Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| UBUNTU-CVE-2023-6610 |
|
Vulnerability in linux (UBUNTU-CVE-2023-6610)
vulnerability in linux (UBUNTU-CVE-2023-6610). Confidential information can be exposed externally. Mitigation: upgrade to `5.15.0-1078.87~20.04.1` or later.
|
| CVE-2023-41265 KEV |
|
[KEV] Vulnerability in Qlik sense (CVE-2023-41265)
vulnerability in Qlik sense (CVE-2023-41265). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-41266 KEV |
|
[KEV] Vulnerability in Qlik sense (CVE-2023-41266)
vulnerability in Qlik sense (CVE-2023-41266). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| OSV-2023-1259 |
|
Vulnerability in pcapplusplus (OSV-2023-1259)
vulnerability in pcapplusplus (OSV-2023-1259). Risk of unauthorized operations or information disclosure.
|
| UBUNTU-CVE-2023-33053 |
|
Vulnerability in linux-hwe-edge (UBUNTU-CVE-2023-33053)
vulnerability in linux-hwe-edge (UBUNTU-CVE-2023-33053). Successful exploitation can lead to full system takeover.
|
| CVE-2022-22071 KEV |
|
[KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2022-22071)
vulnerability in Qualcomm multiple-chipsets (CVE-2022-22071). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33063 KEV |
|
[KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2023-33063)
vulnerability in Qualcomm multiple-chipsets (CVE-2023-33063). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33106 KEV |
|
[KEV] Vulnerability in Qualcomm multiple-chipsets (CVE-2023-33106)
vulnerability in Qualcomm multiple-chipsets (CVE-2023-33106). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33107 KEV |
|
[KEV] Vulnerability in Qualcomm multiple-chipsets (CVE-2023-33107)
vulnerability in Qualcomm multiple-chipsets (CVE-2023-33107). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-6460 |
|
Vulnerability in @google-cloud/firestore (CVE-2023-6460)
vulnerability in @google-cloud/firestore (CVE-2023-6460). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.0` or later.
|
| UBUNTU-CVE-2023-49093 |
|
Vulnerability in htmlunit (UBUNTU-CVE-2023-49093)
vulnerability in htmlunit (UBUNTU-CVE-2023-49093). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.8-1ubuntu2.1+esm1` or later.
|
| CVE-2023-42916 KEV |
|
[KEV] Out-of-Bounds Read in Apple multiple-products (CVE-2023-42916)
vulnerability in Apple multiple-products (CVE-2023-42916). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-42917 KEV |
|
[KEV] Out-of-Bounds Write in Apple java (CVE-2023-42917)
out-of-bounds write in Apple java (CVE-2023-42917). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `1.8.0, 8.0.411` or later.
|
| OSV-2023-1256 |
|
Vulnerability in matio (OSV-2023-1256)
vulnerability in matio (OSV-2023-1256). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-49103 KEV |
|
[KEV] Vulnerability in owncloud (CVE-2023-49103)
vulnerability in owncloud (CVE-2023-49103). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-6345 KEV |
|
[KEV] Vulnerability in Google chromium-skia (CVE-2023-6345)
vulnerability in Google chromium-skia (CVE-2023-6345). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| GHSA-jpr7-q523-hx25 |
|
Vulnerability in phpseclib/phpseclib (GHSA-jpr7-q523-hx25)
vulnerability in phpseclib/phpseclib (GHSA-jpr7-q523-hx25). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.0.34` or later.
|
| UBUNTU-CVE-2023-6238 |
|
Vulnerability in linux-hwe-edge (UBUNTU-CVE-2023-6238)
vulnerability in linux-hwe-edge (UBUNTU-CVE-2023-6238). Successful exploitation can lead to full system takeover.
|
| CVE-2023-4911 KEV |
|
[KEV] Vulnerability in gnu (CVE-2023-4911)
vulnerability in gnu (CVE-2023-4911). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| OSV-2023-1177 |
|
Vulnerability in serenity (OSV-2023-1177)
vulnerability in serenity (OSV-2023-1177). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-2551 KEV |
|
[KEV] Vulnerability in Oracle fusion-middleware (CVE-2020-2551)
vulnerability in Oracle fusion-middleware (CVE-2020-2551). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-1671 KEV |
|
[KEV] Command Injection in Sophos web-appliance (CVE-2023-1671)
command injection in Sophos web-appliance (CVE-2023-1671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36584 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36584)
vulnerability in Microsoft windows (CVE-2023-36584). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36036 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36036)
vulnerability in Microsoft windows (CVE-2023-36036). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36025 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36025)
vulnerability in Microsoft windows (CVE-2023-36025). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36033 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36033)
vulnerability in Microsoft windows (CVE-2023-36033). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36851 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36851)
vulnerability in Juniper junos-os (CVE-2023-36851). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36847 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36847)
vulnerability in Juniper junos-os (CVE-2023-36847). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36846 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36846)
vulnerability in Juniper junos-os (CVE-2023-36846). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36845 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36845)
vulnerability in Juniper junos-os (CVE-2023-36845). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36844 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36844)
vulnerability in Juniper junos-os (CVE-2023-36844). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-47246 KEV |
|
[KEV] Path Traversal in sysaid (CVE-2023-47246)
path traversal in sysaid (CVE-2023-47246). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| OSV-2023-1129 |
|
Vulnerability in libheif (OSV-2023-1129)
vulnerability in libheif (OSV-2023-1129). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-29552 KEV |
|
[KEV] Vulnerability in Ietf service-location-protocol-slp (CVE-2023-29552)
vulnerability in Ietf service-location-protocol-slp (CVE-2023-29552). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-22518 KEV |
|
[KEV] Authorization Flaw in Atlassian confluence-data-center-and-server (CVE-2023-22518)
vulnerability in Atlassian confluence-data-center-and-server (CVE-2023-22518). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-46604 KEV |
|
[KEV] Unsafe Deserialization in Apache activemq (CVE-2023-46604)
vulnerability in Apache activemq (CVE-2023-46604). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| UBUNTU-CVE-2023-3397 |
|
Vulnerability in linux (UBUNTU-CVE-2023-3397)
vulnerability in linux (UBUNTU-CVE-2023-3397). Successful exploitation can lead to full system takeover.
|
| UBUNTU-CVE-2023-1193 |
|
Vulnerability in linux-hwe-edge (UBUNTU-CVE-2023-1193)
vulnerability in linux-hwe-edge (UBUNTU-CVE-2023-1193). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-40112 |
|
Vulnerability in platform/external/libcups (CVE-2023-40112)
vulnerability in platform/external/libcups (CVE-2023-40112). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11:2023-11-01` or later.
|
| CVE-2023-46747 KEV |
|
[KEV] Vulnerability in F5 big-ip-configuration-utility (CVE-2023-46747)
vulnerability in F5 big-ip-configuration-utility (CVE-2023-46747). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-46748 KEV |
|
[KEV] SQL Injection in F5 big-ip-configuration-utility (CVE-2023-46748)
SQL injection in F5 big-ip-configuration-utility (CVE-2023-46748). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| OSV-2023-1073 |
|
Vulnerability in matio (OSV-2023-1073)
vulnerability in matio (OSV-2023-1073). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-5631 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2023-5631)
cross-site scripting in Roundcube webmail (CVE-2023-5631). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-20273 KEV |
|
[KEV] OS Command Injection in cisco (CVE-2023-20273)
OS command injection in cisco (CVE-2023-20273). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-4966 KEV |
|
[KEV] Buffer Overflow in Citrix netscaler-adc-and-netscaler-gateway (CVE-2023-4966)
vulnerability in Citrix netscaler-adc-and-netscaler-gateway (CVE-2023-4966). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-20198 KEV |
|
[KEV] Vulnerability in Cisco ios-xe-web-ui (CVE-2023-20198)
vulnerability in Cisco ios-xe-web-ui (CVE-2023-20198). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-44487 KEV |
|
[KEV] Vulnerability in Ietf http2 (CVE-2023-44487)
vulnerability in Ietf http2 (CVE-2023-44487). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36563 KEV |
|
[KEV] Vulnerability in Microsoft wordpad (CVE-2023-36563)
vulnerability in Microsoft wordpad (CVE-2023-36563). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-41763 KEV |
|
[KEV] SSRF (Server-Side Request Forgery) in Microsoft skype-for-business (CVE-2023-41763)
SSRF in Microsoft skype-for-business (CVE-2023-41763). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-20109 KEV |
|
[KEV] Out-of-Bounds Write in Cisco ios-and-ios-xe (CVE-2023-20109)
out-of-bounds write in Cisco ios-and-ios-xe (CVE-2023-20109). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|