1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

Showing 1,619 of 1,619 · page 11 of 33

CVEVendor / ProductTitleKEV addedEPSS
CVE-2024-4610Arm / Mali GPU Kernel DriverArm Mali GPU Kernel Driver Use-After-Free Vulnerability2024-06-12
0.8%
CVE-2017-3506Oracle / WebLogic ServerOracle WebLogic Server OS Command Injection Vulnerability2024-06-03
96.0%
CVE-2024-1086Linux / KernelLinux Kernel Use-After-Free Vulnerability2024-05-30
23.6%
CVE-2024-24919Check Point / Quantum Security GatewaysCheck Point Quantum Security Gateways Information Disclosure Vulnerability2024-05-30
100.0%
CVE-2024-4978Justice AV Solutions / Viewer Justice AV Solutions (JAVS) Viewer Installer Embedded Malicious Code Vulnerab…2024-05-29
26.9%
CVE-2024-5274Google / Chromium V8Google Chromium V8 Type Confusion Vulnerability2024-05-28
10.0%
CVE-2020-17519Apache / FlinkApache Flink Improper Access Control Vulnerability2024-05-23
97.9%
CVE-2023-43208NextGen Healthcare / Mirth ConnectNextGen Healthcare Mirth Connect Deserialization of Untrusted Data Vulnerability2024-05-20
82.7%
CVE-2024-4947Google / Chromium V8Google Chromium V8 Type Confusion Vulnerability2024-05-20
15.1%
CVE-2014-100005D-Link / DIR-600 RouterD-Link DIR-600 Router Cross-Site Request Forgery (CSRF) Vulnerability2024-05-16
42.4%
CVE-2021-40655D-Link / DIR-605 RouterD-Link DIR-605 Router Information Disclosure Vulnerability2024-05-16
87.0%
CVE-2024-4761Google / Chromium V8Google Chromium V8 Out-of-Bounds Memory Write Vulnerability2024-05-16
11.0%
CVE-2024-30040Microsoft / WindowsMicrosoft Windows MSHTML Platform Security Feature Bypass Vulnerability2024-05-14
3.9%
CVE-2024-30051Microsoft / DWM Core Library Microsoft DWM Core Library Privilege Escalation Vulnerability2024-05-14
5.7%
CVE-2024-4671Google / ChromiumGoogle Chromium Visuals Use-After-Free Vulnerability2024-05-13
8.3%
CVE-2023-7028GitLab / GitLab CE/EEGitLab Community and Enterprise Editions Improper Access Control Vulnerability2024-05-01
95.0%
CVE-2024-29988Microsoft / SmartScreen PromptMicrosoft SmartScreen Prompt Security Feature Bypass Vulnerability2024-04-30
45.2%
CVE-2024-20353Cisco / Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)Cisco ASA and FTD Denial of Service Vulnerability2024-04-24
63.3%
CVE-2024-20359Cisco / Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)Cisco ASA and FTD Privilege Escalation Vulnerability2024-04-24
16.9%
CVE-2024-4040CrushFTP / CrushFTPCrushFTP VFS Sandbox Escape Vulnerability2024-04-24
99.5%
CVE-2022-38028Microsoft / WindowsMicrosoft Windows Print Spooler Privilege Escalation Vulnerability 2024-04-23
14.9%
CVE-2024-3400Palo Alto Networks / PAN-OSPalo Alto Networks PAN-OS Command Injection Vulnerability2024-04-12
100.0%
CVE-2024-3272D-Link / Multiple NAS DevicesD-Link Multiple NAS Devices Use of Hard-Coded Credentials Vulnerability2024-04-11
98.0%
CVE-2024-3273D-Link / Multiple NAS DevicesD-Link Multiple NAS Devices Command Injection Vulnerability2024-04-11
100.0%
CVE-2024-29745Android / PixelAndroid Pixel Information Disclosure Vulnerability2024-04-04
0.5%
CVE-2024-29748Android / PixelAndroid Pixel Privilege Escalation Vulnerability2024-04-04
0.7%
CVE-2023-24955Microsoft / SharePoint ServerMicrosoft SharePoint Server Code Injection Vulnerability2024-03-26
85.4%
CVE-2019-7256Nice / Linear eMerge E3-SeriesNice Linear eMerge E3-Series OS Command Injection Vulnerability2024-03-25
97.1%
CVE-2021-44529Ivanti / Endpoint Manager Cloud Service Appliance (EPM CSA)Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection Vuln…2024-03-25
99.1%
CVE-2023-48788Fortinet / FortiClient EMSFortinet FortiClient EMS SQL Injection Vulnerability2024-03-25
98.5%
CVE-2024-27198JetBrains / TeamCityJetBrains TeamCity Authentication Bypass Vulnerability2024-03-07
99.9%
CVE-2024-23225Apple / Multiple ProductsApple Multiple Products Memory Corruption Vulnerability2024-03-06
1.5%
CVE-2024-23296Apple / Multiple ProductsApple Multiple Products Memory Corruption Vulnerability2024-03-06
1.4%
CVE-2021-36380Sunhillo / SureLineSunhillo SureLine OS Command Injection Vulnerablity2024-03-05
97.6%
CVE-2023-21237Android / PixelAndroid Pixel Information Disclosure Vulnerability 2024-03-05
0.3%
CVE-2024-21338Microsoft / WindowsMicrosoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulne…2024-03-04
51.9%
CVE-2023-29360Microsoft / Streaming ServiceMicrosoft Streaming Service Untrusted Pointer Dereference Vulnerability2024-02-29
22.1%
CVE-2024-1709ConnectWise / ScreenConnectConnectWise ScreenConnect Authentication Bypass Vulnerability2024-02-22
100.0%
CVE-2020-3259Cisco / Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)Cisco ASA and FTD Information Disclosure Vulnerability2024-02-15
71.8%
CVE-2024-21410Microsoft / Exchange ServerMicrosoft Exchange Server Privilege Escalation Vulnerability2024-02-15
12.7%
CVE-2024-21351Microsoft / WindowsMicrosoft Windows SmartScreen Security Feature Bypass Vulnerability2024-02-13
30.3%
CVE-2024-21412Microsoft / WindowsMicrosoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability2024-02-13
95.4%
CVE-2023-43770Roundcube / WebmailRoundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability2024-02-12
56.9%
CVE-2024-21762Fortinet / FortiOSFortinet FortiOS Out-of-Bound Write Vulnerability2024-02-09
80.8%
CVE-2023-4762Google / Chromium V8Google Chromium V8 Type Confusion Vulnerability2024-02-06
38.0%
CVE-2022-48618Apple / Multiple ProductsApple Multiple Products Memory Corruption Vulnerability2024-01-31
0.5%
CVE-2024-21893Ivanti / Connect Secure, Policy Secure, and NeuronsIvanti Connect Secure, Policy Secure, and Neurons Server-Side Request Forgery…2024-01-31
100.0%
CVE-2023-22527Atlassian / Confluence Data Center and ServerAtlassian Confluence Data Center and Server Template Injection Vulnerability2024-01-24
100.0%
CVE-2024-23222Apple / Multiple ProductsApple Multiple Products WebKit Type Confusion Vulnerability2024-01-23
10.6%
CVE-2023-34048VMware / vCenter ServerVMware vCenter Server Out-of-Bounds Write Vulnerability2024-01-22
99.2%
Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.