Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2016-0040 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2016-0040)
vulnerability in Microsoft windows (CVE-2016-0040). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-2426 KEV |
|
[KEV] Buffer Overflow in Microsoft windows (CVE-2015-2426)
vulnerability in Microsoft windows (CVE-2015-2426). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-2419 KEV |
|
[KEV] Buffer Overflow in Microsoft internet-explorer (CVE-2015-2419)
vulnerability in Microsoft internet-explorer (CVE-2015-2419). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1770 KEV |
|
[KEV] Vulnerability in Microsoft office (CVE-2015-1770)
vulnerability in Microsoft office (CVE-2015-1770). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-3660 KEV |
|
[KEV] Buffer Overflow in Microsoft win32k (CVE-2013-3660)
vulnerability in Microsoft win32k (CVE-2013-3660). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-2729 KEV |
|
[KEV] Vulnerability in Adobe reader-and-acrobat (CVE-2013-2729)
vulnerability in Adobe reader-and-acrobat (CVE-2013-2729). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-2551 KEV |
|
[KEV] Use-After-Free in Microsoft internet-explorer (CVE-2013-2551)
vulnerability in Microsoft internet-explorer (CVE-2013-2551). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-2465 KEV |
|
[KEV] Vulnerability in Oracle java-se (CVE-2013-2465)
vulnerability in Oracle java-se (CVE-2013-2465). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-1690 KEV |
|
[KEV] Buffer Overflow in Mozilla firefox-and-thunderbird (CVE-2013-1690)
vulnerability in Mozilla firefox-and-thunderbird (CVE-2013-1690). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-5076 KEV |
|
[KEV] Vulnerability in Oracle java-se (CVE-2012-5076)
vulnerability in Oracle java-se (CVE-2012-5076). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-2539 KEV |
|
[KEV] Vulnerability in Microsoft word (CVE-2012-2539)
vulnerability in Microsoft word (CVE-2012-2539). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-2034 KEV |
|
[KEV] Buffer Overflow in Adobe flash-player (CVE-2012-2034)
vulnerability in Adobe flash-player (CVE-2012-2034). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-0518 KEV |
|
[KEV] Open Redirect in Oracle fusion-middleware (CVE-2012-0518)
vulnerability in Oracle fusion-middleware (CVE-2012-0518). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2011-2005 KEV |
|
[KEV] Vulnerability in Microsoft ancillary-function-driver-afdsys (CVE-2011-2005)
vulnerability in Microsoft ancillary-function-driver-afdsys (CVE-2011-2005). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-4398 KEV |
|
[KEV] Buffer Overflow in Microsoft windows (CVE-2010-4398)
vulnerability in Microsoft windows (CVE-2010-4398). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-1273 KEV |
|
[KEV] Code Injection in Vmware tanzu vmware-tanzu (CVE-2018-1273)
code injection in Vmware tanzu vmware-tanzu (CVE-2018-1273). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2021-42237 KEV |
|
[KEV] Unsafe Deserialization in Sitecore xp (CVE-2021-42237)
vulnerability in Sitecore xp (CVE-2021-42237). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2022-26318 KEV |
|
[KEV] Vulnerability in Watchguard firebox-and-xtm-appliances (CVE-2022-26318)
vulnerability in Watchguard firebox-and-xtm-appliances (CVE-2022-26318). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-26143 KEV |
|
[KEV] Vulnerability in Mitel micollab (CVE-2022-26143)
vulnerability in Mitel micollab (CVE-2022-26143). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-21999 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2022-21999)
vulnerability in Microsoft windows (CVE-2022-21999). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22941 KEV |
|
[KEV] Vulnerability in Citrix sharefile (CVE-2021-22941)
vulnerability in Citrix sharefile (CVE-2021-22941). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-9377 KEV |
|
[KEV] OS Command Injection in D-link dir-610-devices (CVE-2020-9377)
OS command injection in D-link dir-610-devices (CVE-2020-9377). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-9054 KEV |
|
[KEV] OS Command Injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2020-9054)
OS command injection in Zyxel multiple-network-attached-storage-nas-devices (CVE-2020-9054). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-7247 KEV |
|
[KEV] Vulnerability in Openbsd opensmtpd (CVE-2020-7247)
vulnerability in Openbsd opensmtpd (CVE-2020-7247). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-5410 KEV |
|
[KEV] Vulnerability in Vmware tanzu vmware-tanzu (CVE-2020-5410)
vulnerability in Vmware tanzu vmware-tanzu (CVE-2020-5410). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-25223 KEV |
|
[KEV] OS Command Injection in Sophos sg-utm (CVE-2020-25223)
OS command injection in Sophos sg-utm (CVE-2020-25223). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-2506 KEV |
|
[KEV] Vulnerability in Qnap systems qnap-systems (CVE-2020-2506)
vulnerability in Qnap systems qnap-systems (CVE-2020-2506). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-2021 KEV |
|
[KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2020-2021)
vulnerability in Palo alto networks palo-alto-networks (CVE-2020-2021). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-1956 KEV |
|
[KEV] OS Command Injection in Apache kylin (CVE-2020-1956)
OS command injection in Apache kylin (CVE-2020-1956). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-1631 KEV |
|
[KEV] Path Traversal in Juniper junos-os (CVE-2020-1631)
path traversal in Juniper junos-os (CVE-2020-1631). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-6340 KEV |
|
[KEV] Unsafe Deserialization in Drupal core (CVE-2019-6340)
vulnerability in Drupal core (CVE-2019-6340). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-2616 KEV |
|
[KEV] Vulnerability in Oracle bi-publisher-formerly-xml-publisher (CVE-2019-2616)
vulnerability in Oracle bi-publisher-formerly-xml-publisher (CVE-2019-2616). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-16920 KEV |
|
[KEV] OS Command Injection in D-link multiple-routers (CVE-2019-16920)
OS command injection in D-link multiple-routers (CVE-2019-16920). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-15107 KEV |
|
[KEV] OS Command Injection in webmin (CVE-2019-15107)
OS command injection in webmin (CVE-2019-15107). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-12991 KEV |
|
[KEV] OS Command Injection in Citrix sd-wan-and-netscaler (CVE-2019-12991)
OS command injection in Citrix sd-wan-and-netscaler (CVE-2019-12991). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-12989 KEV |
|
[KEV] SQL Injection in Citrix sd-wan-and-netscaler (CVE-2019-12989)
SQL injection in Citrix sd-wan-and-netscaler (CVE-2019-12989). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-11043 KEV |
|
[KEV] Vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043)
vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-10068 KEV |
|
[KEV] Unsafe Deserialization in Kentico xperience (CVE-2019-10068)
vulnerability in Kentico xperience (CVE-2019-10068). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1003030 KEV |
|
[KEV] Vulnerability in Jenkins matrix-project-plugin (CVE-2019-1003030)
vulnerability in Jenkins matrix-project-plugin (CVE-2019-1003030). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-0903 KEV |
|
[KEV] Vulnerability in Microsoft graphics-device-interface-gdi (CVE-2019-0903)
vulnerability in Microsoft graphics-device-interface-gdi (CVE-2019-0903). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-8414 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2018-8414)
vulnerability in Microsoft windows (CVE-2018-8414). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-8373 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft internet-explorer-scripting-engine (CVE-2018-8373)
out-of-bounds write in Microsoft internet-explorer-scripting-engine (CVE-2018-8373). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-6961 KEV |
|
[KEV] OS Command Injection in Vmware sd-wan-edge (CVE-2018-6961)
OS command injection in Vmware sd-wan-edge (CVE-2018-6961). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-14839 KEV |
|
[KEV] OS Command Injection in Lg n1a1-nas (CVE-2018-14839)
OS command injection in Lg n1a1-nas (CVE-2018-14839). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-11138 KEV |
|
[KEV] OS Command Injection in Quest kace-system-management-appliance (CVE-2018-11138)
OS command injection in Quest kace-system-management-appliance (CVE-2018-11138). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-0147 KEV |
|
[KEV] Vulnerability in Cisco secure-access-control-system-acs (CVE-2018-0147)
vulnerability in Cisco secure-access-control-system-acs (CVE-2018-0147). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-0125 KEV |
|
[KEV] Vulnerability in Cisco vpn-routers (CVE-2018-0125)
vulnerability in Cisco vpn-routers (CVE-2018-0125). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6334 KEV |
|
[KEV] OS Command Injection in Netgear dgn2200-devices (CVE-2017-6334)
OS command injection in Netgear dgn2200-devices (CVE-2017-6334). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6316 KEV |
|
[KEV] Vulnerability in Citrix netscaler-sd-wan-enterprise (CVE-2017-6316)
vulnerability in Citrix netscaler-sd-wan-enterprise (CVE-2017-6316). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-3881 KEV |
|
[KEV] Vulnerability in Cisco ios-and-ios-xe (CVE-2017-3881)
vulnerability in Cisco ios-and-ios-xe (CVE-2017-3881). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|