Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2023-35696 Vulnerability in sick (CVE-2023-35696)
vulnerability in sick (CVE-2023-35696). Confidential information can be exposed externally.
CVE-2023-35698 Vulnerability in sick (CVE-2023-35698)
vulnerability in sick (CVE-2023-35698). Risk of unauthorized operations or information disclosure.
CVE-2023-2852 SQL Injection in sqli (CVE-2023-2852)
SQL injection in sqli (CVE-2023-2852). Successful exploitation can lead to full system takeover.
CVE-2023-2853 Cross-Site Scripting (XSS) in softmedyazilim (CVE-2023-2853)
cross-site scripting in softmedyazilim (CVE-2023-2853). Risk of unauthorized operations or information disclosure.
CVE-2023-2046 SQL Injection in sqli (CVE-2023-2046)
SQL injection in sqli (CVE-2023-2046). Successful exploitation can lead to full system takeover.
CVE-2021-29256 KEV [KEV] Use-After-Free in Arm :unknown: (CVE-2021-29256)
vulnerability in Arm :unknown: (CVE-2021-29256). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `SoCVersion:2023-07-05` or later.
CVE-2023-31408 Vulnerability in sick (CVE-2023-31408)
vulnerability in sick (CVE-2023-31408). Risk of unauthorized operations or information disclosure.
CVE-2023-36222 Cross-Site Scripting (XSS) in bbs-go (CVE-2023-36222)
cross-site scripting in bbs-go (CVE-2023-36222). Risk of unauthorized operations or information disclosure.
CVE-2023-36223 Cross-Site Scripting (XSS) in bbs-go (CVE-2023-36223)
cross-site scripting in bbs-go (CVE-2023-36223). Risk of unauthorized operations or information disclosure.
CVE-2022-27405 Out-of-Bounds Read in platform/external/freetype (CVE-2022-27405)
vulnerability in platform/external/freetype (CVE-2022-27405). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `13:2023-07-01` or later.
CVE-2023-36144 Vulnerability in intelbras (CVE-2023-36144)
vulnerability in intelbras (CVE-2023-36144). Confidential information can be exposed externally.
CVE-2023-37307 Cross-Site Scripting (XSS) in misp-project (CVE-2023-37307)
cross-site scripting in misp-project (CVE-2023-37307). Risk of unauthorized operations or information disclosure.
CVE-2023-37306 Vulnerability in misp-project (CVE-2023-37306)
vulnerability in misp-project (CVE-2023-37306). Confidential information can be exposed externally.
CVE-2023-35176 Vulnerability in dos (CVE-2023-35176)
vulnerability in dos (CVE-2023-35176). Successful exploitation can lead to full system takeover.
CVE-2023-35178 Vulnerability in hp (CVE-2023-35178)
vulnerability in hp (CVE-2023-35178). Successful exploitation can lead to full system takeover.
CVE-2023-35177 Out-of-Bounds Write in hp (CVE-2023-35177)
out-of-bounds write in hp (CVE-2023-35177). Successful exploitation can lead to full system takeover.
CVE-2023-35175 SSRF (Server-Side Request Forgery) in ssrf (CVE-2023-35175)
SSRF in ssrf (CVE-2023-35175). Successful exploitation can lead to full system takeover.
CVE-2023-34840 Cross-Site Scripting (XSS) in angular (CVE-2023-34840)
cross-site scripting in angular (CVE-2023-34840). Risk of unauthorized operations or information disclosure.
CVE-2023-36146 Cross-Site Scripting (XSS) in multilaser (CVE-2023-36146)
cross-site scripting in multilaser (CVE-2023-36146). Risk of unauthorized operations or information disclosure.
CVE-2023-36143 OS Command Injection in maxprintisp (CVE-2023-36143)
OS command injection in maxprintisp (CVE-2023-36143). Successful exploitation can lead to full system takeover.
CVE-2021-25489 KEV [KEV] Vulnerability in Samsung mobile-devices (CVE-2021-25489)
vulnerability in Samsung mobile-devices (CVE-2021-25489). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-25487 KEV [KEV] Out-of-Bounds Read in Samsung mobile-devices (CVE-2021-25487)
vulnerability in Samsung mobile-devices (CVE-2021-25487). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-17621 KEV [KEV] OS Command Injection in D-link dir-859-router (CVE-2019-17621)
OS command injection in D-link dir-859-router (CVE-2019-17621). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-20500 KEV [KEV] OS Command Injection in D-link dwl-2600ap-access-point (CVE-2019-20500)
OS command injection in D-link dwl-2600ap-access-point (CVE-2019-20500). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-25394 KEV [KEV] Use-After-Free in Samsung mobile-devices (CVE-2021-25394)
vulnerability in Samsung mobile-devices (CVE-2021-25394). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-25371 KEV [KEV] Vulnerability in Samsung mobile-devices (CVE-2021-25371)
vulnerability in Samsung mobile-devices (CVE-2021-25371). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-25395 KEV [KEV] Vulnerability in Samsung mobile-devices (CVE-2021-25395)
vulnerability in Samsung mobile-devices (CVE-2021-25395). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-25372 KEV [KEV] Out-of-Bounds Write in Samsung mobile-devices (CVE-2021-25372)
out-of-bounds write in Samsung mobile-devices (CVE-2021-25372). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-34672 Vulnerability in elenos (CVE-2023-34672)
vulnerability in elenos (CVE-2023-34672). Successful exploitation can lead to full system takeover.
CVE-2023-32439 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-32439)
vulnerability in Apple multiple-products (CVE-2023-32439). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-32434 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2023-32434)
vulnerability in Apple multiple-products (CVE-2023-32434). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-27992 KEV [KEV] OS Command Injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2023-27992)
OS command injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2023-27992). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-32435 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2023-32435)
out-of-bounds write in Apple multiple-products (CVE-2023-32435). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-20867 KEV [KEV] Authentication Bypass in Vmware tools (CVE-2023-20867)
authentication bypass in Vmware tools (CVE-2023-20867). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-31868 Cross-Site Scripting (XSS) in sage (CVE-2023-31868)
cross-site scripting in sage (CVE-2023-31868). Risk of unauthorized operations or information disclosure.
CVE-2021-44026 KEV [KEV] SQL Injection in roundcube (CVE-2021-44026)
SQL injection in roundcube (CVE-2021-44026). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-20887 KEV [KEV] Command Injection in Vmware aria-operations-for-networks (CVE-2023-20887)
command injection in Vmware aria-operations-for-networks (CVE-2023-20887). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-35730 KEV [KEV] Cross-Site Scripting (XSS) in roundcube (CVE-2020-35730)
cross-site scripting in roundcube (CVE-2020-35730). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-12641 KEV [KEV] OS Command Injection in roundcube (CVE-2020-12641)
OS command injection in roundcube (CVE-2020-12641). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-9079 KEV [KEV] Use-After-Free in Mozilla firefox (CVE-2016-9079)
vulnerability in Mozilla firefox (CVE-2016-9079). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-0165 KEV [KEV] Vulnerability in Microsoft win32k (CVE-2016-0165)
vulnerability in Microsoft win32k (CVE-2016-0165). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-27243 Vulnerability in makves (CVE-2023-27243)
vulnerability in makves (CVE-2023-27243). Confidential information can be exposed externally.
CVE-2023-2907 SQL Injection in sqli (CVE-2023-2907)
SQL injection in sqli (CVE-2023-2907). Successful exploitation can lead to full system takeover.
CVE-2023-33438 Cross-Site Scripting (XSS) in wolterskluwer (CVE-2023-33438)
cross-site scripting in wolterskluwer (CVE-2023-33438). Risk of unauthorized operations or information disclosure.
CVE-2023-34832 Vulnerability in tp-link (CVE-2023-34832)
vulnerability in tp-link (CVE-2023-34832). Successful exploitation can lead to full system takeover.
CVE-2023-34752 SQL Injection in sqli (CVE-2023-34752)
SQL injection in sqli (CVE-2023-34752). Successful exploitation can lead to full system takeover.
CVE-2023-34944 Unrestricted File Upload in chamilo (CVE-2023-34944)
vulnerability in chamilo (CVE-2023-34944). Successful exploitation can lead to full system takeover.
CVE-2023-31541 Unrestricted File Upload in ckeditor (CVE-2023-31541)
vulnerability in ckeditor (CVE-2023-31541). Successful exploitation can lead to full system takeover.
CVE-2023-33620 Vulnerability in gl-inet (CVE-2023-33620)
vulnerability in gl-inet (CVE-2023-33620). Confidential information can be exposed externally.
CVE-2023-33621 Vulnerability in gl-inet (CVE-2023-33621)
vulnerability in gl-inet (CVE-2023-33621). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →