Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2011-1823 KEV [KEV] Vulnerability in android (CVE-2011-1823)
vulnerability in android (CVE-2011-1823). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2011-4723 KEV [KEV] Vulnerability in D-link dir-300-router (CVE-2011-4723)
vulnerability in D-link dir-300-router (CVE-2011-4723). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-3075 KEV [KEV] Vulnerability in Google chromium-mojo (CVE-2022-3075)
vulnerability in Google chromium-mojo (CVE-2022-3075). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-26258 KEV [KEV] OS Command Injection in D-link dir-820l (CVE-2022-26258)
OS command injection in D-link dir-820l (CVE-2022-26258). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2018-6530 KEV [KEV] OS Command Injection in D-link multiple-routers (CVE-2018-6530)
OS command injection in D-link multiple-routers (CVE-2018-6530). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-2628 KEV [KEV] Unsafe Deserialization in Oracle weblogic-server (CVE-2018-2628)
vulnerability in Oracle weblogic-server (CVE-2018-2628). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-7445 KEV [KEV] Buffer Overflow in Mikrotik routeros (CVE-2018-7445)
vulnerability in Mikrotik routeros (CVE-2018-7445). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-36083 Vulnerability in panva (CVE-2022-36083)
vulnerability in panva (CVE-2022-36083). Risk of unauthorized operations or information disclosure. Exploitable via ``p2c``.
CVE-2022-30078 OS Command Injection in netgear (CVE-2022-30078)
OS command injection in netgear (CVE-2022-30078). Successful exploitation can lead to full system takeover.
CVE-2022-36271 Vulnerability in outbyte (CVE-2022-36271)
vulnerability in outbyte (CVE-2022-36271). Successful exploitation can lead to full system takeover.
CVE-2022-36640 Vulnerability in influxdata (CVE-2022-36640)
vulnerability in influxdata (CVE-2022-36640). Successful exploitation can lead to full system takeover.
CVE-2022-36552 Vulnerability in tendacn (CVE-2022-36552)
vulnerability in tendacn (CVE-2022-36552). Confidential information can be exposed externally.
CVE-2022-38555 Linksys E1200 v1.0.04 is vulnerable to Buffer Overflow via ej_get_web_page_name.
Linksys E1200 v1.0.04 is vulnerable to Buffer Overflow via ej_get_web_page_name.
CVE-2022-37053 TRENDnet TEW733GR v1.03B01 is vulnerable to Command injection via /htdocs/upnpinc/gena.php.
TRENDnet TEW733GR v1.03B01 is vulnerable to Command injection via /htdocs/upnpinc/gena.php.
CVE-2022-35192 Vulnerability in dos (CVE-2022-35192)
vulnerability in dos (CVE-2022-35192). Risk of unauthorized operations or information disclosure.
CVE-2022-2294 KEV [KEV] Vulnerability in webrtc (CVE-2022-2294)
vulnerability in webrtc (CVE-2022-2294). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-28949 KEV [KEV] Vulnerability in Pear archive-tar (CVE-2020-28949)
vulnerability in Pear archive-tar (CVE-2020-28949). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-24112 KEV [KEV] Vulnerability in Apache apisix (CVE-2022-24112)
vulnerability in Apache apisix (CVE-2022-24112). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-24706 KEV [KEV] Vulnerability in Apache couchdb (CVE-2022-24706)
vulnerability in Apache couchdb (CVE-2022-24706). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-31010 KEV [KEV] Vulnerability in Apple ios (CVE-2021-31010)
vulnerability in Apple ios (CVE-2021-31010). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-38406 KEV [KEV] Out-of-Bounds Write in Delta electronics delta-electronics (CVE-2021-38406)
out-of-bounds write in Delta electronics delta-electronics (CVE-2021-38406). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-22963 KEV [KEV] Code Injection in Vmware tanzu vmware-tanzu (CVE-2022-22963)
code injection in Vmware tanzu vmware-tanzu (CVE-2022-22963). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-26352 KEV [KEV] Path Traversal in dotcms (CVE-2022-26352)
path traversal in dotcms (CVE-2022-26352). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-36193 KEV [KEV] Path Traversal in Pear archive-tar (CVE-2020-36193)
path traversal in Pear archive-tar (CVE-2020-36193). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-39226 KEV [KEV] Authentication Bypass in Grafana labs grafana-labs (CVE-2021-39226)
authentication bypass in Grafana labs grafana-labs (CVE-2021-39226). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-14519 Cross-Site Request Forgery (CSRF) in csrf (CVE-2018-14519)
vulnerability in csrf (CVE-2018-14519). Risk of unauthorized operations or information disclosure.
CVE-2022-2569 Vulnerability in arcinfo (CVE-2022-2569)
vulnerability in arcinfo (CVE-2022-2569). Confidential information can be exposed externally.
CVE-2021-4040 Vulnerability in redhat (CVE-2021-4040)
vulnerability in redhat (CVE-2021-4040). Risk of unauthorized operations or information disclosure.
CVE-2022-35191 Vulnerability in dos (CVE-2022-35191)
vulnerability in dos (CVE-2022-35191). Risk of unauthorized operations or information disclosure.
CVE-2021-42232 OS Command Injection in tp-link (CVE-2021-42232)
OS command injection in tp-link (CVE-2021-42232). Successful exploitation can lead to full system takeover.
CVE-2022-35203 Authentication Bypass in trendnet (CVE-2022-35203)
authentication bypass in trendnet (CVE-2022-35203). Successful exploitation can lead to full system takeover.
CVE-2022-35278 Cross-Site Scripting (XSS) in org.apache.activemq:artemis-server (CVE-2022-35278)
cross-site scripting in org.apache.activemq:artemis-server (CVE-2022-35278). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.24.0` or later.
CVE-2022-28598 Cross-Site Scripting (XSS) in frappe (CVE-2022-28598)
cross-site scripting in frappe (CVE-2022-28598). Risk of unauthorized operations or information disclosure.
CVE-2022-0028 KEV [KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2022-0028)
vulnerability in Palo alto networks palo-alto-networks (CVE-2022-0028). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-35167 Vulnerability in prinitix (CVE-2022-35167)
vulnerability in prinitix (CVE-2022-35167). Successful exploitation can lead to full system takeover.
CVE-2022-35554 Cross-Site Scripting (XSS) in bpcbt (CVE-2022-35554)
cross-site scripting in bpcbt (CVE-2022-35554). Risk of unauthorized operations or information disclosure.
CVE-2022-36233 Out-of-Bounds Write in tendacn (CVE-2022-36233)
out-of-bounds write in tendacn (CVE-2022-36233). Risk of unauthorized operations or information disclosure.
CVE-2022-26923 KEV [KEV] Vulnerability in Microsoft active-directory (CVE-2022-26923)
vulnerability in Microsoft active-directory (CVE-2022-26923). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-32894 KEV [KEV] Vulnerability in Apple ios-and-macos (CVE-2022-32894)
vulnerability in Apple ios-and-macos (CVE-2022-32894). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-32893 KEV [KEV] Vulnerability in Apple ios-and-macos (CVE-2022-32893)
vulnerability in Apple ios-and-macos (CVE-2022-32893). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-2856 KEV [KEV] Vulnerability in Google chromium-intents (CVE-2022-2856)
vulnerability in Google chromium-intents (CVE-2022-2856). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-22536 KEV [KEV] Vulnerability in Sap multiple-products (CVE-2022-22536)
vulnerability in Sap multiple-products (CVE-2022-22536). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-21971 KEV [KEV] Vulnerability in Microsoft windows (CVE-2022-21971)
vulnerability in Microsoft windows (CVE-2022-21971). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-36530 Cross-Site Scripting (XSS) in rageframe (CVE-2022-36530)
cross-site scripting in rageframe (CVE-2022-36530). Risk of unauthorized operations or information disclosure.
CVE-2022-24654 Cross-Site Scripting (XSS) in intelbras (CVE-2022-24654)
cross-site scripting in intelbras (CVE-2022-24654). Risk of unauthorized operations or information disclosure.
CVE-2022-36524 Authentication Bypass in dlink (CVE-2022-36524)
authentication bypass in dlink (CVE-2022-36524). Confidential information can be exposed externally.
CVE-2022-36262 Code Injection in taogogo (CVE-2022-36262)
code injection in taogogo (CVE-2022-36262). Successful exploitation can lead to full system takeover.
CVE-2022-37042 KEV [KEV] Vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2022-37042)
vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2022-37042). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-27925 KEV [KEV] Path Traversal in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27925)
path traversal in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27925). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-35509 Cross-Site Scripting (XSS) in eyoucms (CVE-2022-35509)
cross-site scripting in eyoucms (CVE-2022-35509). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →