Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2023-38606 KEV |
|
[KEV] Vulnerability in Apple multiple-products (CVE-2023-38606)
vulnerability in Apple multiple-products (CVE-2023-38606). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-35067 |
|
Vulnerability in infodrom (CVE-2023-35067)
vulnerability in infodrom (CVE-2023-35067). Confidential information can be exposed externally.
|
| CVE-2023-35078 KEV |
|
[KEV] Authentication Bypass in Ivanti endpoint-manager-mobile-epmm (CVE-2023-35078)
authentication bypass in Ivanti endpoint-manager-mobile-epmm (CVE-2023-35078). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-3640 |
|
Vulnerability in c (CVE-2023-3640)
vulnerability in c (CVE-2023-3640). Successful exploitation can lead to full system takeover.
|
| CVE-2021-35391 |
|
SSRF (Server-Side Request Forgery) in deskpro (CVE-2021-35391)
SSRF in deskpro (CVE-2021-35391). Successful exploitation can lead to full system takeover.
|
| CVE-2023-29298 KEV |
|
[KEV] Vulnerability in Adobe coldfusion (CVE-2023-29298)
vulnerability in Adobe coldfusion (CVE-2023-29298). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-38205 KEV |
|
[KEV] Vulnerability in Adobe coldfusion (CVE-2023-38205)
vulnerability in Adobe coldfusion (CVE-2023-38205). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-3519 KEV |
|
[KEV] Code Injection in Citrix netscaler-adc-and-netscaler-gateway (CVE-2023-3519)
code injection in Citrix netscaler-adc-and-netscaler-gateway (CVE-2023-3519). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-30383 |
|
Vulnerability in dos (CVE-2023-30383)
vulnerability in dos (CVE-2023-30383). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-2959 |
|
Authentication Bypass in olivaekspertiz (CVE-2023-2959)
authentication bypass in olivaekspertiz (CVE-2023-2959). Confidential information can be exposed externally.
|
| CVE-2023-36884 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36884)
vulnerability in Microsoft windows (CVE-2023-36884). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-31824 |
|
Vulnerability in dericia (CVE-2023-31824)
vulnerability in dericia (CVE-2023-31824). Confidential information can be exposed externally.
|
| CVE-2023-31823 |
|
Vulnerability in marui (CVE-2023-31823)
vulnerability in marui (CVE-2023-31823). Confidential information can be exposed externally.
|
| CVE-2023-31821 |
|
Vulnerability in albis (CVE-2023-31821)
vulnerability in albis (CVE-2023-31821). Confidential information can be exposed externally.
|
| CVE-2023-31825 |
|
Vulnerability in inageya (CVE-2023-31825)
vulnerability in inageya (CVE-2023-31825). Confidential information can be exposed externally.
|
| CVE-2023-31822 |
|
Vulnerability in entetsu (CVE-2023-31822)
vulnerability in entetsu (CVE-2023-31822). Confidential information can be exposed externally.
|
| CVE-2023-31820 |
|
Vulnerability in shizutetsu (CVE-2023-31820)
vulnerability in shizutetsu (CVE-2023-31820). Confidential information can be exposed externally.
|
| CVE-2023-31819 |
|
Vulnerability in keisei-store (CVE-2023-31819)
vulnerability in keisei-store (CVE-2023-31819). Confidential information can be exposed externally.
|
| CVE-2023-35069 |
|
Path Traversal in path-traversal (CVE-2023-35069)
path traversal in path-traversal (CVE-2023-35069). Confidential information can be exposed externally.
|
| CVE-2022-29303 KEV |
|
[KEV] OS Command Injection in Solarview compact (CVE-2022-29303)
OS command injection in Solarview compact (CVE-2022-29303). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-37450 KEV |
|
[KEV] Vulnerability in Apple multiple-products (CVE-2023-37450)
vulnerability in Apple multiple-products (CVE-2023-37450). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-20021 |
|
Vulnerability in dos (CVE-2020-20021)
vulnerability in dos (CVE-2020-20021). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-33161 |
|
Microsoft Excel Remote Code Execution Vulnerability
Microsoft Excel Remote Code Execution Vulnerability
|
| CVE-2023-33158 |
|
Microsoft Excel Remote Code Execution Vulnerability
Microsoft Excel Remote Code Execution Vulnerability
|
| CVE-2023-33152 |
|
Microsoft ActiveX Remote Code Execution Vulnerability
Microsoft ActiveX Remote Code Execution Vulnerability
|
| CVE-2023-33149 |
|
Microsoft Office Graphics Remote Code Execution Vulnerability
Microsoft Office Graphics Remote Code Execution Vulnerability
|
| CVE-2023-33148 |
|
Microsoft Office Elevation of Privilege Vulnerability
Microsoft Office Elevation of Privilege Vulnerability
|
| CVE-2023-31818 |
|
Vulnerability in marukyu (CVE-2023-31818)
vulnerability in marukyu (CVE-2023-31818). Confidential information can be exposed externally.
|
| CVE-2023-32046 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-32046)
vulnerability in Microsoft windows (CVE-2023-32046). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-32049 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-32049)
vulnerability in Microsoft windows (CVE-2023-32049). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-35311 KEV |
|
[KEV] Vulnerability in Microsoft outlook (CVE-2023-35311)
vulnerability in Microsoft outlook (CVE-2023-35311). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36874 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36874)
vulnerability in Microsoft windows (CVE-2023-36874). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-31199 KEV |
|
[KEV] Unsafe Deserialization in Netwrix auditor (CVE-2022-31199)
vulnerability in Netwrix auditor (CVE-2022-31199). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-3271 |
|
Vulnerability in sick (CVE-2023-3271)
vulnerability in sick (CVE-2023-3271). Confidential information can be exposed externally.
|
| CVE-2023-3273 |
|
Vulnerability in sick (CVE-2023-3273)
vulnerability in sick (CVE-2023-3273). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-3272 |
|
Vulnerability in sick (CVE-2023-3272)
vulnerability in sick (CVE-2023-3272). Confidential information can be exposed externally.
|
| CVE-2023-35696 |
|
Vulnerability in sick (CVE-2023-35696)
vulnerability in sick (CVE-2023-35696). Confidential information can be exposed externally.
|
| CVE-2021-29256 KEV |
|
[KEV] Use-After-Free in Arm :unknown: (CVE-2021-29256)
vulnerability in Arm :unknown: (CVE-2021-29256). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `SoCVersion:2023-07-05` or later.
|
| CVE-2022-42175 |
|
Vulnerability in soluslabs (CVE-2022-42175)
vulnerability in soluslabs (CVE-2022-42175). Successful exploitation can lead to full system takeover.
|
| CVE-2022-27405 |
|
Out-of-Bounds Read in platform/external/freetype (CVE-2022-27405)
vulnerability in platform/external/freetype (CVE-2022-27405). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `13:2023-07-01` or later.
|
| CVE-2023-36144 |
|
Vulnerability in intelbras (CVE-2023-36144)
vulnerability in intelbras (CVE-2023-36144). Confidential information can be exposed externally.
|
| CVE-2023-37306 |
|
Vulnerability in misp-project (CVE-2023-37306)
vulnerability in misp-project (CVE-2023-37306). Confidential information can be exposed externally.
|
| CVE-2023-35176 |
|
Vulnerability in dos (CVE-2023-35176)
vulnerability in dos (CVE-2023-35176). Successful exploitation can lead to full system takeover.
|
| CVE-2023-35178 |
|
Vulnerability in hp (CVE-2023-35178)
vulnerability in hp (CVE-2023-35178). Successful exploitation can lead to full system takeover.
|
| CVE-2023-35177 |
|
Out-of-Bounds Write in hp (CVE-2023-35177)
out-of-bounds write in hp (CVE-2023-35177). Successful exploitation can lead to full system takeover.
|
| CVE-2023-36143 |
|
OS Command Injection in maxprintisp (CVE-2023-36143)
OS command injection in maxprintisp (CVE-2023-36143). Successful exploitation can lead to full system takeover.
|
| CVE-2019-17621 KEV |
|
[KEV] OS Command Injection in D-link dir-859-router (CVE-2019-17621)
OS command injection in D-link dir-859-router (CVE-2019-17621). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-20500 KEV |
|
[KEV] OS Command Injection in D-link dwl-2600ap-access-point (CVE-2019-20500)
OS command injection in D-link dwl-2600ap-access-point (CVE-2019-20500). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-25487 KEV |
|
[KEV] Out-of-Bounds Read in Samsung mobile-devices (CVE-2021-25487)
vulnerability in Samsung mobile-devices (CVE-2021-25487). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-25489 KEV |
|
[KEV] Vulnerability in Samsung mobile-devices (CVE-2021-25489)
vulnerability in Samsung mobile-devices (CVE-2021-25489). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|