Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-46848 |
|
Vulnerability in c (CVE-2026-46848)
vulnerability in c (CVE-2026-46848). Confidential information can be exposed externally.
|
| CVE-2026-35301 |
|
Vulnerability in c (CVE-2026-35301)
vulnerability in c (CVE-2026-35301). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35300 |
|
Unsafe Deserialization in c (CVE-2026-35300)
vulnerability in c (CVE-2026-35300). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35302 |
|
Open Redirect in c (CVE-2026-35302)
vulnerability in c (CVE-2026-35302). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35303 |
|
Vulnerability in c (CVE-2026-35303)
vulnerability in c (CVE-2026-35303). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35299 |
|
Vulnerability in c (CVE-2026-35299)
vulnerability in c (CVE-2026-35299). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35311 |
|
Vulnerability in c (CVE-2026-35311)
vulnerability in c (CVE-2026-35311). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35298 |
|
Vulnerability in c (CVE-2026-35298)
vulnerability in c (CVE-2026-35298). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35292 |
|
Vulnerability in c (CVE-2026-35292)
vulnerability in c (CVE-2026-35292). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35291 |
|
Privilege Escalation in c (CVE-2026-35291)
vulnerability in c (CVE-2026-35291). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35259 |
|
Open Redirect in c (CVE-2026-35259)
vulnerability in c (CVE-2026-35259). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35263 |
|
Vulnerability in c (CVE-2026-35263)
vulnerability in c (CVE-2026-35263). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35258 |
|
Open Redirect in c (CVE-2026-35258)
vulnerability in c (CVE-2026-35258). Confidential information can be exposed externally.
|
| CVE-2024-21182 KEV |
|
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
|
| CVE-2020-2883 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2020-2883)
vulnerability in Oracle weblogic-server (CVE-2020-2883). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-14644 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14644)
vulnerability in Oracle weblogic-server (CVE-2020-14644). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-3506 KEV |
|
[KEV] OS Command Injection in Oracle weblogic-server (CVE-2017-3506)
OS command injection in Oracle weblogic-server (CVE-2017-3506). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-21839 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2023-21839)
vulnerability in Oracle weblogic-server (CVE-2023-21839). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-2628 KEV |
|
[KEV] Unsafe Deserialization in Oracle weblogic-server (CVE-2018-2628)
vulnerability in Oracle weblogic-server (CVE-2018-2628). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-10271 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2017-10271)
vulnerability in Oracle weblogic-server (CVE-2017-10271). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-23305 |
|
SQL Injection in log4j:log4j (CVE-2022-23305)
SQL injection in log4j:log4j (CVE-2022-23305). Successful exploitation can lead to full system takeover.
|
| CVE-2022-23307 |
|
Unsafe Deserialization in apache (CVE-2022-23307)
vulnerability in apache (CVE-2022-23307). Successful exploitation can lead to full system takeover.
|
| CVE-2022-23302 |
|
Unsafe Deserialization in apache (CVE-2022-23302)
vulnerability in apache (CVE-2022-23302). Successful exploitation can lead to full system takeover.
|
| CVE-2019-2725 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2019-2725)
vulnerability in Oracle weblogic-server (CVE-2019-2725). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-44832 |
|
Vulnerability in org.apache.logging.log4j:log4j-core (CVE-2021-44832)
vulnerability in org.apache.logging.log4j:log4j-core (CVE-2021-44832). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.17.1` or later.
|
| CVE-2021-45105 |
|
Vulnerability in org.apache.logging.log4j:log4j-core (CVE-2021-45105)
vulnerability in org.apache.logging.log4j:log4j-core (CVE-2021-45105). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.3.1` or later.
|
| CVE-2021-4104 |
|
Unsafe Deserialization in apache (CVE-2021-4104)
vulnerability in apache (CVE-2021-4104). Successful exploitation can lead to full system takeover.
|
| CVE-2020-14882 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14882)
vulnerability in Oracle weblogic-server (CVE-2020-14882). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-14883 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14883)
vulnerability in Oracle weblogic-server (CVE-2020-14883). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-14750 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14750)
vulnerability in Oracle weblogic-server (CVE-2020-14750). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-4852 KEV |
|
[KEV] Unsafe Deserialization in Oracle weblogic-server (CVE-2015-4852)
vulnerability in Oracle weblogic-server (CVE-2015-4852). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-9488 |
|
Vulnerability in org.apache.logging.log4j:log4j (CVE-2020-9488)
vulnerability in org.apache.logging.log4j:log4j (CVE-2020-9488). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.3.2` or later.
|
| CVE-2019-17571 |
|
Unsafe Deserialization in log4j:log4j (CVE-2019-17571)
vulnerability in log4j:log4j (CVE-2019-17571). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15707 |
|
Vulnerability in apache (CVE-2017-15707)
vulnerability in apache (CVE-2017-15707). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8610 |
|
Vulnerability in dos (CVE-2016-8610)
vulnerability in dos (CVE-2016-8610). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10352 |
|
Vulnerability in c (CVE-2017-10352)
vulnerability in c (CVE-2017-10352). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10334 |
|
Information Disclosure in c (CVE-2017-10334)
vulnerability in c (CVE-2017-10334). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10336 |
|
Vulnerability in c (CVE-2017-10336)
vulnerability in c (CVE-2017-10336). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10152 |
|
Information Disclosure in c (CVE-2017-10152)
vulnerability in c (CVE-2017-10152). Confidential information can be exposed externally.
|
| CVE-2017-10178 |
|
Vulnerability in c (CVE-2017-10178)
vulnerability in c (CVE-2017-10178). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10147 |
|
Vulnerability in c (CVE-2017-10147)
vulnerability in c (CVE-2017-10147). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10137 |
|
Vulnerability in c (CVE-2017-10137)
vulnerability in c (CVE-2017-10137). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10148 |
|
Vulnerability in c (CVE-2017-10148)
vulnerability in c (CVE-2017-10148). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10123 |
|
Vulnerability in c (CVE-2017-10123)
vulnerability in c (CVE-2017-10123). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10063 |
|
Vulnerability in c (CVE-2017-10063)
vulnerability in c (CVE-2017-10063). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-3531 |
|
Vulnerability in c (CVE-2017-3531)
vulnerability in c (CVE-2017-3531). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5645 |
|
Unsafe Deserialization in apache (CVE-2017-5645)
vulnerability in apache (CVE-2017-5645). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7103 |
|
Cross-Site Scripting (XSS) in jqueryui (CVE-2016-7103)
cross-site scripting in jqueryui (CVE-2016-7103). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-3248 |
|
Vulnerability in oracle (CVE-2017-3248)
vulnerability in oracle (CVE-2017-3248). Successful exploitation can lead to full system takeover.
|
| CVE-2004-2320 |
|
Information Disclosure in express (CVE-2004-2320)
vulnerability in express (CVE-2004-2320). Risk of unauthorized operations or information disclosure.
|