Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2023-43010 |
|
Out-of-Bounds Write in apple (CVE-2023-43010)
out-of-bounds write in apple (CVE-2023-43010). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0797 |
|
Vulnerability in gimp (CVE-2026-0797)
vulnerability in gimp (CVE-2026-0797). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2007 |
|
Vulnerability in privilege-escalation (CVE-2026-2007)
vulnerability in privilege-escalation (CVE-2026-2007). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2005 |
|
Vulnerability in postgresql (CVE-2026-2005)
vulnerability in postgresql (CVE-2026-2005). Successful exploitation can lead to full system takeover.
|
| CVE-2020-37209 |
|
Vulnerability in dos (CVE-2020-37209)
vulnerability in dos (CVE-2020-37209). Confidential information can be exposed externally.
|
| CVE-2020-37210 |
|
SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste i...
SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Key' field to trigger an application crash.
|
| CVE-2020-37211 |
|
SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputting a large buffer in the registration name field. Attackers can generate a 1000-character...
SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputting a large buffer in the registration name field. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
|
| CVE-2020-37212 |
|
SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste...
SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
|
| CVE-2020-37204 |
|
Vulnerability in dos (CVE-2020-37204)
vulnerability in dos (CVE-2020-37204). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37205 |
|
Vulnerability in dos (CVE-2020-37205)
vulnerability in dos (CVE-2020-37205). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37206 |
|
Vulnerability in dos (CVE-2020-37206)
vulnerability in dos (CVE-2020-37206). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37207 |
|
Vulnerability in dos (CVE-2020-37207)
vulnerability in dos (CVE-2020-37207). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37196 |
|
Vulnerability in dos (CVE-2020-37196)
vulnerability in dos (CVE-2020-37196). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37197 |
|
Vulnerability in dos (CVE-2020-37197)
vulnerability in dos (CVE-2020-37197). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37199 |
|
Vulnerability in dos (CVE-2020-37199)
vulnerability in dos (CVE-2020-37199). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37201 |
|
Vulnerability in nsasoft (CVE-2020-37201)
vulnerability in nsasoft (CVE-2020-37201). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25506 |
|
Out-of-Bounds Write in opensuse (CVE-2026-25506)
out-of-bounds write in opensuse (CVE-2026-25506). Confidential information can be exposed externally. Mitigation: upgrade to `0.5.18` or later.
|
| CVE-2020-37131 |
|
Vulnerability in dos (CVE-2020-37131)
vulnerability in dos (CVE-2020-37131). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-15467 |
|
Out-of-Bounds Write in cisa (CVE-2025-15467)
out-of-bounds write in cisa (CVE-2025-15467). Successful exploitation can lead to full system takeover.
|
| CVE-2025-55131 |
|
Vulnerability in CVE-2025-55131 (CVE-2025-55131)
vulnerability in CVE-2025-55131 (CVE-2025-55131). Confidential information can be exposed externally. Exploitable via ``Buffer.alloc``.
|
| CVE-2021-47814 |
|
Vulnerability in dos (CVE-2021-47814)
vulnerability in dos (CVE-2021-47814). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-29329 |
|
Vulnerability in sagemcom (CVE-2025-29329)
vulnerability in sagemcom (CVE-2025-29329). Successful exploitation can lead to full system takeover.
|
| CVE-2026-22184 |
|
Out-of-Bounds Write in zlib (CVE-2026-22184)
out-of-bounds write in zlib (CVE-2026-22184). Successful exploitation can lead to full system takeover.
|
| CVE-2022-37055 KEV |
|
[KEV] Vulnerability in D-link routers (CVE-2022-37055)
vulnerability in D-link routers (CVE-2022-37055). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-64053 |
|
Vulnerability in dos (CVE-2025-64053)
vulnerability in dos (CVE-2025-64053). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-66287 |
|
Vulnerability in CVE-2025-66287 (CVE-2025-66287)
vulnerability in CVE-2025-66287 (CVE-2025-66287). Successful exploitation can lead to full system takeover.
|
| CVE-2025-43433 |
|
Out-of-Bounds Write in apple (CVE-2025-43433)
out-of-bounds write in apple (CVE-2025-43433). Successful exploitation can lead to full system takeover.
|
| CVE-2025-43441 |
|
Buffer Overflow in apple (CVE-2025-43441)
vulnerability in apple (CVE-2025-43441). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-20333 KEV |
|
[KEV] Vulnerability in Cisco secure-firewall-adaptive-security-appliance-and-secure-firewall-threat-defense (CVE-2025-20333)
vulnerability in Cisco secure-firewall-adaptive-security-appliance-and-secure-firewall-threat-defense (CVE-2025-20333). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-57569 |
|
Vulnerability in tenda (CVE-2025-57569)
vulnerability in tenda (CVE-2025-57569). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-57570 |
|
Vulnerability in tenda (CVE-2025-57570)
vulnerability in tenda (CVE-2025-57570). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-57571 |
|
Vulnerability in tenda (CVE-2025-57571)
vulnerability in tenda (CVE-2025-57571). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-57572 |
|
Vulnerability in tenda (CVE-2025-57572)
vulnerability in tenda (CVE-2025-57572). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-57573 |
|
Vulnerability in tenda (CVE-2025-57573)
vulnerability in tenda (CVE-2025-57573). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-43213 |
|
Buffer Overflow in c (CVE-2025-43213)
vulnerability in c (CVE-2025-43213). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-43214 |
|
Buffer Overflow in c (CVE-2025-43214)
vulnerability in c (CVE-2025-43214). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7345 |
|
Vulnerability in c (CVE-2025-7345)
vulnerability in c (CVE-2025-7345). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-46060 |
|
Vulnerability in totolink (CVE-2025-46060)
vulnerability in totolink (CVE-2025-46060). Successful exploitation can lead to full system takeover.
|
| CVE-2025-46035 |
|
Vulnerability in dos (CVE-2025-46035)
vulnerability in dos (CVE-2025-46035). Confidential information can be exposed externally.
|
| CVE-2025-5222 |
|
Vulnerability in unicode (CVE-2025-5222)
vulnerability in unicode (CVE-2025-5222). Successful exploitation can lead to full system takeover.
|
| CVE-2025-31223 |
|
Buffer Overflow in apple (CVE-2025-31223)
vulnerability in apple (CVE-2025-31223). Successful exploitation can lead to full system takeover.
|
| CVE-2025-46397 |
|
Vulnerability in fig2dev-project (CVE-2025-46397)
vulnerability in fig2dev-project (CVE-2025-46397). Successful exploitation can lead to full system takeover.
|
| CVE-2025-0689 |
|
Vulnerability in gnu (CVE-2025-0689)
vulnerability in gnu (CVE-2025-0689). Successful exploitation can lead to full system takeover.
|
| CVE-2024-51139 |
|
Vulnerability in draytek (CVE-2024-51139)
vulnerability in draytek (CVE-2024-51139). Successful exploitation can lead to full system takeover.
|
| CVE-2020-15069 KEV |
|
[KEV] Vulnerability in Sophos xg-firewall (CVE-2020-15069)
vulnerability in Sophos xg-firewall (CVE-2020-15069). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-48420 |
|
Vulnerability in edimax (CVE-2024-48420)
vulnerability in edimax (CVE-2024-48420). Successful exploitation can lead to full system takeover.
|
| CVE-2024-48416 |
|
Vulnerability in edimax (CVE-2024-48416)
vulnerability in edimax (CVE-2024-48416). Successful exploitation can lead to full system takeover.
|
| CVE-2024-24451 |
|
Vulnerability in dos (CVE-2024-24451)
vulnerability in dos (CVE-2024-24451). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-22904 |
|
Vulnerability in edimax (CVE-2025-22904)
vulnerability in edimax (CVE-2025-22904). Successful exploitation can lead to full system takeover.
|
| CVE-2025-22907 |
|
Vulnerability in edimax (CVE-2025-22907)
vulnerability in edimax (CVE-2025-22907). Successful exploitation can lead to full system takeover.
|