Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2018-1000861 KEV [KEV] Unsafe Deserialization in jenkins (CVE-2018-1000861)
vulnerability in jenkins (CVE-2018-1000861). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0796 KEV [KEV] Buffer Overflow in Microsoft smbv3 (CVE-2020-0796)
vulnerability in Microsoft smbv3 (CVE-2020-0796). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-4404 KEV [KEV] Buffer Overflow in Apple os-x (CVE-2014-4404)
vulnerability in Apple os-x (CVE-2014-4404). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-41441 Vulnerability in dos (CVE-2021-41441)
vulnerability in dos (CVE-2021-41441). Risk of unauthorized operations or information disclosure.
CVE-2021-42637 SSRF (Server-Side Request Forgery) in ssrf (CVE-2021-42637)
SSRF in ssrf (CVE-2021-42637). Successful exploitation can lead to full system takeover.
CVE-2021-42640 Vulnerability in printerlogic (CVE-2021-42640)
vulnerability in printerlogic (CVE-2021-42640). Confidential information can be exposed externally.
CVE-2021-42641 Vulnerability in printerlogic (CVE-2021-42641)
vulnerability in printerlogic (CVE-2021-42641). Confidential information can be exposed externally.
CVE-2021-42642 Vulnerability in printerlogic (CVE-2021-42642)
vulnerability in printerlogic (CVE-2021-42642). Confidential information can be exposed externally.
CVE-2022-23320 Authentication Bypass in xerox (CVE-2022-23320)
authentication bypass in xerox (CVE-2022-23320). Confidential information can be exposed externally.
CVE-2022-23913 Vulnerability in org.apache.activemq:artemis-core-client (CVE-2022-23913)
vulnerability in org.apache.activemq:artemis-core-client (CVE-2022-23913). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.19.1` or later.
CVE-2020-7534 Cross-Site Request Forgery (CSRF) in csrf (CVE-2020-7534)
vulnerability in csrf (CVE-2020-7534). Successful exploitation can lead to full system takeover.
CVE-2022-21882 KEV [KEV] Out-of-Bounds Write in Microsoft win32k (CVE-2022-21882)
out-of-bounds write in Microsoft win32k (CVE-2022-21882). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-42633 SQL Injection in sqli (CVE-2021-42633)
SQL injection in sqli (CVE-2021-42633). Risk of unauthorized operations or information disclosure.
CVE-2021-42639 Cross-Site Scripting (XSS) in printerlogic (CVE-2021-42639)
cross-site scripting in printerlogic (CVE-2021-42639). Risk of unauthorized operations or information disclosure.
CVE-2021-42638 Command Injection in printerlogic (CVE-2021-42638)
command injection in printerlogic (CVE-2021-42638). Successful exploitation can lead to full system takeover.
CVE-2021-45416 Cross-Site Scripting (XSS) in rosariosis (CVE-2021-45416)
cross-site scripting in rosariosis (CVE-2021-45416). Risk of unauthorized operations or information disclosure.
CVE-2020-8562 Vulnerability in k8s.io/kubernetes (CVE-2020-8562)
vulnerability in k8s.io/kubernetes (CVE-2020-8562). Risk of unauthorized operations or information disclosure.
CVE-2021-42631 Unsafe Deserialization in printerlogic (CVE-2021-42631)
vulnerability in printerlogic (CVE-2021-42631). Successful exploitation can lead to full system takeover.
CVE-2021-42635 Vulnerability in printerlogic (CVE-2021-42635)
vulnerability in printerlogic (CVE-2021-42635). Successful exploitation can lead to full system takeover.
CVE-2021-44971 Vulnerability in tenda (CVE-2021-44971)
vulnerability in tenda (CVE-2021-44971). Successful exploitation can lead to full system takeover.
CVE-2021-20038 KEV [KEV] Vulnerability in Sonicwall sma-100-appliances (CVE-2021-20038)
vulnerability in Sonicwall sma-100-appliances (CVE-2021-20038). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0787 KEV [KEV] Privilege Escalation in Microsoft windows (CVE-2020-0787)
vulnerability in Microsoft windows (CVE-2020-0787). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-5722 KEV [KEV] SQL Injection in Grandstream ucm6200 (CVE-2020-5722)
SQL injection in Grandstream ucm6200 (CVE-2020-5722). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-22587 KEV [KEV] Vulnerability in Apple ios-and-macos (CVE-2022-22587)
vulnerability in Apple ios-and-macos (CVE-2022-22587). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-6271 KEV [KEV] OS Command Injection in Gnu bourne-again-shell-bash (CVE-2014-6271)
OS command injection in Gnu bourne-again-shell-bash (CVE-2014-6271). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-7169 KEV [KEV] OS Command Injection in Gnu bourne-again-shell-bash (CVE-2014-7169)
OS command injection in Gnu bourne-again-shell-bash (CVE-2014-7169). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-1776 KEV [KEV] Use-After-Free in Microsoft internet-explorer (CVE-2014-1776)
vulnerability in Microsoft internet-explorer (CVE-2014-1776). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-44795 Vulnerability in krontech (CVE-2021-44795)
vulnerability in krontech (CVE-2021-44795). Risk of unauthorized operations or information disclosure.
CVE-2021-44792 Vulnerability in krontech (CVE-2021-44792)
vulnerability in krontech (CVE-2021-44792). Risk of unauthorized operations or information disclosure.
CVE-2021-44793 Vulnerability in krontech (CVE-2021-44793)
vulnerability in krontech (CVE-2021-44793). Confidential information can be exposed externally.
CVE-2021-44794 Vulnerability in krontech (CVE-2021-44794)
vulnerability in krontech (CVE-2021-44794). Risk of unauthorized operations or information disclosure.
CVE-2021-46117 Code Injection in jpress (CVE-2021-46117)
code injection in jpress (CVE-2021-46117). Successful exploitation can lead to full system takeover.
CVE-2021-46116 Unrestricted File Upload in jpress (CVE-2021-46116)
vulnerability in jpress (CVE-2021-46116). Successful exploitation can lead to full system takeover.
CVE-2021-46114 Code Injection in jpress (CVE-2021-46114)
code injection in jpress (CVE-2021-46114). Successful exploitation can lead to full system takeover.
CVE-2021-46118 Code Injection in jpress (CVE-2021-46118)
code injection in jpress (CVE-2021-46118). Successful exploitation can lead to full system takeover.
CVE-2021-46115 Unrestricted File Upload in c (CVE-2021-46115)
vulnerability in c (CVE-2021-46115). Successful exploitation can lead to full system takeover.
CVE-2018-8453 KEV [KEV] Vulnerability in Microsoft win32k (CVE-2018-8453)
vulnerability in Microsoft win32k (CVE-2018-8453). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2012-0391 KEV [KEV] Vulnerability in Apache struts-2 (CVE-2012-0391)
vulnerability in Apache struts-2 (CVE-2012-0391). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-35247 KEV [KEV] Vulnerability in Solarwinds serv-u (CVE-2021-35247)
vulnerability in Solarwinds serv-u (CVE-2021-35247). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-45808 Unrestricted File Upload in jpress (CVE-2021-45808)
vulnerability in jpress (CVE-2021-45808). Successful exploitation can lead to full system takeover.
CVE-2022-23302 Unsafe Deserialization in apache (CVE-2022-23302)
vulnerability in apache (CVE-2022-23302). Successful exploitation can lead to full system takeover.
CVE-2022-23307 Unsafe Deserialization in apache (CVE-2022-23307)
vulnerability in apache (CVE-2022-23307). Successful exploitation can lead to full system takeover.
CVE-2022-23305 SQL Injection in log4j:log4j (CVE-2022-23305)
SQL injection in log4j:log4j (CVE-2022-23305). Successful exploitation can lead to full system takeover.
CVE-2021-25296 KEV [KEV] OS Command Injection in nagios (CVE-2021-25296)
OS command injection in nagios (CVE-2021-25296). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-25297 KEV [KEV] OS Command Injection in nagios (CVE-2021-25297)
OS command injection in nagios (CVE-2021-25297). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-25298 KEV [KEV] OS Command Injection in nagios (CVE-2021-25298)
OS command injection in nagios (CVE-2021-25298). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-21315 KEV [KEV] OS Command Injection in Npm package npm-package (CVE-2021-21315)
OS command injection in Npm package npm-package (CVE-2021-21315). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-11978 KEV [KEV] OS Command Injection in Apache airflow (CVE-2020-11978)
OS command injection in Apache airflow (CVE-2020-11978). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-13927 KEV [KEV] Vulnerability in Apache airflows-experimental-api (CVE-2020-13927)
vulnerability in Apache airflows-experimental-api (CVE-2020-13927). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-13671 KEV [KEV] Unrestricted File Upload in drupal (CVE-2020-13671)
vulnerability in drupal (CVE-2020-13671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →