Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2020-16846 KEV [KEV] OS Command Injection in Saltstack salt (CVE-2020-16846)
OS command injection in Saltstack salt (CVE-2020-16846). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `2015.8.10, 2015.8.13, 2016.3.4, 2016.3.6, 2016.3.8, 2016.11.3, 2016.11.6, 2016.11.10, 2017.7.4, 2017.7.8, 2018.3.5, 2019.2.5, 3000.3` or later.
CVE-2020-15999 KEV [KEV] Out-of-Bounds Write in Google platform/external/freetype (CVE-2020-15999)
out-of-bounds write in Google platform/external/freetype (CVE-2020-15999). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `11:2021-01-01` or later.
CVE-2021-28664 KEV [KEV] Out-of-Bounds Write in Arm :unknown: (CVE-2021-28664)
out-of-bounds write in Arm :unknown: (CVE-2021-28664). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `SoCVersion:2021-05-05` or later.
CVE-2021-28663 KEV [KEV] Use-After-Free in Arm :unknown: (CVE-2021-28663)
vulnerability in Arm :unknown: (CVE-2021-28663). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `SoCVersion:2021-05-05` or later.
CVE-2021-1906 KEV [KEV] Vulnerability in :linux_kernel:Qualcomm (CVE-2021-1906)
vulnerability in :linux_kernel:Qualcomm (CVE-2021-1906). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `SoCVersion:2021-05-05` or later.
CVE-2021-1905 KEV [KEV] Use-After-Free in :linux_kernel:Qualcomm (CVE-2021-1905)
vulnerability in :linux_kernel:Qualcomm (CVE-2021-1905). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `SoCVersion:2021-05-05` or later.
CVE-2021-27562 KEV [KEV] Out-of-Bounds Write in Arm trusted-firmware (CVE-2021-27562)
out-of-bounds write in Arm trusted-firmware (CVE-2021-27562). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27104 KEV [KEV] Vulnerability in Accellion fta (CVE-2021-27104)
vulnerability in Accellion fta (CVE-2021-27104). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27102 KEV [KEV] Vulnerability in Accellion fta (CVE-2021-27102)
vulnerability in Accellion fta (CVE-2021-27102). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-27101 KEV [KEV] SQL Injection in Accellion fta (CVE-2021-27101)
SQL injection in Accellion fta (CVE-2021-27101). Risk of unauthorized operations or information disclosure. Exploitable via `Host header`. Listed in CISA KEV — actively exploited.
CVE-2021-27103 KEV [KEV] SSRF (Server-Side Request Forgery) in Accellion fta (CVE-2021-27103)
SSRF in Accellion fta (CVE-2021-27103). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-21017 KEV [KEV] Vulnerability in Adobe acrobat-and-reader (CVE-2021-21017)
vulnerability in Adobe acrobat-and-reader (CVE-2021-21017). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-28550 KEV [KEV] Use-After-Free in Adobe acrobat-and-reader (CVE-2021-28550)
vulnerability in Adobe acrobat-and-reader (CVE-2021-28550). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-4939 KEV [KEV] Unsafe Deserialization in Adobe coldfusion (CVE-2018-4939)
vulnerability in Adobe coldfusion (CVE-2018-4939). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-15961 KEV [KEV] Unrestricted File Upload in Adobe coldfusion (CVE-2018-15961)
vulnerability in Adobe coldfusion (CVE-2018-15961). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-4878 KEV [KEV] Use-After-Free in Adobe flash-player (CVE-2018-4878)
vulnerability in Adobe flash-player (CVE-2018-4878). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-5735 KEV [KEV] Vulnerability in Amcrest cameras-and-network-video-recorder-nvr (CVE-2020-5735)
vulnerability in Amcrest cameras-and-network-video-recorder-nvr (CVE-2020-5735). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-2215 KEV [KEV] Use-After-Free in android (CVE-2019-2215)
vulnerability in android (CVE-2019-2215). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0041 KEV [KEV] Vulnerability in android (CVE-2020-0041)
vulnerability in android (CVE-2020-0041). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0069 KEV [KEV] Out-of-Bounds Write in Mediatek multiple-chipsets (CVE-2020-0069)
out-of-bounds write in Mediatek multiple-chipsets (CVE-2020-0069). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-9805 KEV [KEV] Unsafe Deserialization in Apache struts (CVE-2017-9805)
vulnerability in Apache struts (CVE-2017-9805). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-42013 KEV [KEV] Path Traversal in Apache http-server (CVE-2021-42013)
path traversal in Apache http-server (CVE-2021-42013). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-41773 KEV [KEV] Path Traversal in Apache http-server (CVE-2021-41773)
path traversal in Apache http-server (CVE-2021-41773). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-0211 KEV [KEV] Use-After-Free in Apache http-server (CVE-2019-0211)
