Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2024-44308 KEV |
|
[KEV] Vulnerability in Apple multiple-products (CVE-2024-44308)
vulnerability in Apple multiple-products (CVE-2024-44308). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-38813 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server (CVE-2024-38813)
vulnerability in Vmware vcenter-server (CVE-2024-38813). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-38812 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server (CVE-2024-38812)
vulnerability in Vmware vcenter-server (CVE-2024-38812). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-53057 |
|
Use-After-Free in c (CVE-2024-53057)
vulnerability in c (CVE-2024-53057). Successful exploitation can lead to full system takeover.
|
| CVE-2024-53059 |
|
Vulnerability in linux (CVE-2024-53059)
vulnerability in linux (CVE-2024-53059). Successful exploitation can lead to full system takeover.
|
| CVE-2024-50301 |
|
Out-of-Bounds Read in c (CVE-2024-50301)
vulnerability in c (CVE-2024-50301). Confidential information can be exposed externally.
|
| CVE-2024-3370 |
|
SQL Injection in sqli (CVE-2024-3370)
SQL injection in sqli (CVE-2024-3370). Confidential information can be exposed externally.
|
| CVE-2024-9474 KEV |
|
[KEV] Command Injection in Palo alto networks palo-alto-networks (CVE-2024-9474)
command injection in Palo alto networks palo-alto-networks (CVE-2024-9474). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-0012 KEV |
|
[KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2024-0012)
vulnerability in Palo alto networks palo-alto-networks (CVE-2024-0012). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-1212 KEV |
|
[KEV] OS Command Injection in Progress kemp-loadmaster (CVE-2024-1212)
OS command injection in Progress kemp-loadmaster (CVE-2024-1212). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9465 KEV |
|
[KEV] SQL Injection in Palo alto networks palo-alto-networks (CVE-2024-9465)
SQL injection in Palo alto networks palo-alto-networks (CVE-2024-9465). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9463 KEV |
|
[KEV] OS Command Injection in Palo alto networks palo-alto-networks (CVE-2024-9463)
OS command injection in Palo alto networks palo-alto-networks (CVE-2024-9463). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-26086 KEV |
|
[KEV] Path Traversal in Atlassian jira-server-and-data-center (CVE-2021-26086)
path traversal in Atlassian jira-server-and-data-center (CVE-2021-26086). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-2120 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Cisco adaptive-security-appliance-asa (CVE-2014-2120)
cross-site scripting in Cisco adaptive-security-appliance-asa (CVE-2014-2120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-41277 KEV |
|
[KEV] Information Disclosure in metabase (CVE-2021-41277)
vulnerability in metabase (CVE-2021-41277). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43451 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-43451)
vulnerability in Microsoft windows (CVE-2024-43451). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-49039 KEV |
|
[KEV] Authentication Bypass in Microsoft windows (CVE-2024-49039)
authentication bypass in Microsoft windows (CVE-2024-49039). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-50262 |
|
Out-of-Bounds Write in linux (CVE-2024-50262)
out-of-bounds write in linux (CVE-2024-50262). Successful exploitation can lead to full system takeover.
|
| CVE-2024-50246 |
|
Vulnerability in linux (CVE-2024-50246)
vulnerability in linux (CVE-2024-50246). Successful exploitation can lead to full system takeover.
|
| CVE-2024-50808 |
|
Code Injection in seacms (CVE-2024-50808)
code injection in seacms (CVE-2024-50808). Successful exploitation can lead to full system takeover.
|
| CVE-2024-50150 |
|
Use-After-Free in linux (CVE-2024-50150)
vulnerability in linux (CVE-2024-50150). Successful exploitation can lead to full system takeover.
|
| CVE-2024-50151 |
|
Out-of-Bounds Write in linux (CVE-2024-50151)
out-of-bounds write in linux (CVE-2024-50151). Successful exploitation can lead to full system takeover.
|
| CVE-2019-16278 KEV |
|
[KEV] Path Traversal in Nostromo nhttpd (CVE-2019-16278)
path traversal in Nostromo nhttpd (CVE-2019-16278). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-51567 KEV |
|
[KEV] Vulnerability in Cyberpersons cyberpanel (CVE-2024-51567)
vulnerability in Cyberpersons cyberpanel (CVE-2024-51567). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43093 KEV |
|
[KEV] Vulnerability in Android framework (CVE-2024-43093)
vulnerability in Android framework (CVE-2024-43093). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-5910 KEV |
|
[KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2024-5910)
vulnerability in Palo alto networks palo-alto-networks (CVE-2024-5910). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-50121 |
|
Use-After-Free in linux (CVE-2024-50121)
vulnerability in linux (CVE-2024-50121). Successful exploitation can lead to full system takeover. Exploitable via ``nfs4_state_destroy_net``.
|
| CVE-2024-50127 |
|
Use-After-Free in linux (CVE-2024-50127)
vulnerability in linux (CVE-2024-50127). Successful exploitation can lead to full system takeover.
|
| CVE-2024-50131 |
|
Vulnerability in linux (CVE-2024-50131)
vulnerability in linux (CVE-2024-50131). Successful exploitation can lead to full system takeover.
|
| CVE-2024-51127 |
|
Path Traversal in redhat (CVE-2024-51127)
path traversal in redhat (CVE-2024-51127). Confidential information can be exposed externally.
|
| CVE-2024-8956 KEV |
|
[KEV] Authentication Bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956)
authentication bypass in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8956). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-8957 KEV |
|
[KEV] OS Command Injection in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8957)
OS command injection in Ptzoptics pt30x-sdindi-cameras (CVE-2024-8957). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-48352 |
|
Vulnerability in yealink (CVE-2024-48352)
vulnerability in yealink (CVE-2024-48352). Confidential information can be exposed externally.
|
| CVE-2024-51066 |
|
Vulnerability in phpgurukul (CVE-2024-51066)
vulnerability in phpgurukul (CVE-2024-51066). Confidential information can be exposed externally.
|
| CVE-2024-48733 |
|
SQL Injection in sqli (CVE-2024-48733)
SQL injection in sqli (CVE-2024-48733). Successful exploitation can lead to full system takeover.
|
| CVE-2024-48735 |
|
Path Traversal in path-traversal (CVE-2024-48735)
path traversal in path-traversal (CVE-2024-48735). Confidential information can be exposed externally.
|
| CVE-2024-48734 |
|
Unrestricted File Upload in CVE-2024-48734 (CVE-2024-48734)
vulnerability in CVE-2024-48734 (CVE-2024-48734). Successful exploitation can lead to full system takeover.
|
| CVE-2024-50067 |
|
Out-of-Bounds Write in c (CVE-2024-50067)
out-of-bounds write in c (CVE-2024-50067). Successful exploitation can lead to full system takeover. Exploitable via ``test``.
|
| CVE-2024-48544 |
|
Authorization Flaw in CVE-2024-48544 (CVE-2024-48544)
vulnerability in CVE-2024-48544 (CVE-2024-48544). Successful exploitation can lead to full system takeover.
|
| CVE-2024-37383 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2024-37383)
cross-site scripting in Roundcube webmail (CVE-2024-37383). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-20481 KEV |
|
[KEV] Vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20481)
vulnerability in Cisco adaptive-security-appliance-asa-and-firepower-threat-defense-ftd (CVE-2024-20481). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-47575 KEV |
|
[KEV] Vulnerability in Fortinet fortimanager (CVE-2024-47575)
vulnerability in Fortinet fortimanager (CVE-2024-47575). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-9050 |
|
Code Injection in privilege-escalation (CVE-2024-9050)
code injection in privilege-escalation (CVE-2024-9050). Successful exploitation can lead to full system takeover. Exploitable via ``leftupdown``.
|
| CVE-2024-38094 KEV |
|
[KEV] Unsafe Deserialization in Microsoft sharepoint (CVE-2024-38094)
vulnerability in Microsoft sharepoint (CVE-2024-38094). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-50063 |
|
Vulnerability in debian (CVE-2024-50063)
vulnerability in debian (CVE-2024-50063). Successful exploitation can lead to full system takeover.
|
| CVE-2024-50055 |
|
Vulnerability in debian (CVE-2024-50055)
vulnerability in debian (CVE-2024-50055). Successful exploitation can lead to full system takeover.
|
| CVE-2024-50033 |
|
Vulnerability in c (CVE-2024-50033)
vulnerability in c (CVE-2024-50033). Confidential information can be exposed externally.
|
| CVE-2024-50035 |
|
Vulnerability in c (CVE-2024-50035)
vulnerability in c (CVE-2024-50035). Confidential information can be exposed externally.
|
| CVE-2024-50007 |
|
Vulnerability in debian (CVE-2024-50007)
vulnerability in debian (CVE-2024-50007). Successful exploitation can lead to full system takeover.
|
| CVE-2024-49997 |
|
Vulnerability in linux (CVE-2024-49997)
vulnerability in linux (CVE-2024-49997). Confidential information can be exposed externally.
|