Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2024-29858 Vulnerability in misp-project (CVE-2024-29858)
vulnerability in misp-project (CVE-2024-29858). Successful exploitation can lead to full system takeover.
CVE-2024-29859 Unrestricted File Upload in misp-project (CVE-2024-29859)
vulnerability in misp-project (CVE-2024-29859). Successful exploitation can lead to full system takeover.
CVE-2024-24520 Code Injection in lepton-cms (CVE-2024-24520)
code injection in lepton-cms (CVE-2024-24520). Successful exploitation can lead to full system takeover.
CVE-2024-25294 SSRF (Server-Side Request Forgery) in ssrf (CVE-2024-25294)
SSRF in ssrf (CVE-2024-25294). Confidential information can be exposed externally.
CVE-2023-52614 Vulnerability in linux (CVE-2023-52614)
vulnerability in linux (CVE-2023-52614). Successful exploitation can lead to full system takeover.
CVE-2024-26629 Vulnerability in linux (CVE-2024-26629)
vulnerability in linux (CVE-2024-26629). Risk of unauthorized operations or information disclosure.
CVE-2023-42789 Out-of-Bounds Write in fortinet (CVE-2023-42789)
out-of-bounds write in fortinet (CVE-2023-42789). Successful exploitation can lead to full system takeover.
CVE-2023-42790 Vulnerability in fortinet (CVE-2023-42790)
vulnerability in fortinet (CVE-2023-42790). Successful exploitation can lead to full system takeover.
CVE-2024-27198 KEV [KEV] Vulnerability in Jetbrains teamcity (CVE-2024-27198)
vulnerability in Jetbrains teamcity (CVE-2024-27198). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-23225 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2024-23225)
out-of-bounds write in Apple multiple-products (CVE-2024-23225). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-23296 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2024-23296)
out-of-bounds write in Apple multiple-products (CVE-2024-23296). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-21237 KEV [KEV] Information Disclosure in Android pixel (CVE-2023-21237)
vulnerability in Android pixel (CVE-2023-21237). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-36380 KEV [KEV] OS Command Injection in Sunhillo sureline (CVE-2021-36380)
OS command injection in Sunhillo sureline (CVE-2021-36380). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-47107 Vulnerability in c (CVE-2021-47107)
vulnerability in c (CVE-2021-47107). Successful exploitation can lead to full system takeover.
CVE-2024-21338 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-21338)
vulnerability in Microsoft windows (CVE-2024-21338). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-29360 KEV [KEV] Vulnerability in Microsoft streaming-service (CVE-2023-29360)
vulnerability in Microsoft streaming-service (CVE-2023-29360). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-22983 SQL Injection in sqli (CVE-2024-22983)
SQL injection in sqli (CVE-2024-22983). Confidential information can be exposed externally.
CVE-2021-47002 Vulnerability in linux (CVE-2021-47002)
vulnerability in linux (CVE-2021-47002). Risk of unauthorized operations or information disclosure.
CVE-2020-36785 Vulnerability in linux (CVE-2020-36785)
vulnerability in linux (CVE-2020-36785). Successful exploitation can lead to full system takeover.
CVE-2024-26596 Vulnerability in linux (CVE-2024-26596)
vulnerability in linux (CVE-2024-26596). Risk of unauthorized operations or information disclosure.
CVE-2023-52458 Vulnerability in linux (CVE-2023-52458)
vulnerability in linux (CVE-2023-52458). Risk of unauthorized operations or information disclosure.
CVE-2023-52447 Use-After-Free in linux (CVE-2023-52447)
vulnerability in linux (CVE-2023-52447). Successful exploitation can lead to full system takeover.
CVE-2024-1709 KEV [KEV] Vulnerability in Connectwise screenconnect (CVE-2024-1709)
vulnerability in Connectwise screenconnect (CVE-2024-1709). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-3259 KEV [KEV] Information Disclosure in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2020-3259)
vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2020-3259). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-21410 KEV [KEV] Authentication Bypass in Microsoft exchange-server (CVE-2024-21410)
authentication bypass in Microsoft exchange-server (CVE-2024-21410). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-20673 Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
CVE-2024-21412 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-21412)
vulnerability in Microsoft windows (CVE-2024-21412). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-21351 KEV [KEV] Code Injection in Microsoft windows (CVE-2024-21351)
code injection in Microsoft windows (CVE-2024-21351). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-25739 Vulnerability in c (CVE-2024-25739)
vulnerability in c (CVE-2024-25739). Risk of unauthorized operations or information disclosure.
CVE-2023-43770 KEV [KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2023-43770)
cross-site scripting in Roundcube webmail (CVE-2023-43770). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-25675 Vulnerability in misp-project (CVE-2024-25675)
vulnerability in misp-project (CVE-2024-25675). Successful exploitation can lead to full system takeover.
CVE-2024-21762 KEV [KEV] Out-of-Bounds Write in Fortinet fortios (CVE-2024-21762)
out-of-bounds write in Fortinet fortios (CVE-2024-21762). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-4762 KEV [KEV] Vulnerability in Google chromium-v8 (CVE-2023-4762)
vulnerability in Google chromium-v8 (CVE-2023-4762). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-24855 Vulnerability in dos (CVE-2024-24855)
vulnerability in dos (CVE-2024-24855). Risk of unauthorized operations or information disclosure.
CVE-2024-24857 Vulnerability in dos (CVE-2024-24857)
vulnerability in dos (CVE-2024-24857). Data can be tampered with by attackers.
CVE-2024-24859 Vulnerability in dos (CVE-2024-24859)
vulnerability in dos (CVE-2024-24859). Risk of unauthorized operations or information disclosure.
CVE-2024-24858 Vulnerability in dos (CVE-2024-24858)
vulnerability in dos (CVE-2024-24858). Risk of unauthorized operations or information disclosure.
CVE-2023-6246 Vulnerability in privilege-escalation (CVE-2023-6246)
vulnerability in privilege-escalation (CVE-2023-6246). Successful exploitation can lead to full system takeover.
CVE-2023-6779 Vulnerability in gnu (CVE-2023-6779)
vulnerability in gnu (CVE-2023-6779). Risk of unauthorized operations or information disclosure.
CVE-2023-6780 Vulnerability in gnu (CVE-2023-6780)
vulnerability in gnu (CVE-2023-6780). Risk of unauthorized operations or information disclosure.
CVE-2024-23170 Vulnerability in arm (CVE-2024-23170)
vulnerability in arm (CVE-2024-23170). Confidential information can be exposed externally.
CVE-2024-23775 Vulnerability in dos (CVE-2024-23775)
vulnerability in dos (CVE-2024-23775). Risk of unauthorized operations or information disclosure.
CVE-2024-21893 KEV [KEV] SSRF (Server-Side Request Forgery) in Ivanti connect-secure (CVE-2024-21893)
SSRF in Ivanti connect-secure (CVE-2024-21893). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-48618 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2022-48618)
vulnerability in Apple multiple-products (CVE-2022-48618). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-0727 Vulnerability in cryptography (CVE-2024-0727)
vulnerability in cryptography (CVE-2024-0727). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `42.0.2` or later.
CVE-2024-22922 Privilege Escalation in projectworlds (CVE-2024-22922)
vulnerability in projectworlds (CVE-2024-22922). Successful exploitation can lead to full system takeover.
CVE-2024-22099 Vulnerability in c (CVE-2024-22099)
vulnerability in c (CVE-2024-22099). Risk of unauthorized operations or information disclosure.
CVE-2024-23307 Vulnerability in linux (CVE-2024-23307)
vulnerability in linux (CVE-2024-23307). Risk of unauthorized operations or information disclosure.
CVE-2023-51702 Vulnerability in apache (CVE-2023-51702)
vulnerability in apache (CVE-2023-51702). Confidential information can be exposed externally.
CVE-2023-22527 KEV [KEV] Vulnerability in Atlassian confluence-data-center-and-server (CVE-2023-22527)
vulnerability in Atlassian confluence-data-center-and-server (CVE-2023-22527). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →