threat
engine
.sh
Back
·
··:··
Home
/
kev
CISA Known Exploited Vulnerabilities
Filter
700 results
cve
Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability
CVE-2026-45247
cve
Android Framework Integer Overflow Vulnerability
CVE-2025-48595
cve
Linux Kernel Improper Authentication Vulnerability
CVE-2022-0492
cve
Oracle WebLogic Server Unspecified Vulnerability
CVE-2024-21182
cve
Palo Alto Networks PAN-OS Authentication Bypass Vulnerability
CVE-2026-0257
cve
Daemon Tools Lite Embedded Malicious Code Vulnerability
CVE-2026-8398
cve
TanStack Unspecified Vulnerability
CVE-2026-45321
cve
Nx Console Embedded Malicious Code Vulnerability
CVE-2026-48027
cve
LiteSpeed cPanel Plugin Privilege Escalation Vulnerability
CVE-2026-48172
cve
Drupal Core SQL Injection Vulnerability
CVE-2026-9082
cve
Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability
CVE-2026-34926
cve
Langflow Origin Validation Error Vulnerability
CVE-2025-34291
cve
Microsoft Defender Denial of Service Vulnerability
CVE-2026-45498
cve
Microsoft Defender Link Following Vulnerability
CVE-2026-41091
cve
Microsoft Internet Explorer Use-After-Free Vulnerability
CVE-2010-0806
cve
Microsoft Internet Explorer Use-After-Free Vulnerability
CVE-2010-0249
cve
Adobe Acrobat and Reader Heap-Based Buffer Overflow Vulnerability
CVE-2009-3459
cve
Microsoft DirectX NULL Byte Overwrite Vulnerability
CVE-2009-1537
cve
Microsoft Windows Buffer Overflow Vulnerability
CVE-2008-4250
cve
Microsoft Exchange Server Cross-Site Scripting Vulnerability
CVE-2026-42897
cve
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
CVE-2026-20182
cve
BerriAI LiteLLM SQL Injection Vulnerability
CVE-2026-42208
cve
Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability
CVE-2026-6973
cve
Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability
CVE-2026-0300
cve
Linux Kernel Incorrect Resource Transfer Between Spheres Vulnerability
CVE-2026-31431
cve
WebPros cPanel & WHM and WP2 (WordPress Squared) Missing Authentication for Critical Function Vulnerability
CVE-2026-41940
cve
Microsoft Windows Protection Mechanism Failure Vulnerability
CVE-2026-32202
cve
ConnectWise ScreenConnect Path Traversal Vulnerability
CVE-2024-1708
cve
SimpleHelp Missing Authorization Vulnerability
CVE-2024-57726
cve
SimpleHelp Path Traversal Vulnerability
CVE-2024-57728
cve
Samsung MagicINFO 9 Server Path Traversal Vulnerability
CVE-2024-7399
cve
D-Link DIR-823X Command Injection Vulnerability
CVE-2025-29635
cve
Marimo Remote Code Execution Vulnerability
CVE-2026-39987
cve
Microsoft Defender Insufficient Granularity of Access Control Vulnerability
CVE-2026-33825
cve
JetBrains TeamCity Relative Path Traversal Vulnerability
CVE-2024-27199
cve
Quest KACE Systems Management Appliance (SMA) Improper Authentication Vulnerability
CVE-2025-32975
cve
Cisco Catalyst SD-WAN Manager Storing Passwords in a Recoverable Format Vulnerability
CVE-2026-20128
cve
Synacor Zimbra Collaboration Suite (ZCS) Cross-site Scripting Vulnerability
CVE-2025-48700
cve
PaperCut NG/MF Improper Authentication Vulnerability
CVE-2023-27351
cve
Kentico Xperience Path Traversal Vulnerability
CVE-2025-2749
cve
Cisco Catalyst SD-WAN Manager Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
CVE-2026-20133
cve
Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability
CVE-2026-20122
cve
Apache ActiveMQ Improper Input Validation Vulnerability
CVE-2026-34197
cve
Microsoft SharePoint Server Improper Input Validation Vulnerability
CVE-2026-32201
cve
Microsoft Office Remote Code Execution
CVE-2009-0238
cve
Adobe Acrobat and Reader Prototype Pollution Vulnerability
CVE-2026-34621
cve
Fortinet FortiClient EMS SQL Injection Vulnerability
CVE-2026-21643
cve
Adobe Acrobat Use-After-Free Vulnerability
CVE-2020-9715
cve
Microsoft Windows Out-of-Bounds Read Vulnerability
CVE-2023-36424
cve
Microsoft Exchange Server Deserialization of Untrusted Data Vulnerability
CVE-2023-21529
cve
Microsoft Windows Link Following Vulnerability
CVE-2025-60710
cve
Microsoft Visual Basic for Applications Insecure Library Loading Vulnerability
CVE-2012-1854
cve
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
CVE-2026-1340
cve
Fortinet FortiClient EMS Improper Access Control Vulnerability
CVE-2026-35616
cve
TrueConf Client Download of Code Without Integrity Check Vulnerability
CVE-2026-3502
cve
Google Dawn Use-After-Free Vulnerability
CVE-2026-5281
cve
Citrix NetScaler Out-of-Bounds Read Vulnerability
CVE-2026-3055
cve
F5 BIG-IP Stack-Based Buffer Overflow Vulnerability
CVE-2025-53521
cve
Aquasecurity Trivy Embedded Malicious Code Vulnerability
CVE-2026-33634
cve
Langflow Code Injection Vulnerability
CVE-2026-33017
cve
Apple Multiple Products Buffer Overflow Vulnerability
CVE-2025-31277
cve
Apple Multiple Products Classic Buffer Overflow Vulnerability
CVE-2025-43520
cve
Apple Multiple Products Improper Locking Vulnerability
CVE-2025-43510
cve
Laravel Livewire Code Injection Vulnerability
CVE-2025-54068
cve
Craft CMS Code Injection Vulnerability
CVE-2025-32432
cve
Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability
CVE-2026-20131
cve
Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
CVE-2026-20963
cve
Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting Vulnerability
CVE-2025-66376
cve
Wing FTP Server Information Disclosure Vulnerability
CVE-2025-47813
cve
Google Skia Out-of-Bounds Write Vulnerability
CVE-2026-3909
cve
Google Chromium V8 Improper Restriction of Operations Within the Bounds of a Memory Buffer Vulnerability
CVE-2026-3910
cve
n8n Improper Control of Dynamically-Managed Code Resources Vulnerability
CVE-2025-68613
cve
Ivanti Endpoint Manager (EPM) Authentication Bypass Vulnerability
CVE-2026-1603
cve
SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability
CVE-2025-26399
cve
Omnissa Workspace ONE Server-Side Request Forgery
CVE-2021-22054
cve
Apple iOS and iPadOS Use-After-Free Vulnerability
CVE-2023-41974
cve
Apple Multiple Products Integer Overflow or Wraparound Vulnerability
CVE-2021-30952
cve
Apple Multiple products Use-After-Free Vulnerability
CVE-2023-43000
cve
Rockwell Multiple Products Insufficient Protected Credentials Vulnerability
CVE-2021-22681
cve
Hikvision Multiple Products Improper Authentication Vulnerability
CVE-2017-7921
cve
Qualcomm Multiple Chipsets Memory Corruption Vulnerability
CVE-2026-21385
cve
Broadcom VMware Aria Operations Command Injection Vulnerability
CVE-2026-22719
cve
Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability
CVE-2026-20127
cve
Cisco SD-WAN Path Traversal Vulnerability
CVE-2022-20775
cve
Soliton Systems K.K FileZen OS Command Injection Vulnerability
CVE-2026-25108
cve
RoundCube Webmail Cross-site Scripting Vulnerability
CVE-2025-68461
cve
RoundCube Webmail Deserialization of Untrusted Data Vulnerability
CVE-2025-49113
cve
Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Hard-coded Credentials Vulnerability
CVE-2026-22769
cve
GitLab Server-Side Request Forgery (SSRF) Vulnerability
CVE-2021-22175
cve
Google Chromium CSS Use-After-Free Vulnerability
CVE-2026-2441
cve
Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability
CVE-2008-0015
cve
TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability
CVE-2024-7694
cve
Synacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery Vulnerability
CVE-2020-7796
cve
BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) OS Command Injection Vulnerability
CVE-2026-1731
cve
SolarWinds Web Help Desk Security Control Bypass Vulnerability
CVE-2025-40536
cve
Notepad++ Download of Code Without Integrity Check Vulnerability
CVE-2025-15556
cve
Microsoft Configuration Manager SQL Injection Vulnerability
CVE-2024-43468
cve
Apple Multiple Buffer Overflow Vulnerability
CVE-2026-20700
cve
Microsoft Office Word Reliance on Untrusted Inputs in a Security Decision Vulnerability
CVE-2026-21514
cve
Microsoft Windows Type Confusion Vulnerability
CVE-2026-21519
cve
Microsoft Windows Improper Privilege Management Vulnerability
CVE-2026-21533
cve
Microsoft Windows Shell Protection Mechanism Failure Vulnerability
CVE-2026-21510
cve
Microsoft Windows NULL Pointer Dereference Vulnerability
CVE-2026-21525
cve
Microsoft MSHTML Framework Protection Mechanism Failure Vulnerability
CVE-2026-21513
cve
SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability
CVE-2026-24423
cve
React Native Community CLI OS Command Injection Vulnerability
CVE-2025-11953
cve
SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability
CVE-2025-40551
cve
Sangoma FreePBX Improper Authentication Vulnerability
CVE-2019-19006
cve
Sangoma FreePBX OS Command Injection Vulnerability
CVE-2025-64328
cve
GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability
CVE-2021-39935
cve
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
CVE-2026-1281
cve
Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability
CVE-2026-24858
cve
Microsoft Office Security Feature Bypass Vulnerability
CVE-2026-21509
cve
GNU InetUtils Argument Injection Vulnerability
CVE-2026-24061
cve
SmarterTools SmarterMail Authentication Bypass Using an Alternate Path or Channel Vulnerability
CVE-2026-23760
cve
SmarterTools SmarterMail Unrestricted Upload of File with Dangerous Type Vulnerability
CVE-2025-52691
cve
Linux Kernel Integer Overflow Vulnerability
CVE-2018-14634
cve
Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability
CVE-2024-37079
cve
Prettier eslint-config-prettier Embedded Malicious Code Vulnerability
CVE-2025-54313
cve
Vite Vitejs Improper Access Control Vulnerability
CVE-2025-31125
cve
Versa Concerto Improper Authentication Vulnerability
CVE-2025-34026
cve
Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability
CVE-2025-68645
cve
Cisco Unified Communications Products Code Injection Vulnerability
CVE-2026-20045
cve
Microsoft Windows Information Disclosure Vulnerability
CVE-2026-20805
cve
Gogs Path Traversal Vulnerability
CVE-2025-8110
cve
Hewlett Packard Enterprise (HPE) OneView Code Injection Vulnerability
CVE-2025-37164
cve
Microsoft Office PowerPoint Code Injection Vulnerability
CVE-2009-0556
cve
MongoDB and MongoDB Server Improper Handling of Length Parameter Inconsistency Vulnerability
CVE-2025-14847
cve
Digiever DS-2105 Pro Missing Authorization Vulnerability
CVE-2023-52163
cve
WatchGuard Firebox Out of Bounds Write Vulnerability
CVE-2025-14733
cve
Cisco Multiple Products Improper Input Validation Vulnerability
CVE-2025-20393
cve
SonicWall SMA1000 Missing Authorization Vulnerability
CVE-2025-40602
cve
ASUS Live Update Embedded Malicious Code Vulnerability
CVE-2025-59374
cve
Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerability
CVE-2025-59718
cve
Apple Multiple Products Use-After-Free WebKit Vulnerability
CVE-2025-43529
cve
Gladinet CentreStack and Triofox Hard Coded Cryptographic Vulnerability
CVE-2025-14611
cve
Google Chromium Out of Bounds Memory Access Vulnerability
CVE-2025-14174
cve
Sierra Wireless AirLink ALEOS Unrestricted Upload of File with Dangerous Type Vulnerability
CVE-2018-4063
cve
OSGeo GeoServer Improper Restriction of XML External Entity Reference Vulnerability
CVE-2025-58360
cve
Microsoft Windows Use After Free Vulnerability
CVE-2025-62221
cve
RARLAB WinRAR Path Traversal Vulnerability
CVE-2025-6218
cve
Array Networks ArrayOS AG OS Command Injection Vulnerability
CVE-2025-66644
cve
D-Link Routers Buffer Overflow Vulnerability
CVE-2022-37055
cve
Meta React Server Components Remote Code Execution Vulnerability
CVE-2025-55182
cve
OpenPLC ScadaBR Unrestricted Upload of File with Dangerous Type Vulnerability
CVE-2021-26828
cve
Android Framework Privilege Escalation Vulnerability
CVE-2025-48572
cve
Android Framework Information Disclosure Vulnerability
CVE-2025-48633
cve
OpenPLC ScadaBR Cross-site Scripting Vulnerability
CVE-2021-26829
cve
Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability
CVE-2025-61757
cve
Google Chromium V8 Type Confusion Vulnerability
CVE-2025-13223
cve
Fortinet FortiWeb OS Command Injection Vulnerability
CVE-2025-58034
cve
Fortinet FortiWeb Path Traversal Vulnerability
CVE-2025-64446
cve
WatchGuard Firebox Out-of-Bounds Write Vulnerability
CVE-2025-9242
cve
Microsoft Windows Race Condition Vulnerability
CVE-2025-62215
cve
Gladinet Triofox Improper Access Control Vulnerability
CVE-2025-12480
cve
Samsung Mobile Devices Out-of-Bounds Write Vulnerability
CVE-2025-21042
cve
Gladinet CentreStack and Triofox Files or Directories Accessible to External Parties Vulnerability
CVE-2025-11371
cve
CWP Control Web Panel OS Command Injection Vulnerability
CVE-2025-48703
cve
XWiki Platform Eval Injection Vulnerability
CVE-2025-24893
cve
Broadcom VMware Aria Operations and VMware Tools Privilege Defined with Unsafe Actions Vulnerability
CVE-2025-41244
cve
Dassault Systèmes DELMIA Apriso Missing Authorization Vulnerability
CVE-2025-6205
cve
Dassault Systèmes DELMIA Apriso Code Injection Vulnerability
CVE-2025-6204
cve
Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability
CVE-2025-59287
cve
Adobe Commerce and Magento Improper Input Validation Vulnerability
CVE-2025-54236
cve
Motex LANSCOPE Endpoint Manager Improper Verification of Source of a Communication Channel Vulnerability
CVE-2025-61932
cve
Oracle E-Business Suite Server-Side Request Forgery (SSRF) Vulnerability
CVE-2025-61884
cve
Microsoft Windows SMB Client Improper Access Control Vulnerability
CVE-2025-33073
cve
Kentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel Vulnerability
CVE-2025-2747
cve
Kentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel Vulnerability
CVE-2025-2746
cve
Apple Multiple Products Unspecified Vulnerability
CVE-2022-48503
cve
Adobe Experience Manager Forms Code Execution Vulnerability
CVE-2025-54253
cve
SKYSEA Client View Improper Authentication Vulnerability
CVE-2016-7836
cve
Microsoft Windows Improper Access Control Vulnerability
CVE-2025-59230
cve
Microsoft Windows Untrusted Pointer Dereference Vulnerability
CVE-2025-24990
cve
IGEL OS Use of a Key Past its Expiration Date Vulnerability
CVE-2025-47827
cve
Grafana Path Traversal Vulnerability
CVE-2021-43798
cve
Synacor Zimbra Collaboration Suite (ZCS) Cross-site Scripting Vulnerability
CVE-2025-27915
cve
Oracle E-Business Suite Unspecified Vulnerability
CVE-2025-61882
cve
Mozilla Multiple Products Remote Code Execution Vulnerability
CVE-2010-3765
cve
Microsoft Windows Remote Code Execution Vulnerability
CVE-2011-3402
cve
Microsoft Windows Out-of-Bounds Write Vulnerability
CVE-2013-3918
cve
Microsoft Windows Privilege Escalation Vulnerability
CVE-2021-43226
cve
Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerability
CVE-2010-3962
cve
Linux Kernel Heap Out-of-Bounds Write Vulnerability
CVE-2021-22555
cve
Smartbedded Meteobridge Command Injection Vulnerability
CVE-2025-4008
cve
Samsung Mobile Devices Out-of-Bounds Write Vulnerability
CVE-2025-21043
cve
Juniper ScreenOS Improper Authentication Vulnerability
CVE-2015-7755
cve
Jenkins Remote Code Execution Vulnerability
CVE-2017-1000353
cve
GNU Bash OS Command Injection Vulnerability
CVE-2014-6278
cve
Adminer Server-Side Request Forgery Vulnerability
CVE-2021-21311
cve
Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability
CVE-2025-20352
cve
Fortra GoAnywhere MFT Deserialization of Untrusted Data Vulnerability
CVE-2025-10035
cve
Libraesva Email Security Gateway Command Injection Vulnerability
CVE-2025-59689
cve
Sudo Inclusion of Functionality from Untrusted Control Sphere Vulnerability
CVE-2025-32463
cve
Cisco Secure Firewall Adaptive Security Appliance (ASA) and Secure Firewall Threat Defense (FTD) Buffer Overflow Vulnerability
CVE-2025-20333
cve
Cisco Secure Firewall Adaptive Security (ASA) Appliance and Secure Firewall Threat Defense (FTD) Missing Authorization Vulnerability
CVE-2025-20362
cve
Google Chromium V8 Type Confusion Vulnerability
CVE-2025-10585
cve
Dassault Systèmes DELMIA Apriso Deserialization of Untrusted Data Vulnerability
CVE-2025-5086
cve
Sitecore Multiple Products Deserialization of Untrusted Data Vulnerability
CVE-2025-53690
cve
Android Runtime Use-After-Free Vulnerability
CVE-2025-48543
cve
Linux Kernel Time-of-Check Time-of-Use (TOCTOU) Race Condition Vulnerability
CVE-2025-38352
cve
TP-Link Archer C7(EU) and TL-WR841N/ND(MS) OS Command Injection Vulnerability
CVE-2025-9377
cve
TP-Link TL-WR841N Authentication Bypass by Spoofing Vulnerability
CVE-2023-50224
cve
Meta Platforms WhatsApp Incorrect Authorization Vulnerability
CVE-2025-55177
cve
TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability
CVE-2020-24363
cve
Sangoma FreePBX Authentication Bypass Vulnerability
CVE-2025-57819
cve
Citrix NetScaler Memory Overflow Vulnerability
CVE-2025-7775
cve
Citrix Session Recording Deserialization of Untrusted Data Vulnerability
CVE-2024-8069
cve
Citrix Session Recording Improper Privilege Management Vulnerability
CVE-2024-8068
cve
Git Link Following Vulnerability
CVE-2025-48384
cve
Apple iOS, iPadOS, and macOS Out-of-Bounds Write Vulnerability
CVE-2025-43300
cve
Trend Micro Apex One OS Command Injection Vulnerability
CVE-2025-54948
cve
N-able N-Central Insecure Deserialization Vulnerability
CVE-2025-8875
cve
N-able N-Central Command Injection Vulnerability
CVE-2025-8876
cve
Microsoft Internet Explorer Resource Management Errors Vulnerability
CVE-2013-3893
cve
Microsoft Office Excel Remote Code Execution Vulnerability
CVE-2007-0671
cve
RARLAB WinRAR Path Traversal Vulnerability
CVE-2025-8088
cve
D-Link DNR-322L Download of Code Without Integrity Check Vulnerability
CVE-2022-40799
cve
D-Link DCS-2530L and DCS-2670L Command Injection Vulnerability
CVE-2020-25079
cve
D-Link DCS-2530L and DCS-2670L Devices Unspecified Vulnerability
CVE-2020-25078
cve
Cisco Identity Services Engine Injection Vulnerability
CVE-2025-20281
cve
Cisco Identity Services Engine Injection Vulnerability
CVE-2025-20337
cve
PaperCut NG/MF Cross-Site Request Forgery (CSRF) Vulnerability
CVE-2023-2533
cve
Microsoft SharePoint Improper Authentication Vulnerability
CVE-2025-49706
cve
Microsoft SharePoint Code Injection Vulnerability
CVE-2025-49704
cve
CrushFTP Unprotected Alternate Channel Vulnerability
CVE-2025-54309
cve
Google Chromium ANGLE and GPU Improper Input Validation Vulnerability
CVE-2025-6558
cve
SysAid On-Prem Improper Restriction of XML External Entity Reference Vulnerability
CVE-2025-2776
cve
SysAid On-Prem Improper Restriction of XML External Entity Reference Vulnerability
CVE-2025-2775
cve
Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
CVE-2025-53770
cve
Fortinet FortiWeb SQL Injection Vulnerability
CVE-2025-25257
cve
Wing FTP Server Improper Neutralization of Null Byte or NUL Character Vulnerability
CVE-2025-47812
cve
Citrix NetScaler ADC and Gateway Out-of-Bounds Read Vulnerability
CVE-2025-5777
cve
Multi-Router Looking Glass (MRLG) Buffer Overflow Vulnerability
CVE-2014-3931
cve
PHPMailer Command Injection Vulnerability
CVE-2016-10033
cve
Rails Ruby on Rails Path Traversal Vulnerability
CVE-2019-5418
cve
Synacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery (SSRF) Vulnerability
CVE-2019-9621
cve
Google Chromium V8 Type Confusion Vulnerability
CVE-2025-6554
cve
TeleMessage TM SGNL Initialization of a Resource with an Insecure Default Vulnerability
CVE-2025-48927
cve
TeleMessage TM SGNL Exposure of Core Dump File to an Unauthorized Control Sphere Vulnerability
CVE-2025-48928
cve
Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability
CVE-2025-6543
cve
AMI MegaRAC SPx Authentication Bypass by Spoofing Vulnerability
CVE-2024-54085
cve
D-Link DIR-859 Router Path Traversal Vulnerability
CVE-2024-0769
cve
Fortinet FortiOS Use of Hard-Coded Credentials Vulnerability
CVE-2019-6693
cve
Linux Kernel Improper Ownership Management Vulnerability
CVE-2023-0386
cve
Apple Multiple Products Unspecified Vulnerability
CVE-2025-43200
cve
TP-Link Multiple Routers Command Injection Vulnerability
CVE-2023-33538
cve
Wazuh Server Deserialization of Untrusted Data Vulnerability
CVE-2025-24016
cve
Microsoft Windows External Control of File Name or Path Vulnerability
CVE-2025-33053
cve
Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability
CVE-2025-32433
cve
RoundCube Webmail Cross-Site Scripting Vulnerability
CVE-2024-42009
cve
Google Chromium V8 Out-of-Bounds Read and Write Vulnerability
CVE-2025-5419
cve
Qualcomm Multiple Chipsets Use-After-Free Vulnerability
CVE-2025-27038
cve
Qualcomm Multiple Chipsets Incorrect Authorization Vulnerability
CVE-2025-21480
cve
Qualcomm Multiple Chipsets Incorrect Authorization Vulnerability
CVE-2025-21479
cve
ASUS RT-AX55 Routers OS Command Injection Vulnerability
CVE-2023-39780
cve
Craft CMS Code Injection Vulnerability
CVE-2024-56145
cve
Craft CMS External Control of Assumed-Immutable Web Parameter Vulnerability
CVE-2025-35939
cve
ConnectWise ScreenConnect Improper Authentication Vulnerability
CVE-2025-3935
cve
ASUS Routers Improper Authentication Vulnerability
CVE-2021-32030
cve
Samsung MagicINFO 9 Server Path Traversal Vulnerability
CVE-2025-4632
cve
Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability
CVE-2025-4427
cve
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
CVE-2025-4428
cve
MDaemon Email Server Cross-Site Scripting (XSS) Vulnerability
CVE-2024-11182
cve
Srimax Output Messenger Directory Traversal Vulnerability
CVE-2025-27920
cve
Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability
CVE-2024-27443
cve
ZKTeco BioTime Path Traversal Vulnerability
CVE-2023-38950
cve
DrayTek Vigor Routers OS Command Injection Vulnerability
CVE-2024-12987
cve
SAP NetWeaver Deserialization Vulnerability
CVE-2025-42999
cve
Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability
CVE-2025-32756
cve
Microsoft Windows DWM Core Library Use-After-Free Vulnerability
CVE-2025-30400
cve
Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability
CVE-2025-32701
cve
Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability
CVE-2025-32706
cve
Microsoft Windows Scripting Engine Type Confusion Vulnerability
CVE-2025-30397
cve
Microsoft Windows Ancillary Function Driver for WinSock Use-After-Free Vulnerability
CVE-2025-32709
cve
TeleMessage TM SGNL Hidden Functionality Vulnerability
CVE-2025-47729
cve
GeoVision Devices OS Command Injection Vulnerability
CVE-2024-6047
cve
GeoVision Devices OS Command Injection Vulnerability
CVE-2024-11120
cve
FreeType Out-of-Bounds Write Vulnerability
CVE-2025-27363
cve
Langflow Missing Authentication Vulnerability
CVE-2025-3248
cve
Yiiframework Yii Improper Protection of Alternate Path Vulnerability
CVE-2024-58136
cve
Commvault Command Center Path Traversal Vulnerability
CVE-2025-34028
cve
SonicWall SMA100 Appliances OS Command Injection Vulnerability
CVE-2023-44221
cve
Apache HTTP Server Improper Escaping of Output Vulnerability
CVE-2024-38475
cve
SAP NetWeaver Unrestricted File Upload Vulnerability
CVE-2025-31324
cve
Commvault Web Server Unspecified Vulnerability
CVE-2025-3928
cve
Qualitia Active! Mail Stack-Based Buffer Overflow Vulnerability
CVE-2025-42599
cve
Broadcom Brocade Fabric OS Code Injection Vulnerability
CVE-2025-1976
cve
Apple Multiple Products Memory Corruption Vulnerability
CVE-2025-31200
cve
Apple Multiple Products Arbitrary Read and Write Vulnerability
CVE-2025-31201
cve
Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
CVE-2025-24054
cve
SonicWall SMA100 Appliances OS Command Injection Vulnerability
CVE-2021-20035
cve
Linux Kernel Out-of-Bounds Access Vulnerability
CVE-2024-53197
cve
Linux Kernel Out-of-Bounds Read Vulnerability
CVE-2024-53150
cve
Gladinet CentreStack and Triofox Use of Hard-coded Cryptographic Key Vulnerability
CVE-2025-30406
cve
Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability
CVE-2025-29824
cve
CrushFTP Authentication Bypass Vulnerability
CVE-2025-31161
cve
Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability
CVE-2025-22457
cve
Apache Tomcat Path Equivalence Vulnerability
CVE-2025-24813
cve
Cisco Smart Licensing Utility Static Credential Vulnerability
CVE-2024-20439
cve
Google Chromium Mojo Sandbox Escape Vulnerability
CVE-2025-2783
cve
Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability
CVE-2019-9874
cve
Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability
CVE-2019-9875
cve
reviewdog/action-setup GitHub Action Embedded Malicious Code Vulnerability
CVE-2025-30154
cve
Edimax IC-7100 IP Camera OS Command Injection Vulnerability
CVE-2025-1316
cve
NAKIVO Backup and Replication Absolute Path Traversal Vulnerability
CVE-2024-48248
cve
SAP NetWeaver Directory Traversal Vulnerability
CVE-2017-12637
cve
Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability
CVE-2025-24472
cve
tj-actions/changed-files GitHub Action Embedded Malicious Code Vulnerability
CVE-2025-30066
cve
Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability
CVE-2025-24201
cve
Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability
CVE-2025-21590
cve
Microsoft Windows Management Console (MMC) Improper Neutralization Vulnerability
CVE-2025-26633
cve
Microsoft Windows Win32k Use-After-Free Vulnerability
CVE-2025-24983
cve
Microsoft Windows NTFS Information Disclosure Vulnerability
CVE-2025-24984
cve
Microsoft Windows Fast FAT File System Driver Integer Overflow Vulnerability
CVE-2025-24985
cve
Microsoft Windows NTFS Out-Of-Bounds Read Vulnerability
CVE-2025-24991
cve
Microsoft Windows NTFS Heap-Based Buffer Overflow Vulnerability
CVE-2025-24993
cve
Advantive VeraCore SQL Injection Vulnerability
CVE-2025-25181
cve
Advantive VeraCore Unrestricted File Upload Vulnerability
CVE-2024-57968
cve
Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability
CVE-2024-13159
cve
Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability
CVE-2024-13160
cve
Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability
CVE-2024-13161
cve
Linux Kernel Use of Uninitialized Resource Vulnerability
CVE-2024-50302
cve
VMware ESXi and Workstation TOCTOU Race Condition Vulnerability
CVE-2025-22224
cve
VMware ESXi Arbitrary Write Vulnerability
CVE-2025-22225
cve
VMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability
CVE-2025-22226
cve
Cisco Small Business RV Series Routers Command Injection Vulnerability
CVE-2023-20118
cve
Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability
CVE-2022-43939
cve
Hitachi Vantara Pentaho BA Server Special Element Injection Vulnerability
CVE-2022-43769
cve
Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability
CVE-2018-8639
cve
Progress WhatsUp Gold Path Traversal Vulnerability
CVE-2024-4885
cve
Microsoft Partner Center Improper Access Control Vulnerability
CVE-2024-49035
cve
Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability
CVE-2023-34192
cve
Adobe ColdFusion Deserialization Vulnerability
CVE-2017-3066
cve
Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability
CVE-2024-20953
cve
Microsoft Power Pages Improper Access Control Vulnerability
CVE-2025-24989
cve
Craft CMS Code Injection Vulnerability
CVE-2025-23209
cve
Palo Alto Networks PAN-OS File Read Vulnerability
CVE-2025-0111
cve
SonicWall SonicOS SSLVPN Improper Authentication Vulnerability
CVE-2024-53704
cve
Palo Alto Networks PAN-OS Authentication Bypass Vulnerability
CVE-2025-0108
cve
SimpleHelp Path Traversal Vulnerability
CVE-2024-57727
cve
Mitel SIP Phones Argument Injection Vulnerability
CVE-2024-41710
cve
Apple iOS and iPadOS Incorrect Authorization Vulnerability
CVE-2025-24200
cve
Microsoft Windows Storage Link Following Vulnerability
CVE-2025-21391
cve
Microsoft Windows Ancillary Function Driver for WinSock Heap-Based Buffer Overflow Vulnerability
CVE-2025-21418
cve
Zyxel DSL CPE OS Command Injection Vulnerability
CVE-2024-40890
cve
Zyxel DSL CPE OS Command Injection Vulnerability
CVE-2024-40891
cve
Trimble Cityworks Deserialization Vulnerability
CVE-2025-0994
cve
7-Zip Mark of the Web Bypass Vulnerability
CVE-2025-0411
cve
Dante Discovery Process Control Vulnerability
CVE-2022-23748
cve
Microsoft Outlook Improper Input Validation Vulnerability
CVE-2024-21413
cve
CyberoamOS (CROS) SQL Injection Vulnerability
CVE-2020-29574
cve
Sophos XG Firewall Buffer Overflow Vulnerability
CVE-2020-15069
cve
Linux Kernel Out-of-Bounds Write Vulnerability
CVE-2024-53104
cve
Apache OFBiz Forced Browsing Vulnerability
CVE-2024-45195
cve
Microsoft .NET Framework Information Disclosure Vulnerability
CVE-2024-29059
cve
Paessler PRTG Network Monitor OS Command Injection Vulnerability
CVE-2018-9276
cve
Paessler PRTG Network Monitor Local File Inclusion Vulnerability
CVE-2018-19410
cve
Apple Multiple Products Use-After-Free Vulnerability
CVE-2025-24085
cve
SonicWall SMA1000 Appliances Deserialization Vulnerability
CVE-2025-23006
cve
JQuery Cross-Site Scripting (XSS) Vulnerability
CVE-2020-11023
cve
Aviatrix Controllers OS Command Injection Vulnerability
CVE-2024-50603
cve
Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability
CVE-2024-55591
cve
Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based Buffer Overflow Vulnerability
CVE-2025-21333
cve
Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability
CVE-2025-21334
cve
Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability
CVE-2025-21335
cve
BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) OS Command Injection Vulnerability
CVE-2024-12686
cve
Qlik Sense HTTP Tunneling Vulnerability
CVE-2023-48365
cve
Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability
CVE-2025-0282
cve
Mitel MiCollab Path Traversal Vulnerability
CVE-2024-41713
cve
Mitel MiCollab Path Traversal Vulnerability
CVE-2024-55550
cve
Oracle WebLogic Server Unspecified Vulnerability
CVE-2020-2883
cve
Palo Alto Networks PAN-OS Malicious DNS Packet Vulnerability
CVE-2024-3393
cve
Acclaim Systems USAHERDS Use of Hard-Coded Credentials Vulnerability
CVE-2021-44207
cve
BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability
CVE-2024-12356
cve
NUUO NVRmini Devices OS Command Injection Vulnerability
CVE-2018-14933
cve
NUUO NVRmini2 Devices Missing Authentication Vulnerability
CVE-2022-23227
cve
Reolink Multiple IP Cameras OS Command Injection Vulnerability
CVE-2019-11001
cve
Reolink RLC-410W IP Camera OS Command Injection Vulnerability
CVE-2021-40407
cve
Cleo Multiple Products Unauthenticated File Upload Vulnerability
CVE-2024-55956
cve
Adobe ColdFusion Improper Access Control Vulnerability
CVE-2024-20767
cve
Microsoft Windows Kernel-Mode Driver Untrusted Pointer Dereference Vulnerability
CVE-2024-35250
cve
Cleo Multiple Products Unrestricted File Upload Vulnerability
CVE-2024-50623
cve
Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability
CVE-2024-49138
cve
CyberPanel Incorrect Default Permissions Vulnerability
CVE-2024-51378
cve
North Grid Proself Improper Restriction of XML External Entity (XXE) Reference Vulnerability
CVE-2023-45727
cve
ProjectSend Improper Authentication Vulnerability
CVE-2024-11680
cve
Zyxel Multiple Firewalls Path Traversal Vulnerability
CVE-2024-11667
cve
Array Networks AG and vxAG ArrayOS Missing Authentication for Critical Function Vulnerability
CVE-2023-28461
cve
Apple Multiple Products Code Execution Vulnerability
CVE-2024-44308
cve
Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability
CVE-2024-44309
cve
Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerability
CVE-2024-21287
cve
VMware vCenter Server Heap-Based Buffer Overflow Vulnerability
CVE-2024-38812
cve
VMware vCenter Server Privilege Escalation Vulnerability
CVE-2024-38813
cve
Progress Kemp LoadMaster OS Command Injection Vulnerability
CVE-2024-1212
cve
Palo Alto Networks PAN-OS Management Interface Authentication Bypass Vulnerability
CVE-2024-0012
cve
Palo Alto Networks PAN-OS Management Interface OS Command Injection Vulnerability
CVE-2024-9474
cve
Palo Alto Networks Expedition OS Command Injection Vulnerability
CVE-2024-9463
cve
Palo Alto Networks Expedition SQL Injection Vulnerability
CVE-2024-9465
cve
Microsoft Windows Task Scheduler Privilege Escalation Vulnerability
CVE-2024-49039
cve
Microsoft Windows NTLMv2 Hash Disclosure Spoofing Vulnerability
CVE-2024-43451
cve
Metabase GeoJSON API Local File Inclusion Vulnerability
CVE-2021-41277
cve
Cisco Adaptive Security Appliance (ASA) Cross-Site Scripting (XSS) Vulnerability
CVE-2014-2120
cve
Atlassian Jira Server and Data Center Path Traversal Vulnerability
CVE-2021-26086
cve
Palo Alto Networks Expedition Missing Authentication Vulnerability
CVE-2024-5910
cve
Android Framework Privilege Escalation Vulnerability
CVE-2024-43093
cve
CyberPanel Incorrect Default Permissions Vulnerability
CVE-2024-51567
cve
Nostromo nhttpd Directory Traversal Vulnerability
CVE-2019-16278
cve
PTZOptics PT30X-SDI/NDI Cameras OS Command Injection Vulnerability
CVE-2024-8957
cve
PTZOptics PT30X-SDI/NDI Cameras Authentication Bypass Vulnerability
CVE-2024-8956
cve
Cisco ASA and FTD Denial-of-Service Vulnerability
CVE-2024-20481
cve
RoundCube Webmail Cross-Site Scripting (XSS) Vulnerability
CVE-2024-37383
cve
Fortinet FortiManager Missing Authentication Vulnerability
CVE-2024-47575
cve
Microsoft SharePoint Deserialization Vulnerability
CVE-2024-38094
cve
ScienceLogic SL1 Unspecified Vulnerability
CVE-2024-9537
cve
Veeam Backup and Replication Deserialization Vulnerability
CVE-2024-40711
cve
Microsoft Windows Kernel TOCTOU Race Condition Vulnerability
CVE-2024-30088
cve
Mozilla Firefox Use-After-Free Vulnerability
CVE-2024-9680
cve
SolarWinds Web Help Desk Hardcoded Credential Vulnerability
CVE-2024-28987
cve
Fortinet Multiple Products Format String Vulnerability
CVE-2024-23113
cve
Ivanti Cloud Services Appliance (CSA) SQL Injection Vulnerability
CVE-2024-9379
cve
Ivanti Cloud Services Appliance (CSA) OS Command Injection Vulnerability
CVE-2024-9380
cve
Qualcomm Multiple Chipsets Use-After-Free Vulnerability
CVE-2024-43047
cve
Microsoft Windows Management Console Remote Code Execution Vulnerability
CVE-2024-43572
cve
Microsoft Windows MSHTML Platform Spoofing Vulnerability
CVE-2024-43573
cve
Synacor Zimbra Collaboration Suite (ZCS) Command Execution Vulnerability
CVE-2024-45519
cve
Ivanti Endpoint Manager (EPM) SQL Injection Vulnerability
CVE-2024-29824
cve
D-Link DIR-820 Router OS Command Injection Vulnerability
CVE-2023-25280
cve
DrayTek Multiple Vigor Routers OS Command Injection Vulnerability
CVE-2020-15415
cve
SAP Commerce Cloud Deserialization of Untrusted Data Vulnerability
CVE-2019-0344
cve
Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability
CVE-2024-7593
cve
Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability
CVE-2024-8963
cve
Apache HugeGraph-Server Improper Access Control Vulnerability
CVE-2024-27348
cve
Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability
CVE-2020-0618
cve
Oracle ADF Faces Deserialization of Untrusted Data Vulnerability
CVE-2022-21445
cve
Oracle WebLogic Server Remote Code Execution Vulnerability
CVE-2020-14644
cve
Adobe Flash Player Integer Underflow Vulnerablity
CVE-2014-0497
cve
