Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2023-39780 KEV [KEV] OS Command Injection in Asus rt-ax55-routers (CVE-2023-39780)
OS command injection in Asus rt-ax55-routers (CVE-2023-39780). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-4598 Vulnerability in systemd-project (CVE-2025-4598)
vulnerability in systemd-project (CVE-2025-4598). Confidential information can be exposed externally.
CVE-2025-45343 Vulnerability in tenda (CVE-2025-45343)
vulnerability in tenda (CVE-2025-45343). Successful exploitation can lead to full system takeover.
CVE-2025-5245 Buffer Overflow in c (CVE-2025-5245)
vulnerability in c (CVE-2025-5245). Risk of unauthorized operations or information disclosure.
CVE-2025-5244 Buffer Overflow in c (CVE-2025-5244)
vulnerability in c (CVE-2025-5244). Risk of unauthorized operations or information disclosure.
CVE-2025-4632 KEV [KEV] Path Traversal in Samsung magicinfo-9-server (CVE-2025-4632)
path traversal in Samsung magicinfo-9-server (CVE-2025-4632). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-37968 Vulnerability in linux (CVE-2025-37968)
vulnerability in linux (CVE-2025-37968). Risk of unauthorized operations or information disclosure.
CVE-2025-37931 Vulnerability in linux (CVE-2025-37931)
vulnerability in linux (CVE-2025-37931). Risk of unauthorized operations or information disclosure.
CVE-2025-4428 KEV [KEV] Code Injection in Ivanti endpoint-manager-mobile-epmm (CVE-2025-4428)
code injection in Ivanti endpoint-manager-mobile-epmm (CVE-2025-4428). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-4427 KEV [KEV] Vulnerability in Ivanti endpoint-manager-mobile-epmm (CVE-2025-4427)
vulnerability in Ivanti endpoint-manager-mobile-epmm (CVE-2025-4427). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-27443 KEV [KEV] Cross-Site Scripting (XSS) in Synacor zimbra-collaboration-suite-zcs (CVE-2024-27443)
cross-site scripting in Synacor zimbra-collaboration-suite-zcs (CVE-2024-27443). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-38950 KEV [KEV] Path Traversal in Zkteco biotime (CVE-2023-38950)
path traversal in Zkteco biotime (CVE-2023-38950). Confidential information can be exposed externally. Listed in CISA KEV — actively exploited.
CVE-2025-27920 KEV [KEV] Path Traversal in Srimax output-messenger (CVE-2025-27920)
path traversal in Srimax output-messenger (CVE-2025-27920). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-11182 KEV [KEV] Cross-Site Scripting (XSS) in Mdaemon email-server (CVE-2024-11182)
cross-site scripting in Mdaemon email-server (CVE-2024-11182). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-42999 KEV [KEV] Unsafe Deserialization in Sap netweaver (CVE-2025-42999)
vulnerability in Sap netweaver (CVE-2025-42999). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-12987 KEV [KEV] OS Command Injection in Draytek vigor-routers (CVE-2024-12987)
OS command injection in Draytek vigor-routers (CVE-2024-12987). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-32756 KEV [KEV] Vulnerability in Fortinet multiple-products (CVE-2025-32756)
vulnerability in Fortinet multiple-products (CVE-2025-32756). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-30386 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-30388 Vulnerability in microsoft (CVE-2025-30388)
vulnerability in microsoft (CVE-2025-30388). Successful exploitation can lead to full system takeover.
CVE-2025-31223 Buffer Overflow in apple (CVE-2025-31223)
vulnerability in apple (CVE-2025-31223). Successful exploitation can lead to full system takeover.
CVE-2025-32709 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-32709)
vulnerability in Microsoft windows (CVE-2025-32709). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-30397 KEV [KEV] Vulnerability in Microsoft windows (CVE-2025-30397)
vulnerability in Microsoft windows (CVE-2025-30397). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-32706 KEV [KEV] Vulnerability in Microsoft windows (CVE-2025-32706)
vulnerability in Microsoft windows (CVE-2025-32706). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-32701 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-32701)
vulnerability in Microsoft windows (CVE-2025-32701). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-30400 KEV [KEV] Use-After-Free in Microsoft windows (CVE-2025-30400)
vulnerability in Microsoft windows (CVE-2025-30400). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-31257 Buffer Overflow in apple (CVE-2025-31257)
vulnerability in apple (CVE-2025-31257). Risk of unauthorized operations or information disclosure.
CVE-2025-47729 KEV [KEV] Vulnerability in Telemessage tm-sgnl (CVE-2025-47729)
vulnerability in Telemessage tm-sgnl (CVE-2025-47729). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-37864 Vulnerability in linux (CVE-2025-37864)
vulnerability in linux (CVE-2025-37864). Risk of unauthorized operations or information disclosure.
CVE-2024-11120 KEV [KEV] OS Command Injection in Geovision multiple-devices (CVE-2024-11120)
OS command injection in Geovision multiple-devices (CVE-2024-11120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-6047 KEV [KEV] OS Command Injection in Geovision multiple-devices (CVE-2024-6047)
OS command injection in Geovision multiple-devices (CVE-2024-6047). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-27363 KEV [KEV] Out-of-Bounds Write in freetype (CVE-2025-27363)
out-of-bounds write in freetype (CVE-2025-27363). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-45242 Vulnerability in rhymix (CVE-2025-45242)
vulnerability in rhymix (CVE-2025-45242). Confidential information can be exposed externally.
CVE-2025-26241 SQL Injection in sqli (CVE-2025-26241)
SQL injection in sqli (CVE-2025-26241). Risk of unauthorized operations or information disclosure.
CVE-2025-3248 KEV [KEV] Vulnerability in langflow (CVE-2025-3248)
vulnerability in langflow (CVE-2025-3248). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-53133 Vulnerability in linux (CVE-2023-53133)
vulnerability in linux (CVE-2023-53133). Risk of unauthorized operations or information disclosure.
CVE-2025-34028 KEV [KEV] Path Traversal in Commvault command-center (CVE-2025-34028)
path traversal in Commvault command-center (CVE-2025-34028). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-58136 KEV [KEV] Vulnerability in Yiiframework yii (CVE-2024-58136)
vulnerability in Yiiframework yii (CVE-2024-58136). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-49822 Vulnerability in linux (CVE-2022-49822)
vulnerability in linux (CVE-2022-49822). Risk of unauthorized operations or information disclosure.
CVE-2022-49803 Vulnerability in linux (CVE-2022-49803)
vulnerability in linux (CVE-2022-49803). Risk of unauthorized operations or information disclosure.
CVE-2025-23160 Vulnerability in linux (CVE-2025-23160)
vulnerability in linux (CVE-2025-23160). Risk of unauthorized operations or information disclosure.
CVE-2025-23143 Vulnerability in c (CVE-2025-23143)
vulnerability in c (CVE-2025-23143). Risk of unauthorized operations or information disclosure.
CVE-2025-23141 Vulnerability in linux (CVE-2025-23141)
vulnerability in linux (CVE-2025-23141). Risk of unauthorized operations or information disclosure.
CVE-2024-38475 KEV [KEV] Vulnerability in Apache http-server (CVE-2024-38475)
vulnerability in Apache http-server (CVE-2024-38475). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-44221 KEV [KEV] OS Command Injection in Sonicwall sma100-appliances (CVE-2023-44221)
OS command injection in Sonicwall sma100-appliances (CVE-2023-44221). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-3891 Vulnerability in apache (CVE-2025-3891)
vulnerability in apache (CVE-2025-3891). Risk of unauthorized operations or information disclosure.
CVE-2025-31324 KEV [KEV] Unrestricted File Upload in Sap netweaver (CVE-2025-31324)
vulnerability in Sap netweaver (CVE-2025-31324). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-45947 Code Injection in phpgurukul (CVE-2025-45947)
code injection in phpgurukul (CVE-2025-45947). Successful exploitation can lead to full system takeover.
CVE-2025-45949 Vulnerability in phpgurukul (CVE-2025-45949)
vulnerability in phpgurukul (CVE-2025-45949). Successful exploitation can lead to full system takeover.
CVE-2025-45953 Vulnerability in phpgurukul (CVE-2025-45953)
vulnerability in phpgurukul (CVE-2025-45953). Confidential information can be exposed externally.
CVE-2025-1976 KEV [KEV] Code Injection in Broadcom brocade-fabric-os (CVE-2025-1976)
code injection in Broadcom brocade-fabric-os (CVE-2025-1976). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →