Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2025-61524 Vulnerability in CVE-2025-61524 (CVE-2025-61524)
vulnerability in CVE-2025-61524 (CVE-2025-61524). Successful exploitation can lead to full system takeover.
CVE-2023-53629 Use-After-Free in linux (CVE-2023-53629)
vulnerability in linux (CVE-2023-53629). Successful exploitation can lead to full system takeover.
CVE-2022-50552 Use-After-Free in linux (CVE-2022-50552)
vulnerability in linux (CVE-2022-50552). Successful exploitation can lead to full system takeover.
CVE-2025-27915 KEV [KEV] Cross-Site Scripting (XSS) in Synacor zimbra-collaboration-suite-zcs (CVE-2025-27915)
cross-site scripting in Synacor zimbra-collaboration-suite-zcs (CVE-2025-27915). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-60967 Cross-Site Scripting (XSS) in endruntechnologies (CVE-2025-60967)
cross-site scripting in endruntechnologies (CVE-2025-60967). Confidential information can be exposed externally.
CVE-2025-60963 OS Command Injection in dos (CVE-2025-60963)
OS command injection in dos (CVE-2025-60963). Data can be tampered with by attackers.
CVE-2025-60962 OS Command Injection in endruntechnologies (CVE-2025-60962)
OS command injection in endruntechnologies (CVE-2025-60962). Data can be tampered with by attackers.
CVE-2025-60960 OS Command Injection in dos (CVE-2025-60960)
OS command injection in dos (CVE-2025-60960). Data can be tampered with by attackers.
CVE-2025-60959 OS Command Injection in endruntechnologies (CVE-2025-60959)
OS command injection in endruntechnologies (CVE-2025-60959). Data can be tampered with by attackers.
CVE-2025-60956 Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-60956)
vulnerability in csrf (CVE-2025-60956). Successful exploitation can lead to full system takeover.
CVE-2025-60958 Cross-Site Scripting (XSS) in endruntechnologies (CVE-2025-60958)
cross-site scripting in endruntechnologies (CVE-2025-60958). Confidential information can be exposed externally.
CVE-2021-22555 KEV [KEV] Out-of-Bounds Write in Linux kernel (CVE-2021-22555)
out-of-bounds write in Linux kernel (CVE-2021-22555). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2010-3962 KEV [KEV] Vulnerability in Microsoft internet-explorer (CVE-2010-3962)
vulnerability in Microsoft internet-explorer (CVE-2010-3962). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-43226 KEV [KEV] Vulnerability in Microsoft windows (CVE-2021-43226)
vulnerability in Microsoft windows (CVE-2021-43226). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-3918 KEV [KEV] Vulnerability in Microsoft windows (CVE-2013-3918)
vulnerability in Microsoft windows (CVE-2013-3918). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2011-3402 KEV [KEV] Vulnerability in Microsoft windows (CVE-2011-3402)
vulnerability in Microsoft windows (CVE-2011-3402). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2010-3765 KEV [KEV] Vulnerability in Mozilla multiple-products (CVE-2010-3765)
vulnerability in Mozilla multiple-products (CVE-2010-3765). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-61882 KEV [KEV] Vulnerability in Oracle e-business-suite (CVE-2025-61882)
vulnerability in Oracle e-business-suite (CVE-2025-61882). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-53596 Vulnerability in linux (CVE-2023-53596)
vulnerability in linux (CVE-2023-53596). Successful exploitation can lead to full system takeover.
CVE-2023-53543 Out-of-Bounds Write in linux (CVE-2023-53543)
out-of-bounds write in linux (CVE-2023-53543). Successful exploitation can lead to full system takeover.
CVE-2025-60787 Vulnerability in motioneye-project (CVE-2025-60787)
vulnerability in motioneye-project (CVE-2025-60787). Successful exploitation can lead to full system takeover.
CVE-2025-11234 Use-After-Free in dos (CVE-2025-11234)
vulnerability in dos (CVE-2025-11234). Risk of unauthorized operations or information disclosure.
CVE-2025-0616 SQL Injection in sqli (CVE-2025-0616)
SQL injection in sqli (CVE-2025-0616). Confidential information can be exposed externally.
CVE-2014-6278 KEV [KEV] OS Command Injection in gnu (CVE-2014-6278)
OS command injection in gnu (CVE-2014-6278). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-1000353 KEV [KEV] Vulnerability in jenkins (CVE-2017-1000353)
vulnerability in jenkins (CVE-2017-1000353). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-7755 KEV [KEV] Authentication Bypass in Juniper screenos (CVE-2015-7755)
authentication bypass in Juniper screenos (CVE-2015-7755). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-21043 KEV [KEV] Out-of-Bounds Write in Samsung mobile-devices (CVE-2025-21043)
out-of-bounds write in Samsung mobile-devices (CVE-2025-21043). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-4008 KEV [KEV] Vulnerability in Smartbedded meteobridge (CVE-2025-4008)
vulnerability in Smartbedded meteobridge (CVE-2025-4008). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-56588 Code Injection in dolibarr (CVE-2025-56588)
code injection in dolibarr (CVE-2025-56588). Successful exploitation can lead to full system takeover.
CVE-2025-57393 Cross-Site Scripting (XSS) in CVE-2025-57393 (CVE-2025-57393)
cross-site scripting in CVE-2025-57393 (CVE-2025-57393). Successful exploitation can lead to full system takeover.
CVE-2025-28357 Vulnerability in CVE-2025-28357 (CVE-2025-28357)
vulnerability in CVE-2025-28357 (CVE-2025-28357). Successful exploitation can lead to full system takeover.
CVE-2023-53510 Vulnerability in c (CVE-2023-53510)
vulnerability in c (CVE-2023-53510). Successful exploitation can lead to full system takeover.
CVE-2025-39913 Vulnerability in c (CVE-2025-39913)
vulnerability in c (CVE-2025-39913). Successful exploitation can lead to full system takeover.
CVE-2025-56572 Vulnerability in dos (CVE-2025-56572)
vulnerability in dos (CVE-2025-56572). Risk of unauthorized operations or information disclosure.
CVE-2025-56571 Vulnerability in dos (CVE-2025-56571)
vulnerability in dos (CVE-2025-56571). Risk of unauthorized operations or information disclosure.
CVE-2025-9230 Out-of-Bounds Read in dos (CVE-2025-9230)
vulnerability in dos (CVE-2025-9230). Risk of unauthorized operations or information disclosure.
CVE-2025-32463 KEV [KEV] Vulnerability in sudo (CVE-2025-32463)
vulnerability in sudo (CVE-2025-32463). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-59689 KEV [KEV] Command Injection in Libraesva email-security-gateway (CVE-2025-59689)
command injection in Libraesva email-security-gateway (CVE-2025-59689). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-10035 KEV [KEV] Unsafe Deserialization in Fortra goanywhere-mft (CVE-2025-10035)
vulnerability in Fortra goanywhere-mft (CVE-2025-10035). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-20352 KEV [KEV] Vulnerability in Cisco ios-and-ios-xe (CVE-2025-20352)
vulnerability in Cisco ios-and-ios-xe (CVE-2025-20352). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-21311 KEV [KEV] SSRF (Server-Side Request Forgery) in adminer (CVE-2021-21311)
SSRF in adminer (CVE-2021-21311). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-11021 Out-of-Bounds Read in CVE-2025-11021 (CVE-2025-11021)
vulnerability in CVE-2025-11021 (CVE-2025-11021). Confidential information can be exposed externally.
CVE-2025-10449 Path Traversal in path-traversal (CVE-2025-10449)
path traversal in path-traversal (CVE-2025-10449). Confidential information can be exposed externally.
CVE-2025-10467 Cross-Site Scripting (XSS) in CVE-2025-10467 (CVE-2025-10467)
cross-site scripting in CVE-2025-10467 (CVE-2025-10467). Confidential information can be exposed externally.
CVE-2025-10438 Vulnerability in path-traversal (CVE-2025-10438)
vulnerability in path-traversal (CVE-2025-10438). Confidential information can be exposed externally.
CVE-2025-20362 KEV [KEV] Vulnerability in Cisco secure-firewall-adaptive-security-appliance-and-secure-firewall-threat-defense (CVE-2025-20362)
vulnerability in Cisco secure-firewall-adaptive-security-appliance-and-secure-firewall-threat-defense (CVE-2025-20362). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-20333 KEV [KEV] Vulnerability in Cisco secure-firewall-adaptive-security-appliance-and-secure-firewall-threat-defense (CVE-2025-20333)
vulnerability in Cisco secure-firewall-adaptive-security-appliance-and-secure-firewall-threat-defense (CVE-2025-20333). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-9900 Vulnerability in dos (CVE-2025-9900)
vulnerability in dos (CVE-2025-9900). Successful exploitation can lead to full system takeover.
CVE-2025-9798 Cross-Site Scripting (XSS) in CVE-2025-9798 (CVE-2025-9798)
cross-site scripting in CVE-2025-9798 (CVE-2025-9798). Confidential information can be exposed externally.
CVE-2025-10585 KEV [KEV] Vulnerability in Google chromium-v8 (CVE-2025-10585)
vulnerability in Google chromium-v8 (CVE-2025-10585). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →