Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-38167 |
|
Vulnerability in linux (CVE-2025-38167)
vulnerability in linux (CVE-2025-38167). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38129 |
|
Use-After-Free in c (CVE-2025-38129)
vulnerability in c (CVE-2025-38129). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38124 |
|
Vulnerability in c (CVE-2025-38124)
vulnerability in c (CVE-2025-38124). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38111 |
|
Out-of-Bounds Read in linux (CVE-2025-38111)
vulnerability in linux (CVE-2025-38111). Confidential information can be exposed externally.
|
| CVE-2025-38100 |
|
Vulnerability in linux (CVE-2025-38100)
vulnerability in linux (CVE-2025-38100). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38105 |
|
Vulnerability in linux (CVE-2025-38105)
vulnerability in linux (CVE-2025-38105). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6554 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2025-6554)
vulnerability in Google chromium-v8 (CVE-2025-6554). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-48928 KEV |
|
[KEV] Vulnerability in Telemessage tm-sgnl (CVE-2025-48928)
vulnerability in Telemessage tm-sgnl (CVE-2025-48928). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-48927 KEV |
|
[KEV] Vulnerability in Telemessage tm-sgnl (CVE-2025-48927)
vulnerability in Telemessage tm-sgnl (CVE-2025-48927). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-6543 KEV |
|
[KEV] Buffer Overflow in Citrix netscaler-adc-and-gateway (CVE-2025-6543)
vulnerability in Citrix netscaler-adc-and-gateway (CVE-2025-6543). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-44915 |
|
Cross-Site Scripting (XSS) in CVE-2023-44915 (CVE-2023-44915)
cross-site scripting in CVE-2023-44915 (CVE-2023-44915). Confidential information can be exposed externally.
|
| CVE-2024-0769 KEV |
|
[KEV] Path Traversal in D-link dir-859-router (CVE-2024-0769)
path traversal in D-link dir-859-router (CVE-2024-0769). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-6693 KEV |
|
[KEV] Vulnerability in Fortinet fortios (CVE-2019-6693)
vulnerability in Fortinet fortios (CVE-2019-6693). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-54085 KEV |
|
[KEV] Vulnerability in Ami megarac-spx (CVE-2024-54085)
vulnerability in Ami megarac-spx (CVE-2024-54085). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-44531 |
|
Vulnerability in dos (CVE-2025-44531)
vulnerability in dos (CVE-2025-44531). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-44203 |
|
Vulnerability in dos (CVE-2025-44203)
vulnerability in dos (CVE-2025-44203). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38083 |
|
Vulnerability in linux (CVE-2025-38083)
vulnerability in linux (CVE-2025-38083). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-50114 |
|
Vulnerability in linux (CVE-2022-50114)
vulnerability in linux (CVE-2022-50114). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-50116 |
|
Vulnerability in linux (CVE-2022-50116)
vulnerability in linux (CVE-2022-50116). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-50073 |
|
Vulnerability in c (CVE-2022-50073)
vulnerability in c (CVE-2022-50073). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-49961 |
|
Out-of-Bounds Read in linux (CVE-2022-49961)
vulnerability in linux (CVE-2022-49961). Confidential information can be exposed externally.
|
| CVE-2025-38079 |
|
Vulnerability in linux (CVE-2025-38079)
vulnerability in linux (CVE-2025-38079). Successful exploitation can lead to full system takeover.
|
| CVE-2025-38071 |
|
Vulnerability in c (CVE-2025-38071)
vulnerability in c (CVE-2025-38071). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38063 |
|
Vulnerability in linux (CVE-2025-38063)
vulnerability in linux (CVE-2025-38063). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38067 |
|
Vulnerability in linux (CVE-2025-38067)
vulnerability in linux (CVE-2025-38067). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-38058 |
|
Vulnerability in linux (CVE-2025-38058)
vulnerability in linux (CVE-2025-38058). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-0386 KEV |
|
[KEV] Vulnerability in Linux kernel (CVE-2023-0386)
vulnerability in Linux kernel (CVE-2023-0386). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-43200 KEV |
|
[KEV] Vulnerability in Apple multiple-products (CVE-2025-43200)
vulnerability in Apple multiple-products (CVE-2025-43200). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33538 KEV |
|
[KEV] Command Injection in Tp-link multiple-routers (CVE-2023-33538)
command injection in Tp-link multiple-routers (CVE-2023-33538). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-46035 |
|
Vulnerability in dos (CVE-2025-46035)
vulnerability in dos (CVE-2025-46035). Confidential information can be exposed externally.
|
| CVE-2025-47953 |
|
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2025-47167 |
|
Vulnerability in microsoft (CVE-2025-47167)
vulnerability in microsoft (CVE-2025-47167). Successful exploitation can lead to full system takeover.
|
| CVE-2025-47164 |
|
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
|
| CVE-2025-47162 |
|
Vulnerability in microsoft (CVE-2025-47162)
vulnerability in microsoft (CVE-2025-47162). Successful exploitation can lead to full system takeover.
|
| CVE-2025-24471 |
|
Vulnerability in fortinet (CVE-2025-24471)
vulnerability in fortinet (CVE-2025-24471). Data can be tampered with by attackers.
|
| CVE-2025-25250 |
|
Information Disclosure in fortinet (CVE-2025-25250)
vulnerability in fortinet (CVE-2025-25250). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-50562 |
|
Vulnerability in fortinet (CVE-2024-50562)
vulnerability in fortinet (CVE-2024-50562). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-24016 KEV |
|
[KEV] Unsafe Deserialization in wazuh (CVE-2025-24016)
vulnerability in wazuh (CVE-2025-24016). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-33053 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2025-33053)
vulnerability in Microsoft windows (CVE-2025-33053). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-42009 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2024-42009)
cross-site scripting in Roundcube webmail (CVE-2024-42009). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-32433 KEV |
|
[KEV] Vulnerability in erlang (CVE-2025-32433)
vulnerability in erlang (CVE-2025-32433). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-0620 |
|
Vulnerability in samba (CVE-2025-0620)
vulnerability in samba (CVE-2025-0620). Confidential information can be exposed externally.
|
| CVE-2025-5419 KEV |
|
[KEV] Out-of-Bounds Read in Google chromium-v8 (CVE-2025-5419)
vulnerability in Google chromium-v8 (CVE-2025-5419). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-21479 KEV |
|
[KEV] Authorization Flaw in Qualcomm multiple-chipsets (CVE-2025-21479)
vulnerability in Qualcomm multiple-chipsets (CVE-2025-21479). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-21480 KEV |
|
[KEV] Authorization Flaw in Qualcomm multiple-chipsets (CVE-2025-21480)
vulnerability in Qualcomm multiple-chipsets (CVE-2025-21480). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-27038 KEV |
|
[KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2025-27038)
vulnerability in Qualcomm multiple-chipsets (CVE-2025-27038). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-3935 KEV |
|
[KEV] Authentication Bypass in Connectwise screenconnect (CVE-2025-3935)
authentication bypass in Connectwise screenconnect (CVE-2025-3935). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-35939 KEV |
|
[KEV] Vulnerability in Craft cms craft-cms (CVE-2025-35939)
vulnerability in Craft cms craft-cms (CVE-2025-35939). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-56145 KEV |
|
[KEV] Code Injection in Craft cms craft-cms (CVE-2024-56145)
code injection in Craft cms craft-cms (CVE-2024-56145). Risk of unauthorized operations or information disclosure. Exploitable via ``register_argc_argv``. Listed in CISA KEV — actively exploited.
|
| CVE-2021-32030 KEV |
|
[KEV] Authentication Bypass in Asus routers (CVE-2021-32030)
authentication bypass in Asus routers (CVE-2021-32030). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|