Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: products Clear
ID Title
CVE-2024-53197 KEV [KEV] Out-of-Bounds Write in Linux kernel (CVE-2024-53197)
out-of-bounds write in Linux kernel (CVE-2024-53197). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-53150 KEV [KEV] Out-of-Bounds Read in Linux kernel (CVE-2024-53150)
vulnerability in Linux kernel (CVE-2024-53150). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-26687 Use-After-Free in microsoft (CVE-2025-26687)
vulnerability in microsoft (CVE-2025-26687). Successful exploitation can lead to full system takeover.
CVE-2024-32122 Vulnerability in fortinet (CVE-2024-32122)
vulnerability in fortinet (CVE-2024-32122). Risk of unauthorized operations or information disclosure.
CVE-2025-30406 KEV [KEV] Vulnerability in Gladinet centrestack (CVE-2025-30406)
vulnerability in Gladinet centrestack (CVE-2025-30406). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-29824 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-29824)
vulnerability in Microsoft windows (CVE-2025-29824). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-31161 KEV [KEV] Vulnerability in crushftp (CVE-2025-31161)
vulnerability in crushftp (CVE-2025-31161). Risk of unauthorized operations or information disclosure. Exploitable via `Authorization header`. Listed in CISA KEV — actively exploited.
CVE-2025-22457 KEV [KEV] Vulnerability in Ivanti connect-secure (CVE-2025-22457)
vulnerability in Ivanti connect-secure (CVE-2025-22457). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-27427 Authorization Flaw in apache (CVE-2025-27427)
vulnerability in apache (CVE-2025-27427). Risk of unauthorized operations or information disclosure.
CVE-2025-24813 KEV [KEV] Vulnerability in Apache tomcat (CVE-2025-24813)
vulnerability in Apache tomcat (CVE-2025-24813). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24170 A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13...
A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13...
CVE-2024-20439 KEV [KEV] Vulnerability in Cisco smart-licensing-utility (CVE-2024-20439)
vulnerability in Cisco smart-licensing-utility (CVE-2024-20439). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-58130 Cross-Site Scripting (XSS) in misp-project (CVE-2024-58130)
cross-site scripting in misp-project (CVE-2024-58130). Risk of unauthorized operations or information disclosure.
CVE-2025-2783 KEV [KEV] Vulnerability in Google chromium-mojo (CVE-2025-2783)
vulnerability in Google chromium-mojo (CVE-2025-2783). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-9874 KEV [KEV] Unsafe Deserialization in Sitecore cms-and-experience-platform-xp (CVE-2019-9874)
vulnerability in Sitecore cms-and-experience-platform-xp (CVE-2019-9874). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-9875 KEV [KEV] Unsafe Deserialization in Sitecore cms-and-experience-platform-xp (CVE-2019-9875)
vulnerability in Sitecore cms-and-experience-platform-xp (CVE-2019-9875). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-30154 KEV [KEV] Vulnerability in Reviewdog action-setup-github-action (CVE-2025-30154)
vulnerability in Reviewdog action-setup-github-action (CVE-2025-30154). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-48248 KEV [KEV] Vulnerability in Nakivo backup-and-replication (CVE-2024-48248)
vulnerability in Nakivo backup-and-replication (CVE-2024-48248). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-1316 KEV [KEV] OS Command Injection in Edimax ic-7100-ip-camera (CVE-2025-1316)
OS command injection in Edimax ic-7100-ip-camera (CVE-2025-1316). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-12637 KEV [KEV] Path Traversal in Sap netweaver (CVE-2017-12637)
path traversal in Sap netweaver (CVE-2017-12637). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24472 KEV [KEV] Vulnerability in Fortinet fortios-and-fortiproxy (CVE-2025-24472)
vulnerability in Fortinet fortios-and-fortiproxy (CVE-2025-24472). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2025-30066 KEV [KEV] Vulnerability in Tj-actions changed-files-github-action (CVE-2025-30066)
vulnerability in Tj-actions changed-files-github-action (CVE-2025-30066). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24201 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2025-24201)
out-of-bounds write in Apple multiple-products (CVE-2025-24201). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-21590 KEV [KEV] Vulnerability in Juniper junos-os (CVE-2025-21590)
vulnerability in Juniper junos-os (CVE-2025-21590). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24984 KEV [KEV] Vulnerability in Microsoft windows (CVE-2025-24984)
vulnerability in Microsoft windows (CVE-2025-24984). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-26633 KEV [KEV] Vulnerability in Microsoft windows (CVE-2025-26633)
vulnerability in Microsoft windows (CVE-2025-26633). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24983 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-24983)
vulnerability in Microsoft windows (CVE-2025-24983). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24985 KEV [KEV] Vulnerability in Microsoft windows (CVE-2025-24985)
vulnerability in Microsoft windows (CVE-2025-24985). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24991 KEV [KEV] Out-of-Bounds Read in Microsoft windows (CVE-2025-24991)
vulnerability in Microsoft windows (CVE-2025-24991). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-24993 KEV [KEV] Vulnerability in Microsoft windows (CVE-2025-24993)
vulnerability in Microsoft windows (CVE-2025-24993). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-57968 KEV [KEV] Unrestricted File Upload in Advantive veracore (CVE-2024-57968)
vulnerability in Advantive veracore (CVE-2024-57968). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-25181 KEV [KEV] SQL Injection in Advantive veracore (CVE-2025-25181)
SQL injection in Advantive veracore (CVE-2025-25181). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-13159 KEV [KEV] Vulnerability in Ivanti endpoint-manager-epm (CVE-2024-13159)
vulnerability in Ivanti endpoint-manager-epm (CVE-2024-13159). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-13161 KEV [KEV] Vulnerability in Ivanti endpoint-manager-epm (CVE-2024-13161)
vulnerability in Ivanti endpoint-manager-epm (CVE-2024-13161). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-13160 KEV [KEV] Vulnerability in Ivanti endpoint-manager-epm (CVE-2024-13160)
vulnerability in Ivanti endpoint-manager-epm (CVE-2024-13160). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-50302 KEV [KEV] Vulnerability in :linux_kernel: (CVE-2024-50302)
vulnerability in :linux_kernel: (CVE-2024-50302). Confidential information can be exposed externally. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `:2025-03-05` or later.
CVE-2025-22224 KEV [KEV] Vulnerability in Vmware esxi-and-workstation (CVE-2025-22224)
vulnerability in Vmware esxi-and-workstation (CVE-2025-22224). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-22226 KEV [KEV] Out-of-Bounds Read in Vmware esxi (CVE-2025-22226)
vulnerability in Vmware esxi (CVE-2025-22226). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-22225 KEV [KEV] Vulnerability in Vmware esxi (CVE-2025-22225)
vulnerability in Vmware esxi (CVE-2025-22225). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-43769 KEV [KEV] Vulnerability in Hitachi vantara hitachi-vantara (CVE-2022-43769)
vulnerability in Hitachi vantara hitachi-vantara (CVE-2022-43769). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-4885 KEV [KEV] Path Traversal in Progress whatsup-gold (CVE-2024-4885)
path traversal in Progress whatsup-gold (CVE-2024-4885). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-43939 KEV [KEV] Vulnerability in Hitachi vantara hitachi-vantara (CVE-2022-43939)
vulnerability in Hitachi vantara hitachi-vantara (CVE-2022-43939). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-8639 KEV [KEV] Vulnerability in Microsoft windows (CVE-2018-8639)
vulnerability in Microsoft windows (CVE-2018-8639). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-20118 KEV [KEV] Command Injection in Cisco small-business-rv-series-routers (CVE-2023-20118)
command injection in Cisco small-business-rv-series-routers (CVE-2023-20118). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-25827 SSRF (Server-Side Request Forgery) in ssrf (CVE-2025-25827)
SSRF in ssrf (CVE-2025-25827). Confidential information can be exposed externally.
CVE-2025-25818 Cross-Site Scripting (XSS) in emlog (CVE-2025-25818)
cross-site scripting in emlog (CVE-2025-25818). Risk of unauthorized operations or information disclosure.
CVE-2025-25823 Cross-Site Scripting (XSS) in emlog (CVE-2025-25823)
cross-site scripting in emlog (CVE-2025-25823). Confidential information can be exposed externally.
CVE-2025-25802 Command Injection in seacms (CVE-2025-25802)
command injection in seacms (CVE-2025-25802). Data can be tampered with by attackers.
CVE-2025-25813 Command Injection in seacms (CVE-2025-25813)
command injection in seacms (CVE-2025-25813). Data can be tampered with by attackers.
CVE-2025-25800 Path Traversal in seacms (CVE-2025-25800)
path traversal in seacms (CVE-2025-25800). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →