Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2018-11138 KEV |
|
[KEV] OS Command Injection in Quest kace-system-management-appliance (CVE-2018-11138)
OS command injection in Quest kace-system-management-appliance (CVE-2018-11138). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-0147 KEV |
|
[KEV] Vulnerability in Cisco secure-access-control-system-acs (CVE-2018-0147)
vulnerability in Cisco secure-access-control-system-acs (CVE-2018-0147). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-0125 KEV |
|
[KEV] Vulnerability in Cisco vpn-routers (CVE-2018-0125)
vulnerability in Cisco vpn-routers (CVE-2018-0125). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6334 KEV |
|
[KEV] OS Command Injection in Netgear dgn2200-devices (CVE-2017-6334)
OS command injection in Netgear dgn2200-devices (CVE-2017-6334). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-6316 KEV |
|
[KEV] Vulnerability in Citrix netscaler-sd-wan-enterprise (CVE-2017-6316)
vulnerability in Citrix netscaler-sd-wan-enterprise (CVE-2017-6316). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-3881 KEV |
|
[KEV] Vulnerability in Cisco ios-and-ios-xe (CVE-2017-3881)
vulnerability in Cisco ios-and-ios-xe (CVE-2017-3881). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-12617 KEV |
|
[KEV] Unrestricted File Upload in Apache tomcat (CVE-2017-12617)
vulnerability in Apache tomcat (CVE-2017-12617). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-12615 KEV |
|
[KEV] Unrestricted File Upload in Apache tomcat (CVE-2017-12615)
vulnerability in Apache tomcat (CVE-2017-12615). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-0146 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2017-0146)
vulnerability in Microsoft windows (CVE-2017-0146). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-7892 KEV |
|
[KEV] Use-After-Free in Adobe flash-player (CVE-2016-7892)
vulnerability in Adobe flash-player (CVE-2016-7892). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-4171 KEV |
|
[KEV] Vulnerability in Adobe flash-player (CVE-2016-4171)
vulnerability in Adobe flash-player (CVE-2016-4171). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-1555 KEV |
|
[KEV] Command Injection in Netgear wireless-access-point-wap-devices (CVE-2016-1555)
command injection in Netgear wireless-access-point-wap-devices (CVE-2016-1555). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-11021 KEV |
|
[KEV] OS Command Injection in D-link dcs-930l-devices (CVE-2016-11021)
OS command injection in D-link dcs-930l-devices (CVE-2016-11021). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-10174 KEV |
|
[KEV] Buffer Overflow in Netgear wnr2000v5-router (CVE-2016-10174)
vulnerability in Netgear wnr2000v5-router (CVE-2016-10174). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-0752 KEV |
|
[KEV] Path Traversal in rails (CVE-2016-0752)
path traversal in rails (CVE-2016-0752). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-4068 KEV |
|
[KEV] Path Traversal in Arcserve unified-data-protection-udp (CVE-2015-4068)
path traversal in Arcserve unified-data-protection-udp (CVE-2015-4068). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-3035 KEV |
|
[KEV] Path Traversal in Tp-link multiple-archer-devices (CVE-2015-3035)
path traversal in Tp-link multiple-archer-devices (CVE-2015-3035). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1427 KEV |
|
[KEV] Vulnerability in elastic (CVE-2015-1427)
vulnerability in elastic (CVE-2015-1427). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-1187 KEV |
|
[KEV] Authentication Bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187)
authentication bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-0666 KEV |
|
[KEV] Path Traversal in Cisco prime-data-center-network-manager-dcnm (CVE-2015-0666)
path traversal in Cisco prime-data-center-network-manager-dcnm (CVE-2015-0666). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-6332 KEV |
|
[KEV] Buffer Overflow in Microsoft windows (CVE-2014-6332)
vulnerability in Microsoft windows (CVE-2014-6332). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-6324 KEV |
|
[KEV] Vulnerability in Microsoft kerberos-key-distribution-center-kdc (CVE-2014-6324)
vulnerability in Microsoft kerberos-key-distribution-center-kdc (CVE-2014-6324). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-6287 KEV |
|
[KEV] Code Injection in Rejetto http-file-server-hfs (CVE-2014-6287)
code injection in Rejetto http-file-server-hfs (CVE-2014-6287). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-3120 KEV |
|
[KEV] Vulnerability in elastic (CVE-2014-3120)
vulnerability in elastic (CVE-2014-3120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2014-0130 KEV |
|
[KEV] Path Traversal in rails (CVE-2014-0130)
path traversal in rails (CVE-2014-0130). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-5223 KEV |
|
[KEV] Cross-Site Scripting (XSS) in D-link dsl-2760u (CVE-2013-5223)
cross-site scripting in D-link dsl-2760u (CVE-2013-5223). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-4810 KEV |
|
[KEV] Code Injection in Hewlett packard (hp) hewlett-packard-hp (CVE-2013-4810)
code injection in Hewlett packard (hp) hewlett-packard-hp (CVE-2013-4810). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2013-2251 KEV |
|
[KEV] Vulnerability in Apache struts (CVE-2013-2251)
vulnerability in Apache struts (CVE-2013-2251). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-1823 KEV |
|
[KEV] Vulnerability in php (CVE-2012-1823)
vulnerability in php (CVE-2012-1823). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-4345 KEV |
|
[KEV] Vulnerability in exim (CVE-2010-4345)
vulnerability in exim (CVE-2010-4345). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-4344 KEV |
|
[KEV] Buffer Overflow in exim (CVE-2010-4344)
vulnerability in exim (CVE-2010-4344). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-3035 KEV |
|
[KEV] Vulnerability in Cisco ios-xr (CVE-2010-3035)
vulnerability in Cisco ios-xr (CVE-2010-3035). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2010-2861 KEV |
|
[KEV] Path Traversal in Adobe coldfusion (CVE-2010-2861)
path traversal in Adobe coldfusion (CVE-2010-2861). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-2055 KEV |
|
[KEV] Vulnerability in Cisco ios-xr (CVE-2009-2055)
vulnerability in Cisco ios-xr (CVE-2009-2055). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-1151 KEV |
|
[KEV] Code Injection in phpmyadmin (CVE-2009-1151)
code injection in phpmyadmin (CVE-2009-1151). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2009-0927 KEV |
|
[KEV] Vulnerability in Adobe reader-and-acrobat (CVE-2009-0927)
vulnerability in Adobe reader-and-acrobat (CVE-2009-0927). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2005-2773 KEV |
|
[KEV] Vulnerability in Hewlett packard (hp) hewlett-packard-hp (CVE-2005-2773)
vulnerability in Hewlett packard (hp) hewlett-packard-hp (CVE-2005-2773). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-24291 |
|
Vulnerability in dos (CVE-2022-24291)
vulnerability in dos (CVE-2022-24291). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-46064 |
|
Vulnerability in irfanview (CVE-2021-46064)
vulnerability in irfanview (CVE-2021-46064). Successful exploitation can lead to full system takeover.
|
| CVE-2021-45757 |
|
Vulnerability in dos (CVE-2021-45757)
vulnerability in dos (CVE-2021-45757). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-23345 |
|
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control.
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control.
|
| CVE-2022-23346 |
|
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control issues.
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control issues.
|
| CVE-2022-23352 |
|
An issue in BigAnt Software BigAnt Server v5.6.06 can lead to a Denial of Service (DoS).
An issue in BigAnt Software BigAnt Server v5.6.06 can lead to a Denial of Service (DoS).
|
| CVE-2022-23347 |
|
Path Traversal in path-traversal (CVE-2022-23347)
path traversal in path-traversal (CVE-2022-23347). Confidential information can be exposed externally.
|
| CVE-2022-23349 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2022-23349)
vulnerability in csrf (CVE-2022-23349). Successful exploitation can lead to full system takeover.
|
| CVE-2022-27245 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2022-27245)
SSRF in ssrf (CVE-2022-27245). Successful exploitation can lead to full system takeover.
|
| CVE-2022-27243 |
|
Vulnerability in misp-project (CVE-2022-27243)
vulnerability in misp-project (CVE-2022-27243). Successful exploitation can lead to full system takeover.
|
| CVE-2022-0778 |
|
Vulnerability in dos (CVE-2022-0778)
vulnerability in dos (CVE-2022-0778). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-5135 KEV |
|
[KEV] Vulnerability in Sonicwall sonicos (CVE-2020-5135)
vulnerability in Sonicwall sonicos (CVE-2020-5135). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1405 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-1405)
vulnerability in Microsoft windows (CVE-2019-1405). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|