Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2020-9377 KEV |
|
[KEV] OS Command Injection in D-link dir-610-devices (CVE-2020-9377)
OS command injection in D-link dir-610-devices (CVE-2020-9377). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-7247 KEV |
|
[KEV] Vulnerability in Openbsd opensmtpd (CVE-2020-7247)
vulnerability in Openbsd opensmtpd (CVE-2020-7247). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-5410 KEV |
|
[KEV] Vulnerability in Vmware tanzu vmware-tanzu (CVE-2020-5410)
vulnerability in Vmware tanzu vmware-tanzu (CVE-2020-5410). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-25223 KEV |
|
[KEV] OS Command Injection in Sophos sg-utm (CVE-2020-25223)
OS command injection in Sophos sg-utm (CVE-2020-25223). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-2506 KEV |
|
[KEV] Vulnerability in Qnap systems qnap-systems (CVE-2020-2506)
vulnerability in Qnap systems qnap-systems (CVE-2020-2506). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-2616 KEV |
|
[KEV] Vulnerability in Oracle bi-publisher-formerly-xml-publisher (CVE-2019-2616)
vulnerability in Oracle bi-publisher-formerly-xml-publisher (CVE-2019-2616). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-15107 KEV |
|
[KEV] OS Command Injection in webmin (CVE-2019-15107)
OS command injection in webmin (CVE-2019-15107). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-12991 KEV |
|
[KEV] OS Command Injection in Citrix sd-wan-and-netscaler (CVE-2019-12991)
OS command injection in Citrix sd-wan-and-netscaler (CVE-2019-12991). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-12989 KEV |
|
[KEV] SQL Injection in Citrix sd-wan-and-netscaler (CVE-2019-12989)
SQL injection in Citrix sd-wan-and-netscaler (CVE-2019-12989). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-10068 KEV |
|
[KEV] Unsafe Deserialization in Kentico xperience (CVE-2019-10068)
vulnerability in Kentico xperience (CVE-2019-10068). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-0903 KEV |
|
[KEV] Vulnerability in Microsoft graphics-device-interface-gdi (CVE-2019-0903)
vulnerability in Microsoft graphics-device-interface-gdi (CVE-2019-0903). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-8373 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft internet-explorer-scripting-engine (CVE-2018-8373)
out-of-bounds write in Microsoft internet-explorer-scripting-engine (CVE-2018-8373). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-6961 KEV |
|
[KEV] OS Command Injection in Vmware sd-wan-edge (CVE-2018-6961)
OS command injection in Vmware sd-wan-edge (CVE-2018-6961). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-14839 KEV |
|
[KEV] OS Command Injection in Lg n1a1-nas (CVE-2018-14839)
OS command injection in Lg n1a1-nas (CVE-2018-14839). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-11138 KEV |
|
[KEV] OS Command Injection in Quest kace-system-management-appliance (CVE-2018-11138)
OS command injection in Quest kace-system-management-appliance (CVE-2018-11138). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-0147 KEV |
|
[KEV] Vulnerability in Cisco secure-access-control-system-acs (CVE-2018-0147)
vulnerability in Cisco secure-access-control-system-acs (CVE-2018-0147). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-0125 KEV |
|
[KEV] Vulnerability in Cisco vpn-routers (CVE-2018-0125)
vulnerability in Cisco vpn-routers (CVE-2018-0125). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6334 KEV |
|
[KEV] OS Command Injection in Netgear dgn2200-devices (CVE-2017-6334)
OS command injection in Netgear dgn2200-devices (CVE-2017-6334). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6316 KEV |
|
[KEV] Vulnerability in Citrix netscaler-sd-wan-enterprise (CVE-2017-6316)
vulnerability in Citrix netscaler-sd-wan-enterprise (CVE-2017-6316). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-1555 KEV |
|
[KEV] Command Injection in Netgear wireless-access-point-wap-devices (CVE-2016-1555)
command injection in Netgear wireless-access-point-wap-devices (CVE-2016-1555). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-11021 KEV |
|
[KEV] OS Command Injection in D-link dcs-930l-devices (CVE-2016-11021)
OS command injection in D-link dcs-930l-devices (CVE-2016-11021). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-10174 KEV |
|
[KEV] Buffer Overflow in Netgear wnr2000v5-router (CVE-2016-10174)
vulnerability in Netgear wnr2000v5-router (CVE-2016-10174). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-4068 KEV |
|
[KEV] Path Traversal in Arcserve unified-data-protection-udp (CVE-2015-4068)
path traversal in Arcserve unified-data-protection-udp (CVE-2015-4068). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-3035 KEV |
|
[KEV] Path Traversal in Tp-link multiple-archer-devices (CVE-2015-3035)
path traversal in Tp-link multiple-archer-devices (CVE-2015-3035). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-0666 KEV |
|
[KEV] Path Traversal in Cisco prime-data-center-network-manager-dcnm (CVE-2015-0666)
path traversal in Cisco prime-data-center-network-manager-dcnm (CVE-2015-0666). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-6324 KEV |
|
[KEV] Vulnerability in Microsoft kerberos-key-distribution-center-kdc (CVE-2014-6324)
vulnerability in Microsoft kerberos-key-distribution-center-kdc (CVE-2014-6324). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-6287 KEV |
|
[KEV] Code Injection in Rejetto http-file-server-hfs (CVE-2014-6287)
code injection in Rejetto http-file-server-hfs (CVE-2014-6287). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-5223 KEV |
|
[KEV] Cross-Site Scripting (XSS) in D-link dsl-2760u (CVE-2013-5223)
cross-site scripting in D-link dsl-2760u (CVE-2013-5223). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-4810 KEV |
|
[KEV] Code Injection in Hewlett packard (hp) hewlett-packard-hp (CVE-2013-4810)
code injection in Hewlett packard (hp) hewlett-packard-hp (CVE-2013-4810). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-4345 KEV |
|
[KEV] Vulnerability in exim (CVE-2010-4345)
vulnerability in exim (CVE-2010-4345). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-4344 KEV |
|
[KEV] Buffer Overflow in exim (CVE-2010-4344)
vulnerability in exim (CVE-2010-4344). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-1151 KEV |
|
[KEV] Code Injection in phpmyadmin (CVE-2009-1151)
code injection in phpmyadmin (CVE-2009-1151). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2005-2773 KEV |
|
[KEV] Vulnerability in Hewlett packard (hp) hewlett-packard-hp (CVE-2005-2773)
vulnerability in Hewlett packard (hp) hewlett-packard-hp (CVE-2005-2773). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-27245 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2022-27245)
SSRF in ssrf (CVE-2022-27245). Successful exploitation can lead to full system takeover.
|
| CVE-2021-45834 |
|
Unrestricted File Upload in opendocman (CVE-2021-45834)
vulnerability in opendocman (CVE-2021-45834). Successful exploitation can lead to full system takeover.
|
| CVE-2021-44087 |
|
Vulnerability in attendance-and-payroll-system-project (CVE-2021-44087)
vulnerability in attendance-and-payroll-system-project (CVE-2021-44087). Successful exploitation can lead to full system takeover.
|
| CVE-2022-0778 |
|
Vulnerability in dos (CVE-2022-0778)
vulnerability in dos (CVE-2022-0778). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-1405 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-1405)
vulnerability in Microsoft windows (CVE-2019-1405). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1322 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-1322)
vulnerability in Microsoft windows (CVE-2019-1322). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1315 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-1315)
vulnerability in Microsoft windows (CVE-2019-1315). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1253 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-1253)
vulnerability in Microsoft windows (CVE-2019-1253). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1129 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-1129)
vulnerability in Microsoft windows (CVE-2019-1129). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1064 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-1064)
vulnerability in Microsoft windows (CVE-2019-1064). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-0841 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-0841)
vulnerability in Microsoft windows (CVE-2019-0841). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-0543 KEV |
|
[KEV] Authentication Bypass in Microsoft windows (CVE-2019-0543)
authentication bypass in Microsoft windows (CVE-2019-0543). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-0101 KEV |
|
[KEV] Buffer Overflow in Microsoft windows (CVE-2017-0101)
vulnerability in Microsoft windows (CVE-2017-0101). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-3309 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2016-3309)
vulnerability in Microsoft windows (CVE-2016-3309). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-5135 KEV |
|
[KEV] Vulnerability in Sonicwall sonicos (CVE-2020-5135)
vulnerability in Sonicwall sonicos (CVE-2020-5135). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1132 KEV |
|
[KEV] Vulnerability in Microsoft win32k (CVE-2019-1132)
vulnerability in Microsoft win32k (CVE-2019-1132). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-8120 KEV |
|
[KEV] Vulnerability in Microsoft win32k (CVE-2018-8120)
vulnerability in Microsoft win32k (CVE-2018-8120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|