Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2020-8515 KEV [KEV] OS Command Injection in Draytek multiple-vigor-routers (CVE-2020-8515)
OS command injection in Draytek multiple-vigor-routers (CVE-2020-8515). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-5544 KEV [KEV] Out-of-Bounds Write in vmware (CVE-2019-5544)
out-of-bounds write in vmware (CVE-2019-5544). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-3992 KEV [KEV] Use-After-Free in Vmware esxi (CVE-2020-3992)
vulnerability in Vmware esxi (CVE-2020-3992). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-3950 KEV [KEV] Privilege Escalation in Vmware multiple-products (CVE-2020-3950)
vulnerability in Vmware multiple-products (CVE-2020-3950). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22005 KEV [KEV] Vulnerability in Vmware vcenter-server (CVE-2021-22005)
vulnerability in Vmware vcenter-server (CVE-2021-22005). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-3952 KEV [KEV] Vulnerability in Vmware vcenter-server (CVE-2020-3952)
vulnerability in Vmware vcenter-server (CVE-2020-3952). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-21972 KEV [KEV] Vulnerability in Vmware vcenter-server (CVE-2021-21972)
vulnerability in Vmware vcenter-server (CVE-2021-21972). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-21985 KEV [KEV] Vulnerability in Vmware vcenter-server (CVE-2021-21985)
vulnerability in Vmware vcenter-server (CVE-2021-21985). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-4006 KEV [KEV] OS Command Injection in Vmware multiple-products (CVE-2020-4006)
OS command injection in Vmware multiple-products (CVE-2020-4006). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-18935 KEV [KEV] Unsafe Deserialization in Progress telerik-ui-for-aspnet-ajax (CVE-2019-18935)
vulnerability in Progress telerik-ui-for-aspnet-ajax (CVE-2019-18935). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-9248 KEV [KEV] Vulnerability in Progress aspnet-ajax-and-sitefinity (CVE-2017-9248)
vulnerability in Progress aspnet-ajax-and-sitefinity (CVE-2017-9248). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-29583 KEV [KEV] Vulnerability in Zyxel multiple-products (CVE-2020-29583)
vulnerability in Zyxel multiple-products (CVE-2020-29583). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-12271 KEV [KEV] SQL Injection in Sophos sfos (CVE-2020-12271)
SQL injection in Sophos sfos (CVE-2020-12271). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-3398 KEV [KEV] Path Traversal in Atlassian confluence-server-and-data-center (CVE-2019-3398)
path traversal in Atlassian confluence-server-and-data-center (CVE-2019-3398). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-26084 KEV [KEV] Vulnerability in Atlassian confluence-server-and-data-center (CVE-2021-26084)
vulnerability in Atlassian confluence-server-and-data-center (CVE-2021-26084). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-11580 KEV [KEV] Vulnerability in Atlassian crowd-and-crowd-data-center (CVE-2019-11580)
vulnerability in Atlassian crowd-and-crowd-data-center (CVE-2019-11580). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-3396 KEV [KEV] Path Traversal in Atlassian confluence-server-and-data-server (CVE-2019-3396)
path traversal in Atlassian confluence-server-and-data-server (CVE-2019-3396). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3715 KEV [KEV] Vulnerability in imagemagick (CVE-2016-3715)
vulnerability in imagemagick (CVE-2016-3715). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3718 KEV [KEV] Vulnerability in imagemagick (CVE-2016-3718)
vulnerability in imagemagick (CVE-2016-3718). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27562 KEV [KEV] Out-of-Bounds Write in Arm trusted-firmware (CVE-2021-27562)
out-of-bounds write in Arm trusted-firmware (CVE-2021-27562). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-28664 KEV [KEV] Out-of-Bounds Write in Arm :unknown: (CVE-2021-28664)
out-of-bounds write in Arm :unknown: (CVE-2021-28664). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `SoCVersion:2021-05-05` or later.
CVE-2021-28663 KEV [KEV] Use-After-Free in Arm :unknown: (CVE-2021-28663)
vulnerability in Arm :unknown: (CVE-2021-28663). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `SoCVersion:2021-05-05` or later.
CVE-2021-35395 KEV [KEV] Vulnerability in Realtek ap-router-sdk (CVE-2021-35395)
vulnerability in Realtek ap-router-sdk (CVE-2021-35395). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-40539 KEV [KEV] Vulnerability in Zoho manageengine (CVE-2021-40539)
vulnerability in Zoho manageengine (CVE-2021-40539). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-10189 KEV [KEV] Unsafe Deserialization in Zoho manageengine (CVE-2020-10189)
vulnerability in Zoho manageengine (CVE-2020-10189). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-8394 KEV [KEV] Unrestricted File Upload in Zoho manageengine (CVE-2019-8394)
vulnerability in Zoho manageengine (CVE-2019-8394). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-4430 KEV [KEV] Path Traversal in Ibm data-risk-manager (CVE-2020-4430)
path traversal in Ibm data-risk-manager (CVE-2020-4430). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-4427 KEV [KEV] Vulnerability in Ibm data-risk-manager (CVE-2020-4427)
vulnerability in Ibm data-risk-manager (CVE-2020-4427). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-4428 KEV [KEV] OS Command Injection in Ibm data-risk-manager (CVE-2020-4428)
OS command injection in Ibm data-risk-manager (CVE-2020-4428). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-4716 KEV [KEV] Code Injection in Ibm planning-analytics (CVE-2019-4716)
code injection in Ibm planning-analytics (CVE-2019-4716). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-26919 KEV [KEV] Vulnerability in Netgear jgs516pe-devices (CVE-2020-26919)
vulnerability in Netgear jgs516pe-devices (CVE-2020-26919). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30116 KEV [KEV] Vulnerability in Kaseya virtual-systemserver-administrator-vsa (CVE-2021-30116)
vulnerability in Kaseya virtual-systemserver-administrator-vsa (CVE-2021-30116). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-6789 KEV [KEV] Buffer Overflow in exim (CVE-2018-6789)
vulnerability in exim (CVE-2018-6789). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-15949 KEV [KEV] OS Command Injection in nagios (CVE-2019-15949)
OS command injection in nagios (CVE-2019-15949). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-10199 KEV [KEV] Vulnerability in Sonatype nexus-repository (CVE-2020-10199)
vulnerability in Sonatype nexus-repository (CVE-2020-10199). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27104 KEV [KEV] Vulnerability in Accellion fta (CVE-2021-27104)
vulnerability in Accellion fta (CVE-2021-27104). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27102 KEV [KEV] Vulnerability in Accellion fta (CVE-2021-27102)
vulnerability in Accellion fta (CVE-2021-27102). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27101 KEV [KEV] SQL Injection in Accellion fta (CVE-2021-27101)
SQL injection in Accellion fta (CVE-2021-27101). Risk of unauthorized operations or information disclosure. Exploitable via `Host header`. Listed in CISA KEV — actively exploited.
CVE-2021-27103 KEV [KEV] SSRF (Server-Side Request Forgery) in Accellion fta (CVE-2021-27103)
SSRF in Accellion fta (CVE-2021-27103). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-5735 KEV [KEV] Vulnerability in Amcrest cameras-and-network-video-recorder-nvr (CVE-2020-5735)
vulnerability in Amcrest cameras-and-network-video-recorder-nvr (CVE-2020-5735). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0069 KEV [KEV] Out-of-Bounds Write in Mediatek multiple-chipsets (CVE-2020-0069)
out-of-bounds write in Mediatek multiple-chipsets (CVE-2020-0069). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20090 KEV [KEV] Path Traversal in Arcadyan buffalo-firmware (CVE-2021-20090)
path traversal in Arcadyan buffalo-firmware (CVE-2021-20090). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-42258 KEV [KEV] SQL Injection in Bqe billquick-web-suite (CVE-2021-42258)
SQL injection in Bqe billquick-web-suite (CVE-2021-42258). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-15811 KEV [KEV] Vulnerability in Dotnetnuke (dnn) dotnetnuke-dnn (CVE-2018-15811)
vulnerability in Dotnetnuke (dnn) dotnetnuke-dnn (CVE-2018-15811). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-18325 KEV [KEV] Vulnerability in Dotnetnuke (dnn) dotnetnuke-dnn (CVE-2018-18325)
vulnerability in Dotnetnuke (dnn) dotnetnuke-dnn (CVE-2018-18325). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-9822 KEV [KEV] Vulnerability in Dotnetnuke (dnn) dotnetnuke-dnn (CVE-2017-9822)
vulnerability in Dotnetnuke (dnn) dotnetnuke-dnn (CVE-2017-9822). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-8657 KEV [KEV] Vulnerability in eyesofnetwork (CVE-2020-8657)
vulnerability in eyesofnetwork (CVE-2020-8657). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-8655 KEV [KEV] Privilege Escalation in eyesofnetwork (CVE-2020-8655)
vulnerability in eyesofnetwork (CVE-2020-8655). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-35464 KEV [KEV] Unsafe Deserialization in Forgerock access-management-am (CVE-2021-35464)
vulnerability in Forgerock access-management-am (CVE-2021-35464). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-7961 KEV [KEV] Unsafe Deserialization in liferay (CVE-2020-7961)
vulnerability in liferay (CVE-2020-7961). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →