Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-5030 KEV |
|
[KEV] Out-of-Bounds Read in Google chromium-v8 (CVE-2017-5030)
vulnerability in Google chromium-v8 (CVE-2017-5030). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-5198 KEV |
|
[KEV] Out-of-Bounds Read in Google chromium-v8 (CVE-2016-5198)
vulnerability in Google chromium-v8 (CVE-2016-5198). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-6065 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2018-6065)
vulnerability in Google chromium-v8 (CVE-2018-6065). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-4990 KEV |
|
[KEV] Vulnerability in Adobe acrobat-and-reader (CVE-2018-4990)
vulnerability in Adobe acrobat-and-reader (CVE-2018-4990). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2006-2492 KEV |
|
[KEV] Vulnerability in Microsoft word (CVE-2006-2492)
vulnerability in Microsoft word (CVE-2006-2492). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-5070 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2017-5070)
vulnerability in Google chromium-v8 (CVE-2017-5070). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-4324 KEV |
|
[KEV] Vulnerability in Adobe acrobat-and-reader (CVE-2009-4324)
vulnerability in Adobe acrobat-and-reader (CVE-2009-4324). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-5054 KEV |
|
[KEV] Vulnerability in Adobe flash-player (CVE-2012-5054)
vulnerability in Adobe flash-player (CVE-2012-5054). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-27438 |
|
Vulnerability in caphyon (CVE-2022-27438)
vulnerability in caphyon (CVE-2022-27438). Successful exploitation can lead to full system takeover.
|
| CVE-2021-42875 |
|
OS Command Injection in totolink (CVE-2021-42875)
OS command injection in totolink (CVE-2021-42875). Successful exploitation can lead to full system takeover.
|
| CVE-2022-29704 |
|
BrowsBox CMS v4.0 was discovered to contain a SQL injection vulnerability.
BrowsBox CMS v4.0 was discovered to contain a SQL injection vulnerability.
|
| CVE-2022-30490 |
|
SQL Injection in sqli (CVE-2022-30490)
SQL injection in sqli (CVE-2022-30490). Successful exploitation can lead to full system takeover.
|
| CVE-2022-28945 |
|
Path Traversal in path-traversal (CVE-2022-28945)
path traversal in path-traversal (CVE-2022-28945). Successful exploitation can lead to full system takeover.
|
| CVE-2022-27781 |
|
Vulnerability in haxx (CVE-2022-27781)
vulnerability in haxx (CVE-2022-27781). Risk of unauthorized operations or information disclosure. Exploitable via ``CURLOPT_CERTINFO``.
|
| CVE-2022-27782 |
|
Vulnerability in haxx (CVE-2022-27782)
vulnerability in haxx (CVE-2022-27782). Data can be tampered with by attackers.
|
| CVE-2022-27775 |
|
Information Disclosure in haxx (CVE-2022-27775)
vulnerability in haxx (CVE-2022-27775). Confidential information can be exposed externally.
|
| CVE-2022-27774 |
|
Vulnerability in haxx (CVE-2022-27774)
vulnerability in haxx (CVE-2022-27774). Confidential information can be exposed externally.
|
| CVE-2022-24581 |
|
Unrestricted File Upload in aceware (CVE-2022-24581)
vulnerability in aceware (CVE-2022-24581). Confidential information can be exposed externally.
|
| CVE-2022-24241 |
|
Vulnerability in aceware (CVE-2022-24241)
vulnerability in aceware (CVE-2022-24241). Confidential information can be exposed externally.
|
| CVE-2022-24239 |
|
Unrestricted File Upload in aceware (CVE-2022-24239)
vulnerability in aceware (CVE-2022-24239). Successful exploitation can lead to full system takeover.
|
| CVE-2022-24240 |
|
SQL Injection in sqli (CVE-2022-24240)
SQL injection in sqli (CVE-2022-24240). Successful exploitation can lead to full system takeover.
|
| CVE-2022-24238 |
|
Cross-Site Scripting (XSS) in aceware (CVE-2022-24238)
cross-site scripting in aceware (CVE-2022-24238). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-42872 |
|
OS Command Injection in totolink (CVE-2021-42872)
OS command injection in totolink (CVE-2021-42872). Successful exploitation can lead to full system takeover.
|
| CVE-2022-30034 |
|
Authentication Bypass in flower (CVE-2022-30034)
authentication bypass in flower (CVE-2022-30034). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.2.0` or later.
|
| CVE-2022-26134 KEV |
|
[KEV] Vulnerability in Atlassian confluence-serverdata-center (CVE-2022-26134)
vulnerability in Atlassian confluence-serverdata-center (CVE-2022-26134). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-22576 |
|
Authentication Bypass in haxx (CVE-2022-22576)
authentication bypass in haxx (CVE-2022-22576). Confidential information can be exposed externally.
|
| CVE-2014-4148 KEV |
|
[KEV] Code Injection in Microsoft windows (CVE-2014-4148)
code injection in Microsoft windows (CVE-2014-4148). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-0016 KEV |
|
[KEV] Path Traversal in Microsoft windows (CVE-2015-0016)
path traversal in Microsoft windows (CVE-2015-0016). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-3393 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2016-3393)
vulnerability in Microsoft windows (CVE-2016-3393). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-7256 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2016-7256)
vulnerability in Microsoft windows (CVE-2016-7256). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-2360 KEV |
|
[KEV] Buffer Overflow in Microsoft win32k (CVE-2015-2360)
vulnerability in Microsoft win32k (CVE-2015-2360). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-2425 KEV |
|
[KEV] Buffer Overflow in Microsoft internet-explorer (CVE-2015-2425)
vulnerability in Microsoft internet-explorer (CVE-2015-2425). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-8439 KEV |
|
[KEV] Buffer Overflow in Adobe flash-player (CVE-2014-8439)
vulnerability in Adobe flash-player (CVE-2014-8439). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-4495 KEV |
|
[KEV] Information Disclosure in Mozilla firefox (CVE-2015-4495)
vulnerability in Mozilla firefox (CVE-2015-4495). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-7331 KEV |
|
[KEV] Information Disclosure in Microsoft internet-explorer (CVE-2013-7331)
vulnerability in Microsoft internet-explorer (CVE-2013-7331). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-3153 KEV |
|
[KEV] Privilege Escalation in Linux kernel (CVE-2014-3153)
vulnerability in Linux kernel (CVE-2014-3153). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-0310 KEV |
|
[KEV] Vulnerability in Adobe flash-player (CVE-2015-0310)
vulnerability in Adobe flash-player (CVE-2015-0310). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-0071 KEV |
|
[KEV] Vulnerability in Microsoft internet-explorer (CVE-2015-0071)
vulnerability in Microsoft internet-explorer (CVE-2015-0071). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1769 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2015-1769)
vulnerability in Microsoft windows (CVE-2015-1769). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-6175 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2015-6175)
vulnerability in Microsoft windows (CVE-2015-6175). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-4123 KEV |
|
[KEV] Vulnerability in Microsoft internet-explorer (CVE-2014-4123)
vulnerability in Microsoft internet-explorer (CVE-2014-4123). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-2817 KEV |
|
[KEV] Vulnerability in Microsoft internet-explorer (CVE-2014-2817)
vulnerability in Microsoft internet-explorer (CVE-2014-2817). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-4077 KEV |
|
[KEV] Vulnerability in Microsoft input-method-editor-ime-japanese (CVE-2014-4077)
vulnerability in Microsoft input-method-editor-ime-japanese (CVE-2014-4077). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-3993 KEV |
|
[KEV] Vulnerability in Ibm infosphere-biginsights (CVE-2013-3993)
vulnerability in Ibm infosphere-biginsights (CVE-2013-3993). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-0422 KEV |
|
[KEV] Vulnerability in Oracle java-runtime-environment-jre (CVE-2013-0422)
vulnerability in Oracle java-runtime-environment-jre (CVE-2013-0422). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-1428 KEV |
|
[KEV] Vulnerability in Red hat red-hat (CVE-2010-1428)
vulnerability in Red hat red-hat (CVE-2010-1428). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-0738 KEV |
|
[KEV] Vulnerability in Red hat red-hat (CVE-2010-0738)
vulnerability in Red hat red-hat (CVE-2010-0738). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-8651 KEV |
|
[KEV] Vulnerability in Adobe flash-player (CVE-2015-8651)
vulnerability in Adobe flash-player (CVE-2015-8651). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1671 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2015-1671)
vulnerability in Microsoft windows (CVE-2015-1671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-0034 KEV |
|
[KEV] Vulnerability in Microsoft silverlight (CVE-2016-0034)
vulnerability in Microsoft silverlight (CVE-2016-0034). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|