Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2013-2729 KEV |
|
[KEV] Vulnerability in Adobe reader-and-acrobat (CVE-2013-2729)
vulnerability in Adobe reader-and-acrobat (CVE-2013-2729). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-1690 KEV |
|
[KEV] Buffer Overflow in Mozilla firefox-and-thunderbird (CVE-2013-1690)
vulnerability in Mozilla firefox-and-thunderbird (CVE-2013-1690). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-0543 KEV |
|
[KEV] Vulnerability in redis (CVE-2022-0543)
vulnerability in redis (CVE-2022-0543). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-26085 KEV |
|
[KEV] Vulnerability in Atlassian confluence-server (CVE-2021-26085)
vulnerability in Atlassian confluence-server (CVE-2021-26085). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-20028 KEV |
|
[KEV] SQL Injection in Sonicwall secure-remote-access-sra (CVE-2021-20028)
SQL injection in Sonicwall secure-remote-access-sra (CVE-2021-20028). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-7483 KEV |
|
[KEV] Path Traversal in Sonicwall sma100 (CVE-2019-7483)
path traversal in Sonicwall sma100 (CVE-2019-7483). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-8406 KEV |
|
[KEV] Vulnerability in Microsoft directx-graphics-kernel-dxgkrnl (CVE-2018-8406)
vulnerability in Microsoft directx-graphics-kernel-dxgkrnl (CVE-2018-8406). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-8405 KEV |
|
[KEV] Vulnerability in Microsoft directx-graphics-kernel-dxgkrnl (CVE-2018-8405)
vulnerability in Microsoft directx-graphics-kernel-dxgkrnl (CVE-2018-8405). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-0037 KEV |
|
[KEV] Vulnerability in Microsoft edge-and-internet-explorer (CVE-2017-0037)
vulnerability in Microsoft edge-and-internet-explorer (CVE-2017-0037). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-7201 KEV |
|
[KEV] Buffer Overflow in Microsoft edge (CVE-2016-7201)
vulnerability in Microsoft edge (CVE-2016-7201). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-7200 KEV |
|
[KEV] Buffer Overflow in Microsoft edge (CVE-2016-7200)
vulnerability in Microsoft edge (CVE-2016-7200). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-0151 KEV |
|
[KEV] Vulnerability in Microsoft client-server-run-time-subsystem-csrss (CVE-2016-0151)
vulnerability in Microsoft client-server-run-time-subsystem-csrss (CVE-2016-0151). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-2465 KEV |
|
[KEV] Vulnerability in Oracle java-se (CVE-2013-2465)
vulnerability in Oracle java-se (CVE-2013-2465). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-5076 KEV |
|
[KEV] Vulnerability in Oracle java-se (CVE-2012-5076)
vulnerability in Oracle java-se (CVE-2012-5076). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2011-2005 KEV |
|
[KEV] Vulnerability in Microsoft ancillary-function-driver-afdsys (CVE-2011-2005)
vulnerability in Microsoft ancillary-function-driver-afdsys (CVE-2011-2005). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-40904 |
|
Vulnerability in checkmk (CVE-2021-40904)
vulnerability in checkmk (CVE-2021-40904). Successful exploitation can lead to full system takeover.
|
| CVE-2022-25574 |
|
Cross-Site Scripting (XSS) in douco (CVE-2022-25574)
cross-site scripting in douco (CVE-2022-25574). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-11043 KEV |
|
[KEV] Vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043)
vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-1823 KEV |
|
[KEV] Vulnerability in php (CVE-2012-1823)
vulnerability in php (CVE-2012-1823). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-2251 KEV |
|
[KEV] Vulnerability in Apache struts (CVE-2013-2251)
vulnerability in Apache struts (CVE-2013-2251). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-12617 KEV |
|
[KEV] Unrestricted File Upload in Apache tomcat (CVE-2017-12617)
vulnerability in Apache tomcat (CVE-2017-12617). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-12615 KEV |
|
[KEV] Unrestricted File Upload in Apache tomcat (CVE-2017-12615)
vulnerability in Apache tomcat (CVE-2017-12615). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1427 KEV |
|
[KEV] Vulnerability in elastic (CVE-2015-1427)
vulnerability in elastic (CVE-2015-1427). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-3120 KEV |
|
[KEV] Vulnerability in elastic (CVE-2014-3120)
vulnerability in elastic (CVE-2014-3120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-21999 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2022-21999)
vulnerability in Microsoft windows (CVE-2022-21999). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-8414 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2018-8414)
vulnerability in Microsoft windows (CVE-2018-8414). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-0146 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2017-0146)
vulnerability in Microsoft windows (CVE-2017-0146). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-6332 KEV |
|
[KEV] Buffer Overflow in Microsoft windows (CVE-2014-6332)
vulnerability in Microsoft windows (CVE-2014-6332). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1003030 KEV |
|
[KEV] Vulnerability in Jenkins matrix-project-plugin (CVE-2019-1003030)
vulnerability in Jenkins matrix-project-plugin (CVE-2019-1003030). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-1956 KEV |
|
[KEV] OS Command Injection in Apache kylin (CVE-2020-1956)
OS command injection in Apache kylin (CVE-2020-1956). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-1273 KEV |
|
[KEV] Code Injection in Vmware tanzu vmware-tanzu (CVE-2018-1273)
code injection in Vmware tanzu vmware-tanzu (CVE-2018-1273). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2020-2021 KEV |
|
[KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2020-2021)
vulnerability in Palo alto networks palo-alto-networks (CVE-2020-2021). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-3881 KEV |
|
[KEV] Vulnerability in Cisco ios-and-ios-xe (CVE-2017-3881)
vulnerability in Cisco ios-and-ios-xe (CVE-2017-3881). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-16920 KEV |
|
[KEV] OS Command Injection in D-link multiple-routers (CVE-2019-16920)
OS command injection in D-link multiple-routers (CVE-2019-16920). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-0752 KEV |
|
[KEV] Path Traversal in rails (CVE-2016-0752)
path traversal in rails (CVE-2016-0752). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-0130 KEV |
|
[KEV] Path Traversal in rails (CVE-2014-0130)
path traversal in rails (CVE-2014-0130). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1187 KEV |
|
[KEV] Authentication Bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187)
authentication bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-1631 KEV |
|
[KEV] Path Traversal in Juniper junos-os (CVE-2020-1631)
path traversal in Juniper junos-os (CVE-2020-1631). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-2861 KEV |
|
[KEV] Path Traversal in Adobe coldfusion (CVE-2010-2861)
path traversal in Adobe coldfusion (CVE-2010-2861). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-26143 KEV |
|
[KEV] Vulnerability in Mitel micollab (CVE-2022-26143)
vulnerability in Mitel micollab (CVE-2022-26143). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-7892 KEV |
|
[KEV] Use-After-Free in Adobe flash-player (CVE-2016-7892)
vulnerability in Adobe flash-player (CVE-2016-7892). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-4171 KEV |
|
[KEV] Vulnerability in Adobe flash-player (CVE-2016-4171)
vulnerability in Adobe flash-player (CVE-2016-4171). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-9054 KEV |
|
[KEV] OS Command Injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2020-9054)
OS command injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2020-9054). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-3035 KEV |
|
[KEV] Vulnerability in Cisco ios-xr (CVE-2010-3035)
vulnerability in Cisco ios-xr (CVE-2010-3035). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-2055 KEV |
|
[KEV] Vulnerability in Cisco ios-xr (CVE-2009-2055)
vulnerability in Cisco ios-xr (CVE-2009-2055). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-0927 KEV |
|
[KEV] Vulnerability in Adobe reader-and-acrobat (CVE-2009-0927)
vulnerability in Adobe reader-and-acrobat (CVE-2009-0927). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-6340 KEV |
|
[KEV] Unsafe Deserialization in Drupal core (CVE-2019-6340)
vulnerability in Drupal core (CVE-2019-6340). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-26318 KEV |
|
[KEV] Vulnerability in Watchguard firebox-and-xtm-appliances (CVE-2022-26318)
vulnerability in Watchguard firebox-and-xtm-appliances (CVE-2022-26318). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-42237 KEV |
|
[KEV] Unsafe Deserialization in Sitecore xp (CVE-2021-42237)
vulnerability in Sitecore xp (CVE-2021-42237). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22941 KEV |
|
[KEV] Vulnerability in Citrix sharefile (CVE-2021-22941)
vulnerability in Citrix sharefile (CVE-2021-22941). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|