🛡️ CVE Intelligence Center

Common Vulnerabilities & Exposures — Security Intelligence Database

CVE ID	Severity	CVSS	Description	Status	Published
CVE-2025-23209	Critical	9.0	Craft CMS Code Injection Vulnerability — Craft CMS contains a code injection vulnerability caused by improper validation…	⚡ Exploit ✅ Patch	Feb 20, 2025
CVE-2025-0111	Critical	9.0	Palo Alto Networks PAN-OS File Read Vulnerability — Palo Alto Networks PAN-OS contains an external control of file name …	⚡ Exploit ✅ Patch	Feb 20, 2025
CVE-2025-0108	Critical	9.0	Palo Alto Networks PAN-OS Authentication Bypass Vulnerability — Palo Alto Networks PAN-OS contains an authentication byp…	⚡ Exploit ✅ Patch	Feb 18, 2025
CVE-2024-53704	Critical	9.0	SonicWall SonicOS SSLVPN Improper Authentication Vulnerability — SonicWall SonicOS contains an improper authentication v…	⚡ Exploit ✅ Patch	Feb 18, 2025
CVE-2024-57727	Critical	9.0	SimpleHelp Path Traversal Vulnerability — SimpleHelp remote support software contains multiple path traversal vulnerabil…	⚡ Exploit ✅ Patch	Feb 13, 2025
CVE-2025-24200	Critical	9.0	Apple iOS and iPadOS Incorrect Authorization Vulnerability — Apple iOS and iPadOS contains an incorrect authorization vu…	⚡ Exploit ✅ Patch	Feb 12, 2025
CVE-2024-41710	Critical	9.0	Mitel SIP Phones Argument Injection Vulnerability — Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, includi…	⚡ Exploit ✅ Patch	Feb 12, 2025
CVE-2025-21391	Critical	9.0	Microsoft Windows Storage Link Following Vulnerability — Microsoft Windows Storage contains a link following vulnerabili…	⚡ Exploit ✅ Patch	Feb 11, 2025
CVE-2025-21418	Critical	9.0	Microsoft Windows Ancillary Function Driver for WinSock Heap-Based Buffer Overflow Vulnerability — Microsoft Windows Anc…	⚡ Exploit ✅ Patch	Feb 11, 2025
CVE-2024-40890	Critical	9.0	Zyxel DSL CPE OS Command Injection Vulnerability — Multiple Zyxel DSL CPE devices contain a post-authentication command …	⚡ Exploit ✅ Patch	Feb 11, 2025
CVE-2024-40891	Critical	9.0	Zyxel DSL CPE OS Command Injection Vulnerability — Multiple Zyxel DSL CPE devices contain a post-authentication command …	⚡ Exploit ✅ Patch	Feb 11, 2025
CVE-2025-0994	Critical	9.0	Trimble Cityworks Deserialization Vulnerability — Trimble Cityworks contains a deserialization vulnerability. This could…	⚡ Exploit ✅ Patch	Feb 7, 2025
CVE-2025-0411	Critical	9.0	7-Zip Mark of the Web Bypass Vulnerability — 7-Zip contains a protection mechanism failure vulnerability that allows rem…	⚡ Exploit ✅ Patch	Feb 6, 2025
CVE-2024-21413	Critical	9.0	Microsoft Outlook Improper Input Validation Vulnerability — Microsoft Outlook contains an improper input validation vuln…	⚡ Exploit ✅ Patch	Feb 6, 2025
CVE-2022-23748	Critical	9.0	Dante Discovery Process Control Vulnerability — Dante Discovery contains a process control vulnerability in mDNSResponde…	⚡ Exploit ✅ Patch	Feb 6, 2025
CVE-2020-29574	Critical	9.0	CyberoamOS (CROS) SQL Injection Vulnerability — CyberoamOS (CROS) contains a SQL injection vulnerability in the WebAdmin…	⚡ Exploit ✅ Patch	Feb 6, 2025
CVE-2020-15069	Critical	9.0	Sophos XG Firewall Buffer Overflow Vulnerability — Sophos XG Firewall contains a buffer overflow vulnerability that allo…	⚡ Exploit ✅ Patch	Feb 6, 2025
CVE-2024-53104	Critical	9.0	Linux Kernel Out-of-Bounds Write Vulnerability — Linux kernel contains an out-of-bounds write vulnerability in the uvc_p…	⚡ Exploit ✅ Patch	Feb 5, 2025
CVE-2018-19410	Critical	9.0	Paessler PRTG Network Monitor Local File Inclusion Vulnerability — Paessler PRTG Network Monitor contains a local file i…	⚡ Exploit ✅ Patch	Feb 4, 2025
CVE-2018-9276	Critical	9.0	Paessler PRTG Network Monitor OS Command Injection Vulnerability — Paessler PRTG Network Monitor contains an OS command …	⚡ Exploit ✅ Patch	Feb 4, 2025

← Prev 1…17 18 19 20 21…82 Next →

🛡️ CVE Intelligence Center

Introduce Yourself

Sign In Required