Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2021-30983 KEV |
|
[KEV] Buffer Overflow in Apple ios-and-ipados (CVE-2021-30983)
vulnerability in Apple ios-and-ipados (CVE-2021-30983). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-4344 KEV |
|
[KEV] Buffer Overflow in Apple multiple-products (CVE-2018-4344)
vulnerability in Apple multiple-products (CVE-2018-4344). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-27509 |
|
Cross-Site Scripting (XSS) in galaxkey (CVE-2020-27509)
cross-site scripting in galaxkey (CVE-2020-27509). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-21046 |
|
Privilege Escalation in privilege-escalation (CVE-2020-21046)
vulnerability in privilege-escalation (CVE-2020-21046). Successful exploitation can lead to full system takeover.
|
| CVE-2022-29330 |
|
Vulnerability in vitalpbx (CVE-2022-29330)
vulnerability in vitalpbx (CVE-2022-29330). Confidential information can be exposed externally.
|
| CVE-2022-21952 |
|
Vulnerability in dos (CVE-2022-21952)
vulnerability in dos (CVE-2022-21952). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-25585 |
|
Cross-Site Scripting (XSS) in unioncms-project (CVE-2022-25585)
cross-site scripting in unioncms-project (CVE-2022-25585). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-45024 |
|
XXE (XML External Entity) in rocketsoftware (CVE-2021-45024)
vulnerability in rocketsoftware (CVE-2021-45024). Successful exploitation can lead to full system takeover.
|
| CVE-2021-45026 |
|
Cross-Site Scripting (XSS) in rocketsoftware (CVE-2021-45026)
cross-site scripting in rocketsoftware (CVE-2021-45026). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-45025 |
|
Vulnerability in rocketsoftware (CVE-2021-45025)
vulnerability in rocketsoftware (CVE-2021-45025). Confidential information can be exposed externally.
|
| CVE-2022-26173 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2022-26173)
vulnerability in csrf (CVE-2022-26173). Successful exploitation can lead to full system takeover.
|
| CVE-2022-24562 |
|
Vulnerability in iobit (CVE-2022-24562)
vulnerability in iobit (CVE-2022-24562). Successful exploitation can lead to full system takeover.
|
| CVE-2022-31384 |
|
SQL Injection in sqli (CVE-2022-31384)
SQL injection in sqli (CVE-2022-31384). Successful exploitation can lead to full system takeover.
|
| CVE-2022-31382 |
|
SQL Injection in sqli (CVE-2022-31382)
SQL injection in sqli (CVE-2022-31382). Successful exploitation can lead to full system takeover.
|
| CVE-2022-31383 |
|
SQL Injection in sqli (CVE-2022-31383)
SQL injection in sqli (CVE-2022-31383). Successful exploitation can lead to full system takeover.
|
| CVE-2022-30023 |
|
OS Command Injection in tenda (CVE-2022-30023)
OS command injection in tenda (CVE-2022-30023). Successful exploitation can lead to full system takeover.
|
| CVE-2022-24946 |
|
Vulnerability in dos (CVE-2022-24946)
vulnerability in dos (CVE-2022-24946). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-41672 |
|
SQL Injection in sqli (CVE-2021-41672)
SQL injection in sqli (CVE-2021-41672). Confidential information can be exposed externally.
|
| CVE-2021-42675 |
|
Unrestricted File Upload in kreado (CVE-2021-42675)
vulnerability in kreado (CVE-2021-42675). Successful exploitation can lead to full system takeover.
|
| CVE-2021-40649 |
|
Vulnerability in softwareag (CVE-2021-40649)
vulnerability in softwareag (CVE-2021-40649). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-30190 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2022-30190)
vulnerability in Microsoft windows (CVE-2022-30190). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-41663 |
|
Cross-Site Scripting (XSS) in 1234n (CVE-2021-41663)
cross-site scripting in 1234n (CVE-2021-41663). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-2386 KEV |
|
[KEV] SQL Injection in Sap netweaver (CVE-2016-2386)
SQL injection in Sap netweaver (CVE-2016-2386). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-38163 KEV |
|
[KEV] Vulnerability in Sap netweaver (CVE-2021-38163)
vulnerability in Sap netweaver (CVE-2021-38163). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-2388 KEV |
|
[KEV] Information Disclosure in Sap netweaver (CVE-2016-2388)
vulnerability in Sap netweaver (CVE-2016-2388). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-30552 |
|
Das U-Boot 2022.01 has a Buffer Overflow.
Das U-Boot 2022.01 has a Buffer Overflow.
|
| CVE-2022-30790 |
|
Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552.
Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552.
|
| CVE-2019-5825 KEV |
|
[KEV] Out-of-Bounds Write in Google chromium-v8 (CVE-2019-5825)
out-of-bounds write in Google chromium-v8 (CVE-2019-5825). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-17480 KEV |
|
[KEV] Out-of-Bounds Write in Google chromium-v8 (CVE-2018-17480)
out-of-bounds write in Google chromium-v8 (CVE-2018-17480). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-0754 KEV |
|
[KEV] Out-of-Bounds Write in Adobe flash-player (CVE-2012-0754)
out-of-bounds write in Adobe flash-player (CVE-2012-0754). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2011-2462 KEV |
|
[KEV] Out-of-Bounds Write in Adobe reader-and-acrobat (CVE-2011-2462)
out-of-bounds write in Adobe reader-and-acrobat (CVE-2011-2462). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-1297 KEV |
|
[KEV] Out-of-Bounds Write in Adobe flash-player (CVE-2010-1297)
out-of-bounds write in Adobe flash-player (CVE-2010-1297). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-1862 KEV |
|
[KEV] Code Injection in Adobe acrobat-and-reader (CVE-2009-1862)
code injection in Adobe acrobat-and-reader (CVE-2009-1862). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-0557 KEV |
|
[KEV] Code Injection in Microsoft office (CVE-2009-0557)
code injection in Microsoft office (CVE-2009-0557). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-7192 KEV |
|
[KEV] Authorization Flaw in Qnap photo-station (CVE-2019-7192)
vulnerability in Qnap photo-station (CVE-2019-7192). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-15271 KEV |
|
[KEV] Unsafe Deserialization in Cisco rv-series-routers (CVE-2019-15271)
vulnerability in Cisco rv-series-routers (CVE-2019-15271). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-7195 KEV |
|
[KEV] Path Traversal in Qnap photo-station (CVE-2019-7195)
path traversal in Qnap photo-station (CVE-2019-7195). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-7194 KEV |
|
[KEV] Path Traversal in Qnap photo-station (CVE-2019-7194)
path traversal in Qnap photo-station (CVE-2019-7194). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6862 KEV |
|
[KEV] Buffer Overflow in Netgear multiple-devices (CVE-2017-6862)
vulnerability in Netgear multiple-devices (CVE-2017-6862). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-1646 KEV |
|
[KEV] Buffer Overflow in Google chromium-v8 (CVE-2016-1646)
vulnerability in Google chromium-v8 (CVE-2016-1646). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-1331 KEV |
|
[KEV] Buffer Overflow in Microsoft office (CVE-2013-1331)
vulnerability in Microsoft office (CVE-2013-1331). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-1889 KEV |
|
[KEV] Buffer Overflow in Microsoft xml-core-services (CVE-2012-1889)
vulnerability in Microsoft xml-core-services (CVE-2012-1889). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-2883 KEV |
|
[KEV] Buffer Overflow in Adobe acrobat-and-reader (CVE-2010-2883)
vulnerability in Adobe acrobat-and-reader (CVE-2010-2883). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-2572 KEV |
|
[KEV] Buffer Overflow in Microsoft powerpoint (CVE-2010-2572)
vulnerability in Microsoft powerpoint (CVE-2010-2572). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-3953 KEV |
|
[KEV] Buffer Overflow in Adobe acrobat-and-reader (CVE-2009-3953)
vulnerability in Adobe acrobat-and-reader (CVE-2009-3953). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-0563 KEV |
|
[KEV] Buffer Overflow in Microsoft office (CVE-2009-0563)
vulnerability in Microsoft office (CVE-2009-0563). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2007-5659 KEV |
|
[KEV] Buffer Overflow in Adobe acrobat-and-reader (CVE-2007-5659)
vulnerability in Adobe acrobat-and-reader (CVE-2007-5659). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-7193 KEV |
|
[KEV] Vulnerability in Qnap qts (CVE-2019-7193)
vulnerability in Qnap qts (CVE-2019-7193). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-0151 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2012-0151)
vulnerability in Microsoft windows (CVE-2012-0151). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-0767 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Adobe flash-player (CVE-2012-0767)
cross-site scripting in Adobe flash-player (CVE-2012-0767). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|