Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2023-38203 KEV |
|
[KEV] Unsafe Deserialization in Adobe coldfusion (CVE-2023-38203)
vulnerability in Adobe coldfusion (CVE-2023-38203). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-29300 KEV |
|
[KEV] Unsafe Deserialization in Adobe coldfusion (CVE-2023-29300)
vulnerability in Adobe coldfusion (CVE-2023-29300). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-27524 KEV |
|
[KEV] Vulnerability in Apache superset (CVE-2023-27524)
vulnerability in Apache superset (CVE-2023-27524). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-41990 KEV |
|
[KEV] Vulnerability in Apple multiple-products (CVE-2023-41990)
vulnerability in Apple multiple-products (CVE-2023-41990). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-20017 KEV |
|
[KEV] Command Injection in D-link dsl-2750b-devices (CVE-2016-20017)
command injection in D-link dsl-2750b-devices (CVE-2016-20017). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-23752 KEV |
|
[KEV] Vulnerability in Joomla! joomla (CVE-2023-23752)
vulnerability in Joomla! joomla (CVE-2023-23752). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-7024 KEV |
|
[KEV] Out-of-Bounds Write in Google chromium-webrtc (CVE-2023-7024)
out-of-bounds write in Google chromium-webrtc (CVE-2023-7024). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-7101 KEV |
|
[KEV] Vulnerability in Spreadsheet::parseexcel spreadsheetparseexcel (CVE-2023-7101)
vulnerability in Spreadsheet::parseexcel spreadsheetparseexcel (CVE-2023-7101). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-47565 KEV |
|
[KEV] OS Command Injection in Qnap viostor-nvr (CVE-2023-47565)
OS command injection in Qnap viostor-nvr (CVE-2023-47565). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-49897 KEV |
|
[KEV] OS Command Injection in Fxc ae1021 (CVE-2023-49897)
OS command injection in Fxc ae1021 (CVE-2023-49897). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-6448 KEV |
|
[KEV] Vulnerability in Unitronics vision-plc-and-hmi (CVE-2023-6448)
vulnerability in Unitronics vision-plc-and-hmi (CVE-2023-6448). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-41265 KEV |
|
[KEV] Vulnerability in Qlik sense (CVE-2023-41265)
vulnerability in Qlik sense (CVE-2023-41265). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-41266 KEV |
|
[KEV] Vulnerability in Qlik sense (CVE-2023-41266)
vulnerability in Qlik sense (CVE-2023-41266). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-22071 KEV |
|
[KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2022-22071)
vulnerability in Qualcomm multiple-chipsets (CVE-2022-22071). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33063 KEV |
|
[KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2023-33063)
vulnerability in Qualcomm multiple-chipsets (CVE-2023-33063). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33106 KEV |
|
[KEV] Vulnerability in Qualcomm multiple-chipsets (CVE-2023-33106)
vulnerability in Qualcomm multiple-chipsets (CVE-2023-33106). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-33107 KEV |
|
[KEV] Vulnerability in Qualcomm multiple-chipsets (CVE-2023-33107)
vulnerability in Qualcomm multiple-chipsets (CVE-2023-33107). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-42916 KEV |
|
[KEV] Out-of-Bounds Read in Apple multiple-products (CVE-2023-42916)
vulnerability in Apple multiple-products (CVE-2023-42916). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-42917 KEV |
|
[KEV] Out-of-Bounds Write in Apple java (CVE-2023-42917)
out-of-bounds write in Apple java (CVE-2023-42917). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `1.8.0, 8.0.411` or later.
|
| CVE-2023-49103 KEV |
|
[KEV] Vulnerability in owncloud (CVE-2023-49103)
vulnerability in owncloud (CVE-2023-49103). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-6345 KEV |
|
[KEV] Vulnerability in Google chromium-skia (CVE-2023-6345)
vulnerability in Google chromium-skia (CVE-2023-6345). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-4911 KEV |
|
[KEV] Vulnerability in gnu (CVE-2023-4911)
vulnerability in gnu (CVE-2023-4911). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-2551 KEV |
|
[KEV] Vulnerability in Oracle fusion-middleware (CVE-2020-2551)
vulnerability in Oracle fusion-middleware (CVE-2020-2551). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-1671 KEV |
|
[KEV] Command Injection in Sophos web-appliance (CVE-2023-1671)
command injection in Sophos web-appliance (CVE-2023-1671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36584 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36584)
vulnerability in Microsoft windows (CVE-2023-36584). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36036 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36036)
vulnerability in Microsoft windows (CVE-2023-36036). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36025 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36025)
vulnerability in Microsoft windows (CVE-2023-36025). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36033 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36033)
vulnerability in Microsoft windows (CVE-2023-36033). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36851 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36851)
vulnerability in Juniper junos-os (CVE-2023-36851). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36847 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36847)
vulnerability in Juniper junos-os (CVE-2023-36847). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36846 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36846)
vulnerability in Juniper junos-os (CVE-2023-36846). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36845 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36845)
vulnerability in Juniper junos-os (CVE-2023-36845). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36844 KEV |
|
[KEV] Vulnerability in Juniper junos-os (CVE-2023-36844)
vulnerability in Juniper junos-os (CVE-2023-36844). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-47246 KEV |
|
[KEV] Path Traversal in sysaid (CVE-2023-47246)
path traversal in sysaid (CVE-2023-47246). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-29552 KEV |
|
[KEV] Vulnerability in Ietf service-location-protocol-slp (CVE-2023-29552)
vulnerability in Ietf service-location-protocol-slp (CVE-2023-29552). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-22518 KEV |
|
[KEV] Authorization Flaw in Atlassian confluence-data-center-and-server (CVE-2023-22518)
vulnerability in Atlassian confluence-data-center-and-server (CVE-2023-22518). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-46604 KEV |
|
[KEV] Unsafe Deserialization in Apache activemq (CVE-2023-46604)
vulnerability in Apache activemq (CVE-2023-46604). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-46747 KEV |
|
[KEV] Vulnerability in F5 big-ip-configuration-utility (CVE-2023-46747)
vulnerability in F5 big-ip-configuration-utility (CVE-2023-46747). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-46748 KEV |
|
[KEV] SQL Injection in F5 big-ip-configuration-utility (CVE-2023-46748)
SQL injection in F5 big-ip-configuration-utility (CVE-2023-46748). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-5631 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Roundcube webmail (CVE-2023-5631)
cross-site scripting in Roundcube webmail (CVE-2023-5631). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-20273 KEV |
|
[KEV] OS Command Injection in cisco (CVE-2023-20273)
OS command injection in cisco (CVE-2023-20273). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-4966 KEV |
|
[KEV] Buffer Overflow in Citrix netscaler-adc-and-netscaler-gateway (CVE-2023-4966)
vulnerability in Citrix netscaler-adc-and-netscaler-gateway (CVE-2023-4966). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-20198 KEV |
|
[KEV] Vulnerability in Cisco ios-xe-web-ui (CVE-2023-20198)
vulnerability in Cisco ios-xe-web-ui (CVE-2023-20198). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-41763 KEV |
|
[KEV] SSRF (Server-Side Request Forgery) in Microsoft skype-for-business (CVE-2023-41763)
SSRF in Microsoft skype-for-business (CVE-2023-41763). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-21608 KEV |
|
[KEV] Use-After-Free in Adobe acrobat-and-reader (CVE-2023-21608)
vulnerability in Adobe acrobat-and-reader (CVE-2023-21608). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-20109 KEV |
|
[KEV] Out-of-Bounds Write in Cisco ios-and-ios-xe (CVE-2023-20109)
out-of-bounds write in Cisco ios-and-ios-xe (CVE-2023-20109). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36563 KEV |
|
[KEV] Vulnerability in Microsoft wordpad (CVE-2023-36563)
vulnerability in Microsoft wordpad (CVE-2023-36563). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-44487 KEV |
|
[KEV] Vulnerability in Ietf http2 (CVE-2023-44487)
vulnerability in Ietf http2 (CVE-2023-44487). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-42824 KEV |
|
[KEV] Vulnerability in Apple ios-and-ipados (CVE-2023-42824)
vulnerability in Apple ios-and-ipados (CVE-2023-42824). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-22515 KEV |
|
[KEV] Vulnerability in Atlassian confluence-data-center-and-server (CVE-2023-22515)
vulnerability in Atlassian confluence-data-center-and-server (CVE-2023-22515). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|