Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2024-23670 |
|
Vulnerability in fortinet (CVE-2024-23670)
vulnerability in fortinet (CVE-2024-23670). Successful exploitation can lead to full system takeover.
|
| CVE-2024-23668 |
|
Vulnerability in fortinet (CVE-2024-23668)
vulnerability in fortinet (CVE-2024-23668). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3506 KEV |
|
[KEV] OS Command Injection in Oracle weblogic-server (CVE-2017-3506)
OS command injection in Oracle weblogic-server (CVE-2017-3506). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-36940 |
|
Vulnerability in linux (CVE-2024-36940)
vulnerability in linux (CVE-2024-36940). Successful exploitation can lead to full system takeover.
|
| CVE-2024-36916 |
|
Out-of-Bounds Read in c (CVE-2024-36916)
vulnerability in c (CVE-2024-36916). Confidential information can be exposed externally.
|
| CVE-2024-36899 |
|
Vulnerability in linux (CVE-2024-36899)
vulnerability in linux (CVE-2024-36899). Successful exploitation can lead to full system takeover.
|
| CVE-2024-36904 |
|
Use-After-Free in c (CVE-2024-36904)
vulnerability in c (CVE-2024-36904). Successful exploitation can lead to full system takeover.
|
| CVE-2024-1086 KEV |
|
[KEV] Use-After-Free in Linux kernel (CVE-2024-1086)
vulnerability in Linux kernel (CVE-2024-1086). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-24919 KEV |
|
[KEV] Information Disclosure in Check point check-point (CVE-2024-24919)
vulnerability in Check point check-point (CVE-2024-24919). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-4978 KEV |
|
[KEV] Vulnerability in Justice av solutions justice-av-solutions (CVE-2024-4978)
vulnerability in Justice av solutions justice-av-solutions (CVE-2024-4978). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-35399 |
|
Vulnerability in totolink (CVE-2024-35399)
vulnerability in totolink (CVE-2024-35399). Successful exploitation can lead to full system takeover.
|
| CVE-2024-35397 |
|
Command Injection in totolink (CVE-2024-35397)
command injection in totolink (CVE-2024-35397). Successful exploitation can lead to full system takeover.
|
| CVE-2024-5274 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2024-5274)
vulnerability in Google chromium-v8 (CVE-2024-5274). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-35395 |
|
Vulnerability in totolink (CVE-2024-35395)
vulnerability in totolink (CVE-2024-35395). Successful exploitation can lead to full system takeover.
|
| CVE-2020-17519 KEV |
|
[KEV] Vulnerability in Apache flink (CVE-2020-17519)
vulnerability in Apache flink (CVE-2020-17519). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-35965 |
|
Vulnerability in linux (CVE-2024-35965)
vulnerability in linux (CVE-2024-35965). Confidential information can be exposed externally.
|
| CVE-2024-35966 |
|
Out-of-Bounds Read in c (CVE-2024-35966)
vulnerability in c (CVE-2024-35966). Confidential information can be exposed externally.
|
| CVE-2024-35955 |
|
Use-After-Free in linux (CVE-2024-35955)
vulnerability in linux (CVE-2024-35955). Successful exploitation can lead to full system takeover.
|
| CVE-2024-35967 |
|
Out-of-Bounds Read in c (CVE-2024-35967)
vulnerability in c (CVE-2024-35967). Confidential information can be exposed externally.
|
| CVE-2024-4947 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2024-4947)
vulnerability in Google chromium-v8 (CVE-2024-4947). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-43208 KEV |
|
[KEV] Unsafe Deserialization in Nextgen healthcare nextgen-healthcare (CVE-2023-43208)
vulnerability in Nextgen healthcare nextgen-healthcare (CVE-2023-43208). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-35896 |
|
Out-of-Bounds Read in c (CVE-2024-35896)
vulnerability in c (CVE-2024-35896). Confidential information can be exposed externally.
|
| CVE-2024-35905 |
|
Vulnerability in linux (CVE-2024-35905)
vulnerability in linux (CVE-2024-35905). Successful exploitation can lead to full system takeover.
|
| CVE-2024-35886 |
|
Vulnerability in c (CVE-2024-35886)
vulnerability in c (CVE-2024-35886). Successful exploitation can lead to full system takeover.
|
| CVE-2024-35849 |
|
Vulnerability in c (CVE-2024-35849)
vulnerability in c (CVE-2024-35849). Confidential information can be exposed externally.
|
| CVE-2024-35789 |
|
Use-After-Free in linux (CVE-2024-35789)
vulnerability in linux (CVE-2024-35789). Successful exploitation can lead to full system takeover.
|
| CVE-2023-52682 |
|
Out-of-Bounds Read in linux (CVE-2023-52682)
vulnerability in linux (CVE-2023-52682). Confidential information can be exposed externally.
|
| CVE-2024-4761 KEV |
|
[KEV] Out-of-Bounds Write in Google chromium-v8 (CVE-2024-4761)
out-of-bounds write in Google chromium-v8 (CVE-2024-4761). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-40655 KEV |
|
[KEV] Authorization Flaw in D-link dir-605-router (CVE-2021-40655)
vulnerability in D-link dir-605-router (CVE-2021-40655). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-100005 KEV |
|
[KEV] Cross-Site Request Forgery (CSRF) in D-link dir-600-router (CVE-2014-100005)
vulnerability in D-link dir-600-router (CVE-2014-100005). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-4367 |
|
Vulnerability in pdfjs-dist (CVE-2024-4367)
vulnerability in pdfjs-dist (CVE-2024-4367). Successful exploitation can lead to full system takeover. Exploitable via ``isEvalSupported``. Mitigation: upgrade to `4.2.67` or later.
|
| CVE-2024-3727 |
|
Vulnerability in path-traversal (CVE-2024-3727)
vulnerability in path-traversal (CVE-2024-3727). Successful exploitation can lead to full system takeover.
|
| CVE-2024-27397 |
|
Use-After-Free in linux (CVE-2024-27397)
vulnerability in linux (CVE-2024-27397). Successful exploitation can lead to full system takeover.
|
| CVE-2024-27396 |
|
Use-After-Free in linux (CVE-2024-27396)
vulnerability in linux (CVE-2024-27396). Successful exploitation can lead to full system takeover.
|
| CVE-2024-27395 |
|
Use-After-Free in linux (CVE-2024-27395)
vulnerability in linux (CVE-2024-27395). Successful exploitation can lead to full system takeover.
|
| CVE-2024-30040 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-30040)
vulnerability in Microsoft windows (CVE-2024-30040). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-30051 KEV |
|
[KEV] Vulnerability in Microsoft dwm-core-library (CVE-2024-30051)
vulnerability in Microsoft dwm-core-library (CVE-2024-30051). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-4671 KEV |
|
[KEV] Use-After-Free in Google chromium (CVE-2024-4671)
vulnerability in Google chromium (CVE-2024-4671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-33599 |
|
Vulnerability in gnu (CVE-2024-33599)
vulnerability in gnu (CVE-2024-33599). Successful exploitation can lead to full system takeover.
|
| CVE-2024-33601 |
|
Vulnerability in dos (CVE-2024-33601)
vulnerability in dos (CVE-2024-33601). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-33602 |
|
Vulnerability in gnu (CVE-2024-33602)
vulnerability in gnu (CVE-2024-33602). Successful exploitation can lead to full system takeover.
|
| CVE-2024-33844 |
|
Vulnerability in parrot (CVE-2024-33844)
vulnerability in parrot (CVE-2024-33844). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-27052 |
|
Use-After-Free in linux (CVE-2024-27052)
vulnerability in linux (CVE-2024-27052). Successful exploitation can lead to full system takeover.
|
| CVE-2024-27065 |
|
Vulnerability in linux (CVE-2024-27065)
vulnerability in linux (CVE-2024-27065). Successful exploitation can lead to full system takeover.
|
| CVE-2024-27024 |
|
Vulnerability in linux (CVE-2024-27024)
vulnerability in linux (CVE-2024-27024). Successful exploitation can lead to full system takeover.
|
| CVE-2024-27020 |
|
Vulnerability in linux (CVE-2024-27020)
vulnerability in linux (CVE-2024-27020). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26961 |
|
Use-After-Free in c (CVE-2024-26961)
vulnerability in c (CVE-2024-26961). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26974 |
|
Vulnerability in linux (CVE-2024-26974)
vulnerability in linux (CVE-2024-26974). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26958 |
|
Use-After-Free in c (CVE-2024-26958)
vulnerability in c (CVE-2024-26958). Successful exploitation can lead to full system takeover.
|
| CVE-2024-26982 |
|
Out-of-Bounds Read in linux (CVE-2024-26982)
vulnerability in linux (CVE-2024-26982). Confidential information can be exposed externally.
|