Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2019-1429 KEV |
|
[KEV] Use-After-Free in Microsoft internet-explorer (CVE-2019-1429)
vulnerability in Microsoft internet-explorer (CVE-2019-1429). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-11774 KEV |
|
[KEV] Buffer Overflow in Microsoft office (CVE-2017-11774)
vulnerability in Microsoft office (CVE-2017-11774). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-0968 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft internet-explorer (CVE-2020-0968)
out-of-bounds write in Microsoft internet-explorer (CVE-2020-0968). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-1472 KEV |
|
[KEV] Vulnerability in Microsoft netlogon (CVE-2020-1472)
vulnerability in Microsoft netlogon (CVE-2020-1472). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-26855 KEV |
|
[KEV] SSRF (Server-Side Request Forgery) in Microsoft exchange-server (CVE-2021-26855)
SSRF in Microsoft exchange-server (CVE-2021-26855). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-26858 KEV |
|
[KEV] Vulnerability in Microsoft exchange-server (CVE-2021-26858)
vulnerability in Microsoft exchange-server (CVE-2021-26858). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-27065 KEV |
|
[KEV] Vulnerability in Microsoft exchange-server (CVE-2021-27065)
vulnerability in Microsoft exchange-server (CVE-2021-27065). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-1054 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft win32k (CVE-2020-1054)
out-of-bounds write in Microsoft win32k (CVE-2020-1054). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-1675 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2021-1675)
vulnerability in Microsoft windows (CVE-2021-1675). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-34448 KEV |
|
[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2021-34448)
out-of-bounds write in Microsoft windows (CVE-2021-34448). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-0601 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2020-0601)
vulnerability in Microsoft windows (CVE-2020-0601). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-0604 KEV |
|
[KEV] Vulnerability in Microsoft sharepoint (CVE-2019-0604)
vulnerability in Microsoft sharepoint (CVE-2019-0604). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-0646 KEV |
|
[KEV] Vulnerability in Microsoft net-framework (CVE-2020-0646)
vulnerability in Microsoft net-framework (CVE-2020-0646). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-0808 KEV |
|
[KEV] Vulnerability in Microsoft win32k (CVE-2019-0808)
vulnerability in Microsoft win32k (CVE-2019-0808). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-26857 KEV |
|
[KEV] Unsafe Deserialization in Microsoft exchange-server (CVE-2021-26857)
vulnerability in Microsoft exchange-server (CVE-2021-26857). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-1147 KEV |
|
[KEV] Vulnerability in Microsoft net-framework (CVE-2020-1147)
vulnerability in Microsoft net-framework (CVE-2020-1147). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-1214 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-1214)
vulnerability in Microsoft windows (CVE-2019-1214). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2016-3235 KEV |
|
[KEV] Vulnerability in Microsoft office (CVE-2016-3235)
vulnerability in Microsoft office (CVE-2016-3235). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-0863 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2019-0863)
vulnerability in Microsoft windows (CVE-2019-0863). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-36955 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2021-36955)
vulnerability in Microsoft windows (CVE-2021-36955). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-38648 KEV |
|
[KEV] Vulnerability in Microsoft open-management-infrastructure-omi (CVE-2021-38648)
vulnerability in Microsoft open-management-infrastructure-omi (CVE-2021-38648). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-6819 KEV |
|
[KEV] Vulnerability in Mozilla firefox-and-thunderbird (CVE-2020-6819)
vulnerability in Mozilla firefox-and-thunderbird (CVE-2020-6819). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-6820 KEV |
|
[KEV] Vulnerability in Mozilla firefox-and-thunderbird (CVE-2020-6820)
vulnerability in Mozilla firefox-and-thunderbird (CVE-2020-6820). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-17026 KEV |
|
[KEV] Vulnerability in Mozilla firefox-and-thunderbird (CVE-2019-17026)
vulnerability in Mozilla firefox-and-thunderbird (CVE-2019-17026). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-15949 KEV |
|
[KEV] OS Command Injection in nagios (CVE-2019-15949)
OS command injection in nagios (CVE-2019-15949). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-26919 KEV |
|
[KEV] Vulnerability in Netgear jgs516pe-devices (CVE-2020-26919)
vulnerability in Netgear jgs516pe-devices (CVE-2020-26919). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-19356 KEV |
|
[KEV] OS Command Injection in Netis wf2419-devices (CVE-2019-19356)
OS command injection in Netis wf2419-devices (CVE-2019-19356). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-2555 KEV |
|
[KEV] Unsafe Deserialization in Oracle multiple-products (CVE-2020-2555)
vulnerability in Oracle multiple-products (CVE-2020-2555). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2012-3152 KEV |
|
[KEV] Vulnerability in Oracle fusion-middleware (CVE-2012-3152)
vulnerability in Oracle fusion-middleware (CVE-2012-3152). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-14871 KEV |
|
[KEV] Out-of-Bounds Write in Oracle solaris-and-zettabyte-file-system-zfs (CVE-2020-14871)
out-of-bounds write in Oracle solaris-and-zettabyte-file-system-zfs (CVE-2020-14871). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2015-4852 KEV |
|
[KEV] Unsafe Deserialization in Oracle weblogic-server (CVE-2015-4852)
vulnerability in Oracle weblogic-server (CVE-2015-4852). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-14750 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14750)
vulnerability in Oracle weblogic-server (CVE-2020-14750). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-14882 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14882)
vulnerability in Oracle weblogic-server (CVE-2020-14882). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-14883 KEV |
|
[KEV] Vulnerability in Oracle weblogic-server (CVE-2020-14883)
vulnerability in Oracle weblogic-server (CVE-2020-14883). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-8644 KEV |
|
[KEV] Code Injection in playsms (CVE-2020-8644)
code injection in playsms (CVE-2020-8644). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-18935 KEV |
|
[KEV] Unsafe Deserialization in Progress telerik-ui-for-aspnet-ajax (CVE-2019-18935)
vulnerability in Progress telerik-ui-for-aspnet-ajax (CVE-2019-18935). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22893 KEV |
|
[KEV] Authentication Bypass in Ivanti pulse-connect-secure (CVE-2021-22893)
authentication bypass in Ivanti pulse-connect-secure (CVE-2021-22893). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-8243 KEV |
|
[KEV] Code Injection in Ivanti pulse-connect-secure (CVE-2020-8243)
code injection in Ivanti pulse-connect-secure (CVE-2020-8243). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22900 KEV |
|
[KEV] Code Injection in Ivanti pulse-connect-secure (CVE-2021-22900)
code injection in Ivanti pulse-connect-secure (CVE-2021-22900). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22894 KEV |
|
[KEV] Code Injection in Ivanti pulse-connect-secure (CVE-2021-22894)
code injection in Ivanti pulse-connect-secure (CVE-2021-22894). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-8260 KEV |
|
[KEV] Unrestricted File Upload in Ivanti pulse-connect-secure (CVE-2020-8260)
vulnerability in Ivanti pulse-connect-secure (CVE-2020-8260). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22899 KEV |
|
[KEV] Command Injection in Ivanti pulse-connect-secure (CVE-2021-22899)
command injection in Ivanti pulse-connect-secure (CVE-2021-22899). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-11510 KEV |
|
[KEV] Path Traversal in Ivanti pulse-connect-secure (CVE-2019-11510)
path traversal in Ivanti pulse-connect-secure (CVE-2019-11510). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-11539 KEV |
|
[KEV] OS Command Injection in Ivanti pulse-connect-secure-and-pulse-policy-secure (CVE-2019-11539)
OS command injection in Ivanti pulse-connect-secure-and-pulse-policy-secure (CVE-2019-11539). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-1906 KEV |
|
[KEV] Vulnerability in Qualcomm multiple-chipsets (CVE-2021-1906)
vulnerability in Qualcomm multiple-chipsets (CVE-2021-1906). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-1905 KEV |
|
[KEV] Use-After-Free in Qualcomm multiple-chipsets (CVE-2021-1905)
vulnerability in Qualcomm multiple-chipsets (CVE-2021-1905). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-10221 KEV |
|
[KEV] OS Command Injection in rconfig (CVE-2020-10221)
OS command injection in rconfig (CVE-2020-10221). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-35395 KEV |
|
[KEV] Vulnerability in Realtek ap-router-sdk (CVE-2021-35395)
vulnerability in Realtek ap-router-sdk (CVE-2021-35395). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-16651 KEV |
|
[KEV] Vulnerability in roundcube (CVE-2017-16651)
vulnerability in roundcube (CVE-2017-16651). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-11652 KEV |
|
[KEV] Path Traversal in Saltstack salt (CVE-2020-11652)
path traversal in Saltstack salt (CVE-2020-11652). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|