Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-9820 |
|
Vulnerability in privilege-escalation (CVE-2025-9820)
vulnerability in privilege-escalation (CVE-2025-9820). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0775 |
|
Vulnerability in privilege-escalation (CVE-2026-0775)
vulnerability in privilege-escalation (CVE-2026-0775). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24049 |
|
Path Traversal in privilege-escalation (CVE-2026-24049)
path traversal in privilege-escalation (CVE-2026-24049). Data can be tampered with by attackers.
|
| CVE-2025-67246 |
|
Privilege Escalation in privilege-escalation (CVE-2025-67246)
vulnerability in privilege-escalation (CVE-2025-67246). Confidential information can be exposed externally.
|
| CVE-2025-2515 |
|
Authorization Flaw in privilege-escalation (CVE-2025-2515)
vulnerability in privilege-escalation (CVE-2025-2515). Successful exploitation can lead to full system takeover.
|
| CVE-2025-7073 |
|
Vulnerability in c (CVE-2025-7073)
vulnerability in c (CVE-2025-7073). Successful exploitation can lead to full system takeover.
|
| CVE-2025-1161 |
|
Vulnerability in privilege-escalation (CVE-2025-1161)
vulnerability in privilege-escalation (CVE-2025-1161). Successful exploitation can lead to full system takeover.
|
| CVE-2025-64666 |
|
Vulnerability in microsoft (CVE-2025-64666)
vulnerability in microsoft (CVE-2025-64666). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65621 |
|
Cross-Site Scripting (XSS) in privilege-escalation (CVE-2025-65621)
cross-site scripting in privilege-escalation (CVE-2025-65621). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-59249 |
|
Vulnerability in microsoft (CVE-2025-59249)
vulnerability in microsoft (CVE-2025-59249). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53782 |
|
Vulnerability in microsoft (CVE-2025-53782)
vulnerability in microsoft (CVE-2025-53782). Successful exploitation can lead to full system takeover.
|
| CVE-2020-36851 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2020-36851)
SSRF in ssrf (CVE-2020-36851). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7743 |
|
Vulnerability in privilege-escalation (CVE-2025-7743)
vulnerability in privilege-escalation (CVE-2025-7743). Successful exploitation can lead to full system takeover.
|
| CVE-2025-50892 |
|
Privilege Escalation in privilege-escalation (CVE-2025-50892)
vulnerability in privilege-escalation (CVE-2025-50892). Successful exploitation can lead to full system takeover.
|
| CVE-2025-8067 |
|
Out-of-Bounds Read in privilege-escalation (CVE-2025-8067)
vulnerability in privilege-escalation (CVE-2025-8067). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-55366 |
|
Vulnerability in privilege-escalation (CVE-2025-55366)
vulnerability in privilege-escalation (CVE-2025-55366). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-6018 |
|
Authorization Flaw in privilege-escalation (CVE-2025-6018)
vulnerability in privilege-escalation (CVE-2025-6018). Successful exploitation can lead to full system takeover.
|
| CVE-2025-44654 |
|
Vulnerability in privilege-escalation (CVE-2025-44654)
vulnerability in privilege-escalation (CVE-2025-44654). Successful exploitation can lead to full system takeover.
|
| CVE-2025-44655 |
|
Vulnerability in privilege-escalation (CVE-2025-44655)
vulnerability in privilege-escalation (CVE-2025-44655). Successful exploitation can lead to full system takeover.
|
| CVE-2025-44657 |
|
Vulnerability in privilege-escalation (CVE-2025-44657)
vulnerability in privilege-escalation (CVE-2025-44657). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-4040 |
|
Vulnerability in privilege-escalation (CVE-2025-4040)
vulnerability in privilege-escalation (CVE-2025-4040). Confidential information can be exposed externally.
|
| CVE-2025-6019 |
|
Vulnerability in privilege-escalation (CVE-2025-6019)
vulnerability in privilege-escalation (CVE-2025-6019). Successful exploitation can lead to full system takeover.
|
| CVE-2025-4404 |
|
Vulnerability in privilege-escalation (CVE-2025-4404)
vulnerability in privilege-escalation (CVE-2025-4404). Successful exploitation can lead to full system takeover. Exploitable via ``krbCanonicalName``.
|
| CVE-2025-46836 |
|
Vulnerability in c (CVE-2025-46836)
vulnerability in c (CVE-2025-46836). Risk of unauthorized operations or information disclosure. Exploitable via ``interface.c``.
|
| CVE-2025-24170 |
|
A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13...
A logic issue was addressed with improved file handling. This issue is fixed in macOS Ventura 13...
|
| CVE-2025-25968 |
|
Vulnerability in privilege-escalation (CVE-2025-25968)
vulnerability in privilege-escalation (CVE-2025-25968). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-21702 |
|
Vulnerability in privilege-escalation (CVE-2025-21702)
vulnerability in privilege-escalation (CVE-2025-21702). Successful exploitation can lead to full system takeover. Exploitable via ``NET_XMIT_CN``.
|
| CVE-2025-21692 |
|
Vulnerability in c (CVE-2025-21692)
vulnerability in c (CVE-2025-21692). Successful exploitation can lead to full system takeover.
|
| CVE-2024-12747 |
|
Vulnerability in privilege-escalation (CVE-2024-12747)
vulnerability in privilege-escalation (CVE-2024-12747). Confidential information can be exposed externally.
|
| CVE-2024-52336 |
|
Privilege Escalation in privilege-escalation (CVE-2024-52336)
vulnerability in privilege-escalation (CVE-2024-52336). Successful exploitation can lead to full system takeover. Exploitable via ``script_pre``.
|
| CVE-2024-8781 |
|
Vulnerability in privilege-escalation (CVE-2024-8781)
vulnerability in privilege-escalation (CVE-2024-8781). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-10035 |
|
Command Injection in privilege-escalation (CVE-2024-10035)
command injection in privilege-escalation (CVE-2024-10035). Successful exploitation can lead to full system takeover.
|
| CVE-2024-9050 |
|
Code Injection in privilege-escalation (CVE-2024-9050)
code injection in privilege-escalation (CVE-2024-9050). Successful exploitation can lead to full system takeover. Exploitable via ``leftupdown``.
|
| CVE-2022-23817 |
|
Vulnerability in privilege-escalation (CVE-2022-23817)
vulnerability in privilege-escalation (CVE-2022-23817). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-6246 |
|
Vulnerability in privilege-escalation (CVE-2023-6246)
vulnerability in privilege-escalation (CVE-2023-6246). Successful exploitation can lead to full system takeover.
|
| CVE-2023-6931 |
|
Out-of-Bounds Write in privilege-escalation (CVE-2023-6931)
out-of-bounds write in privilege-escalation (CVE-2023-6931). Successful exploitation can lead to full system takeover.
|
| CVE-2023-6932 |
|
Use-After-Free in privilege-escalation (CVE-2023-6932)
vulnerability in privilege-escalation (CVE-2023-6932). Successful exploitation can lead to full system takeover.
|
| CVE-2023-6817 |
|
Use-After-Free in privilege-escalation (CVE-2023-6817)
vulnerability in privilege-escalation (CVE-2023-6817). Successful exploitation can lead to full system takeover.
|
| CVE-2023-47322 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2023-47322)
vulnerability in csrf (CVE-2023-47322). Successful exploitation can lead to full system takeover.
|
| CVE-2023-6377 |
|
Out-of-Bounds Read in privilege-escalation (CVE-2023-6377)
vulnerability in privilege-escalation (CVE-2023-6377). Successful exploitation can lead to full system takeover.
|
| CVE-2023-4664 |
|
Incorrect Default Permissions vulnerability in Saphira Saphira Connect allows Privilege...
Incorrect Default Permissions vulnerability in Saphira Saphira Connect allows Privilege...
|
| CVE-2023-4665 |
|
Incorrect Execution-Assigned Permissions vulnerability in Saphira Saphira Connect allows...
Incorrect Execution-Assigned Permissions vulnerability in Saphira Saphira Connect allows...
|
| CVE-2023-3374 |
|
Vulnerability in privilege-escalation (CVE-2023-3374)
vulnerability in privilege-escalation (CVE-2023-3374). Successful exploitation can lead to full system takeover.
|
| CVE-2023-39004 |
|
Vulnerability in privilege-escalation (CVE-2023-39004)
vulnerability in privilege-escalation (CVE-2023-39004). Successful exploitation can lead to full system takeover.
|
| CVE-2023-34671 |
|
Vulnerability in privilege-escalation (CVE-2023-34671)
vulnerability in privilege-escalation (CVE-2023-34671). Successful exploitation can lead to full system takeover.
|
| CVE-2023-33779 |
|
Authorization Flaw in privilege-escalation (CVE-2023-33779)
vulnerability in privilege-escalation (CVE-2023-33779). Successful exploitation can lead to full system takeover.
|
| CVE-2021-32415 |
|
Vulnerability in privilege-escalation (CVE-2021-32415)
vulnerability in privilege-escalation (CVE-2021-32415). Successful exploitation can lead to full system takeover.
|
| CVE-2022-46152 |
|
OP-TEE Trusted OS is the secure side implementation of OP-TEE project, a Trusted Execution Environment. Versions prior to 3.19.0, contain an Improper Validation of Array Index vulnerability. The funct...
OP-TEE Trusted OS is the secure side implementation of OP-TEE project, a Trusted Execution Environment. Versions prior to 3.19.0, contain an Improper Validation of Array Index vulnerability. The function `cleanup_shm_refs()` is called by both `entry_invoke_command()` and `entry_open_session()`. The...
|
| CVE-2022-37721 |
|
Cross-Site Scripting (XSS) in privilege-escalation (CVE-2022-37721)
cross-site scripting in privilege-escalation (CVE-2022-37721). Successful exploitation can lead to full system takeover.
|
| CVE-2022-37720 |
|
Cross-Site Scripting (XSS) in privilege-escalation (CVE-2022-37720)
cross-site scripting in privilege-escalation (CVE-2022-37720). Successful exploitation can lead to full system takeover.
|