Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2019-5544 KEV |
|
[KEV] Out-of-Bounds Write in vmware (CVE-2019-5544)
out-of-bounds write in vmware (CVE-2019-5544). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-3992 KEV |
|
[KEV] Use-After-Free in Vmware esxi (CVE-2020-3992)
vulnerability in Vmware esxi (CVE-2020-3992). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-3950 KEV |
|
[KEV] Privilege Escalation in Vmware multiple-products (CVE-2020-3950)
vulnerability in Vmware multiple-products (CVE-2020-3950). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22005 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server (CVE-2021-22005)
vulnerability in Vmware vcenter-server (CVE-2021-22005). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-3952 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server (CVE-2020-3952)
vulnerability in Vmware vcenter-server (CVE-2020-3952). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-21972 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server (CVE-2021-21972)
vulnerability in Vmware vcenter-server (CVE-2021-21972). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-21985 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server (CVE-2021-21985)
vulnerability in Vmware vcenter-server (CVE-2021-21985). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-4006 KEV |
|
[KEV] OS Command Injection in Vmware multiple-products (CVE-2020-4006)
OS command injection in Vmware multiple-products (CVE-2020-4006). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-25213 KEV |
|
[KEV] Unrestricted File Upload in Wordpress file-manager-plugin (CVE-2020-25213)
vulnerability in Wordpress file-manager-plugin (CVE-2020-25213). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-11738 KEV |
|
[KEV] Path Traversal in Wordpress snap-creek-duplicator-plugin (CVE-2020-11738)
path traversal in Wordpress snap-creek-duplicator-plugin (CVE-2020-11738). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-9978 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Wordpress social-warfare-plugin (CVE-2019-9978)
cross-site scripting in Wordpress social-warfare-plugin (CVE-2019-9978). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-27561 KEV |
|
[KEV] OS Command Injection in Yealink device-management (CVE-2021-27561)
OS command injection in Yealink device-management (CVE-2021-27561). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-40539 KEV |
|
[KEV] Vulnerability in Zoho manageengine (CVE-2021-40539)
vulnerability in Zoho manageengine (CVE-2021-40539). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-10189 KEV |
|
[KEV] Unsafe Deserialization in Zoho manageengine (CVE-2020-10189)
vulnerability in Zoho manageengine (CVE-2020-10189). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-8394 KEV |
|
[KEV] Unrestricted File Upload in Zoho manageengine (CVE-2019-8394)
vulnerability in Zoho manageengine (CVE-2019-8394). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-29583 KEV |
|
[KEV] Vulnerability in Zyxel multiple-products (CVE-2020-29583)
vulnerability in Zyxel multiple-products (CVE-2020-29583). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-25877 |
|
Code Injection in youphptube (CVE-2021-25877)
code injection in youphptube (CVE-2021-25877). Successful exploitation can lead to full system takeover.
|
| CVE-2021-41617 |
|
Privilege Escalation in privilege-escalation (CVE-2021-41617)
vulnerability in privilege-escalation (CVE-2021-41617). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21468 |
|
Vulnerability in dos (CVE-2020-21468)
vulnerability in dos (CVE-2020-21468). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-40639 |
|
Vulnerability in jflyfox (CVE-2021-40639)
vulnerability in jflyfox (CVE-2021-40639). Confidential information can be exposed externally.
|
| CVE-2021-33287 |
|
Out-of-Bounds Write in dos (CVE-2021-33287)
out-of-bounds write in dos (CVE-2021-33287). Successful exploitation can lead to full system takeover.
|
| CVE-2021-33286 |
|
Out-of-Bounds Write in tuxera (CVE-2021-33286)
out-of-bounds write in tuxera (CVE-2021-33286). Successful exploitation can lead to full system takeover.
|
| CVE-2021-35268 |
|
Out-of-Bounds Write in tuxera (CVE-2021-35268)
out-of-bounds write in tuxera (CVE-2021-35268). Successful exploitation can lead to full system takeover.
|
| CVE-2021-37345 |
|
Privilege Escalation in privilege-escalation (CVE-2021-37345)
vulnerability in privilege-escalation (CVE-2021-37345). Successful exploitation can lead to full system takeover.
|
| CVE-2021-38202 |
|
Out-of-Bounds Read in dos (CVE-2021-38202)
vulnerability in dos (CVE-2021-38202). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-34432 |
|
Vulnerability in eclipse (CVE-2021-34432)
vulnerability in eclipse (CVE-2021-34432). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-18169 |
|
Privilege Escalation in techsmith (CVE-2020-18169)
vulnerability in techsmith (CVE-2020-18169). Successful exploitation can lead to full system takeover.
|
| CVE-2020-18171 |
|
Privilege Escalation in techsmith (CVE-2020-18171)
vulnerability in techsmith (CVE-2020-18171). Successful exploitation can lead to full system takeover.
|
| CVE-2021-22926 |
|
Vulnerability in haxx (CVE-2021-22926)
vulnerability in haxx (CVE-2021-22926). Risk of unauthorized operations or information disclosure. Exploitable via ``CURLOPT_SSLCERT``.
|
| CVE-2021-33012 |
|
Vulnerability in rockwellautomation (CVE-2021-33012)
vulnerability in rockwellautomation (CVE-2021-33012). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-20585 |
|
SQL Injection in c (CVE-2020-20585)
SQL injection in c (CVE-2020-20585). Confidential information can be exposed externally.
|
| CVE-2020-22168 |
|
SQL Injection in sqli (CVE-2020-22168)
SQL injection in sqli (CVE-2020-22168). Confidential information can be exposed externally.
|
| CVE-2021-34203 |
|
Vulnerability in dlink (CVE-2021-34203)
vulnerability in dlink (CVE-2021-34203). Confidential information can be exposed externally.
|
| CVE-2021-34201 |
|
Out-of-Bounds Write in dlink (CVE-2021-34201)
out-of-bounds write in dlink (CVE-2021-34201). Data can be tampered with by attackers.
|
| CVE-2021-34202 |
|
Out-of-Bounds Write in c (CVE-2021-34202)
out-of-bounds write in c (CVE-2021-34202). Successful exploitation can lead to full system takeover.
|
| CVE-2021-22766 |
|
Vulnerability in dos (CVE-2021-22766)
vulnerability in dos (CVE-2021-22766). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-32926 |
|
Vulnerability in rockwellautomation (CVE-2021-32926)
vulnerability in rockwellautomation (CVE-2021-32926). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-26677 |
|
SQL Injection in sqli (CVE-2020-26677)
SQL injection in sqli (CVE-2020-26677). Successful exploitation can lead to full system takeover.
|
| CVE-2021-32032 |
|
Vulnerability in trustedfirmware (CVE-2021-32032)
vulnerability in trustedfirmware (CVE-2021-32032). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-17677 |
|
Vulnerability in bmc (CVE-2017-17677)
vulnerability in bmc (CVE-2017-17677). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21843 |
|
Out-of-Bounds Write in c (CVE-2020-21843)
out-of-bounds write in c (CVE-2020-21843). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21840 |
|
Out-of-Bounds Write in c (CVE-2020-21840)
out-of-bounds write in c (CVE-2020-21840). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21827 |
|
Out-of-Bounds Write in c (CVE-2020-21827)
out-of-bounds write in c (CVE-2020-21827). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21818 |
|
Out-of-Bounds Write in c (CVE-2020-21818)
out-of-bounds write in c (CVE-2020-21818). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21816 |
|
Out-of-Bounds Write in c (CVE-2020-21816)
out-of-bounds write in c (CVE-2020-21816). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21814 |
|
Out-of-Bounds Write in c (CVE-2020-21814)
out-of-bounds write in c (CVE-2020-21814). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21819 |
|
Out-of-Bounds Write in c (CVE-2020-21819)
out-of-bounds write in c (CVE-2020-21819). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21813 |
|
Out-of-Bounds Write in c (CVE-2020-21813)
out-of-bounds write in c (CVE-2020-21813). Successful exploitation can lead to full system takeover.
|
| CVE-2021-29053 |
|
SQL Injection in sqli (CVE-2021-29053)
SQL injection in sqli (CVE-2021-29053). Successful exploitation can lead to full system takeover.
|
| CVE-2021-29047 |
|
Authentication Bypass in liferay (CVE-2021-29047)
authentication bypass in liferay (CVE-2021-29047). Data can be tampered with by attackers.
|