vulnerability in Apache http-server (CVE-2019-0211). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-4437 KEV [KEV] Vulnerability in Apache shiro (CVE-2016-4437)
vulnerability in Apache shiro (CVE-2016-4437). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-17558 KEV [KEV] Vulnerability in Apache solr (CVE-2019-17558)
vulnerability in Apache solr (CVE-2019-17558). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-17530 KEV [KEV] Vulnerability in Apache struts (CVE-2020-17530)
vulnerability in Apache struts (CVE-2020-17530). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-5638 KEV [KEV] Vulnerability in Apache struts (CVE-2017-5638)
vulnerability in Apache struts (CVE-2017-5638). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-11776 KEV [KEV] Vulnerability in Apache struts (CVE-2018-11776)
vulnerability in Apache struts (CVE-2018-11776). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30858 KEV [KEV] Use-After-Free in Apple ios (CVE-2021-30858)
vulnerability in Apple ios (CVE-2021-30858). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-6223 KEV [KEV] Vulnerability in Apple ios-and-macos (CVE-2019-6223)
vulnerability in Apple ios-and-macos (CVE-2019-6223). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30860 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2021-30860)
vulnerability in Apple multiple-products (CVE-2021-30860). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-27930 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2020-27930)
out-of-bounds write in Apple multiple-products (CVE-2020-27930). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30807 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2021-30807)
out-of-bounds write in Apple multiple-products (CVE-2021-30807). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-27950 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2020-27950)
vulnerability in Apple multiple-products (CVE-2020-27950). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-27932 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2020-27932)
vulnerability in Apple multiple-products (CVE-2020-27932). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-9818 KEV [KEV] Out-of-Bounds Write in Apple ios (CVE-2020-9818)
out-of-bounds write in Apple ios (CVE-2020-9818). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-9819 KEV [KEV] Out-of-Bounds Write in Apple ios (CVE-2020-9819)
out-of-bounds write in Apple ios (CVE-2020-9819). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30762 KEV [KEV] Use-After-Free in Apple ios (CVE-2021-30762)
vulnerability in Apple ios (CVE-2021-30762). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-1782 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2021-1782)
vulnerability in Apple multiple-products (CVE-2021-1782). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-1870 KEV [KEV] Vulnerability in Apple ios (CVE-2021-1870)
vulnerability in Apple ios (CVE-2021-1870). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-1871 KEV [KEV] Vulnerability in Apple ios (CVE-2021-1871)
vulnerability in Apple ios (CVE-2021-1871). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-1879 KEV [KEV] Cross-Site Scripting (XSS) in Apple ios (CVE-2021-1879)
cross-site scripting in Apple ios (CVE-2021-1879). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30661 KEV [KEV] Use-After-Free in Apple multiple-products (CVE-2021-30661)
vulnerability in Apple multiple-products (CVE-2021-30661). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30666 KEV [KEV] Buffer Overflow in Apple ios (CVE-2021-30666)
vulnerability in Apple ios (CVE-2021-30666). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30713 KEV [KEV] Vulnerability in Apple macos (CVE-2021-30713)
vulnerability in Apple macos (CVE-2021-30713). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30657 KEV [KEV] Vulnerability in Apple macos (CVE-2021-30657)
vulnerability in Apple macos (CVE-2021-30657). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30665 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2021-30665)
out-of-bounds write in Apple multiple-products (CVE-2021-30665). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30663 KEV [KEV] Vulnerability in Apple multiple-products (CVE-2021-30663)
vulnerability in Apple multiple-products (CVE-2021-30663). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30761 KEV [KEV] Out-of-Bounds Write in Apple ios (CVE-2021-30761)
out-of-bounds write in Apple ios (CVE-2021-30761). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →