Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2024-38547 |
|
Vulnerability in linux (CVE-2024-38547)
vulnerability in linux (CVE-2024-38547). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-38615 |
|
Vulnerability in linux (CVE-2024-38615)
vulnerability in linux (CVE-2024-38615). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-36978 |
|
Out-of-Bounds Write in linux (CVE-2024-36978)
out-of-bounds write in linux (CVE-2024-36978). Successful exploitation can lead to full system takeover.
|
| CVE-2024-37821 |
|
Code Injection in dolibarr (CVE-2024-37821)
code injection in dolibarr (CVE-2024-37821). Successful exploitation can lead to full system takeover.
|
| CVE-2023-37058 |
|
Privilege Escalation in unionman (CVE-2023-37058)
vulnerability in unionman (CVE-2023-37058). Successful exploitation can lead to full system takeover.
|
| CVE-2023-37057 |
|
Vulnerability in CVE-2023-37057 (CVE-2023-37057)
vulnerability in CVE-2023-37057 (CVE-2023-37057). Successful exploitation can lead to full system takeover.
|
| CVE-2024-36543 |
|
Vulnerability in CVE-2024-36543 (CVE-2024-36543)
vulnerability in CVE-2024-36543 (CVE-2024-36543). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26169 KEV |
|
[KEV] Privilege Escalation in Microsoft windows (CVE-2024-26169)
vulnerability in Microsoft windows (CVE-2024-26169). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-4358 KEV |
|
[KEV] Vulnerability in Progress telerik-report-server (CVE-2024-4358)
vulnerability in Progress telerik-report-server (CVE-2024-4358). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-32896 KEV |
|
[KEV] Vulnerability in Android pixel (CVE-2024-32896)
vulnerability in Android pixel (CVE-2024-32896). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-36265 |
|
Authorization Flaw in apache-submarine (CVE-2024-36265)
vulnerability in apache-submarine (CVE-2024-36265). Successful exploitation can lead to full system takeover.
|
| CVE-2024-4577 KEV |
|
[KEV] OS Command Injection in Php group php-group (CVE-2024-4577)
OS command injection in Php group php-group (CVE-2024-4577). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-4610 KEV |
|
[KEV] Use-After-Free in Arm :unknown: (CVE-2024-4610)
vulnerability in Arm :unknown: (CVE-2024-4610). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `SoCVersion:2024-07-05` or later.
|
| CVE-2023-4727 |
|
Vulnerability in CVE-2023-4727 (CVE-2023-4727)
vulnerability in CVE-2023-4727 (CVE-2023-4727). Successful exploitation can lead to full system takeover.
|
| CVE-2024-36702 |
|
Out-of-Bounds Write in c (CVE-2024-36702)
out-of-bounds write in c (CVE-2024-36702). Successful exploitation can lead to full system takeover.
|
| CVE-2024-30104 |
|
Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
|
| CVE-2024-30103 |
|
Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Outlook Remote Code Execution Vulnerability
|
| CVE-2024-30101 |
|
Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
|
| CVE-2024-3166 |
|
Cross-Site Scripting (XSS) in mintplexlabs (CVE-2024-3166)
cross-site scripting in mintplexlabs (CVE-2024-3166). Successful exploitation can lead to full system takeover.
|
| CVE-2024-1662 |
|
Information Disclosure in porty (CVE-2024-1662)
vulnerability in porty (CVE-2024-1662). Confidential information can be exposed externally.
|
| CVE-2024-23669 |
|
Vulnerability in fortinet (CVE-2024-23669)
vulnerability in fortinet (CVE-2024-23669). Confidential information can be exposed externally.
|
| CVE-2024-0336 |
|
Vulnerability in CVE-2024-0336 (CVE-2024-0336)
vulnerability in CVE-2024-0336 (CVE-2024-0336). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-23667 |
|
Vulnerability in fortinet (CVE-2024-23667)
vulnerability in fortinet (CVE-2024-23667). Successful exploitation can lead to full system takeover.
|
| CVE-2024-23670 |
|
Vulnerability in fortinet (CVE-2024-23670)
vulnerability in fortinet (CVE-2024-23670). Successful exploitation can lead to full system takeover.
|
| CVE-2024-23668 |
|
Vulnerability in fortinet (CVE-2024-23668)
vulnerability in fortinet (CVE-2024-23668). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3506 KEV |
|
[KEV] OS Command Injection in Oracle weblogic-server (CVE-2017-3506)
OS command injection in Oracle weblogic-server (CVE-2017-3506). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-36940 |
|
Vulnerability in linux (CVE-2024-36940)
vulnerability in linux (CVE-2024-36940). Successful exploitation can lead to full system takeover.
|
| CVE-2024-36929 |
|
Vulnerability in linux (CVE-2024-36929)
vulnerability in linux (CVE-2024-36929). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-36927 |
|
Vulnerability in c (CVE-2024-36927)
vulnerability in c (CVE-2024-36927). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-36916 |
|
Out-of-Bounds Read in c (CVE-2024-36916)
vulnerability in c (CVE-2024-36916). Confidential information can be exposed externally.
|
| CVE-2024-36899 |
|
Vulnerability in linux (CVE-2024-36899)
vulnerability in linux (CVE-2024-36899). Successful exploitation can lead to full system takeover.
|
| CVE-2024-36904 |
|
Use-After-Free in c (CVE-2024-36904)
vulnerability in c (CVE-2024-36904). Successful exploitation can lead to full system takeover.
|
| CVE-2024-36902 |
|
Vulnerability in c (CVE-2024-36902)
vulnerability in c (CVE-2024-36902). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-36903 |
|
Vulnerability in linux (CVE-2024-36903)
vulnerability in linux (CVE-2024-36903). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-36894 |
|
Vulnerability in linux (CVE-2024-36894)
vulnerability in linux (CVE-2024-36894). Confidential information can be exposed externally.
|
| CVE-2024-36020 |
|
Vulnerability in linux (CVE-2024-36020)
vulnerability in linux (CVE-2024-36020). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-1100 |
|
SQL Injection in sqli (CVE-2024-1100)
SQL injection in sqli (CVE-2024-1100). Successful exploitation can lead to full system takeover.
|
| CVE-2024-1086 KEV |
|
[KEV] Use-After-Free in Linux kernel (CVE-2024-1086)
vulnerability in Linux kernel (CVE-2024-1086). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-24919 KEV |
|
[KEV] Information Disclosure in Check point check-point (CVE-2024-24919)
vulnerability in Check point check-point (CVE-2024-24919). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-4978 KEV |
|
[KEV] Vulnerability in Justice av solutions justice-av-solutions (CVE-2024-4978)
vulnerability in Justice av solutions justice-av-solutions (CVE-2024-4978). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-35563 |
|
SQL Injection in sqli (CVE-2024-35563)
SQL injection in sqli (CVE-2024-35563). Successful exploitation can lead to full system takeover.
|
| CVE-2024-35401 |
|
Command Injection in totolink (CVE-2024-35401)
command injection in totolink (CVE-2024-35401). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-35397 |
|
Command Injection in totolink (CVE-2024-35397)
command injection in totolink (CVE-2024-35397). Successful exploitation can lead to full system takeover.
|
| CVE-2024-35398 |
|
Vulnerability in totolink (CVE-2024-35398)
vulnerability in totolink (CVE-2024-35398). Successful exploitation can lead to full system takeover.
|
| CVE-2024-35400 |
|
Vulnerability in totolink (CVE-2024-35400)
vulnerability in totolink (CVE-2024-35400). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-35399 |
|
Vulnerability in totolink (CVE-2024-35399)
vulnerability in totolink (CVE-2024-35399). Successful exploitation can lead to full system takeover.
|
| CVE-2024-2199 |
|
Vulnerability in dos (CVE-2024-2199)
vulnerability in dos (CVE-2024-2199). Risk of unauthorized operations or information disclosure. Exploitable via ``userPassword``.
|
| CVE-2024-5274 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2024-5274)
vulnerability in Google chromium-v8 (CVE-2024-5274). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-0851 |
|
SQL Injection in sqli (CVE-2024-0851)
SQL injection in sqli (CVE-2024-0851). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-35396 |
|
Vulnerability in totolink (CVE-2024-35396)
vulnerability in totolink (CVE-2024-35396). Successful exploitation can lead to full system takeover.
|