Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2015-4068 KEV [KEV] Path Traversal in Arcserve unified-data-protection-udp (CVE-2015-4068)
path traversal in Arcserve unified-data-protection-udp (CVE-2015-4068). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-3035 KEV [KEV] Path Traversal in Tp-link multiple-archer-devices (CVE-2015-3035)
path traversal in Tp-link multiple-archer-devices (CVE-2015-3035). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-0666 KEV [KEV] Path Traversal in Cisco prime-data-center-network-manager-dcnm (CVE-2015-0666)
path traversal in Cisco prime-data-center-network-manager-dcnm (CVE-2015-0666). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-0130 KEV [KEV] Path Traversal in rails (CVE-2014-0130)
path traversal in rails (CVE-2014-0130). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2010-2861 KEV [KEV] Path Traversal in Adobe coldfusion (CVE-2010-2861)
path traversal in Adobe coldfusion (CVE-2010-2861). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-1187 KEV [KEV] Authentication Bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187)
authentication bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22941 KEV [KEV] Vulnerability in Citrix sharefile (CVE-2021-22941)
vulnerability in Citrix sharefile (CVE-2021-22941). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-2506 KEV [KEV] Vulnerability in Qnap systems qnap-systems (CVE-2020-2506)
vulnerability in Qnap systems qnap-systems (CVE-2020-2506). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-1427 KEV [KEV] Vulnerability in elastic (CVE-2015-1427)
vulnerability in elastic (CVE-2015-1427). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-3120 KEV [KEV] Vulnerability in elastic (CVE-2014-3120)
vulnerability in elastic (CVE-2014-3120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-10174 KEV [KEV] Buffer Overflow in Netgear wnr2000v5-router (CVE-2016-10174)
vulnerability in Netgear wnr2000v5-router (CVE-2016-10174). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-6332 KEV [KEV] Buffer Overflow in Microsoft windows (CVE-2014-6332)
vulnerability in Microsoft windows (CVE-2014-6332). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2010-4344 KEV [KEV] Buffer Overflow in exim (CVE-2010-4344)
vulnerability in exim (CVE-2010-4344). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-46064 Vulnerability in irfanview (CVE-2021-46064)
vulnerability in irfanview (CVE-2021-46064). Successful exploitation can lead to full system takeover.
CVE-2021-45756 Vulnerability in asus (CVE-2021-45756)
vulnerability in asus (CVE-2021-45756). Successful exploitation can lead to full system takeover.
CVE-2021-45757 Vulnerability in dos (CVE-2021-45757)
vulnerability in dos (CVE-2021-45757). Risk of unauthorized operations or information disclosure.
CVE-2022-23345 BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control.
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control.
CVE-2022-23346 BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control issues.
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control issues.
CVE-2022-23352 An issue in BigAnt Software BigAnt Server v5.6.06 can lead to a Denial of Service (DoS).
An issue in BigAnt Software BigAnt Server v5.6.06 can lead to a Denial of Service (DoS).
CVE-2022-23347 Path Traversal in path-traversal (CVE-2022-23347)
path traversal in path-traversal (CVE-2022-23347). Confidential information can be exposed externally.
CVE-2022-23350 Cross-Site Scripting (XSS) in bigantsoft (CVE-2022-23350)
cross-site scripting in bigantsoft (CVE-2022-23350). Risk of unauthorized operations or information disclosure.
CVE-2022-23349 Cross-Site Request Forgery (CSRF) in csrf (CVE-2022-23349)
vulnerability in csrf (CVE-2022-23349). Successful exploitation can lead to full system takeover.
CVE-2022-25578 Code Injection in taogogo (CVE-2022-25578)
code injection in taogogo (CVE-2022-25578). Successful exploitation can lead to full system takeover.
CVE-2022-27245 SSRF (Server-Side Request Forgery) in ssrf (CVE-2022-27245)
SSRF in ssrf (CVE-2022-27245). Successful exploitation can lead to full system takeover.
CVE-2022-27244 Cross-Site Scripting (XSS) in misp-project (CVE-2022-27244)
cross-site scripting in misp-project (CVE-2022-27244). Risk of unauthorized operations or information disclosure.
CVE-2022-27246 Cross-Site Scripting (XSS) in misp-project (CVE-2022-27246)
cross-site scripting in misp-project (CVE-2022-27246). Risk of unauthorized operations or information disclosure.
CVE-2021-45834 Unrestricted File Upload in opendocman (CVE-2021-45834)
vulnerability in opendocman (CVE-2021-45834). Successful exploitation can lead to full system takeover.
CVE-2021-44088 SQL Injection in sqli (CVE-2021-44088)
SQL injection in sqli (CVE-2021-44088). Successful exploitation can lead to full system takeover.
CVE-2022-0778 Vulnerability in dos (CVE-2022-0778)
vulnerability in dos (CVE-2022-0778). Risk of unauthorized operations or information disclosure.
CVE-2018-8120 KEV [KEV] Vulnerability in Microsoft win32k (CVE-2018-8120)
vulnerability in Microsoft win32k (CVE-2018-8120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-5135 KEV [KEV] Vulnerability in Sonicwall sonicos (CVE-2020-5135)
vulnerability in Sonicwall sonicos (CVE-2020-5135). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-1315 KEV [KEV] Vulnerability in Microsoft windows (CVE-2019-1315)
vulnerability in Microsoft windows (CVE-2019-1315). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-1253 KEV [KEV] Vulnerability in Microsoft windows (CVE-2019-1253)
vulnerability in Microsoft windows (CVE-2019-1253). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-1129 KEV [KEV] Vulnerability in Microsoft windows (CVE-2019-1129)
vulnerability in Microsoft windows (CVE-2019-1129). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-1069 KEV [KEV] Vulnerability in Microsoft task-scheduler (CVE-2019-1069)
vulnerability in Microsoft task-scheduler (CVE-2019-1069). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-1064 KEV [KEV] Vulnerability in Microsoft windows (CVE-2019-1064)
vulnerability in Microsoft windows (CVE-2019-1064). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-0841 KEV [KEV] Vulnerability in Microsoft windows (CVE-2019-0841)
vulnerability in Microsoft windows (CVE-2019-0841). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3309 KEV [KEV] Vulnerability in Microsoft windows (CVE-2016-3309)
vulnerability in Microsoft windows (CVE-2016-3309). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-0543 KEV [KEV] Authentication Bypass in Microsoft windows (CVE-2019-0543)
authentication bypass in Microsoft windows (CVE-2019-0543). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0101 KEV [KEV] Buffer Overflow in Microsoft windows (CVE-2017-0101)
vulnerability in Microsoft windows (CVE-2017-0101). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-2546 KEV [KEV] Buffer Overflow in Microsoft win32k (CVE-2015-2546)
vulnerability in Microsoft win32k (CVE-2015-2546). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-36368 Authentication Bypass in openbsd (CVE-2021-36368)
authentication bypass in openbsd (CVE-2021-36368). Risk of unauthorized operations or information disclosure.
CVE-2021-44620 Command Injection in totolink (CVE-2021-44620)
command injection in totolink (CVE-2021-44620). Successful exploitation can lead to full system takeover.
CVE-2022-25090 Vulnerability in privilege-escalation (CVE-2022-25090)
vulnerability in privilege-escalation (CVE-2022-25090). Successful exploitation can lead to full system takeover.
CVE-2022-24644 Vulnerability in zzinc (CVE-2022-24644)
vulnerability in zzinc (CVE-2022-24644). Successful exploitation can lead to full system takeover.
CVE-2022-24618 Vulnerability in c (CVE-2022-24618)
vulnerability in c (CVE-2022-24618). Successful exploitation can lead to full system takeover.
CVE-2022-23383 Authentication Bypass in yzmcms (CVE-2022-23383)
authentication bypass in yzmcms (CVE-2022-23383). Confidential information can be exposed externally.
CVE-2022-0715 Authentication Bypass in schneider-electric (CVE-2022-0715)
authentication bypass in schneider-electric (CVE-2022-0715). Data can be tampered with by attackers.
CVE-2022-24512 Code Injection in Microsoft.NETCore.App.Runtime.linux-arm (CVE-2022-24512)
code injection in Microsoft.NETCore.App.Runtime.linux-arm (CVE-2022-24512). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.0.3` or later.
CVE-2022-24464 Vulnerability in Microsoft.AspNetCore.App.Runtime.linux-arm (CVE-2022-24464)
vulnerability in Microsoft.AspNetCore.App.Runtime.linux-arm (CVE-2022-24464). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.0.3` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →