Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2020-0618 KEV [KEV] Unsafe Deserialization in Microsoft sql-server (CVE-2020-0618)
vulnerability in Microsoft sql-server (CVE-2020-0618). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-27348 KEV [KEV] Vulnerability in Apache hugegraph-server (CVE-2024-27348)
vulnerability in Apache hugegraph-server (CVE-2024-27348). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-14644 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14644)
vulnerability in Oracle weblogic-server (CVE-2020-14644). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-21445 KEV [KEV] Unsafe Deserialization in Oracle adf-faces (CVE-2022-21445)
vulnerability in Oracle adf-faces (CVE-2022-21445). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-0502 KEV [KEV] Vulnerability in Adobe flash-player (CVE-2014-0502)
vulnerability in Adobe flash-player (CVE-2014-0502). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-0648 KEV [KEV] Vulnerability in Adobe flash-player (CVE-2013-0648)
vulnerability in Adobe flash-player (CVE-2013-0648). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-0643 KEV [KEV] Vulnerability in Adobe flash-player (CVE-2013-0643)
vulnerability in Adobe flash-player (CVE-2013-0643). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-0497 KEV [KEV] Vulnerability in Adobe flash-player (CVE-2014-0497)
vulnerability in Adobe flash-player (CVE-2014-0497). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43461 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-43461)
vulnerability in Microsoft windows (CVE-2024-43461). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-6670 KEV [KEV] SQL Injection in Progress whatsup-gold (CVE-2024-6670)
SQL injection in Progress whatsup-gold (CVE-2024-6670). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-46918 Authorization Flaw in misp-project (CVE-2024-46918)
vulnerability in misp-project (CVE-2024-46918). Confidential information can be exposed externally.
CVE-2024-46679 Vulnerability in linux (CVE-2024-46679)
vulnerability in linux (CVE-2024-46679). Risk of unauthorized operations or information disclosure.
CVE-2024-8190 KEV [KEV] OS Command Injection in Ivanti cloud-services-appliance (CVE-2024-8190)
OS command injection in Ivanti cloud-services-appliance (CVE-2024-8190). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-45016 Use-After-Free in linux (CVE-2024-45016)
vulnerability in linux (CVE-2024-45016). Risk of unauthorized operations or information disclosure.
CVE-2024-44570 Command Injection in relyum (CVE-2024-44570)
command injection in relyum (CVE-2024-44570). Successful exploitation can lead to full system takeover.
CVE-2024-44571 Vulnerability in relyum (CVE-2024-44571)
vulnerability in relyum (CVE-2024-44571). Successful exploitation can lead to full system takeover.
CVE-2024-45018 Vulnerability in linux (CVE-2024-45018)
vulnerability in linux (CVE-2024-45018). Risk of unauthorized operations or information disclosure.
CVE-2024-43455 Windows Remote Desktop Licensing Service Spoofing Vulnerability
Windows Remote Desktop Licensing Service Spoofing Vulnerability
CVE-2024-38250 Windows Graphics Component Elevation of Privilege Vulnerability
Windows Graphics Component Elevation of Privilege Vulnerability
CVE-2024-38217 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-38217)
vulnerability in Microsoft windows (CVE-2024-38217). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-38014 KEV [KEV] Privilege Escalation in Microsoft windows (CVE-2024-38014)
vulnerability in Microsoft windows (CVE-2024-38014). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-38226 KEV [KEV] Vulnerability in Microsoft publisher (CVE-2024-38226)
vulnerability in Microsoft publisher (CVE-2024-38226). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-44902 Unsafe Deserialization in deserialization (CVE-2024-44902)
vulnerability in deserialization (CVE-2024-44902). Successful exploitation can lead to full system takeover.
CVE-2024-40766 KEV [KEV] Vulnerability in Sonicwall sonicos (CVE-2024-40766)
vulnerability in Sonicwall sonicos (CVE-2024-40766). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3714 KEV [KEV] Vulnerability in imagemagick (CVE-2016-3714)
vulnerability in imagemagick (CVE-2016-3714). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-1000253 KEV [KEV] Buffer Overflow in Linux kernel (CVE-2017-1000253)
vulnerability in Linux kernel (CVE-2017-1000253). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-44987 Use-After-Free in c (CVE-2024-44987)
vulnerability in c (CVE-2024-44987). Successful exploitation can lead to full system takeover.
CVE-2024-44990 Vulnerability in linux (CVE-2024-44990)
vulnerability in linux (CVE-2024-44990). Risk of unauthorized operations or information disclosure.
CVE-2024-44989 Vulnerability in linux (CVE-2024-44989)
vulnerability in linux (CVE-2024-44989). Risk of unauthorized operations or information disclosure.
CVE-2024-44948 Vulnerability in linux (CVE-2024-44948)
vulnerability in linux (CVE-2024-44948). Risk of unauthorized operations or information disclosure.
CVE-2024-44960 Vulnerability in linux (CVE-2024-44960)
vulnerability in linux (CVE-2024-44960). Risk of unauthorized operations or information disclosure.
CVE-2024-6119 Vulnerability in dos (CVE-2024-6119)
vulnerability in dos (CVE-2024-6119). Risk of unauthorized operations or information disclosure. Exploitable via ``otherName``.
CVE-2021-20124 KEV [KEV] Path Traversal in Draytek vigorconnect (CVE-2021-20124)
path traversal in Draytek vigorconnect (CVE-2021-20124). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20123 KEV [KEV] Path Traversal in Draytek vigorconnect (CVE-2021-20123)
path traversal in Draytek vigorconnect (CVE-2021-20123). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-7262 KEV [KEV] Path Traversal in Kingsoft wps-office (CVE-2024-7262)
path traversal in Kingsoft wps-office (CVE-2024-7262). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-45509 Authorization Flaw in misp-project (CVE-2024-45509)
vulnerability in misp-project (CVE-2024-45509). Confidential information can be exposed externally.
CVE-2024-44916 Command Injection in seacms (CVE-2024-44916)
command injection in seacms (CVE-2024-44916). Successful exploitation can lead to full system takeover.
CVE-2024-44944 Vulnerability in linux (CVE-2024-44944)
vulnerability in linux (CVE-2024-44944). Risk of unauthorized operations or information disclosure.
CVE-2024-7965 KEV [KEV] Vulnerability in Google chromium-v8 (CVE-2024-7965)
vulnerability in Google chromium-v8 (CVE-2024-7965). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-38856 KEV [KEV] Authorization Flaw in Apache ofbiz (CVE-2024-38856)
vulnerability in Apache ofbiz (CVE-2024-38856). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-44793 Cross-Site Scripting (XSS) in gazelle-project (CVE-2024-44793)
cross-site scripting in gazelle-project (CVE-2024-44793). Risk of unauthorized operations or information disclosure.
CVE-2024-44794 Cross-Site Scripting (XSS) in xiebruce (CVE-2024-44794)
cross-site scripting in xiebruce (CVE-2024-44794). Risk of unauthorized operations or information disclosure.
CVE-2024-44795 Cross-Site Scripting (XSS) in gazelle-project (CVE-2024-44795)
cross-site scripting in gazelle-project (CVE-2024-44795). Risk of unauthorized operations or information disclosure.
CVE-2024-44796 Cross-Site Scripting (XSS) in xiebruce (CVE-2024-44796)
cross-site scripting in xiebruce (CVE-2024-44796). Risk of unauthorized operations or information disclosure.
CVE-2024-44797 Cross-Site Scripting (XSS) in gazelle-project (CVE-2024-44797)
cross-site scripting in gazelle-project (CVE-2024-44797). Risk of unauthorized operations or information disclosure.
CVE-2024-44935 Vulnerability in c (CVE-2024-44935)
vulnerability in c (CVE-2024-44935). Risk of unauthorized operations or information disclosure.
CVE-2024-43889 Vulnerability in c (CVE-2024-43889)
vulnerability in c (CVE-2024-43889). Risk of unauthorized operations or information disclosure.
CVE-2024-43893 Vulnerability in c (CVE-2024-43893)
vulnerability in c (CVE-2024-43893). Risk of unauthorized operations or information disclosure.
CVE-2024-43890 Vulnerability in linux (CVE-2024-43890)
vulnerability in linux (CVE-2024-43890). Risk of unauthorized operations or information disclosure. Exploitable via ``max_elts``.
CVE-2024-43902 Vulnerability in linux (CVE-2024-43902)
vulnerability in linux (CVE-2024-43902). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →