Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2022-23227 KEV |
|
[KEV] Vulnerability in Nuuo nvrmini2-devices (CVE-2022-23227)
vulnerability in Nuuo nvrmini2-devices (CVE-2022-23227). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-40407 KEV |
|
[KEV] OS Command Injection in Reolink rlc-410w-ip-camera (CVE-2021-40407)
OS command injection in Reolink rlc-410w-ip-camera (CVE-2021-40407). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-14933 KEV |
|
[KEV] OS Command Injection in Nuuo nvrmini-devices (CVE-2018-14933)
OS command injection in Nuuo nvrmini-devices (CVE-2018-14933). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-55956 KEV |
|
[KEV] Vulnerability in Cleo multiple-products (CVE-2024-55956)
vulnerability in Cleo multiple-products (CVE-2024-55956). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-20767 KEV |
|
[KEV] Vulnerability in Adobe coldfusion (CVE-2024-20767)
vulnerability in Adobe coldfusion (CVE-2024-20767). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-35250 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-35250)
vulnerability in Microsoft windows (CVE-2024-35250). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-50623 KEV |
|
[KEV] Unrestricted File Upload in Cleo multiple-products (CVE-2024-50623)
vulnerability in Cleo multiple-products (CVE-2024-50623). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-49138 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-49138)
vulnerability in Microsoft windows (CVE-2024-49138). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-51378 KEV |
|
[KEV] Vulnerability in Cyberpersons cyberpanel (CVE-2024-51378)
vulnerability in Cyberpersons cyberpanel (CVE-2024-51378). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-11667 KEV |
|
[KEV] Path Traversal in Zyxel multiple-firewalls (CVE-2024-11667)
path traversal in Zyxel multiple-firewalls (CVE-2024-11667). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-11680 KEV |
|
[KEV] Authentication Bypass in projectsend (CVE-2024-11680)
authentication bypass in projectsend (CVE-2024-11680). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-45727 KEV |
|
[KEV] XXE (XML External Entity) in North grid north-grid (CVE-2023-45727)
vulnerability in North grid north-grid (CVE-2023-45727). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-28461 KEV |
|
[KEV] Vulnerability in Array networks array-networks (CVE-2023-28461)
vulnerability in Array networks array-networks (CVE-2023-28461). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-21287 KEV |
|
[KEV] Authorization Flaw in Oracle agile-product-lifecycle-management-plm (CVE-2024-21287)
vulnerability in Oracle agile-product-lifecycle-management-plm (CVE-2024-21287). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-44309 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Apple multiple-products (CVE-2024-44309)
cross-site scripting in Apple multiple-products (CVE-2024-44309). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-44308 KEV |
|
[KEV] Vulnerability in Apple multiple-products (CVE-2024-44308)
vulnerability in Apple multiple-products (CVE-2024-44308). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-38812 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server (CVE-2024-38812)
vulnerability in Vmware vcenter-server (CVE-2024-38812). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-38813 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server (CVE-2024-38813)
vulnerability in Vmware vcenter-server (CVE-2024-38813). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9474 KEV |
|
[KEV] Command Injection in Palo alto networks palo-alto-networks (CVE-2024-9474)
command injection in Palo alto networks palo-alto-networks (CVE-2024-9474). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-0012 KEV |
|
[KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2024-0012)
vulnerability in Palo alto networks palo-alto-networks (CVE-2024-0012). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-1212 KEV |
|
[KEV] OS Command Injection in Progress kemp-loadmaster (CVE-2024-1212)
OS command injection in Progress kemp-loadmaster (CVE-2024-1212). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9465 KEV |
|
[KEV] SQL Injection in Palo alto networks palo-alto-networks (CVE-2024-9465)
SQL injection in Palo alto networks palo-alto-networks (CVE-2024-9465). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9463 KEV |
|
[KEV] OS Command Injection in Palo alto networks palo-alto-networks (CVE-2024-9463)
OS command injection in Palo alto networks palo-alto-networks (CVE-2024-9463). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-26086 KEV |
|
[KEV] Path Traversal in Atlassian jira-server-and-data-center (CVE-2021-26086)
path traversal in Atlassian jira-server-and-data-center (CVE-2021-26086). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-2120 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Cisco adaptive-security-appliance-asa (CVE-2014-2120)
cross-site scripting in Cisco adaptive-security-appliance-asa (CVE-2014-2120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-41277 KEV |
|
[KEV] Information Disclosure in metabase (CVE-2021-41277)
vulnerability in metabase (CVE-2021-41277). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43451 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-43451)
vulnerability in Microsoft windows (CVE-2024-43451). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-49039 KEV |
|
[KEV] Authentication Bypass in Microsoft windows (CVE-2024-49039)
authentication bypass in Microsoft windows (CVE-2024-49039). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-16278 KEV |
|
[KEV] Path Traversal in Nostromo nhttpd (CVE-2019-16278)
path traversal in Nostromo nhttpd (CVE-2019-16278). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-51567 KEV |
|
[KEV] Vulnerability in Cyberpersons cyberpanel (CVE-2024-51567)
vulnerability in Cyberpersons cyberpanel (CVE-2024-51567). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43093 KEV |
|
[KEV] Vulnerability in Android framework (CVE-2024-43093)
vulnerability in Android framework (CVE-2024-43093). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-5910 KEV |
|
[KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2024-5910)
vulnerability in Palo alto networks palo-alto-networks (CVE-2024-5910). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-8956 KEV |
|
[KEV] Authentication Bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956)
authentication bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-8957 KEV |
|
[KEV] OS Command Injection in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8957)
OS command injection in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8957). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-37383 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2024-37383)
cross-site scripting in Roundcube webmail (CVE-2024-37383). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-20481 KEV |
|
[KEV] Vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20481)
vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20481). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-47575 KEV |
|
[KEV] Vulnerability in Fortinet fortimanager (CVE-2024-47575)
vulnerability in Fortinet fortimanager (CVE-2024-47575). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-38094 KEV |
|
[KEV] Unsafe Deserialization in Microsoft sharepoint (CVE-2024-38094)
vulnerability in Microsoft sharepoint (CVE-2024-38094). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9537 KEV |
|
[KEV] Vulnerability in Sciencelogic sl1 (CVE-2024-9537)
vulnerability in Sciencelogic sl1 (CVE-2024-9537). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-40711 KEV |
|
[KEV] Unsafe Deserialization in Veeam backup-replication (CVE-2024-40711)
vulnerability in Veeam backup-replication (CVE-2024-40711). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-28987 KEV |
|
[KEV] Vulnerability in Solarwinds web-help-desk (CVE-2024-28987)
vulnerability in Solarwinds web-help-desk (CVE-2024-28987). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9680 KEV |
|
[KEV] Use-After-Free in Mozilla firefox (CVE-2024-9680)
vulnerability in Mozilla firefox (CVE-2024-9680). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-30088 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-30088)
vulnerability in Microsoft windows (CVE-2024-30088). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9380 KEV |
|
[KEV] Command Injection in Ivanti cloud-services-appliance-csa (CVE-2024-9380)
command injection in Ivanti cloud-services-appliance-csa (CVE-2024-9380). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9379 KEV |
|
[KEV] SQL Injection in Ivanti cloud-services-appliance-csa (CVE-2024-9379)
SQL injection in Ivanti cloud-services-appliance-csa (CVE-2024-9379). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-23113 KEV |
|
[KEV] Vulnerability in Fortinet multiple-products (CVE-2024-23113)
vulnerability in Fortinet multiple-products (CVE-2024-23113). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43573 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Microsoft windows (CVE-2024-43573)
cross-site scripting in Microsoft windows (CVE-2024-43573). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43572 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-43572)
vulnerability in Microsoft windows (CVE-2024-43572). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43047 KEV |
|
[KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2024-43047)
vulnerability in Qualcomm multiple-chipsets (CVE-2024-43047). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-45519 KEV |
|
[KEV] Vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2024-45519)
vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2024-45519). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|