Sign in Sign up
JA · EN · FR
SecPulse

Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Categories
All 🌐 Web Application 🧭 Browser 🖥️ Operating System 📱 Mobile 🛰️ Network Infrastructure ☁️ Cloud / Container 📝 CMS / Site Builder 🗄️ Database / Storage 🔐 Auth / Identity 🔑 Cryptography 🛠️ DevOps / CI-CD 🤖 AI / ML 🔌 IoT / Embedded 🧩 Hardware / Firmware 🏢 Enterprise SaaS 🧰 Developer Tooling ☠️ Malicious Package 📦 Other
Tag groups
All 💬 Programming Languages 22 🧱 Web Frameworks 29 📱 Mobile Platforms 6 🤖 AI/ML Frameworks 11 🖥️ Web Servers 9 🗄️ Databases 13 📝 CMS 9 ☁️ Cloud Platforms 11 📦 Container Tech 12 🖥️ Operating Systems 15 ⚔️ Attack Types 25 🧬 CWE 185 🏢 Vendors 581 📦 Products 666 🌳 Package Ecosystems 24 🛠️ DevOps Tools 17 📡 Protocols 15
Popular tags (Top 40)
Rootio Linux419 Microsoft386 C237 Java183 Jre178 Java Min178 Bitnami178 Windows177 Rootdebian11175 Rootdebian12151 Linux130 Cwe 20125 Cwe 78120 Linux Kernel106 Cwe 787105 Apple99 Cwe 41699 Cwe 2296 Rootdebian1393 Cwe 11990 Cisco89 Denial of Service85 Cwe 9484 Multiple Products79 Adobe78 Google77 Cwe 50270 Cwe 7966 Cwe 8954 Apache47 Cwe 91844 Cwe 28443 Oracle42 Cwe 28741 JavaScript41 PHP41 Cwe 7740 Chromium V838 Cwe 30638 Cwe 84337
ID Title
CVE-2024-43451 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-43451)
vulnerability in Microsoft windows (CVE-2024-43451). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-41277 KEV [KEV] Information Disclosure in metabase (CVE-2021-41277)
vulnerability in metabase (CVE-2021-41277). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-2120 KEV [KEV] Cross-Site Scripting (XSS) in Cisco adaptive-security-appliance-asa (CVE-2014-2120)
cross-site scripting in Cisco adaptive-security-appliance-asa (CVE-2014-2120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-26086 KEV [KEV] Path Traversal in Atlassian jira-server-and-data-center (CVE-2021-26086)
path traversal in Atlassian jira-server-and-data-center (CVE-2021-26086). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-5910 KEV [KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2024-5910)
vulnerability in Palo alto networks palo-alto-networks (CVE-2024-5910). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43093 KEV [KEV] Vulnerability in Android framework (CVE-2024-43093)
vulnerability in Android framework (CVE-2024-43093). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-51567 KEV [KEV] Vulnerability in Cyberpersons cyberpanel (CVE-2024-51567)
vulnerability in Cyberpersons cyberpanel (CVE-2024-51567). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-16278 KEV [KEV] Path Traversal in Nostromo nhttpd (CVE-2019-16278)
path traversal in Nostromo nhttpd (CVE-2019-16278). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-8957 KEV [KEV] OS Command Injection in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8957)
OS command injection in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8957). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-8956 KEV [KEV] Authentication Bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956)
authentication bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-20481 KEV [KEV] Vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20481)
vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20481). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-37383 KEV [KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2024-37383)
cross-site scripting in Roundcube webmail (CVE-2024-37383). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-47575 KEV [KEV] Vulnerability in Fortinet fortimanager (CVE-2024-47575)
vulnerability in Fortinet fortimanager (CVE-2024-47575). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-38094 KEV [KEV] Unsafe Deserialization in Microsoft sharepoint (CVE-2024-38094)
vulnerability in Microsoft sharepoint (CVE-2024-38094). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-9537 KEV [KEV] Vulnerability in Sciencelogic sl1 (CVE-2024-9537)
vulnerability in Sciencelogic sl1 (CVE-2024-9537). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-40711 KEV [KEV] Unsafe Deserialization in Veeam backup-replication (CVE-2024-40711)
vulnerability in Veeam backup-replication (CVE-2024-40711). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-30088 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-30088)
vulnerability in Microsoft windows (CVE-2024-30088). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-9680 KEV [KEV] Use-After-Free in Mozilla firefox (CVE-2024-9680)
vulnerability in Mozilla firefox (CVE-2024-9680). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-28987 KEV [KEV] Vulnerability in Solarwinds web-help-desk (CVE-2024-28987)
vulnerability in Solarwinds web-help-desk (CVE-2024-28987). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-9379 KEV [KEV] SQL Injection in Ivanti cloud-services-appliance-csa (CVE-2024-9379)
SQL injection in Ivanti cloud-services-appliance-csa (CVE-2024-9379). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-9380 KEV [KEV] Command Injection in Ivanti cloud-services-appliance-csa (CVE-2024-9380)
command injection in Ivanti cloud-services-appliance-csa (CVE-2024-9380). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-23113 KEV [KEV] Vulnerability in Fortinet multiple-products (CVE-2024-23113)
vulnerability in Fortinet multiple-products (CVE-2024-23113). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43047 KEV [KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2024-43047)
vulnerability in Qualcomm multiple-chipsets (CVE-2024-43047). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43572 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-43572)
vulnerability in Microsoft windows (CVE-2024-43572). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43573 KEV [KEV] Cross-Site Scripting (XSS) in Microsoft windows (CVE-2024-43573)
cross-site scripting in Microsoft windows (CVE-2024-43573). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-45519 KEV [KEV] Vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2024-45519)
vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2024-45519). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-29824 KEV [KEV] SQL Injection in Ivanti endpoint-manager-epm (CVE-2024-29824)
SQL injection in Ivanti endpoint-manager-epm (CVE-2024-29824). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-25280 KEV [KEV] OS Command Injection in D-link dir-820-router (CVE-2023-25280)
OS command injection in D-link dir-820-router (CVE-2023-25280). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-15415 KEV [KEV] OS Command Injection in Draytek multiple-vigor-routers (CVE-2020-15415)
OS command injection in Draytek multiple-vigor-routers (CVE-2020-15415). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-0344 KEV [KEV] Unsafe Deserialization in Sap commerce-cloud (CVE-2019-0344)
vulnerability in Sap commerce-cloud (CVE-2019-0344). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-7593 KEV [KEV] Authentication Bypass in Ivanti virtual-traffic-manager (CVE-2024-7593)
authentication bypass in Ivanti virtual-traffic-manager (CVE-2024-7593). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-8963 KEV [KEV] Path Traversal in Ivanti cloud-services-appliance-csa (CVE-2024-8963)
path traversal in Ivanti cloud-services-appliance-csa (CVE-2024-8963). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-27348 KEV [KEV] Vulnerability in Apache hugegraph-server (CVE-2024-27348)
vulnerability in Apache hugegraph-server (CVE-2024-27348). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0618 KEV [KEV] Unsafe Deserialization in Microsoft sql-server (CVE-2020-0618)
vulnerability in Microsoft sql-server (CVE-2020-0618). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-21445 KEV [KEV] Unsafe Deserialization in Oracle adf-faces (CVE-2022-21445)
vulnerability in Oracle adf-faces (CVE-2022-21445). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-14644 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14644)
vulnerability in Oracle weblogic-server (CVE-2020-14644). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-0497 KEV [KEV] Vulnerability in Adobe flash-player (CVE-2014-0497)
vulnerability in Adobe flash-player (CVE-2014-0497). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-0643 KEV [KEV] Vulnerability in Adobe flash-player (CVE-2013-0643)
vulnerability in Adobe flash-player (CVE-2013-0643). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-0648 KEV [KEV] Vulnerability in Adobe flash-player (CVE-2013-0648)
vulnerability in Adobe flash-player (CVE-2013-0648). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-0502 KEV [KEV] Vulnerability in Adobe flash-player (CVE-2014-0502)
vulnerability in Adobe flash-player (CVE-2014-0502). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-43461 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-43461)
vulnerability in Microsoft windows (CVE-2024-43461). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-6670 KEV [KEV] SQL Injection in Progress whatsup-gold (CVE-2024-6670)
SQL injection in Progress whatsup-gold (CVE-2024-6670). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-8190 KEV [KEV] OS Command Injection in Ivanti cloud-services-appliance (CVE-2024-8190)
OS command injection in Ivanti cloud-services-appliance (CVE-2024-8190). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-38226 KEV [KEV] Vulnerability in Microsoft publisher (CVE-2024-38226)
vulnerability in Microsoft publisher (CVE-2024-38226). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-38014 KEV [KEV] Privilege Escalation in Microsoft windows (CVE-2024-38014)
vulnerability in Microsoft windows (CVE-2024-38014). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-38217 KEV [KEV] Vulnerability in Microsoft windows (CVE-2024-38217)
vulnerability in Microsoft windows (CVE-2024-38217). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-40766 KEV [KEV] Vulnerability in Sonicwall sonicos (CVE-2024-40766)
vulnerability in Sonicwall sonicos (CVE-2024-40766). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-1000253 KEV [KEV] Buffer Overflow in Linux kernel (CVE-2017-1000253)
vulnerability in Linux kernel (CVE-2017-1000253). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3714 KEV [KEV] Vulnerability in imagemagick (CVE-2016-3714)
vulnerability in imagemagick (CVE-2016-3714). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20124 KEV [KEV] Path Traversal in Draytek vigorconnect (CVE-2021-20124)
path traversal in Draytek vigorconnect (CVE-2021-20124). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →