Home/Threat filter

Threat filter

Build a query across the whole graph by combining signals on the left. Each one narrows the list, and the count on the right updates as you tick. Hover any option to learn what it means and why it matters - the goal is that you leave understanding the difference between severity, likelihood, and real-world exploitation.

Build a filter

Threat signals
Score thresholds
Severity
All CRITICAL HIGH MEDIUM LOW
Entity filters
Actor origin
All CN RU IR KP IN PK
Sort
Your query
· CVEs in scope
Why it matters · hover any option on the left
2509 CVEs matched  ·  page 1 of 101
↓ Export JSON (up to 1000)
CVE-2014-8684 CRITICAL schedule
CodeIgniter before 3.0 and Kohana 3.2.3 and earlier and 3.3.x through 3.3.2 make it easier for remote attackers to spoof
CVSS 9.8
EPSS 0.715
CVE-2016-2107 MEDIUM schedule
The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a
CVSS 5.9
EPSS 0.891
CVE-2015-4000 LOW schedule
The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not pro
CVSS 3.7
EPSS 0.999
CVE-2014-3566 LOW schedule
The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which mak
CVSS 3.4
EPSS 1.000
CVE-2016-0800 MEDIUM schedule
The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to se
CVSS 5.9
EPSS 0.821
CVE-2014-8686 CRITICAL schedule
CodeIgniter before 2.2.0 makes it easier for attackers to decode session cookies by leveraging fallback to a custom XOR-
CVSS 9.8
EPSS 0.372
CVE-2016-0736 HIGH schedule
In Apache HTTP Server versions 2.4.0 to 2.4.23, mod_session_crypto was encrypting its data/cookie using the configured c
CVSS 7.5
EPSS 0.490
CVE-2015-0204 schedule
The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k
EPSS 0.987
CVE-2004-2761 CRITICAL monitor
The MD5 Message-Digest Algorithm is not collision resistant, which makes it easier for context-dependent attackers to co
CVSS 9.8
EPSS 0.099
CVE-2016-7270 HIGH monitor
The Data Provider for SQL Server in Microsoft .NET Framework 4.6.2 mishandles a developer-supplied key, which allows rem
CVSS 7.5
EPSS 0.200
CVE-2015-9107 CRITICAL monitor
Zoho ManageEngine OpManager 11 through 12.2 uses a custom encryption algorithm to protect the credential used to access
CVSS 9.8
EPSS 0.044
CVE-2015-8803 CRITICAL monitor
The ecc_256_modp function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces inco
CVSS 9.8
EPSS 0.041
CVE-2015-8804 CRITICAL monitor
x86_64/ecc-384-modp.asm in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in
CVSS 9.8
EPSS 0.039
CVE-2019-1804 CRITICAL monitor
A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure (ACI) Mode
CVSS 9.8
EPSS 0.034
CVE-2015-8805 CRITICAL monitor
The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces inco
CVSS 9.8
EPSS 0.027
CVE-2016-0897 CRITICAL monitor
Pivotal Cloud Foundry (PCF) Ops Manager before 1.6.17 and 1.7.x before 1.7.8, when vCloud or vSphere is used, does not p
CVSS 9.8
EPSS 0.015
CVE-2017-18160 CRITICAL monitor
AGPS session failure in GNSS module due to cyphersuites are hardcoded and needed manual update everytime in snapdragon m
CVSS 9.8
EPSS 0.013
CVE-2016-5419 HIGH monitor
curl and libcurl before 7.50.1 do not prevent TLS session resumption when the client certificate has changed, which allo
CVSS 7.5
EPSS 0.151
CVE-2018-14062 CRITICAL monitor
The COSPAS-SARSAT protocol allows remote attackers to forge messages, replay encrypted messages, conduct denial of servi
CVSS 9.1
EPSS 0.023
CVE-2013-4787 monitor
Android 1.6 Donut through 4.2 Jelly Bean does not properly check cryptographic signatures for applications, which allows
EPSS 0.624
CVE-2018-5402 CRITICAL monitor
The Auto-Maskin DCU 210E, RP-210E, and Marine Pro Observer Android App use an embedded webserver that uses unencrypted p
CVSS 9.1
EPSS 0.009
CVE-2015-7923 CRITICAL monitor
Westermo WeOS before 4.19.0 uses the same SSL private key across different customers' installations, which makes it easi
CVSS 9.0
EPSS 0.012
CVE-2014-8886 HIGH monitor
AVM FRITZ!OS before 6.30 extracts the contents of firmware updates before verifying their cryptographic signature, which
CVSS 8.1
EPSS 0.061
CVE-2015-8989 HIGH monitor
Unsalted password vulnerability in the Enterprise Manager (web portal) component in Intel Security McAfee Vulnerability
CVSS 8.8
EPSS 0.009
CVE-2016-0904 HIGH monitor
Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server before 7.3.0-233 use the same encryption k
CVSS 8.6
EPSS 0.014
1 / 101 Next
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Detection coverage workspace
Saved stacks
SIEM query builder
Detection rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Ransomware groups
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Detection coverage Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Privacy policy Terms of service
threatengine.sh