Adobe Flash Player Incorrect Default Permissions Vulnerability
CVE-2013-0643
cve
Adobe Flash Player Code Execution Vulnerability
CVE-2013-0648
cve
Adobe Flash Player Double Free Vulnerablity
CVE-2014-0502
cve
Microsoft Windows MSHTML Platform Spoofing Vulnerability
CVE-2024-43461
cve
Progress WhatsUp Gold SQL Injection Vulnerability
CVE-2024-6670
cve
Ivanti Cloud Services Appliance OS Command Injection Vulnerability
CVE-2024-8190
cve
Microsoft Publisher Protection Mechanism Failure Vulnerability
CVE-2024-38226
cve
Microsoft Windows Installer Improper Privilege Management Vulnerability
CVE-2024-38014
cve
Microsoft Windows Mark of the Web (MOTW) Protection Mechanism Failure Vulnerability
CVE-2024-38217
cve
ImageMagick Improper Input Validation Vulnerability
CVE-2016-3714
cve
Linux Kernel PIE Stack Buffer Corruption Vulnerability
CVE-2017-1000253
cve
SonicWall SonicOS Improper Access Control Vulnerability
CVE-2024-40766
cve
Draytek VigorConnect Path Traversal Vulnerability
CVE-2021-20123
cve
Draytek VigorConnect Path Traversal Vulnerability
CVE-2021-20124
cve
Kingsoft WPS Office Path Traversal Vulnerability
CVE-2024-7262
cve
Google Chromium V8 Inappropriate Implementation Vulnerability
CVE-2024-7965
cve
Apache OFBiz Incorrect Authorization Vulnerability
CVE-2024-38856
cve
Google Chromium V8 Type Confusion Vulnerability
CVE-2024-7971
cve
Versa Director Dangerous File Type Upload Vulnerability
CVE-2024-39717
cve
Dahua IP Camera Authentication Bypass Vulnerability
CVE-2021-33044
cve
Dahua IP Camera Authentication Bypass Vulnerability
CVE-2021-33045
cve
Linux Kernel Heap-Based Buffer Overflow Vulnerability
CVE-2022-0185
cve
Microsoft Exchange Server Information Disclosure Vulnerability
CVE-2021-31196
cve
Jenkins Command Line Interface (CLI) Path Traversal Vulnerability
CVE-2024-23897
cve
SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability
CVE-2024-28986
cve
Microsoft Project Remote Code Execution Vulnerability
CVE-2024-38189
cve
Microsoft Windows Scripting Engine Memory Corruption Vulnerability
CVE-2024-38178
cve
Microsoft Windows SmartScreen Security Feature Bypass Vulnerability
CVE-2024-38213
cve
Microsoft Windows Ancillary Function Driver for WinSock Privilege Escalation Vulnerability
CVE-2024-38193
cve
Microsoft Windows Kernel Privilege Escalation Vulnerability
CVE-2024-38106
cve
Microsoft Windows Power Dependency Coordinator Privilege Escalation Vulnerability
CVE-2024-38107
cve
Android Kernel Remote Code Execution Vulnerability
CVE-2024-36971
cve
Apache OFBiz Path Traversal Vulnerability
CVE-2024-32113
cve
Microsoft COM for Windows Deserialization of Untrusted Data Vulnerability
CVE-2018-0824
cve
VMware ESXi Authentication Bypass Vulnerability
CVE-2024-37085
cve
ServiceNow Improper Input Validation Vulnerability
CVE-2024-4879
cve
ServiceNow Incomplete List of Disallowed Inputs Vulnerability
CVE-2024-5217
cve
Acronis Cyber Infrastructure (ACI) Insecure Default Password Vulnerability
CVE-2023-45249
cve
Microsoft Internet Explorer Use-After-Free Vulnerability
CVE-2012-4792
cve
Twilio Authy Information Disclosure Vulnerability
CVE-2024-39891
cve
Adobe Commerce and Magento Open Source Improper Restriction of XML External Entity Reference (XXE) Vulnerability
CVE-2024-34102
cve
SolarWinds Serv-U Path Traversal Vulnerability
CVE-2024-28995
cve
VMware vCenter Server Incorrect Default File Permissions Vulnerability
CVE-2022-22948
cve
OSGeo GeoServer GeoTools Eval Injection Vulnerability
CVE-2024-36401
cve
Microsoft Windows MSHTML Platform Spoofing Vulnerability
CVE-2024-38112
cve
Microsoft Windows Hyper-V Privilege Escalation Vulnerability
CVE-2024-38080
cve
Rejetto HTTP File Server Improper Neutralization of Special Elements Used in a Template Engine Vulnerability
CVE-2024-23692
cve
Cisco NX-OS Command Injection Vulnerability
CVE-2024-20399
cve
OSGeo GeoServer JAI-EXT Code Injection Vulnerability
CVE-2022-24816
cve
Linux Kernel Use-After-Free Vulnerability
CVE-2022-2586
cve
Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability
CVE-2020-13965
cve
Android Pixel Privilege Escalation Vulnerability
CVE-2024-32896
cve
Microsoft Windows Error Reporting Service Improper Privilege Management Vulnerability
CVE-2024-26169
cve
Progress Telerik Report Server Authentication Bypass by Spoofing Vulnerability
CVE-2024-4358
cve
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
CVE-2024-4610
cve
PHP-CGI OS Command Injection Vulnerability
CVE-2024-4577
cve
Oracle WebLogic Server OS Command Injection Vulnerability
CVE-2017-3506
cve
Check Point Quantum Security Gateways Information Disclosure Vulnerability
CVE-2024-24919
cve
Linux Kernel Use-After-Free Vulnerability
CVE-2024-1086
cve
Justice AV Solutions (JAVS) Viewer Installer Embedded Malicious Code Vulnerability
CVE-2024-4978
cve
Google Chromium V8 Type Confusion Vulnerability
CVE-2024-5274
cve
Apache Flink Improper Access Control Vulnerability
CVE-2020-17519
cve
NextGen Healthcare Mirth Connect Deserialization of Untrusted Data Vulnerability
CVE-2023-43208
cve
Google Chromium V8 Type Confusion Vulnerability
CVE-2024-4947
cve
D-Link DIR-600 Router Cross-Site Request Forgery (CSRF) Vulnerability
CVE-2014-100005
cve
D-Link DIR-605 Router Information Disclosure Vulnerability
CVE-2021-40655
cve
Google Chromium V8 Out-of-Bounds Memory Write Vulnerability
CVE-2024-4761
cve
Microsoft DWM Core Library Privilege Escalation Vulnerability
CVE-2024-30051
cve
Microsoft Windows MSHTML Platform Security Feature Bypass Vulnerability
CVE-2024-30040
cve
Google Chromium Visuals Use-After-Free Vulnerability
CVE-2024-4671
cve
GitLab Community and Enterprise Editions Improper Access Control Vulnerability
CVE-2023-7028
cve
Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability
CVE-2024-29988
cve
Cisco ASA and FTD Denial of Service Vulnerability
CVE-2024-20353
cve
Cisco ASA and FTD Privilege Escalation Vulnerability
CVE-2024-20359
cve
CrushFTP VFS Sandbox Escape Vulnerability
CVE-2024-4040
cve
Microsoft Windows Print Spooler Privilege Escalation Vulnerability
CVE-2022-38028
cve
Palo Alto Networks PAN-OS Command Injection Vulnerability
CVE-2024-3400
cve
D-Link Multiple NAS Devices Use of Hard-Coded Credentials Vulnerability
CVE-2024-3272
cve
D-Link Multiple NAS Devices Command Injection Vulnerability
CVE-2024-3273
cve
Android Pixel Information Disclosure Vulnerability
CVE-2024-29745
cve
Android Pixel Privilege Escalation Vulnerability
CVE-2024-29748
cve
Microsoft SharePoint Server Code Injection Vulnerability
CVE-2023-24955
cve
Fortinet FortiClient EMS SQL Injection Vulnerability
CVE-2023-48788
cve
Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection Vulnerability
CVE-2021-44529
cve
Nice Linear eMerge E3-Series OS Command Injection Vulnerability
CVE-2019-7256
cve
JetBrains TeamCity Authentication Bypass Vulnerability
CVE-2024-27198
cve
Apple Multiple Products Memory Corruption Vulnerability
CVE-2024-23296
cve
Apple Multiple Products Memory Corruption Vulnerability
CVE-2024-23225
cve
Sunhillo SureLine OS Command Injection Vulnerablity
CVE-2021-36380
cve
Android Pixel Information Disclosure Vulnerability
CVE-2023-21237
cve
Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability
CVE-2024-21338
cve
Microsoft Streaming Service Untrusted Pointer Dereference Vulnerability
CVE-2023-29360
cve
ConnectWise ScreenConnect Authentication Bypass Vulnerability
CVE-2024-1709
cve
Microsoft Exchange Server Privilege Escalation Vulnerability
CVE-2024-21410
cve
Cisco ASA and FTD Information Disclosure Vulnerability
CVE-2020-3259
cve
Microsoft Windows SmartScreen Security Feature Bypass Vulnerability
CVE-2024-21351
cve
Microsoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability
CVE-2024-21412
cve
Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability
CVE-2023-43770
cve
Fortinet FortiOS Out-of-Bound Write Vulnerability
CVE-2024-21762
cve
Google Chromium V8 Type Confusion Vulnerability
CVE-2023-4762
cve
Ivanti Connect Secure, Policy Secure, and Neurons Server-Side Request Forgery (SSRF) Vulnerability
CVE-2024-21893
cve
Apple Multiple Products Memory Corruption Vulnerability
CVE-2022-48618
cve
Atlassian Confluence Data Center and Server Template Injection Vulnerability
CVE-2023-22527
cve
Apple Multiple Products WebKit Type Confusion Vulnerability
CVE-2024-23222
cve
VMware vCenter Server Out-of-Bounds Write Vulnerability
CVE-2023-34048
cve
Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core Authentication Bypass Vulnerability
CVE-2023-35082
cve
Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability
CVE-2023-6548
cve
Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability
CVE-2023-6549
cve
Google Chromium V8 Out-of-Bounds Memory Access Vulnerability
CVE-2024-0519
cve
Laravel Deserialization of Untrusted Data Vulnerability
CVE-2018-15133
cve
Ivanti Connect Secure and Policy Secure Command Injection Vulnerability
CVE-2024-21887
cve
Ivanti Connect Secure and Policy Secure Authentication Bypass Vulnerability
CVE-2023-46805
cve
Microsoft SharePoint Server Privilege Escalation Vulnerability
CVE-2023-29357
cve
Adobe ColdFusion Deserialization of Untrusted Data Vulnerability
CVE-2023-38203
cve
Adobe ColdFusion Deserialization of Untrusted Data Vulnerability
CVE-2023-29300
cve
Apache Superset Insecure Default Initialization of Resource Vulnerability
CVE-2023-27524
cve
Apple Multiple Products Code Execution Vulnerability
CVE-2023-41990
cve
D-Link DSL-2750B Devices Command Injection Vulnerability
CVE-2016-20017
cve
Joomla! Improper Access Control Vulnerability
CVE-2023-23752
cve
Google Chromium WebRTC Heap Buffer Overflow Vulnerability
CVE-2023-7024
cve
Spreadsheet::ParseExcel Remote Code Execution Vulnerability
CVE-2023-7101
cve
QNAP VioStor NVR OS Command Injection Vulnerability
CVE-2023-47565
cve
FXC AE1021, AE1021PE OS Command Injection Vulnerability
CVE-2023-49897
cve
Unitronics Vision PLC and HMI Insecure Default Password Vulnerability
CVE-2023-6448
cve
Qlik Sense HTTP Tunneling Vulnerability
CVE-2023-41265
cve
Qlik Sense Path Traversal Vulnerability
CVE-2023-41266
cve
Qualcomm Multiple Chipsets Use-After-Free Vulnerability
CVE-2022-22071
cve
Qualcomm Multiple Chipsets Use-After-Free Vulnerability
CVE-2023-33063
cve
Qualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability
CVE-2023-33106
cve
Qualcomm Multiple Chipsets Integer Overflow Vulnerability
CVE-2023-33107
cve
Apple Multiple Products WebKit Out-of-Bounds Read Vulnerability
CVE-2023-42916
cve
Apple Multiple Products WebKit Memory Corruption Vulnerability
CVE-2023-42917
cve
ownCloud graphapi Information Disclosure Vulnerability
CVE-2023-49103
cve
Google Skia Integer Overflow Vulnerability
CVE-2023-6345
cve
GNU C Library Buffer Overflow Vulnerability
CVE-2023-4911
cve
Oracle Fusion Middleware Unspecified Vulnerability
CVE-2020-2551
cve
Sophos Web Appliance Command Injection Vulnerability
CVE-2023-1671
cve
Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability
CVE-2023-36584
cve
Microsoft Windows Cloud Files Mini Filter Driver Privilege Escalation Vulnerability
CVE-2023-36036
cve
Microsoft Windows SmartScreen Security Feature Bypass Vulnerability
CVE-2023-36025
cve
Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability
CVE-2023-36033
cve
Juniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability
CVE-2023-36851
cve
Juniper Junos OS EX Series Missing Authentication for Critical Function Vulnerability
CVE-2023-36847
cve
Juniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability
CVE-2023-36846
cve
Juniper Junos OS EX Series and SRX Series PHP External Variable Modification Vulnerability
CVE-2023-36845
cve
Juniper Junos OS EX Series PHP External Variable Modification Vulnerability
CVE-2023-36844
cve
SysAid Server Path Traversal Vulnerability
CVE-2023-47246
cve
Service Location Protocol (SLP) Denial-of-Service Vulnerability
CVE-2023-29552
cve
Atlassian Confluence Data Center and Server Improper Authorization Vulnerability
CVE-2023-22518
cve
Apache ActiveMQ Deserialization of Untrusted Data Vulnerability
CVE-2023-46604
cve
F5 BIG-IP Configuration Utility Authentication Bypass Vulnerability
CVE-2023-46747
cve
F5 BIG-IP Configuration Utility SQL Injection Vulnerability
CVE-2023-46748
cve
Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability
CVE-2023-5631
cve
Cisco IOS XE Web UI Command Injection Vulnerability
CVE-2023-20273
cve
Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability
CVE-2023-4966
cve
Cisco IOS XE Web UI Privilege Escalation Vulnerability
CVE-2023-20198
cve
HTTP/2 Rapid Reset Attack Vulnerability
CVE-2023-44487
cve
Microsoft WordPad Information Disclosure Vulnerability
CVE-2023-36563
cve
Microsoft Skype for Business Privilege Escalation Vulnerability
CVE-2023-41763
cve
Cisco IOS and IOS XE Group Encrypted Transport VPN Out-of-Bounds Write Vulnerability
CVE-2023-20109
cve
Adobe Acrobat and Reader Use-After-Free Vulnerability
CVE-2023-21608
cve
Apple iOS and iPadOS Kernel Privilege Escalation Vulnerability
CVE-2023-42824
cve
Progress WS_FTP Server Deserialization of Untrusted Data Vulnerability
CVE-2023-40044
cve
Atlassian Confluence Data Center and Server Broken Access Control Vulnerability
CVE-2023-22515
cve
Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability
CVE-2023-28229
cve
JetBrains TeamCity Authentication Bypass Vulnerability
CVE-2023-42793
cve
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
CVE-2023-4211
cve
Google Chromium libvpx Heap Buffer Overflow Vulnerability
CVE-2023-5217
cve
Red Hat JBoss RichFaces Framework Expression Language Injection Vulnerability
CVE-2018-14667
cve
Apple Multiple Products WebKit Code Execution Vulnerability
CVE-2023-41993
cve
Apple Multiple Products Kernel Privilege Escalation Vulnerability
CVE-2023-41992
cve
Apple Multiple Products Improper Certificate Validation Vulnerability
CVE-2023-41991
cve
Trend Micro Apex One and Worry-Free Business Security Remote Code Execution Vulnerability
CVE-2023-41179
cve
MinIO Security Feature Bypass Vulnerability
CVE-2023-28434
cve
Laravel Ignition File Upload Vulnerability
CVE-2021-3129
cve
Zyxel EMG2926 Routers Command Injection Vulnerability
CVE-2017-6884
cve
Realtek SDK Improper Input Validation Vulnerability
CVE-2014-8361
cve
Samsung Mobile Devices Use-After-Free Vulnerability
CVE-2022-22265
cve
Adobe Acrobat and Reader Out-of-Bounds Write Vulnerability
CVE-2023-26369
cve
Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
CVE-2023-4863
cve
Cisco Adaptive Security Appliance and Firepower Threat Defense Unauthorized Access Vulnerability
CVE-2023-20269
cve
Android Framework Privilege Escalation Vulnerability
CVE-2023-35674
cve
Microsoft Streaming Service Proxy Privilege Escalation Vulnerability
CVE-2023-36802
cve
Microsoft Word Information Disclosure Vulnerability
CVE-2023-36761
cve
Apple iOS, iPadOS, and watchOS Wallet Code Execution Vulnerability
CVE-2023-41061
cve
Apple iOS, iPadOS, and macOS ImageIO Buffer Overflow Vulnerability
CVE-2023-41064
cve
Apache RocketMQ Command Execution Vulnerability
CVE-2023-33246
cve
Ignite Realtime Openfire Path Traversal Vulnerability
CVE-2023-32315
cve
RARLAB WinRAR Code Execution Vulnerability
CVE-2023-38831
cve
Veeam Backup & Replication Cloud Connect Missing Authentication for Critical Function Vulnerability
CVE-2023-27532
cve
Ivanti Sentry Authentication Bypass Vulnerability
CVE-2023-38035
cve
Adobe ColdFusion Deserialization of Untrusted Data Vulnerability
CVE-2023-26359
cve
Citrix Content Collaboration ShareFile Improper Access Control Vulnerability
CVE-2023-24489
cve
Microsoft .NET Core and Visual Studio Denial-of-Service Vulnerability
CVE-2023-38180
cve
Zyxel P660HN-T1A Routers Command Injection Vulnerability
CVE-2017-18368
cve
Ivanti Endpoint Manager Mobile (EPMM) Path Traversal Vulnerability
CVE-2023-35081
cve
Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability
CVE-2023-37580
cve
Apple Multiple Products Kernel Unspecified Vulnerability
CVE-2023-38606
cve
Ivanti Endpoint Manager Mobile Authentication Bypass Vulnerability
CVE-2023-35078
cve
Adobe ColdFusion Improper Access Control Vulnerability
CVE-2023-38205
cve
Adobe ColdFusion Improper Access Control Vulnerability
CVE-2023-29298
cve
Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability
CVE-2023-3519
cve
Microsoft Windows Search Remote Code Execution Vulnerability
CVE-2023-36884
cve
Apple Multiple Products WebKit Code Execution Vulnerability
CVE-2023-37450
cve
SolarView Compact Command Injection Vulnerability
CVE-2022-29303
cve
Netwrix Auditor Insecure Object Deserialization Vulnerability
CVE-2022-31199
cve
Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability
CVE-2023-36874
cve
Microsoft Outlook Security Feature Bypass Vulnerability
CVE-2023-35311
cve
Microsoft Windows Defender SmartScreen Security Feature Bypass Vulnerability
CVE-2023-32049
cve
Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability
CVE-2023-32046
cve
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
CVE-2021-29256
cve
Samsung Mobile Devices Improper Boundary Check Vulnerability
CVE-2021-25372
cve
Samsung Mobile Devices Unspecified Vulnerability
CVE-2021-25371
cve
Samsung Mobile Devices Race Condition Vulnerability
CVE-2021-25395
cve
Samsung Mobile Devices Race Condition Vulnerability
CVE-2021-25394
cve
Samsung Mobile Devices Improper Input Validation Vulnerability
CVE-2021-25489
cve
Samsung Mobile Devices Out-of-Bounds Read Vulnerability
CVE-2021-25487
cve
D-Link DWL-2600AP Access Point Command Injection Vulnerability
CVE-2019-20500
cve
D-Link DIR-859 Router Command Execution Vulnerability
CVE-2019-17621
cve
Zyxel Multiple NAS Devices Command Injection Vulnerability
CVE-2023-27992
cve
VMware Tools Authentication Bypass Vulnerability
CVE-2023-20867
cve
Apple Multiple Products WebKit Type Confusion Vulnerability
CVE-2023-32439
cve
Apple Multiple Products WebKit Memory Corruption Vulnerability
CVE-2023-32435
cve
Apple Multiple Products Integer Overflow Vulnerability
CVE-2023-32434
cve
Microsoft Win32k Privilege Escalation Vulnerability
CVE-2016-0165
cve
Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free Vulnerability
CVE-2016-9079
cve
Roundcube Webmail SQL Injection Vulnerability
CVE-2021-44026
cve
Roundcube Webmail Remote Code Execution Vulnerability
CVE-2020-12641
cve
Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability
CVE-2020-35730
cve
Vmware Aria Operations for Networks Command Injection Vulnerability
CVE-2023-20887
cve
Fortinet FortiOS and FortiProxy SSL-VPN Heap-Based Buffer Overflow Vulnerability
CVE-2023-27997
cve
Google Chromium V8 Type Confusion Vulnerability
CVE-2023-3079
cve
Zyxel Multiple Firewalls Buffer Overflow Vulnerability
CVE-2023-33010
cve
Zyxel Multiple Firewalls Buffer Overflow Vulnerability
CVE-2023-33009
cve
Progress MOVEit Transfer SQL Injection Vulnerability
CVE-2023-34362
cve
Zyxel Multiple Firewalls OS Command Injection Vulnerability
CVE-2023-28771
cve
Barracuda Networks ESG Appliance Improper Input Validation Vulnerability
CVE-2023-2868
cve
Apple Multiple Products WebKit Use-After-Free Vulnerability
CVE-2023-32373
cve
Apple Multiple Products WebKit Out-of-Bounds Read Vulnerability
CVE-2023-28204
cve
Apple Multiple Products WebKit Sandbox Escape Vulnerability
CVE-2023-32409
cve
Samsung Mobile Devices Insertion of Sensitive Information Into Log File Vulnerability
CVE-2023-21492
cve
Cisco IOS, IOS XR, and IOS XE IKEv1 Information Disclosure Vulnerability
CVE-2016-6415
cve
Cisco IOS Denial-of-Service Vulnerability
CVE-2004-1464
cve
Apache Tomcat Remote Code Execution Vulnerability
CVE-2016-8735
cve
Oracle Java SE and JRockit Unspecified Vulnerability
CVE-2016-3427
cve
Jenkins User Interface (UI) Information Disclosure Vulnerability
CVE-2015-5317
cve
Linux Kernel Improper Input Validation Vulnerability
CVE-2010-3904
cve
Linux Kernel Race Condition Vulnerability
CVE-2014-0196
cve
Red Hat Polkit Incorrect Authorization Vulnerability
CVE-2021-3560
cve
Multiple Ruckus Wireless Products CSRF and RCE Vulnerability
CVE-2023-25717
cve
Microsoft Win32K Privilege Escalation Vulnerability
CVE-2023-29336
cve
Oracle WebLogic Server Unspecified Vulnerability
CVE-2023-21839
cve
Apache Log4j2 Deserialization of Untrusted Data Vulnerability
CVE-2021-45046
cve
TP-Link Archer AX-21 Command Injection Vulnerability
CVE-2023-1389
cve
Google Chrome Skia Integer Overflow Vulnerability
CVE-2023-2136
cve
PaperCut MF/NG Improper Access Control Vulnerability
CVE-2023-27350
cve
MinIO Information Disclosure Vulnerability
CVE-2023-28432
cve
Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability
CVE-2017-6742
cve
Google Chromium V8 Type Confusion Vulnerability
CVE-2023-2033
cve
Apple macOS Use-After-Free Vulnerability
CVE-2019-8526
cve
Novi Survey Insecure Deserialization Vulnerability
CVE-2023-29492
cve
Android Framework Privilege Escalation Vulnerability
CVE-2023-20963
cve
Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability
CVE-2023-28252
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin