Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2021-38406 KEV [KEV] Out-of-Bounds Write in Delta electronics delta-electronics (CVE-2021-38406)
out-of-bounds write in Delta electronics delta-electronics (CVE-2021-38406). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-31010 KEV [KEV] Vulnerability in Apple ios (CVE-2021-31010)
vulnerability in Apple ios (CVE-2021-31010). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-36193 KEV [KEV] Path Traversal in Pear archive-tar (CVE-2020-36193)
path traversal in Pear archive-tar (CVE-2020-36193). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-28949 KEV [KEV] Vulnerability in Pear archive-tar (CVE-2020-28949)
vulnerability in Pear archive-tar (CVE-2020-28949). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-35203 Authentication Bypass in trendnet (CVE-2022-35203)
authentication bypass in trendnet (CVE-2022-35203). Successful exploitation can lead to full system takeover.
CVE-2022-0028 KEV [KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2022-0028)
vulnerability in Palo alto networks palo-alto-networks (CVE-2022-0028). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-35167 Vulnerability in prinitix (CVE-2022-35167)
vulnerability in prinitix (CVE-2022-35167). Successful exploitation can lead to full system takeover.
CVE-2022-22536 KEV [KEV] Vulnerability in Sap multiple-products (CVE-2022-22536)
vulnerability in Sap multiple-products (CVE-2022-22536). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-32894 KEV [KEV] Vulnerability in Apple ios-and-macos (CVE-2022-32894)
vulnerability in Apple ios-and-macos (CVE-2022-32894). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-32893 KEV [KEV] Vulnerability in Apple ios-and-macos (CVE-2022-32893)
vulnerability in Apple ios-and-macos (CVE-2022-32893). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-2856 KEV [KEV] Vulnerability in Google chromium-intents (CVE-2022-2856)
vulnerability in Google chromium-intents (CVE-2022-2856). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-26923 KEV [KEV] Vulnerability in Microsoft active-directory (CVE-2022-26923)
vulnerability in Microsoft active-directory (CVE-2022-26923). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-21971 KEV [KEV] Vulnerability in Microsoft windows (CVE-2022-21971)
vulnerability in Microsoft windows (CVE-2022-21971). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-15944 KEV [KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2017-15944)
vulnerability in Palo alto networks palo-alto-networks (CVE-2017-15944). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-36526 Authentication Bypass in dlink (CVE-2022-36526)
authentication bypass in dlink (CVE-2022-36526). Data can be tampered with by attackers.
CVE-2022-36524 Authentication Bypass in dlink (CVE-2022-36524)
authentication bypass in dlink (CVE-2022-36524). Confidential information can be exposed externally.
CVE-2022-27925 KEV [KEV] Path Traversal in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27925)
path traversal in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27925). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-37042 KEV [KEV] Vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2022-37042)
vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2022-37042). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-36124 Vulnerability in apache-avro (CVE-2022-36124)
vulnerability in apache-avro (CVE-2022-36124). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.14.0` or later.
CVE-2022-34713 KEV [KEV] Vulnerability in Microsoft windows (CVE-2022-34713)
vulnerability in Microsoft windows (CVE-2022-34713). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-30333 KEV [KEV] Path Traversal in Rarlab unrar (CVE-2022-30333)
path traversal in Rarlab unrar (CVE-2022-30333). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-2356 Unrestricted File Upload in wordpress (CVE-2022-2356)
vulnerability in wordpress (CVE-2022-2356). Successful exploitation can lead to full system takeover.
CVE-2022-27924 KEV [KEV] Vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27924)
vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27924). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-26138 KEV [KEV] Vulnerability in Atlassian confluence (CVE-2022-26138)
vulnerability in Atlassian confluence (CVE-2022-26138). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-24992 Path Traversal in path-traversal (CVE-2022-24992)
path traversal in path-traversal (CVE-2022-24992). Confidential information can be exposed externally.
CVE-2022-29709 SQL Injection in sqli (CVE-2022-29709)
SQL injection in sqli (CVE-2022-29709). Confidential information can be exposed externally.
CVE-2022-34169 Vulnerability in apache (CVE-2022-34169)
vulnerability in apache (CVE-2022-34169). Data can be tampered with by attackers.
CVE-2022-32450 Vulnerability in anydesk (CVE-2022-32450)
vulnerability in anydesk (CVE-2022-32450). Data can be tampered with by attackers.
CVE-2021-42923 Vulnerability in showmypc (CVE-2021-42923)
vulnerability in showmypc (CVE-2021-42923). Successful exploitation can lead to full system takeover.
CVE-2022-32119 Unrestricted File Upload in arox (CVE-2022-32119)
vulnerability in arox (CVE-2022-32119). Successful exploitation can lead to full system takeover.
CVE-2022-30024 Vulnerability in tp-link (CVE-2022-30024)
vulnerability in tp-link (CVE-2022-30024). Successful exploitation can lead to full system takeover.
CVE-2022-32114 Unrestricted File Upload in strapi (CVE-2022-32114)
vulnerability in strapi (CVE-2022-32114). Successful exploitation can lead to full system takeover.
CVE-2021-36667 OS Command Injection in druva (CVE-2021-36667)
OS command injection in druva (CVE-2021-36667). Successful exploitation can lead to full system takeover.
CVE-2021-36668 Vulnerability in druva (CVE-2021-36668)
vulnerability in druva (CVE-2021-36668). Successful exploitation can lead to full system takeover.
CVE-2021-36666 Vulnerability in druva (CVE-2021-36666)
vulnerability in druva (CVE-2021-36666). Successful exploitation can lead to full system takeover.
CVE-2021-36665 Unsafe Deserialization in druva (CVE-2021-36665)
vulnerability in druva (CVE-2021-36665). Successful exploitation can lead to full system takeover.
CVE-2022-22047 KEV [KEV] Vulnerability in Microsoft windows (CVE-2022-22047)
vulnerability in Microsoft windows (CVE-2022-22047). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-24138 Vulnerability in iobit (CVE-2022-24138)
vulnerability in iobit (CVE-2022-24138). Successful exploitation can lead to full system takeover.
CVE-2022-24139 Vulnerability in iobit (CVE-2022-24139)
vulnerability in iobit (CVE-2022-24139). Successful exploitation can lead to full system takeover.
CVE-2022-33971 Vulnerability in dos (CVE-2022-33971)
vulnerability in dos (CVE-2022-33971). Successful exploitation can lead to full system takeover.
CVE-2022-34151 Vulnerability in omron (CVE-2022-34151)
vulnerability in omron (CVE-2022-34151). Successful exploitation can lead to full system takeover.
CVE-2022-32384 Out-of-Bounds Write in tendacn (CVE-2022-32384)
out-of-bounds write in tendacn (CVE-2022-32384). Successful exploitation can lead to full system takeover.
CVE-2022-25898 Vulnerability in kjur (CVE-2022-25898)
vulnerability in kjur (CVE-2022-25898). Risk of unauthorized operations or information disclosure.
CVE-2022-26925 KEV [KEV] Vulnerability in Microsoft windows (CVE-2022-26925)
vulnerability in Microsoft windows (CVE-2022-26925). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-29499 KEV [KEV] Vulnerability in Mitel mivoice-connect (CVE-2022-29499)
vulnerability in Mitel mivoice-connect (CVE-2022-29499). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30533 KEV [KEV] Authorization Flaw in Google chromium-popupblocker (CVE-2021-30533)
vulnerability in Google chromium-popupblocker (CVE-2021-30533). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-4034 KEV [KEV] Out-of-Bounds Write in Red hat red-hat (CVE-2021-4034)
out-of-bounds write in Red hat red-hat (CVE-2021-4034). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-30983 KEV [KEV] Buffer Overflow in Apple ios-and-ipados (CVE-2021-30983)
vulnerability in Apple ios-and-ipados (CVE-2021-30983). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-3837 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2020-3837)
out-of-bounds write in Apple multiple-products (CVE-2020-3837). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-9907 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2020-9907)
out-of-bounds write in Apple multiple-products (CVE-2020-9907). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →