Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-21418 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2025-21418)
vulnerability in Microsoft windows (CVE-2025-21418). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-12084 |
|
Vulnerability in samba (CVE-2024-12084)
vulnerability in samba (CVE-2024-12084). Successful exploitation can lead to full system takeover.
|
| CVE-2025-21333 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2025-21333)
vulnerability in Microsoft windows (CVE-2025-21333). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-22134 |
|
Vulnerability in neovim (CVE-2025-22134)
vulnerability in neovim (CVE-2025-22134). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-56732 |
|
Vulnerability in harfbuzz-project (CVE-2024-56732)
vulnerability in harfbuzz-project (CVE-2024-56732). Successful exploitation can lead to full system takeover.
|
| CVE-2024-49138 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-49138)
vulnerability in Microsoft windows (CVE-2024-49138). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-38812 KEV |
|
[KEV] Vulnerability in Vmware vcenter-server (CVE-2024-38812)
vulnerability in Vmware vcenter-server (CVE-2024-38812). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-3447 |
|
Vulnerability in dos (CVE-2024-3447)
vulnerability in dos (CVE-2024-3447). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-45993 |
|
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb.
Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb.
|
| CVE-2024-8443 |
|
Vulnerability in opensc-project (CVE-2024-8443)
vulnerability in opensc-project (CVE-2024-8443). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-36702 |
|
Out-of-Bounds Write in c (CVE-2024-36702)
out-of-bounds write in c (CVE-2024-36702). Successful exploitation can lead to full system takeover.
|
| CVE-2024-30051 KEV |
|
[KEV] Vulnerability in Microsoft dwm-core-library (CVE-2024-30051)
vulnerability in Microsoft dwm-core-library (CVE-2024-30051). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-6246 |
|
Vulnerability in privilege-escalation (CVE-2023-6246)
vulnerability in privilege-escalation (CVE-2023-6246). Successful exploitation can lead to full system takeover.
|
| CVE-2023-6779 |
|
Vulnerability in gnu (CVE-2023-6779)
vulnerability in gnu (CVE-2023-6779). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-52356 |
|
Vulnerability in dos (CVE-2023-52356)
vulnerability in dos (CVE-2023-52356). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-4911 KEV |
|
[KEV] Vulnerability in Gnu c (CVE-2023-4911)
vulnerability in Gnu c (CVE-2023-4911). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2023-36036 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-36036)
vulnerability in Microsoft windows (CVE-2023-36036). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-4781 |
|
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
|
| CVE-2023-33152 |
|
Microsoft ActiveX Remote Code Execution Vulnerability
Microsoft ActiveX Remote Code Execution Vulnerability
|
| CVE-2022-31199 KEV |
|
[KEV] Unsafe Deserialization in Netwrix auditor (CVE-2022-31199)
vulnerability in Netwrix auditor (CVE-2022-31199). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-27997 KEV |
|
[KEV] Vulnerability in Fortinet fortios-and-fortiproxy-ssl-vpn (CVE-2023-27997)
vulnerability in Fortinet fortios-and-fortiproxy-ssl-vpn (CVE-2023-27997). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-28252 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-28252)
vulnerability in Microsoft windows (CVE-2023-28252). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2023-23376 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2023-23376)
vulnerability in Microsoft windows (CVE-2023-23376). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-2601 |
|
Vulnerability in gnu (CVE-2022-2601)
vulnerability in gnu (CVE-2022-2601). Successful exploitation can lead to full system takeover.
|
| CVE-2022-4262 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2022-4262)
vulnerability in Google chromium-v8 (CVE-2022-4262). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-3723 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2022-3723)
vulnerability in Google chromium-v8 (CVE-2022-3723). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-2347 |
|
Vulnerability in denx (CVE-2022-2347)
vulnerability in denx (CVE-2022-2347). Successful exploitation can lead to full system takeover. Exploitable via ``wLength``.
|
| CVE-2022-2294 KEV |
|
[KEV] Vulnerability in webrtc (CVE-2022-2294)
vulnerability in webrtc (CVE-2022-2294). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-33485 |
|
CODESYS Control Runtime system before 3.5.17.10 has a Heap-based Buffer Overflow.
CODESYS Control Runtime system before 3.5.17.10 has a Heap-based Buffer Overflow.
|
| CVE-2019-3568 KEV |
|
[KEV] Vulnerability in Meta platforms meta-platforms (CVE-2019-3568)
vulnerability in Meta platforms meta-platforms (CVE-2019-3568). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-3156 KEV |
|
[KEV] Vulnerability in sudo (CVE-2021-3156)
vulnerability in sudo (CVE-2021-3156). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-26318 KEV |
|
[KEV] Vulnerability in Watchguard firebox-and-xtm-appliances (CVE-2022-26318)
vulnerability in Watchguard firebox-and-xtm-appliances (CVE-2022-26318). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-4019 |
|
vim is vulnerable to Heap-based Buffer Overflow
vim is vulnerable to Heap-based Buffer Overflow
|
| CVE-2021-21017 KEV |
|
[KEV] Vulnerability in Adobe acrobat-and-reader (CVE-2021-21017)
vulnerability in Adobe acrobat-and-reader (CVE-2021-21017). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-21166 KEV |
|
[KEV] Vulnerability in Google chromium (CVE-2021-21166)
vulnerability in Google chromium (CVE-2021-21166). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-30632 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2021-30632)
vulnerability in Google chromium-v8 (CVE-2021-30632). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-21148 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2021-21148)
vulnerability in Google chromium-v8 (CVE-2021-21148). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-30551 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2021-30551)
vulnerability in Google chromium-v8 (CVE-2021-30551). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-38003 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2021-38003)
vulnerability in Google chromium-v8 (CVE-2021-38003). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-21220 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2021-21220)
vulnerability in Google chromium-v8 (CVE-2021-21220). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-30563 KEV |
|
[KEV] Vulnerability in Google chromium-v8 (CVE-2021-30563)
vulnerability in Google chromium-v8 (CVE-2021-30563). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-1647 KEV |
|
[KEV] Vulnerability in Microsoft defender (CVE-2021-1647)
vulnerability in Microsoft defender (CVE-2021-1647). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-35395 KEV |
|
[KEV] Vulnerability in Realtek ap-router-sdk (CVE-2021-35395)
vulnerability in Realtek ap-router-sdk (CVE-2021-35395). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-16717 |
|
Vulnerability in we-con (CVE-2017-16717)
vulnerability in we-con (CVE-2017-16717). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13090 |
|
Vulnerability in c (CVE-2017-13090)
vulnerability in c (CVE-2017-13090). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12704 |
|
Vulnerability in advantech (CVE-2017-12704)
vulnerability in advantech (CVE-2017-12704). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7555 |
|
Vulnerability in augeas (CVE-2017-7555)
vulnerability in augeas (CVE-2017-7555). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9050 |
|
Out-of-Bounds Read in c (CVE-2017-9050)
vulnerability in c (CVE-2017-9050). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6037 |
|
Vulnerability in we-con (CVE-2017-6037)
vulnerability in we-con (CVE-2017-6037). Successful exploitation can lead to full system takeover.
|