Home/Threat filter

Threat filter

Build a query across the whole graph by combining signals on the left. Each one narrows the list, and the count on the right updates as you tick. Hover any option to learn what it means and why it matters - the goal is that you leave understanding the difference between severity, likelihood, and real-world exploitation.

Build a filter

Threat signals
Score thresholds
Severity
All CRITICAL HIGH MEDIUM LOW
Entity filters
Actor origin
All CN RU IR KP IN PK
Sort
Your query
· CVEs in scope
Why it matters · hover any option on the left
235 CVEs matched  ·  page 1 of 10
↓ Export JSON (up to 1000)
CVE-2016-4977 HIGH schedule
When processing authorization requests using the whitelabel views in Spring Security OAuth 2.0.0 to 2.0.9 and 1.0.0 to 1
CVSS 8.8
EPSS 0.937
CVE-2012-5357 CRITICAL schedule
Ektron Content Management System (CMS) before 8.02 SP5 uses the XslCompiledTransform class with enablescript set to true
CVSS 9.8
EPSS 0.826
CVE-2016-3236 CRITICAL schedule
The Web Proxy Auto Discovery (WPAD) protocol implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and
CVSS 9.8
EPSS 0.780
CVE-2017-6920 CRITICAL schedule
Drupal core 8 before versions 8.3.4 allows remote attackers to execute arbitrary code due to the PECL YAML parser not ha
CVSS 9.8
EPSS 0.661
CVE-2015-0224 HIGH schedule
qpidd in Apache Qpid 0.30 and earlier allows remote attackers to cause a denial of service (daemon crash) via a crafted
CVSS 7.5
EPSS 0.560
CVE-2016-7274 HIGH schedule
Uniscribe in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server
CVSS 8.8
EPSS 0.384
CVE-2019-0633 HIGH schedule
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handl
CVSS 8.8
EPSS 0.358
CVE-2019-0630 HIGH schedule
A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 2.0 (SMBv2) server handl
CVSS 8.8
EPSS 0.358
CVE-2016-0150 HIGH schedule
HTTP.sys in Microsoft Windows 10 Gold and 1511 allows remote attackers to cause a denial of service (system hang) via cr
CVSS 7.5
EPSS 0.433
CVE-2016-2510 HIGH schedule
BeanShell (bsh) before 2.0b6, when included on the classpath by an application that uses Java serialization or XStream,
CVSS 8.1
EPSS 0.392
CVE-2015-5477 schedule
named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers to cause a denial of service (
EPSS 0.924
CVE-2016-7272 HIGH schedule
The Graphics component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, W
CVSS 8.8
EPSS 0.331
CVE-2015-5374 schedule
A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01;
EPSS 0.839
CVE-2019-13917 CRITICAL monitor
Exim 4.85 through 4.92 (fixed in 4.92.1) allows remote code execution as root in some unusual configurations that use th
CVSS 9.8
EPSS 0.164
CVE-2014-9034 monitor
wp-includes/class-phpass.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 all
EPSS 0.802
CVE-2016-7117 CRITICAL monitor
Use-after-free vulnerability in the __sys_recvmmsg function in net/socket.c in the Linux kernel before 4.5.2 allows remo
CVSS 9.8
EPSS 0.148
CVE-2016-7273 HIGH monitor
The Graphics component in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows remote attackers to e
CVSS 8.8
EPSS 0.212
CVE-2015-0097 monitor
Microsoft Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Excel 2010 SP2, PowerPoint 2010 SP2, and Word 2010 SP2 all
EPSS 0.794
CVE-2014-7141 monitor
The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of servic
EPSS 0.773
CVE-2019-0947 HIGH monitor
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles obj
CVSS 7.8
EPSS 0.242
CVE-2019-0946 HIGH monitor
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles obj
CVSS 7.8
EPSS 0.242
CVE-2019-0945 HIGH monitor
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles obj
CVSS 7.8
EPSS 0.242
CVE-2019-6440 CRITICAL monitor
Zemana AntiMalware before 3.0.658 Beta mishandles update logic.
CVSS 9.8
EPSS 0.106
CVE-2019-9673 HIGH monitor
Freenet 1483 has a MIME type bypass that allows arbitrary JavaScript execution via a crafted Freenet URI.
CVSS 8.8
EPSS 0.157
CVE-2015-0081 monitor
Windows Text Services (WTS) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1,
EPSS 0.726
1 / 10 Next
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh