🛡️ CVE Intelligence Center

Common Vulnerabilities & Exposures — Security Intelligence Database

CVE ID	Severity	CVSS	Description	Status	Published
CVE-2024-28987	Critical	9.0	SolarWinds Web Help Desk Hardcoded Credential Vulnerability — SolarWinds Web Help Desk contains a hardcoded credential v…	⚡ Exploit ✅ Patch	Oct 15, 2024
CVE-2024-9680	Critical	9.0	Mozilla Firefox Use-After-Free Vulnerability — Mozilla Firefox and Firefox ESR contain a use-after-free vulnerability in…	⚡ Exploit ✅ Patch	Oct 15, 2024
CVE-2024-30088	Critical	9.0	Microsoft Windows Kernel TOCTOU Race Condition Vulnerability — Microsoft Windows Kernel contains a time-of-check to time…	⚡ Exploit ✅ Patch	Oct 15, 2024
CVE-2024-23113	Critical	9.0	Fortinet Multiple Products Format String Vulnerability — Fortinet FortiOS, FortiPAM, FortiProxy, and FortiWeb contain a …	⚡ Exploit ✅ Patch	Oct 9, 2024
CVE-2024-9380	Critical	9.0	Ivanti Cloud Services Appliance (CSA) OS Command Injection Vulnerability — Ivanti Cloud Services Appliance (CSA) contain…	⚡ Exploit ✅ Patch	Oct 9, 2024
CVE-2024-9379	Critical	9.0	Ivanti Cloud Services Appliance (CSA) SQL Injection Vulnerability — Ivanti Cloud Services Appliance (CSA) contains a SQL…	⚡ Exploit ✅ Patch	Oct 9, 2024
CVE-2024-43572	Critical	9.0	Microsoft Windows Management Console Remote Code Execution Vulnerability — Microsoft Windows Management Console contains…	⚡ Exploit ✅ Patch	Oct 8, 2024
CVE-2024-43047	Critical	9.0	Qualcomm Multiple Chipsets Use-After-Free Vulnerability — Multiple Qualcomm chipsets contain a use-after-free vulnerabil…	⚡ Exploit ✅ Patch	Oct 8, 2024
CVE-2024-43573	Critical	9.0	Microsoft Windows MSHTML Platform Spoofing Vulnerability — Microsoft Windows MSHTML Platform contains an unspecified spo…	⚡ Exploit ✅ Patch	Oct 8, 2024
CVE-2024-45519	Critical	9.0	Synacor Zimbra Collaboration Suite (ZCS) Command Execution Vulnerability — Synacor Zimbra Collaboration Suite (ZCS) cont…	⚡ Exploit ✅ Patch	Oct 3, 2024
CVE-2024-29824	Critical	9.0	Ivanti Endpoint Manager (EPM) SQL Injection Vulnerability — Ivanti Endpoint Manager (EPM) contains a SQL injection vulne…	⚡ Exploit ✅ Patch	Oct 2, 2024
CVE-2020-15415	Critical	9.0	DrayTek Multiple Vigor Routers OS Command Injection Vulnerability — DrayTek Vigor3900, Vigor2960, and Vigor300B devices …	⚡ Exploit ✅ Patch	Sep 30, 2024
CVE-2023-25280	Critical	9.0	D-Link DIR-820 Router OS Command Injection Vulnerability — D-Link DIR-820 routers contain an OS command injection vulner…	⚡ Exploit ✅ Patch	Sep 30, 2024
CVE-2019-0344	Critical	9.0	SAP Commerce Cloud Deserialization of Untrusted Data Vulnerability — SAP Commerce Cloud (formerly known as Hybris) conta…	⚡ Exploit ✅ Patch	Sep 30, 2024
CVE-2024-7593	Critical	9.0	Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability — Ivanti Virtual Traffic Manager contains an authenti…	⚡ Exploit ✅ Patch	Sep 24, 2024
CVE-2024-8963	Critical	9.0	Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability — Ivanti Cloud Services Appliance (CSA) contains a pa…	⚡ Exploit ✅ Patch	Sep 19, 2024
CVE-2022-21445	Critical	9.0	Oracle ADF Faces Deserialization of Untrusted Data Vulnerability — Oracle ADF Faces library, included with Oracle JDevel…	⚡ Exploit ✅ Patch	Sep 18, 2024
CVE-2020-0618	Critical	9.0	Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability — Microsoft SQL Server Reporting Services co…	⚡ Exploit ✅ Patch	Sep 18, 2024
CVE-2024-27348	Critical	9.0	Apache HugeGraph-Server Improper Access Control Vulnerability — Apache HugeGraph-Server contains an improper access cont…	⚡ Exploit ✅ Patch	Sep 18, 2024
CVE-2020-14644	Critical	9.0	Oracle WebLogic Server Remote Code Execution Vulnerability — Oracle WebLogic Server, a product within the Fusion Middlew…	⚡ Exploit ✅ Patch	Sep 18, 2024

← Prev 1…21 22 23 24 25…80 Next →

🛡️ CVE Intelligence Center

Introduce Yourself

Sign In Required