] Vulnerability in Apple ios (CVE-2022-42856)
vulnerability in Apple ios (CVE-2022-42856). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-26500 KEV |
|
[KEV] Path Traversal in Veeam backup-replication (CVE-2022-26500)
path traversal in Veeam backup-replication (CVE-2022-26500). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-26501 KEV |
|
[KEV] Vulnerability in Veeam backup-replication (CVE-2022-26501)
vulnerability in Veeam backup-replication (CVE-2022-26501). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-42475 KEV |
|
[KEV] Vulnerability in Fortinet fortios (CVE-2022-42475)
vulnerability in Fortinet fortios (CVE-2022-42475). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-44698 KEV |
|
[KEV] Vulnerability in Microsoft defender (CVE-2022-44698)
vulnerability in Microsoft defender (CVE-2022-44698). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-27518 KEV |
|
[KEV] Vulnerability in Citrix application-delivery-controller-adc-and-gateway (CVE-2022-27518)
vulnerability in Citrix application-delivery-controller-adc-and-gateway (CVE-2022-27518). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-4262 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2022-4262)
vulnerability in Google chromium-v8 (CVE-2022-4262). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-4135 KEV |
|
[KEV] Out-of-Bounds Write in Google chromium-gpu (CVE-2022-4135)
out-of-bounds write in Google chromium-gpu (CVE-2022-4135). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-35587 KEV |
|
[KEV] Unsafe Deserialization in Oracle fusion-middleware (CVE-2021-35587)
vulnerability in Oracle fusion-middleware (CVE-2021-35587). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41049 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2022-41049)
vulnerability in Microsoft windows (CVE-2022-41049). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-25370 KEV |
|
[KEV] Use-After-Free in Samsung mobile-devices (CVE-2021-25370)
vulnerability in Samsung mobile-devices (CVE-2021-25370). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41073 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-41073)
out-of-bounds write in Microsoft windows (CVE-2022-41073). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41125 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-41125)
out-of-bounds write in Microsoft windows (CVE-2022-41125). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41128 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-41128)
out-of-bounds write in Microsoft windows (CVE-2022-41128). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41091 KEV |
|
[KEV] Authorization Flaw in Microsoft windows (CVE-2022-41091)
vulnerability in Microsoft windows (CVE-2022-41091). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-25369 KEV |
|
[KEV] Information Disclosure in Samsung mobile-devices (CVE-2021-25369)
vulnerability in Samsung mobile-devices (CVE-2021-25369). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-25337 KEV |
|
[KEV] Privilege Escalation in Samsung mobile-devices (CVE-2021-25337)
vulnerability in Samsung mobile-devices (CVE-2021-25337). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-3723 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2022-3723)
vulnerability in Google chromium-v8 (CVE-2022-3723). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-42827 KEV |
|
[KEV] Vulnerability in Apple ios-and-ipados (CVE-2022-42827)
vulnerability in Apple ios-and-ipados (CVE-2022-42827). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-3433 KEV |
|
[KEV] Vulnerability in Cisco anyconnect-secure (CVE-2020-3433)
vulnerability in Cisco anyconnect-secure (CVE-2020-3433). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-3153 KEV |
|
[KEV] Vulnerability in Cisco anyconnect-secure (CVE-2020-3153)
vulnerability in Cisco anyconnect-secure (CVE-2020-3153). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-19322 KEV |
|
[KEV] Vulnerability in Gigabyte multiple-products (CVE-2018-19322)
vulnerability in Gigabyte multiple-products (CVE-2018-19322). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-3493 KEV |
|
[KEV] Vulnerability in Linux kernel (CVE-2021-3493)
vulnerability in Linux kernel (CVE-2021-3493). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41352 KEV |
|
[KEV] Path Traversal in Synacor zimbra-collaboration-suite-zcs (CVE-2022-41352)
path traversal in Synacor zimbra-collaboration-suite-zcs (CVE-2022-41352). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-40684 KEV |
|
[KEV] Vulnerability in Fortinet multiple-products (CVE-2022-40684)
vulnerability in Fortinet multiple-products (CVE-2022-40684). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41033 KEV |
|
[KEV] Vulnerability in Microsoft windows-com-event-system-service (CVE-2022-41033)
vulnerability in Microsoft windows-com-event-system-service (CVE-2022-41033). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-36804 KEV |
|
[KEV] OS Command Injection in Atlassian bitbucket-server-and-data-center (CVE-2022-36804)
OS command injection in Atlassian bitbucket-server-and-data-center (CVE-2022-36804). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41082 KEV |
|
[KEV] Unsafe Deserialization in Microsoft exchange-server (CVE-2022-41082)
vulnerability in Microsoft exchange-server (CVE-2022-41082). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41040 KEV |
|
[KEV] SSRF (Server-Side Request Forgery) in Microsoft exchange-server (CVE-2022-41040)
SSRF in Microsoft exchange-server (CVE-2022-41040). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-3236 KEV |
|
[KEV] Code Injection in Sophos firewall (CVE-2022-3236)
code injection in Sophos firewall (CVE-2022-3236). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-35405 KEV |
|
[KEV] Unsafe Deserialization in Zoho manageengine (CVE-2022-35405)
vulnerability in Zoho manageengine (CVE-2022-35405). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-6282 KEV |
|
[KEV] Vulnerability in Linux kernel (CVE-2013-6282)
vulnerability in Linux kernel (CVE-2013-6282). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-2568 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2010-2568)
vulnerability in Microsoft windows (CVE-2010-2568). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|