Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2021-42877 |
|
Vulnerability in dos (CVE-2021-42877)
vulnerability in dos (CVE-2021-42877). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-27782 |
|
Vulnerability in haxx (CVE-2022-27782)
vulnerability in haxx (CVE-2022-27782). Data can be tampered with by attackers.
|
| CVE-2022-27781 |
|
Vulnerability in haxx (CVE-2022-27781)
vulnerability in haxx (CVE-2022-27781). Risk of unauthorized operations or information disclosure. Exploitable via ``CURLOPT_CERTINFO``.
|
| CVE-2022-27775 |
|
Information Disclosure in haxx (CVE-2022-27775)
vulnerability in haxx (CVE-2022-27775). Confidential information can be exposed externally.
|
| CVE-2022-24581 |
|
Unrestricted File Upload in aceware (CVE-2022-24581)
vulnerability in aceware (CVE-2022-24581). Confidential information can be exposed externally.
|
| CVE-2022-24241 |
|
Vulnerability in aceware (CVE-2022-24241)
vulnerability in aceware (CVE-2022-24241). Confidential information can be exposed externally.
|
| CVE-2022-30034 |
|
Authentication Bypass in flower (CVE-2022-30034)
authentication bypass in flower (CVE-2022-30034). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.2.0` or later.
|
| CVE-2022-26134 KEV |
|
[KEV] Vulnerability in Atlassian confluence-serverdata-center (CVE-2022-26134)
vulnerability in Atlassian confluence-serverdata-center (CVE-2022-26134). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-22576 |
|
Authentication Bypass in haxx (CVE-2022-22576)
authentication bypass in haxx (CVE-2022-22576). Confidential information can be exposed externally.
|
| CVE-2022-27305 |
|
Vulnerability in gibbonedu (CVE-2022-27305)
vulnerability in gibbonedu (CVE-2022-27305). Successful exploitation can lead to full system takeover.
|
| CVE-2019-3010 KEV |
|
[KEV] Vulnerability in Oracle solaris (CVE-2019-3010)
vulnerability in Oracle solaris (CVE-2019-3010). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-3393 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2016-3393)
vulnerability in Microsoft windows (CVE-2016-3393). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-7256 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2016-7256)
vulnerability in Microsoft windows (CVE-2016-7256). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-1010 KEV |
|
[KEV] Vulnerability in Adobe flash-player-and-air (CVE-2016-1010)
vulnerability in Adobe flash-player-and-air (CVE-2016-1010). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-0984 KEV |
|
[KEV] Use-After-Free in Adobe flash-player-and-air (CVE-2016-0984)
vulnerability in Adobe flash-player-and-air (CVE-2016-0984). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-0034 KEV |
|
[KEV] Vulnerability in Microsoft silverlight (CVE-2016-0034)
vulnerability in Microsoft silverlight (CVE-2016-0034). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-0310 KEV |
|
[KEV] Vulnerability in Adobe flash-player (CVE-2015-0310)
vulnerability in Adobe flash-player (CVE-2015-0310). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-0016 KEV |
|
[KEV] Path Traversal in Microsoft windows (CVE-2015-0016)
path traversal in Microsoft windows (CVE-2015-0016). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-0071 KEV |
|
[KEV] Vulnerability in Microsoft internet-explorer (CVE-2015-0071)
vulnerability in Microsoft internet-explorer (CVE-2015-0071). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-2360 KEV |
|
[KEV] Buffer Overflow in Microsoft win32k (CVE-2015-2360)
vulnerability in Microsoft win32k (CVE-2015-2360). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-2425 KEV |
|
[KEV] Buffer Overflow in Microsoft internet-explorer (CVE-2015-2425)
vulnerability in Microsoft internet-explorer (CVE-2015-2425). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1769 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2015-1769)
vulnerability in Microsoft windows (CVE-2015-1769). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-4495 KEV |
|
[KEV] Information Disclosure in Mozilla firefox (CVE-2015-4495)
vulnerability in Mozilla firefox (CVE-2015-4495). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-8651 KEV |
|
[KEV] Vulnerability in Adobe flash-player (CVE-2015-8651)
vulnerability in Adobe flash-player (CVE-2015-8651). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-6175 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2015-6175)
vulnerability in Microsoft windows (CVE-2015-6175). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1671 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2015-1671)
vulnerability in Microsoft windows (CVE-2015-1671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-4148 KEV |
|
[KEV] Code Injection in Microsoft windows (CVE-2014-4148)
code injection in Microsoft windows (CVE-2014-4148). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-8439 KEV |
|
[KEV] Buffer Overflow in Adobe flash-player (CVE-2014-8439)
vulnerability in Adobe flash-player (CVE-2014-8439). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-4123 KEV |
|
[KEV] Vulnerability in Microsoft internet-explorer (CVE-2014-4123)
vulnerability in Microsoft internet-explorer (CVE-2014-4123). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-0546 KEV |
|
[KEV] Vulnerability in Adobe reader-and-acrobat (CVE-2014-0546)
vulnerability in Adobe reader-and-acrobat (CVE-2014-0546). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-2817 KEV |
|
[KEV] Vulnerability in Microsoft internet-explorer (CVE-2014-2817)
vulnerability in Microsoft internet-explorer (CVE-2014-2817). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-4077 KEV |
|
[KEV] Vulnerability in Microsoft input-method-editor-ime-japanese (CVE-2014-4077)
vulnerability in Microsoft input-method-editor-ime-japanese (CVE-2014-4077). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-3153 KEV |
|
[KEV] Privilege Escalation in Linux kernel (CVE-2014-3153)
vulnerability in Linux kernel (CVE-2014-3153). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-7331 KEV |
|
[KEV] Information Disclosure in Microsoft internet-explorer (CVE-2013-7331)
vulnerability in Microsoft internet-explorer (CVE-2013-7331). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-3993 KEV |
|
[KEV] Vulnerability in Ibm infosphere-biginsights (CVE-2013-3993)
vulnerability in Ibm infosphere-biginsights (CVE-2013-3993). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-3896 KEV |
|
[KEV] Vulnerability in Microsoft silverlight (CVE-2013-3896)
vulnerability in Microsoft silverlight (CVE-2013-3896). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-2423 KEV |
|
[KEV] Vulnerability in Oracle java-runtime-environment-jre (CVE-2013-2423)
vulnerability in Oracle java-runtime-environment-jre (CVE-2013-2423). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-0431 KEV |
|
[KEV] Vulnerability in Oracle java-runtime-environment-jre (CVE-2013-0431)
vulnerability in Oracle java-runtime-environment-jre (CVE-2013-0431). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-0422 KEV |
|
[KEV] Vulnerability in Oracle java-runtime-environment-jre (CVE-2013-0422)
vulnerability in Oracle java-runtime-environment-jre (CVE-2013-0422). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-0074 KEV |
|
[KEV] Vulnerability in Microsoft silverlight (CVE-2013-0074)
vulnerability in Microsoft silverlight (CVE-2013-0074). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-1710 KEV |
|
[KEV] Vulnerability in Oracle fusion-middleware (CVE-2012-1710)
vulnerability in Oracle fusion-middleware (CVE-2012-1710). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-1428 KEV |
|
[KEV] Vulnerability in Red hat red-hat (CVE-2010-1428)
vulnerability in Red hat red-hat (CVE-2010-1428). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-0840 KEV |
|
[KEV] Vulnerability in Oracle java-runtime-environment-jre (CVE-2010-0840)
vulnerability in Oracle java-runtime-environment-jre (CVE-2010-0840). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-0738 KEV |
|
[KEV] Vulnerability in Red hat red-hat (CVE-2010-0738)
vulnerability in Red hat red-hat (CVE-2010-0738). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-7477 |
|
Vulnerability in dos (CVE-2020-7477)
vulnerability in dos (CVE-2020-7477). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-22792 |
|
Vulnerability in dos (CVE-2021-22792)
vulnerability in dos (CVE-2021-22792). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-12868 |
|
Unsafe Deserialization in deserialization (CVE-2019-12868)
vulnerability in deserialization (CVE-2019-12868). Successful exploitation can lead to full system takeover.
|
| CVE-2022-29333 |
|
Privilege Escalation in cyberlink (CVE-2022-29333)
vulnerability in cyberlink (CVE-2022-29333). Successful exploitation can lead to full system takeover.
|
| CVE-2021-25874 |
|
SQL Injection in sqli (CVE-2021-25874)
SQL injection in sqli (CVE-2021-25874). Confidential information can be exposed externally.
|
| CVE-2020-23546 |
|
Vulnerability in dos (CVE-2020-23546)
vulnerability in dos (CVE-2020-23546). Successful exploitation can lead to full system takeover.
|