🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2021-20038 | حرج | 9.0 |
SonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability — SonicWall SMA 100 devies are vulnerable to an u…
|
⚡ Exploit ✅ Patch | يناير 28, 2022 |
| CVE-2022-22587 | حرج | 9.0 |
Apple Memory Corruption Vulnerability — Apple IOMobileFrameBuffer contains a memory corruption vulnerability which can a…
|
⚡ Exploit ✅ Patch | يناير 28, 2022 |
| CVE-2006-1547 | حرج | 9.0 |
Apache Struts 1 ActionForm Denial-of-Service Vulnerability — ActionForm in Apache Struts versions before 1.2.9 with Bean…
|
⚡ Exploit ✅ Patch | يناير 21, 2022 |
| CVE-2012-0391 | حرج | 9.0 |
Apache Struts 2 Improper Input Validation Vulnerability — The ExceptionDelegator component in Apache Struts 2 before 2.2…
|
⚡ Exploit ✅ Patch | يناير 21, 2022 |
| CVE-2018-8453 | حرج | 9.0 |
Microsoft Win32k Privilege Escalation Vulnerability — Microsoft Windows Win32k contains a vulnerability that allows an a…
|
⚡ Exploit ✅ Patch | يناير 21, 2022 |
| CVE-2021-35247 | حرج | 9.0 |
SolarWinds Serv-U Improper Input Validation Vulnerability — SolarWinds Serv-U versions 15.2.5 and earlier contain an imp…
|
⚡ Exploit ✅ Patch | يناير 21, 2022 |
| CVE-2020-11978 | حرج | 9.0 |
Apache Airflow Command Injection — A remote code/command injection vulnerability was discovered in one of the example DA…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2020-13671 | حرج | 9.0 |
Drupal core Un-restricted Upload of File — Improper sanitization in the extension file names is present in Drupal core.…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2020-13927 | حرج | 9.0 |
Apache Airflow's Experimental API Authentication Bypass — The previous default setting for Airflow's Experimental API wa…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2020-14864 | حرج | 9.0 |
Oracle Business Intelligence Enterprise Edition Path Transversal — Path traversal vulnerability, where an attacker can t…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2021-21315 | حرج | 9.0 |
System Information Library for Node.JS Command Injection — In this vulnerability, an attacker can send a malicious paylo…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2021-21975 | حرج | 9.0 |
VMware Server Side Request Forgery in vRealize Operations Manager API — Server Side Request Forgery (SSRF) in vRealize O…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2021-22991 | حرج | 9.0 |
F5 BIG-IP Traffic Management Microkernel Buffer Overflow — The Traffic Management Microkernel of BIG-IP ASM Risk Engine …
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2021-25296 | حرج | 9.0 |
Nagios XI OS Command Injection — Nagios XI contains a vulnerability which can lead to OS command injection on the Nagios…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2021-25297 | حرج | 9.0 |
Nagios XI OS Command Injection — Nagios XI contains a vulnerability which can lead to OS command injection on the Nagios…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2021-25298 | حرج | 9.0 |
Nagios XI OS Command Injection — Nagios XI contains a vulnerability which can lead to OS command injection on the Nagios…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2021-32648 | حرج | 9.0 |
October CMS Improper Authentication — In affected versions of the october/system package an attacker can request an acco…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2021-33766 | حرج | 9.0 |
Microsoft Exchange Server Information Disclosure — Microsoft Exchange Server contains an information disclosure vulnerab…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2021-40870 | حرج | 9.0 |
Aviatrix Controller Unrestricted Upload of File — Unrestricted upload of a file with a dangerous type is possible, which…
|
⚡ Exploit ✅ Patch | يناير 18, 2022 |
| CVE-2013-3900 | حرج | 9.0 |
Microsoft WinVerifyTrust function Remote Code Execution — A remote code execution vulnerability exists in the way that t…
|
⚡ Exploit ✅ Patch | يناير 10, 2022 |