🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2024-38107 | Critical | 9.0 |
Microsoft Windows Power Dependency Coordinator Privilege Escalation Vulnerability — Microsoft Windows Power Dependency C…
|
⚡ Exploit ✅ Patch | Aug 13, 2024 |
| CVE-2024-32113 | Critical | 9.0 |
Apache OFBiz Path Traversal Vulnerability — Apache OFBiz contains a path traversal vulnerability that could allow for re…
|
⚡ Exploit ✅ Patch | Aug 7, 2024 |
| CVE-2024-36971 | Critical | 9.0 |
Android Kernel Remote Code Execution Vulnerability — Android contains an unspecified vulnerability in the kernel that al…
|
⚡ Exploit ✅ Patch | Aug 7, 2024 |
| CVE-2018-0824 | Critical | 9.0 |
Microsoft COM for Windows Deserialization of Untrusted Data Vulnerability — Microsoft COM for Windows contains a deseria…
|
⚡ Exploit ✅ Patch | Aug 5, 2024 |
| CVE-2024-37085 | Critical | 9.0 |
VMware ESXi Authentication Bypass Vulnerability — VMware ESXi contains an authentication bypass vulnerability. A malicio…
|
⚡ Exploit ✅ Patch | Jul 30, 2024 |
| CVE-2024-5217 | Critical | 9.0 |
ServiceNow Incomplete List of Disallowed Inputs Vulnerability — ServiceNow Washington DC, Vancouver, and earlier Now Pla…
|
⚡ Exploit ✅ Patch | Jul 29, 2024 |
| CVE-2023-45249 | Critical | 9.0 |
Acronis Cyber Infrastructure (ACI) Insecure Default Password Vulnerability — Acronis Cyber Infrastructure (ACI) allows a…
|
⚡ Exploit ✅ Patch | Jul 29, 2024 |
| CVE-2024-4879 | Critical | 9.0 |
ServiceNow Improper Input Validation Vulnerability — ServiceNow Utah, Vancouver, and Washington DC Now Platform releases…
|
⚡ Exploit ✅ Patch | Jul 29, 2024 |
| CVE-2024-39891 | Critical | 9.0 |
Twilio Authy Information Disclosure Vulnerability — Twilio Authy contains an information disclosure vulnerability in its…
|
⚡ Exploit ✅ Patch | Jul 23, 2024 |
| CVE-2012-4792 | Critical | 9.0 |
Microsoft Internet Explorer Use-After-Free Vulnerability — Microsoft Internet Explorer contains a use-after-free vulnera…
|
⚡ Exploit ✅ Patch | Jul 23, 2024 |
| CVE-2022-22948 | Critical | 9.0 |
VMware vCenter Server Incorrect Default File Permissions Vulnerability — VMware vCenter Server contains an incorrect de…
|
⚡ Exploit ✅ Patch | Jul 17, 2024 |
| CVE-2024-34102 | Critical | 9.0 |
Adobe Commerce and Magento Open Source Improper Restriction of XML External Entity Reference (XXE) Vulnerability — Adobe…
|
⚡ Exploit ✅ Patch | Jul 17, 2024 |
| CVE-2024-28995 | Critical | 9.0 |
SolarWinds Serv-U Path Traversal Vulnerability — SolarWinds Serv-U contains a path traversal vulnerability that allows …
|
⚡ Exploit ✅ Patch | Jul 17, 2024 |
| CVE-2024-36401 | Critical | 9.0 |
OSGeo GeoServer GeoTools Eval Injection Vulnerability — OSGeo GeoServer GeoTools contains an improper neutralization of …
|
⚡ Exploit ✅ Patch | Jul 15, 2024 |
| CVE-2024-38112 | Critical | 9.0 |
Microsoft Windows MSHTML Platform Spoofing Vulnerability — Microsoft Windows MSHTML Platform contains a spoofing vulnera…
|
⚡ Exploit ✅ Patch | Jul 9, 2024 |
| CVE-2024-38080 | Critical | 9.0 |
Microsoft Windows Hyper-V Privilege Escalation Vulnerability — Microsoft Windows Hyper-V contains a privilege escalation…
|
⚡ Exploit ✅ Patch | Jul 9, 2024 |
| CVE-2024-23692 | Critical | 9.0 |
Rejetto HTTP File Server Improper Neutralization of Special Elements Used in a Template Engine Vulnerability — Rejetto H…
|
⚡ Exploit ✅ Patch | Jul 9, 2024 |
| CVE-2024-20399 | Critical | 9.0 |
Cisco NX-OS Command Injection Vulnerability — Cisco NX-OS contains a command injection vulnerability in the command line…
|
⚡ Exploit ✅ Patch | Jul 2, 2024 |
| CVE-2020-13965 | Critical | 9.0 |
Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability — Roundcube Webmail contains a cross-site scripting (XSS) vul…
|
⚡ Exploit ✅ Patch | Jun 26, 2024 |
| CVE-2022-2586 | Critical | 9.0 |
Linux Kernel Use-After-Free Vulnerability — Linux Kernel contains a use-after-free vulnerability in the nft_object, allo…
|
⚡ Exploit ✅ Patch | Jun 26, 2024 |