Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2022-23650 Vulnerability in github.com/gravitl/netmaker (CVE-2022-23650)
vulnerability in github.com/gravitl/netmaker (CVE-2022-23650). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.9.4` or later.
CVE-2021-4090 Out-of-Bounds Write in c (CVE-2021-4090)
out-of-bounds write in c (CVE-2021-4090). Confidential information can be exposed externally.
CVE-2022-22914 Path Traversal in path-traversal (CVE-2022-22914)
path traversal in path-traversal (CVE-2022-22914). Confidential information can be exposed externally.
CVE-2022-24086 KEV [KEV] Vulnerability in Adobe commerce-and-magento-open-source (CVE-2022-24086)
vulnerability in Adobe commerce-and-magento-open-source (CVE-2022-24086). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-0609 KEV [KEV] Use-After-Free in Google chromium-animation (CVE-2022-0609)
vulnerability in Google chromium-animation (CVE-2022-0609). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-0752 KEV [KEV] Vulnerability in Microsoft internet-explorer (CVE-2019-0752)
vulnerability in Microsoft internet-explorer (CVE-2019-0752). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-8174 KEV [KEV] Out-of-Bounds Write in Microsoft windows (CVE-2018-8174)
out-of-bounds write in Microsoft windows (CVE-2018-8174). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-20250 KEV [KEV] Vulnerability in Rarlab winrar (CVE-2018-20250)
vulnerability in Rarlab winrar (CVE-2018-20250). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-15982 KEV [KEV] Use-After-Free in Adobe flash-player (CVE-2018-15982)
vulnerability in Adobe flash-player (CVE-2018-15982). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-9841 KEV [KEV] Code Injection in phpunit (CVE-2017-9841)
code injection in phpunit (CVE-2017-9841). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-1761 KEV [KEV] Buffer Overflow in Microsoft word (CVE-2014-1761)
vulnerability in Microsoft word (CVE-2014-1761). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-3906 KEV [KEV] Code Injection in Microsoft graphics-component (CVE-2013-3906)
code injection in Microsoft graphics-component (CVE-2013-3906). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-45421 Information Disclosure in emerson (CVE-2021-45421)
vulnerability in emerson (CVE-2021-45421). Confidential information can be exposed externally.
CVE-2021-22788 Out-of-Bounds Write in dos (CVE-2021-22788)
out-of-bounds write in dos (CVE-2021-22788). Risk of unauthorized operations or information disclosure.
CVE-2021-22787 Vulnerability in dos (CVE-2021-22787)
vulnerability in dos (CVE-2021-22787). Risk of unauthorized operations or information disclosure.
CVE-2021-22785 Information Disclosure in schneider-electric (CVE-2021-22785)
vulnerability in schneider-electric (CVE-2021-22785). Confidential information can be exposed externally.
CVE-2022-22620 KEV [KEV] Use-After-Free in Apple ios (CVE-2022-22620)
vulnerability in Apple ios (CVE-2022-22620). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-46354 Vulnerability in cybelesoft (CVE-2021-46354)
vulnerability in cybelesoft (CVE-2021-46354). Confidential information can be exposed externally.
CVE-2021-41442 Vulnerability in dos (CVE-2021-41442)
vulnerability in dos (CVE-2021-41442). Risk of unauthorized operations or information disclosure.
CVE-2021-36934 KEV [KEV] Vulnerability in Microsoft windows (CVE-2021-36934)
vulnerability in Microsoft windows (CVE-2021-36934). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0796 KEV [KEV] Buffer Overflow in Microsoft smbv3 (CVE-2020-0796)
vulnerability in Microsoft smbv3 (CVE-2020-0796). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-1000861 KEV [KEV] Unsafe Deserialization in jenkins (CVE-2018-1000861)
vulnerability in jenkins (CVE-2018-1000861). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-9791 KEV [KEV] Vulnerability in Apache struts-1 (CVE-2017-9791)
vulnerability in Apache struts-1 (CVE-2017-9791). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-8464 KEV [KEV] Vulnerability in Microsoft windows (CVE-2017-8464)
vulnerability in Microsoft windows (CVE-2017-8464). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-10271 KEV [KEV] Vulnerability in Oracle weblogic-server (CVE-2017-10271)
vulnerability in Oracle weblogic-server (CVE-2017-10271). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0263 KEV [KEV] Use-After-Free in Microsoft win32k (CVE-2017-0263)
vulnerability in Microsoft win32k (CVE-2017-0263). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0262 KEV [KEV] Vulnerability in Microsoft office (CVE-2017-0262)
vulnerability in Microsoft office (CVE-2017-0262). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0145 KEV [KEV] Vulnerability in Microsoft smbv1 (CVE-2017-0145)
vulnerability in Microsoft smbv1 (CVE-2017-0145). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0144 KEV [KEV] Vulnerability in Microsoft smbv1 (CVE-2017-0144)
vulnerability in Microsoft smbv1 (CVE-2017-0144). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3088 KEV [KEV] Vulnerability in Apache activemq (CVE-2016-3088)
vulnerability in Apache activemq (CVE-2016-3088). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-2051 KEV [KEV] Command Injection in D-link dir-645-router (CVE-2015-2051)
command injection in D-link dir-645-router (CVE-2015-2051). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-1635 KEV [KEV] Code Injection in Microsoft httpsys (CVE-2015-1635)
code injection in Microsoft httpsys (CVE-2015-1635). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-1130 KEV [KEV] Vulnerability in Apple os-x (CVE-2015-1130)
vulnerability in Apple os-x (CVE-2015-1130). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-4404 KEV [KEV] Buffer Overflow in Apple os-x (CVE-2014-4404)
vulnerability in Apple os-x (CVE-2014-4404). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-22709 VP9 Video Extensions Remote Code Execution Vulnerability
VP9 Video Extensions Remote Code Execution Vulnerability
CVE-2021-41441 Vulnerability in dos (CVE-2021-41441)
vulnerability in dos (CVE-2021-41441). Risk of unauthorized operations or information disclosure.
CVE-2021-42641 Vulnerability in printerlogic (CVE-2021-42641)
vulnerability in printerlogic (CVE-2021-42641). Confidential information can be exposed externally.
CVE-2021-42642 Vulnerability in printerlogic (CVE-2021-42642)
vulnerability in printerlogic (CVE-2021-42642). Confidential information can be exposed externally.
CVE-2022-23320 Authentication Bypass in xerox (CVE-2022-23320)
authentication bypass in xerox (CVE-2022-23320). Confidential information can be exposed externally.
CVE-2022-23913 Vulnerability in org.apache.activemq:artemis-core-client (CVE-2022-23913)
vulnerability in org.apache.activemq:artemis-core-client (CVE-2022-23913). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.19.1` or later.
CVE-2020-7534 Cross-Site Request Forgery (CSRF) in csrf (CVE-2020-7534)
vulnerability in csrf (CVE-2020-7534). Successful exploitation can lead to full system takeover.
CVE-2022-21882 KEV [KEV] Out-of-Bounds Write in Microsoft win32k (CVE-2022-21882)
out-of-bounds write in Microsoft win32k (CVE-2022-21882). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-42638 Command Injection in printerlogic (CVE-2021-42638)
command injection in printerlogic (CVE-2021-42638). Successful exploitation can lead to full system takeover.
CVE-2021-42631 Unsafe Deserialization in printerlogic (CVE-2021-42631)
vulnerability in printerlogic (CVE-2021-42631). Successful exploitation can lead to full system takeover.
CVE-2021-42635 Vulnerability in printerlogic (CVE-2021-42635)
vulnerability in printerlogic (CVE-2021-42635). Successful exploitation can lead to full system takeover.
CVE-2022-22587 KEV [KEV] Vulnerability in Apple ios-and-macos (CVE-2022-22587)
vulnerability in Apple ios-and-macos (CVE-2022-22587). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-20038 KEV [KEV] Vulnerability in Sonicwall sma-100-appliances (CVE-2021-20038)
vulnerability in Sonicwall sma-100-appliances (CVE-2021-20038). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-5722 KEV [KEV] SQL Injection in Grandstream ucm6200 (CVE-2020-5722)
SQL injection in Grandstream ucm6200 (CVE-2020-5722). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-0787 KEV [KEV] Privilege Escalation in Microsoft windows (CVE-2020-0787)
vulnerability in Microsoft windows (CVE-2020-0787). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-5689 KEV [KEV] Vulnerability in Intel active-management-technology-amt (CVE-2017-5689)
vulnerability in Intel active-management-technology-amt (CVE-2017-5689). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →