Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2016-3427 KEV |
|
[KEV] Vulnerability in Oracle java-se-and-jrockit (CVE-2016-3427)
vulnerability in Oracle java-se-and-jrockit (CVE-2016-3427). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-8735 KEV |
|
[KEV] Vulnerability in Apache tomcat (CVE-2016-8735)
vulnerability in Apache tomcat (CVE-2016-8735). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-29336 KEV |
|
[KEV] Use-After-Free in Microsoft win32k (CVE-2023-29336)
vulnerability in Microsoft win32k (CVE-2023-29336). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-1389 KEV |
|
[KEV] Command Injection in Tp-link archer-ax21 (CVE-2023-1389)
command injection in Tp-link archer-ax21 (CVE-2023-1389). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-45046 KEV |
|
[KEV] Vulnerability in Apache log4j2 (CVE-2021-45046)
vulnerability in Apache log4j2 (CVE-2021-45046). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-21839 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2023-21839)
vulnerability in Oracle weblogic-server (CVE-2023-21839). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-28432 KEV |
|
[KEV] Information Disclosure in minio (CVE-2023-28432)
vulnerability in minio (CVE-2023-28432). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-27350 KEV |
|
[KEV] Vulnerability in Papercut mfng (CVE-2023-27350)
vulnerability in Papercut mfng (CVE-2023-27350). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-2136 KEV |
|
[KEV] Vulnerability in Google chromium-skia (CVE-2023-2136)
vulnerability in Google chromium-skia (CVE-2023-2136). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6742 KEV |
|
[KEV] Buffer Overflow in Cisco ios-and-ios-xe-software (CVE-2017-6742)
vulnerability in Cisco ios-and-ios-xe-software (CVE-2017-6742). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-8526 KEV |
|
[KEV] Use-After-Free in Apple macos (CVE-2019-8526)
vulnerability in Apple macos (CVE-2019-8526). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-2033 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2023-2033)
vulnerability in Google chromium-v8 (CVE-2023-2033). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-20963 KEV |
|
[KEV] Vulnerability in Android framework (CVE-2023-20963)
vulnerability in Android framework (CVE-2023-20963). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-29492 KEV |
|
[KEV] Code Injection in Novi survey novi-survey (CVE-2023-29492)
code injection in Novi survey novi-survey (CVE-2023-29492). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-28252 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-28252)
vulnerability in Microsoft windows (CVE-2023-28252). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-28205 KEV |
|
[KEV] Use-After-Free in Apple multiple-products (CVE-2023-28205)
vulnerability in Apple multiple-products (CVE-2023-28205). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-28206 KEV |
|
[KEV] Out-of-Bounds Write in Apple ios (CVE-2023-28206)
out-of-bounds write in Apple ios (CVE-2023-28206). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-27876 KEV |
|
[KEV] Authentication Bypass in Veritas backup-exec-agent (CVE-2021-27876)
authentication bypass in Veritas backup-exec-agent (CVE-2021-27876). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-27877 KEV |
|
[KEV] Authentication Bypass in Veritas backup-exec-agent (CVE-2021-27877)
authentication bypass in Veritas backup-exec-agent (CVE-2021-27877). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-27878 KEV |
|
[KEV] Authentication Bypass in Veritas backup-exec-agent (CVE-2021-27878)
authentication bypass in Veritas backup-exec-agent (CVE-2021-27878). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1388 KEV |
|
[KEV] Privilege Escalation in Microsoft windows (CVE-2019-1388)
vulnerability in Microsoft windows (CVE-2019-1388). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-26083 KEV |
|
[KEV] Vulnerability in Arm mali-graphics-processing-unit-gpu (CVE-2023-26083)
vulnerability in Arm mali-graphics-processing-unit-gpu (CVE-2023-26083). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-27926 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27926)
cross-site scripting in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27926). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-3163 KEV |
|
[KEV] Code Injection in Microsoft internet-explorer (CVE-2013-3163)
code injection in Microsoft internet-explorer (CVE-2013-3163). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-7494 KEV |
|
[KEV] Code Injection in samba (CVE-2017-7494)
code injection in samba (CVE-2017-7494). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-42948 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Fortra cobalt-strike (CVE-2022-42948)
cross-site scripting in Fortra cobalt-strike (CVE-2022-42948). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-39197 KEV |
|
[KEV] Vulnerability in Fortra cobalt-strike (CVE-2022-39197)
vulnerability in Fortra cobalt-strike (CVE-2022-39197). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-30900 KEV |
|
[KEV] Vulnerability in Apple ios (CVE-2021-30900)
vulnerability in Apple ios (CVE-2021-30900). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-38181 KEV |
|
[KEV] Use-After-Free in Arm mali-graphics-processing-unit-gpu (CVE-2022-38181)
vulnerability in Arm mali-graphics-processing-unit-gpu (CVE-2022-38181). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-0266 KEV |
|
[KEV] Use-After-Free in Linux kernel (CVE-2023-0266)
vulnerability in Linux kernel (CVE-2023-0266). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-3038 KEV |
|
[KEV] Use-After-Free in Google chromium-network-service (CVE-2022-3038)
vulnerability in Google chromium-network-service (CVE-2022-3038). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-22706 KEV |
|
[KEV] Buffer Overflow in Arm mali-graphics-processing-unit-gpu (CVE-2022-22706)
vulnerability in Arm mali-graphics-processing-unit-gpu (CVE-2022-22706). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-26360 KEV |
|
[KEV] Vulnerability in Adobe coldfusion (CVE-2023-26360)
vulnerability in Adobe coldfusion (CVE-2023-26360). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-23397 KEV |
|
[KEV] Vulnerability in Microsoft office (CVE-2023-23397)
vulnerability in Microsoft office (CVE-2023-23397). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-24880 KEV |
|
[KEV] Authorization Flaw in Microsoft windows (CVE-2023-24880)
vulnerability in Microsoft windows (CVE-2023-24880). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41328 KEV |
|
[KEV] Path Traversal in Fortinet fortios (CVE-2022-41328)
path traversal in Fortinet fortios (CVE-2022-41328). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-5741 KEV |
|
[KEV] Unsafe Deserialization in Plex media-server (CVE-2020-5741)
vulnerability in Plex media-server (CVE-2020-5741). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-39144 KEV |
|
[KEV] Code Injection in xstream (CVE-2021-39144)
code injection in xstream (CVE-2021-39144). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-28810 KEV |
|
[KEV] OS Command Injection in Zoho manageengine (CVE-2022-28810)
OS command injection in Zoho manageengine (CVE-2022-28810). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-33891 KEV |
|
[KEV] OS Command Injection in Apache spark (CVE-2022-33891)
OS command injection in Apache spark (CVE-2022-33891). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-35914 KEV |
|
[KEV] Vulnerability in Teclib glpi (CVE-2022-35914)
vulnerability in Teclib glpi (CVE-2022-35914). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-36537 KEV |
|
[KEV] Vulnerability in Zk framework zk-framework (CVE-2022-36537)
vulnerability in Zk framework zk-framework (CVE-2022-36537). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-47986 KEV |
|
[KEV] Unsafe Deserialization in Ibm aspera-faspex (CVE-2022-47986)
vulnerability in Ibm aspera-faspex (CVE-2022-47986). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-41223 KEV |
|
[KEV] Code Injection in Mitel mivoice-connect (CVE-2022-41223)
code injection in Mitel mivoice-connect (CVE-2022-41223). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-40765 KEV |
|
[KEV] Command Injection in Mitel mivoice-connect (CVE-2022-40765)
command injection in Mitel mivoice-connect (CVE-2022-40765). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-46169 KEV |
|
[KEV] Vulnerability in cacti (CVE-2022-46169)
vulnerability in cacti (CVE-2022-46169). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-23376 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-23376)
vulnerability in Microsoft windows (CVE-2023-23376). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-21823 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-21823)
vulnerability in Microsoft windows (CVE-2023-21823). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-23529 KEV |
|
[KEV] Vulnerability in Apple multiple-products (CVE-2023-23529)
vulnerability in Apple multiple-products (CVE-2023-23529). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-21715 KEV |
|
[KEV] Authorization Flaw in Microsoft office (CVE-2023-21715)
vulnerability in Microsoft office (CVE-2023-21715). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|