🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2017-17562 | Critical | 9.0 |
Embedthis GoAhead Remote Code Execution Vulnerability — Embedthis GoAhead before 3.6.5 allows remote code execution if C…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2019-0193 | Critical | 9.0 |
Apache Solr DataImportHandler Code Injection Vulnerability — The optional Apache Solr module DataImportHandler contains …
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2019-10758 | Critical | 9.0 |
MongoDB mongo-express Remote Code Execution Vulnerability — mongo-express before 0.54.0 is vulnerable to Remote Code Exe…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2019-13272 | Critical | 9.0 |
Linux Kernel Improper Privilege Management Vulnerability — Kernel/ptrace.c in Linux kernel mishandles contains an improp…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2019-7238 | Critical | 9.0 |
Sonatype Nexus Repository Manager Incorrect Access Control Vulnerability — Sonatype Nexus Repository Manager before 3.15…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2020-17463 | Critical | 9.0 |
Fuel CMS SQL Injection Vulnerability — FUEL CMS 1.4.7 allows SQL Injection via the col parameter to /pages/items, /permi…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2020-8816 | Critical | 9.0 |
Pi-Hole AdminLTE Remote Code Execution Vulnerability — Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2021-35394 | Critical | 9.0 |
Realtek Jungle SDK Remote Code Execution Vulnerability — RealTek Jungle SDK contains multiple memory corruption vulnerab…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2021-44168 | Critical | 9.0 |
Fortinet FortiOS Arbitrary File Download — Fortinet FortiOS "execute restore src-vis" downloads code without integrity c…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2021-44228 | Critical | 9.0 |
Apache Log4j2 Remote Code Execution Vulnerability — Apache Log4j2 contains a vulnerability where JNDI features do not pr…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2021-44515 | Critical | 9.0 |
Zoho Desktop Central Authentication Bypass Vulnerability — Zoho Desktop Central contains an authentication bypass vulner…
|
⚡ Exploit ✅ Patch | Dec 10, 2021 |
| CVE-2018-14847 | Critical | 9.0 |
MikroTik Router OS Directory Traversal Vulnerability — MikroTik RouterOS through 6.42 allows unauthenticated remote atta…
|
⚡ Exploit ✅ Patch | Dec 1, 2021 |
| CVE-2020-11261 | Critical | 9.0 |
Qualcomm Multiple Chipsets Improper Input Validation Vulnerability — Memory corruption due to improper check to return e…
|
⚡ Exploit ✅ Patch | Dec 1, 2021 |
| CVE-2021-37415 | Critical | 9.0 |
Zoho ManageEngine ServiceDesk Authentication Bypass Vulnerability — Zoho ManageEngine ServiceDesk Plus before 11302 is v…
|
⚡ Exploit ✅ Patch | Dec 1, 2021 |
| CVE-2021-40438 | Critical | 9.0 |
Apache HTTP Server-Side Request Forgery (SSRF) — A crafted request uri-path can cause mod_proxy to forward the request t…
|
⚡ Exploit ✅ Patch | Dec 1, 2021 |
| CVE-2021-44077 | Critical | 9.0 |
Zoho ManageEngine ServiceDesk Plus Remote Code Execution Vulnerability — Zoho ManageEngine ServiceDesk Plus before 11306…
|
⚡ Exploit ✅ Patch | Dec 1, 2021 |
| CVE-2021-22204 | Critical | 9.0 |
ExifTool Remote Code Execution Vulnerability — Improper neutralization of user data in the DjVu file format in Exiftool …
|
⚡ Exploit ✅ Patch | Nov 17, 2021 |
| CVE-2021-40449 | Critical | 9.0 |
Microsoft Windows Win32k Privilege Escalation Vulnerability — Unspecified vulnerability allows for an authenticated user…
|
⚡ Exploit ✅ Patch | Nov 17, 2021 |
| CVE-2021-42292 | Critical | 9.0 |
Microsoft Excel Security Feature Bypass — A security feature bypass vulnerability in Microsoft Excel would allow a local…
|
⚡ Exploit ✅ Patch | Nov 17, 2021 |
| CVE-2021-42321 | Critical | 9.0 |
Microsoft Exchange Server Remote Code Execution Vulnerability — An authenticated attacker could leverage improper valida…
|
⚡ Exploit ✅ Patch | Nov 17, 2021 |