Home/Threat filter

Threat filter

Build a query across the whole graph by combining signals on the left. Each one narrows the list, and the count on the right updates as you tick. Hover any option to learn what it means and why it matters - the goal is that you leave understanding the difference between severity, likelihood, and real-world exploitation.

Build a filter

Threat signals
Score thresholds
Severity
All CRITICAL HIGH MEDIUM LOW
Entity filters
Actor origin
All CN RU IR KP IN PK
Sort
Your query
· CVEs in scope
Why it matters · hover any option on the left
87 CVEs matched  ·  page 1 of 4
↓ Export JSON (up to 1000)
CVE-2022-32207 CRITICAL monitor
When curl < 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the
CVSS 9.8
EPSS 0.055
CVE-2021-4171 CRITICAL monitor
calibre-web is vulnerable to Business Logic Errors
CVSS 9.8
EPSS 0.014
CVE-2022-4719 CRITICAL monitor
Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.5.
CVSS 9.8
EPSS 0.010
CVE-2022-3363 CRITICAL monitor
Business Logic Errors in GitHub repository ikus060/rdiffweb prior to 2.5.0a7.
CVSS 9.8
EPSS 0.007
CVE-2024-39671 CRITICAL monitor
Access control vulnerability in the security verification module. Impact: Successful exploitation of this vulnerability
CVSS 9.3
EPSS 0.001
CVE-2022-0935 HIGH monitor
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97.
CVSS 8.8
EPSS 0.013
CVE-2021-22926 HIGH monitor
libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the `CU
CVSS 7.5
EPSS 0.098
CVE-2023-6514 HIGH monitor
The Bluetooth module of some Huawei Smart Screen products has an identity authentication bypass vulnerability. Successfu
CVSS 8.8
EPSS 0.003
CVE-2024-54098 HIGH monitor
Service logic error vulnerability in the system service module Impact: Successful exploitation of this vulnerability may
CVSS 8.5
EPSS 0.002
CVE-2019-3787 HIGH monitor
Cloud Foundry UAA, versions prior to 73.0.0, falls back to appending “unknown.org” to a user's email address when one is
CVSS 8.3
EPSS 0.011
CVE-2022-27782 HIGH monitor
libcurl would reuse a previously created connection even when a TLS or SSHrelated option had been changed that should ha
CVSS 7.5
EPSS 0.026
CVE-2025-1908 HIGH monitor
An issue has been discovered in GitLab EE/CE that could allow an attacker to track users' browsing activities, potential
CVSS 7.7
EPSS 0.003
CVE-2022-0524 HIGH monitor
Business Logic Errors in GitHub repository publify/publify prior to 9.2.7.
CVSS 7.5
EPSS 0.015
CVE-2022-1155 HIGH monitor
Old sessions are not blocked by the login enable function. in GitHub repository snipe/snipe-it prior to 5.3.10.
CVSS 7.4
EPSS 0.009
CVE-2024-58043 HIGH monitor
Permission bypass vulnerability in the window module Impact: Successful exploitation of this vulnerability may affect se
CVSS 7.3
EPSS 0.001
CVE-2025-54606 HIGH monitor
Status verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will
CVSS 7.3
EPSS 0.001
CVE-2025-54611 HIGH monitor
EXTRA_REFERRER resource read vulnerability in the Gallery module. Impact: Successful exploitation of this vulnerability
CVSS 7.3
EPSS 0.001
CVE-2023-6017 HIGH monitor
H2O included a reference to an S3 bucket that no longer existed allowing an attacker to take over the S3 bucket URL.
CVSS 7.1
EPSS 0.009
CVE-2021-22922 MEDIUM monitor
When curl is instructed to download content using the metalink feature, thecontents is verified against a hash provided
CVSS 6.5
EPSS 0.043
CVE-2024-1456 HIGH monitor
An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository. The issue involves the S3 bucket 'http
CVSS 7.1
EPSS 0.002
CVE-2024-51523 HIGH monitor
Information management vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may aff
CVSS 7.1
EPSS 0.002
CVE-2026-1322 MEDIUM monitor
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.0 before 18.9.7, 18.10 before 18.10.6, and
CVSS 6.8
EPSS 0.002
CVE-2024-32999 MEDIUM monitor
Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect avail
CVSS 6.8
EPSS 0.002
CVE-2021-36012 MEDIUM monitor
Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by a business
CVSS 6.5
EPSS 0.017
CVE-2022-32208 MEDIUM monitor
When curl < 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. This flaw makes
CVSS 5.9
EPSS 0.056
1 / 4 Next
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Ransomware groups
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Privacy policy Terms of service
threatengine.sh