Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2019-1214 KEV [KEV] Vulnerability in Microsoft windows (CVE-2019-1214)
vulnerability in Microsoft windows (CVE-2019-1214). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3235 KEV [KEV] Vulnerability in Microsoft office (CVE-2016-3235)
vulnerability in Microsoft office (CVE-2016-3235). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-0863 KEV [KEV] Vulnerability in Microsoft windows (CVE-2019-0863)
vulnerability in Microsoft windows (CVE-2019-0863). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-36955 KEV [KEV] Vulnerability in Microsoft windows (CVE-2021-36955)
vulnerability in Microsoft windows (CVE-2021-36955). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-38648 KEV [KEV] Vulnerability in Microsoft open-management-infrastructure-omi (CVE-2021-38648)
vulnerability in Microsoft open-management-infrastructure-omi (CVE-2021-38648). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-6819 KEV [KEV] Vulnerability in Mozilla firefox-and-thunderbird (CVE-2020-6819)
vulnerability in Mozilla firefox-and-thunderbird (CVE-2020-6819). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-6820 KEV [KEV] Vulnerability in Mozilla firefox-and-thunderbird (CVE-2020-6820)
vulnerability in Mozilla firefox-and-thunderbird (CVE-2020-6820). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-17026 KEV [KEV] Vulnerability in Mozilla firefox-and-thunderbird (CVE-2019-17026)
vulnerability in Mozilla firefox-and-thunderbird (CVE-2019-17026). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-15949 KEV [KEV] OS Command Injection in nagios (CVE-2019-15949)
OS command injection in nagios (CVE-2019-15949). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-26919 KEV [KEV] Vulnerability in Netgear jgs516pe-devices (CVE-2020-26919)
vulnerability in Netgear jgs516pe-devices (CVE-2020-26919). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-19356 KEV [KEV] OS Command Injection in Netis wf2419-devices (CVE-2019-19356)
OS command injection in Netis wf2419-devices (CVE-2019-19356). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-2555 KEV [KEV] Unsafe Deserialization in Oracle multiple-products (CVE-2020-2555)
vulnerability in Oracle multiple-products (CVE-2020-2555). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2012-3152 KEV [KEV] Vulnerability in Oracle fusion-middleware (CVE-2012-3152)
vulnerability in Oracle fusion-middleware (CVE-2012-3152). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-14871 KEV [KEV] Out-of-Bounds Write in Oracle solaris-and-zettabyte-file-system-zfs (CVE-2020-14871)
out-of-bounds write in Oracle solaris-and-zettabyte-file-system-zfs (CVE-2020-14871). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-4852 KEV [KEV] Unsafe Deserialization in Oracle weblogic-server (CVE-2015-4852)
vulnerability in Oracle weblogic-server (CVE-2015-4852). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-14750 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14750)
vulnerability in Oracle weblogic-server (CVE-2020-14750). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-14882 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14882)
vulnerability in Oracle weblogic-server (CVE-2020-14882). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-14883 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14883)
vulnerability in Oracle weblogic-server (CVE-2020-14883). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-8644 KEV [KEV] Code Injection in playsms (CVE-2020-8644)
code injection in playsms (CVE-2020-8644). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-18935 KEV [KEV] Unsafe Deserialization in Progress telerik-ui-for-aspnet-ajax (CVE-2019-18935)
vulnerability in Progress telerik-ui-for-aspnet-ajax (CVE-2019-18935). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22893 KEV [KEV] Authentication Bypass in Ivanti pulse-connect-secure (CVE-2021-22893)
authentication bypass in Ivanti pulse-connect-secure (CVE-2021-22893). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-8243 KEV [KEV] Code Injection in Ivanti pulse-connect-secure (CVE-2020-8243)
code injection in Ivanti pulse-connect-secure (CVE-2020-8243). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22900 KEV [KEV] Code Injection in Ivanti pulse-connect-secure (CVE-2021-22900)
code injection in Ivanti pulse-connect-secure (CVE-2021-22900). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22894 KEV [KEV] Code Injection in Ivanti pulse-connect-secure (CVE-2021-22894)
code injection in Ivanti pulse-connect-secure (CVE-2021-22894). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-8260 KEV [KEV] Unrestricted File Upload in Ivanti pulse-connect-secure (CVE-2020-8260)
vulnerability in Ivanti pulse-connect-secure (CVE-2020-8260). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-22899 KEV [KEV] Command Injection in Ivanti pulse-connect-secure (CVE-2021-22899)
command injection in Ivanti pulse-connect-secure (CVE-2021-22899). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-11510 KEV [KEV] Path Traversal in Ivanti pulse-connect-secure (CVE-2019-11510)
path traversal in Ivanti pulse-connect-secure (CVE-2019-11510). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-11539 KEV [KEV] OS Command Injection in Ivanti pulse-connect-secure-and-pulse-policy-secure (CVE-2019-11539)
OS command injection in Ivanti pulse-connect-secure-and-pulse-policy-secure (CVE-2019-11539). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-10221 KEV [KEV] OS Command Injection in rconfig (CVE-2020-10221)
OS command injection in rconfig (CVE-2020-10221). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-35395 KEV [KEV] Vulnerability in Realtek ap-router-sdk (CVE-2021-35395)
vulnerability in Realtek ap-router-sdk (CVE-2021-35395). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-16651 KEV [KEV] Vulnerability in roundcube (CVE-2017-16651)
vulnerability in roundcube (CVE-2017-16651). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-2380 KEV [KEV] Path Traversal in Sap customer-relationship-management-crm (CVE-2018-2380)
path traversal in Sap customer-relationship-management-crm (CVE-2018-2380). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2010-5326 KEV [KEV] Vulnerability in Sap netweaver (CVE-2010-5326)
vulnerability in Sap netweaver (CVE-2010-5326). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-9563 KEV [KEV] XXE (XML External Entity) in Sap netweaver (CVE-2016-9563)
vulnerability in Sap netweaver (CVE-2016-9563). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-6287 KEV [KEV] Vulnerability in Sap netweaver (CVE-2020-6287)
vulnerability in Sap netweaver (CVE-2020-6287). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-6207 KEV [KEV] Vulnerability in Sap solution-manager (CVE-2020-6207)
vulnerability in Sap solution-manager (CVE-2020-6207). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3976 KEV [KEV] Path Traversal in Sap netweaver (CVE-2016-3976)
path traversal in Sap netweaver (CVE-2016-3976). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-16256 KEV [KEV] Vulnerability in Simalliance toolbox-browser (CVE-2019-16256)
vulnerability in Simalliance toolbox-browser (CVE-2019-16256). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-10148 KEV [KEV] Vulnerability in Solarwinds orion (CVE-2020-10148)
vulnerability in Solarwinds orion (CVE-2020-10148). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-35211 KEV [KEV] Out-of-Bounds Write in Solarwinds serv-u (CVE-2021-35211)
out-of-bounds write in Solarwinds serv-u (CVE-2021-35211). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3643 KEV [KEV] Vulnerability in Solarwinds virtualization-manager (CVE-2016-3643)
vulnerability in Solarwinds virtualization-manager (CVE-2016-3643). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-10199 KEV [KEV] Vulnerability in Sonatype nexus-repository (CVE-2020-10199)
vulnerability in Sonatype nexus-repository (CVE-2020-10199). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20021 KEV [KEV] Vulnerability in sonicwall (CVE-2021-20021)
vulnerability in sonicwall (CVE-2021-20021). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-7481 KEV [KEV] SQL Injection in Sonicwall sma100 (CVE-2019-7481)
SQL injection in Sonicwall sma100 (CVE-2019-7481). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20022 KEV [KEV] Unrestricted File Upload in sonicwall (CVE-2021-20022)
vulnerability in sonicwall (CVE-2021-20022). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20023 KEV [KEV] Path Traversal in sonicwall (CVE-2021-20023)
path traversal in sonicwall (CVE-2021-20023). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20016 KEV [KEV] SQL Injection in Sonicwall sslvpn-sma100 (CVE-2021-20016)
SQL injection in Sonicwall sslvpn-sma100 (CVE-2021-20016). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-12271 KEV [KEV] SQL Injection in Sophos sfos (CVE-2020-12271)
SQL injection in Sophos sfos (CVE-2020-12271). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-10181 KEV [KEV] Cross-Site Request Forgery (CSRF) in Sumavision enhanced-multimedia-router-emr (CVE-2020-10181)
vulnerability in Sumavision enhanced-multimedia-router-emr (CVE-2020-10181). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-6327 KEV [KEV] Vulnerability in symantec (CVE-2017-6327)
vulnerability in symantec (CVE-2017-6327). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →