Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

KEV

Categories

All 🌐 Web Application 🧭 Browser 🖥️ Operating System 📱 Mobile 🛰️ Network Infrastructure ☁️ Cloud / Container 📝 CMS / Site Builder 🗄️ Database / Storage 🔐 Auth / Identity 🔑 Cryptography 🛠️ DevOps / CI-CD 🤖 AI / ML 🔌 IoT / Embedded 🧩 Hardware / Firmware 🏢 Enterprise SaaS 🧰 Developer Tooling ☠️ Malicious Package 📦 Other

Tag groups

All 💬 Programming Languages 22 🧱 Web Frameworks 29 📱 Mobile Platforms 6 🤖 AI/ML Frameworks 11 🖥️ Web Servers 9 🗄️ Databases 13 📝 CMS 9 ☁️ Cloud Platforms 11 📦 Container Tech 12 🖥️ Operating Systems 15 ⚔️ Attack Types 25 🧬 CWE 185 🏢 Vendors 581 📦 Products 666 🌳 Package Ecosystems 24 🛠️ DevOps Tools 17 📡 Protocols 15

Popular tags (Top 40)

Rootio Linux419 Microsoft386 C237 Java183 Jre178 Java Min178 Bitnami178 Windows177 Rootdebian11175 Rootdebian12151 Linux130 Cwe 20125 Cwe 78120 Linux Kernel106 Cwe 787105 Apple99 Cwe 41699 Cwe 2296 Rootdebian1393 Cwe 11990 Cisco89 Denial of Service85 Cwe 9484 Multiple Products79 Adobe78 Google77 Cwe 50270 Cwe 7966 Cwe 8954 Apache47 Cwe 91844 Cwe 28443 Oracle42 Cwe 28741 JavaScript41 PHP41 Cwe 7740 Chromium V838 Cwe 30638 Cwe 84337

ID	Title	Severity	Tags	Detected
OSV-2022-1018	Vulnerability in kimageformats (OSV-2022-1018) vulnerability in kimageformats (OSV-2022-1018). Risk of unauthorized operations or information disclosure.			3 years ago
UBUNTU-CVE-2022-41420	Vulnerability in nasm (UBUNTU-CVE-2022-41420) vulnerability in nasm (UBUNTU-CVE-2022-41420). Risk of unauthorized operations or information disclosure.			3 years ago
UBUNTU-CVE-2022-41848	Vulnerability in linux (UBUNTU-CVE-2022-41848) vulnerability in linux (UBUNTU-CVE-2022-41848). Risk of unauthorized operations or information disclosure.			3 years ago
CVE-2022-36804 KEV	[KEV] OS Command Injection in Atlassian bitbucket-server-and-data-center (CVE-2022-36804) OS command injection in Atlassian bitbucket-server-and-data-center (CVE-2022-36804). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Atlassian Bitbucket Server And Data Center Cwe 78 Cwe 88 +1	3 years ago
CVE-2022-41040 KEV	[KEV] SSRF (Server-Side Request Forgery) in Microsoft exchange-server (CVE-2022-41040) SSRF in Microsoft exchange-server (CVE-2022-41040). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Microsoft Exchange Server Cwe 918	3 years ago
CVE-2022-41082 KEV	[KEV] Unsafe Deserialization in Microsoft exchange-server (CVE-2022-41082) vulnerability in Microsoft exchange-server (CVE-2022-41082). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Microsoft Exchange Server Cwe 502	3 years ago
OSV-2022-993	Vulnerability in radare2 (OSV-2022-993) vulnerability in radare2 (OSV-2022-993). Risk of unauthorized operations or information disclosure.			3 years ago
UBUNTU-CVE-2022-3296	Vulnerability in vim (UBUNTU-CVE-2022-3296) vulnerability in vim (UBUNTU-CVE-2022-3296). Successful exploitation can lead to full system takeover.			3 years ago
OSV-2022-937	Vulnerability in mongoose (OSV-2022-937) vulnerability in mongoose (OSV-2022-937). Risk of unauthorized operations or information disclosure.			3 years ago
CVE-2022-3236 KEV	[KEV] Code Injection in Sophos firewall (CVE-2022-3236) code injection in Sophos firewall (CVE-2022-3236). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Sophos Firewall Cwe 94	3 years ago
CVE-2022-35405 KEV	[KEV] Unsafe Deserialization in Zoho manageengine (CVE-2022-35405) vulnerability in Zoho manageengine (CVE-2022-35405). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Zoho Manageengine Cwe 502	3 years ago
OSV-2022-916	Vulnerability in wabt (OSV-2022-916) vulnerability in wabt (OSV-2022-916). Risk of unauthorized operations or information disclosure.			3 years ago
OSV-2022-896	Vulnerability in libsass (OSV-2022-896) vulnerability in libsass (OSV-2022-896). Risk of unauthorized operations or information disclosure.			3 years ago
CVE-2010-2568 KEV	[KEV] Vulnerability in Microsoft windows (CVE-2010-2568) vulnerability in Microsoft windows (CVE-2010-2568). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Microsoft Windows Cwe 20	3 years ago
CVE-2013-2094 KEV	[KEV] Vulnerability in Linux kernel (CVE-2013-2094) vulnerability in Linux kernel (CVE-2013-2094). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Linux Kernel Cwe 189	3 years ago
CVE-2013-2596 KEV	[KEV] Vulnerability in Linux kernel (CVE-2013-2596) vulnerability in Linux kernel (CVE-2013-2596). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Linux Kernel Cwe 189	3 years ago
CVE-2013-2597 KEV	[KEV] Buffer Overflow in Code aurora code-aurora (CVE-2013-2597) vulnerability in Code aurora code-aurora (CVE-2013-2597). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Code Aurora Acdb Audio Driver Cwe 119	3 years ago
CVE-2013-6282 KEV	[KEV] Vulnerability in Linux kernel (CVE-2013-6282) vulnerability in Linux kernel (CVE-2013-6282). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Linux Kernel Cwe 20	3 years ago
CVE-2022-40139 KEV	[KEV] Vulnerability in Trend micro trend-micro (CVE-2022-40139) vulnerability in Trend micro trend-micro (CVE-2022-40139). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Trend Micro Apex One And Apex One As A Service Cwe 353 Cwe 641	3 years ago
CVE-2022-32917 KEV	[KEV] Vulnerability in Apple ios (CVE-2022-32917) vulnerability in Apple ios (CVE-2022-32917). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Apple iOS Ipados And Macos +2	3 years ago
CVE-2022-37969 KEV	[KEV] Vulnerability in Microsoft windows (CVE-2022-37969) vulnerability in Microsoft windows (CVE-2022-37969). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Microsoft Windows Cwe 20 Cwe 787	3 years ago
OSV-2022-882	Vulnerability in hunspell (OSV-2022-882) vulnerability in hunspell (OSV-2022-882). Risk of unauthorized operations or information disclosure.			3 years ago
UBUNTU-CVE-2022-40133	Vulnerability in linux-hwe-edge (UBUNTU-CVE-2022-40133) vulnerability in linux-hwe-edge (UBUNTU-CVE-2022-40133). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.0-1008.8` or later.			3 years ago
UBUNTU-CVE-2022-38457	Vulnerability in linux-hwe-edge (UBUNTU-CVE-2022-38457) vulnerability in linux-hwe-edge (UBUNTU-CVE-2022-38457). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.0-1008.8` or later.			3 years ago
CVE-2011-1823 KEV	[KEV] Vulnerability in android (CVE-2011-1823) vulnerability in android (CVE-2011-1823). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Android Android OS Cwe 189	3 years ago
CVE-2011-4723 KEV	[KEV] Vulnerability in D-link dir-300-router (CVE-2011-4723) vulnerability in D-link dir-300-router (CVE-2011-4723). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	D Link Dir 300 Router Cwe 310	3 years ago
CVE-2017-5521 KEV	[KEV] Information Disclosure in Netgear multiple-devices (CVE-2017-5521) vulnerability in Netgear multiple-devices (CVE-2017-5521). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Netgear Multiple Devices Cwe 200	3 years ago
CVE-2018-13374 KEV	[KEV] Vulnerability in Fortinet fortios-and-fortiadc (CVE-2018-13374) vulnerability in Fortinet fortios-and-fortiadc (CVE-2018-13374). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Fortinet Fortios And Fortiadc Cwe 732	3 years ago
CVE-2018-2628 KEV	[KEV] Unsafe Deserialization in Oracle weblogic-server (CVE-2018-2628) vulnerability in Oracle weblogic-server (CVE-2018-2628). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Oracle Weblogic Server Cwe 502	3 years ago
CVE-2018-6530 KEV	[KEV] OS Command Injection in D-link multiple-routers (CVE-2018-6530) OS command injection in D-link multiple-routers (CVE-2018-6530). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	D Link Multiple Routers Cwe 78	3 years ago
CVE-2018-7445 KEV	[KEV] Buffer Overflow in Mikrotik routeros (CVE-2018-7445) vulnerability in Mikrotik routeros (CVE-2018-7445). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Mikrotik Routeros Cwe 119	3 years ago
CVE-2020-9934 KEV	[KEV] Vulnerability in Apple ios (CVE-2020-9934) vulnerability in Apple ios (CVE-2020-9934). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Apple iOS Ipados And Macos	3 years ago
CVE-2022-26258 KEV	[KEV] OS Command Injection in D-link dir-820l (CVE-2022-26258) OS command injection in D-link dir-820l (CVE-2022-26258). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	D Link Dir 820L Cwe 78	3 years ago
CVE-2022-27593 KEV	[KEV] Vulnerability in Qnap photo-station (CVE-2022-27593) vulnerability in Qnap photo-station (CVE-2022-27593). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Qnap Photo Station Cwe 610	3 years ago
CVE-2022-3075 KEV	[KEV] Vulnerability in Google chromium-mojo (CVE-2022-3075) vulnerability in Google chromium-mojo (CVE-2022-3075). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Google Chromium Mojo Cwe 20	3 years ago
OSV-2022-842	Vulnerability in wolfssl (OSV-2022-842) vulnerability in wolfssl (OSV-2022-842). Risk of unauthorized operations or information disclosure.			3 years ago
OSV-2022-840	Vulnerability in wolfssl (OSV-2022-840) vulnerability in wolfssl (OSV-2022-840). Risk of unauthorized operations or information disclosure.			3 years ago
OSV-2022-834	Vulnerability in fluent-bit (OSV-2022-834) vulnerability in fluent-bit (OSV-2022-834). Risk of unauthorized operations or information disclosure.			3 years ago
CVE-2020-0500	Vulnerability in platform/frameworks/base (CVE-2020-0500) vulnerability in platform/frameworks/base (CVE-2020-0500). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11:2022-09-01` or later.			3 years ago
UBUNTU-CVE-2022-1247	Vulnerability in linux (UBUNTU-CVE-2022-1247) vulnerability in linux (UBUNTU-CVE-2022-1247). Successful exploitation can lead to full system takeover.			3 years ago
UBUNTU-CVE-2022-2961	Vulnerability in linux (UBUNTU-CVE-2022-2961) vulnerability in linux (UBUNTU-CVE-2022-2961). Successful exploitation can lead to full system takeover.			3 years ago
UBUNTU-CVE-2022-0480	Vulnerability in linux (UBUNTU-CVE-2022-0480) vulnerability in linux (UBUNTU-CVE-2022-0480). Risk of unauthorized operations or information disclosure.			3 years ago
UBUNTU-CVE-2022-0400	Vulnerability in linux (UBUNTU-CVE-2022-0400) vulnerability in linux (UBUNTU-CVE-2022-0400). Risk of unauthorized operations or information disclosure.			3 years ago
OSV-2022-799	Vulnerability in grok (OSV-2022-799) vulnerability in grok (OSV-2022-799). Risk of unauthorized operations or information disclosure.			3 years ago
OSV-2022-795	Vulnerability in pcl (OSV-2022-795) vulnerability in pcl (OSV-2022-795). Risk of unauthorized operations or information disclosure.			3 years ago
UBUNTU-CVE-2021-3864	Vulnerability in linux (UBUNTU-CVE-2021-3864) vulnerability in linux (UBUNTU-CVE-2021-3864). Successful exploitation can lead to full system takeover.			3 years ago
CVE-2020-28949 KEV	[KEV] Vulnerability in Pear archive-tar (CVE-2020-28949) vulnerability in Pear archive-tar (CVE-2020-28949). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Pear Archive Tar Cwe 74	3 years ago
CVE-2020-36193 KEV	[KEV] Path Traversal in Pear archive-tar (CVE-2020-36193) path traversal in Pear archive-tar (CVE-2020-36193). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Pear Archive Tar Cwe 22 Cwe 59	3 years ago
CVE-2021-31010 KEV	[KEV] Vulnerability in Apple ios (CVE-2021-31010) vulnerability in Apple ios (CVE-2021-31010). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Apple iOS macOS Watchos +2	3 years ago
CVE-2021-38406 KEV	[KEV] Out-of-Bounds Write in Delta electronics delta-electronics (CVE-2021-38406) out-of-bounds write in Delta electronics delta-electronics (CVE-2021-38406). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Delta Electronics Dopsoft 2 Cwe 787	3 years ago

Vulnerabilities

🍪 About cookies