1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

Showing 1,619 of 1,619 · page 12 of 33

CVEVendor / ProductTitleKEV addedEPSS
CVE-2023-35082Ivanti / Endpoint Manager Mobile (EPMM) and MobileIron CoreIvanti Endpoint Manager Mobile (EPMM) and MobileIron Core Authentication Bypa…2024-01-18
100.0%
CVE-2023-6548Citrix / NetScaler ADC and NetScaler GatewayCitrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability2024-01-17
3.2%
CVE-2023-6549Citrix / NetScaler ADC and NetScaler GatewayCitrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability2024-01-17
57.6%
CVE-2024-0519Google / Chromium V8Google Chromium V8 Out-of-Bounds Memory Access Vulnerability2024-01-17
3.8%
CVE-2018-15133Laravel / Laravel FrameworkLaravel Deserialization of Untrusted Data Vulnerability2024-01-16
76.8%
CVE-2023-29357Microsoft / SharePoint ServerMicrosoft SharePoint Server Privilege Escalation Vulnerability2024-01-10
99.6%
CVE-2023-46805Ivanti / Connect Secure and Policy SecureIvanti Connect Secure and Policy Secure Authentication Bypass Vulnerability2024-01-10
100.0%
CVE-2024-21887Ivanti / Connect Secure and Policy SecureIvanti Connect Secure and Policy Secure Command Injection Vulnerability2024-01-10
100.0%
CVE-2016-20017D-Link / DSL-2750B DevicesD-Link DSL-2750B Devices Command Injection Vulnerability2024-01-08
60.4%
CVE-2023-23752joomla / joomla\!CVE-2023-237522024-01-08
99.8%
CVE-2023-27524Apache / SupersetApache Superset Insecure Default Initialization of Resource Vulnerability2024-01-08
97.4%
CVE-2023-29300Adobe / ColdFusionAdobe ColdFusion Deserialization of Untrusted Data Vulnerability2024-01-08
100.0%
CVE-2023-38203Adobe / ColdFusionAdobe ColdFusion Deserialization of Untrusted Data Vulnerability2024-01-08
97.0%
CVE-2023-41990Apple / Multiple ProductsApple Multiple Products Code Execution Vulnerability2024-01-08
1.1%
CVE-2023-7024Google / Chromium WebRTCGoogle Chromium WebRTC Heap Buffer Overflow Vulnerability2024-01-02
7.4%
CVE-2023-7101Spreadsheet::ParseExcel / Spreadsheet::ParseExcelSpreadsheet::ParseExcel Remote Code Execution Vulnerability2024-01-02
16.7%
CVE-2023-47565QNAP / VioStor NVRQNAP VioStor NVR OS Command Injection Vulnerability2023-12-21
73.3%
CVE-2023-49897FXC / AE1021, AE1021PEFXC AE1021, AE1021PE OS Command Injection Vulnerability2023-12-21
50.7%
CVE-2023-6448Unitronics / Vision PLC and HMIUnitronics Vision PLC and HMI Insecure Default Password Vulnerability2023-12-11
2.1%
CVE-2023-41265Qlik / SenseQlik Sense HTTP Tunneling Vulnerability2023-12-07
85.0%
CVE-2023-41266Qlik / SenseQlik Sense Path Traversal Vulnerability2023-12-07
85.0%
CVE-2022-22071Qualcomm / Multiple ChipsetsQualcomm Multiple Chipsets Use-After-Free Vulnerability2023-12-05
0.4%
CVE-2023-33063Qualcomm / Multiple ChipsetsQualcomm Multiple Chipsets Use-After-Free Vulnerability2023-12-05
0.7%
CVE-2023-33106Qualcomm / Multiple ChipsetsQualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerability2023-12-05
0.9%
CVE-2023-33107Qualcomm / Multiple ChipsetsQualcomm Multiple Chipsets Integer Overflow Vulnerability2023-12-05
0.9%
CVE-2023-42916Apple / Multiple ProductsApple Multiple Products WebKit Out-of-Bounds Read Vulnerability2023-12-04
18.0%
CVE-2023-42917Apple / Multiple ProductsApple Multiple Products WebKit Memory Corruption Vulnerability2023-12-04
9.4%
CVE-2023-49103ownCloud / ownCloud graphapiownCloud graphapi Information Disclosure Vulnerability2023-11-30
78.4%
CVE-2023-6345Google / Chromium SkiaGoogle Skia Integer Overflow Vulnerability2023-11-30
19.6%
CVE-2023-4911GNU / GNU C LibraryGNU C Library Buffer Overflow Vulnerability2023-11-21
78.6%
CVE-2020-2551Oracle / Fusion MiddlewareOracle Fusion Middleware Unspecified Vulnerability2023-11-16
93.2%
CVE-2023-1671Sophos / Web ApplianceSophos Web Appliance Command Injection Vulnerability2023-11-16
100.0%
CVE-2023-36584Microsoft / WindowsMicrosoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability2023-11-16
3.1%
CVE-2023-36025Microsoft / WindowsMicrosoft Windows SmartScreen Security Feature Bypass Vulnerability2023-11-14
88.2%
CVE-2023-36033Microsoft / WindowsMicrosoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalat…2023-11-14
12.1%
CVE-2023-36036Microsoft / WindowsMicrosoft Windows Cloud Files Mini Filter Driver Privilege Escalation Vulnera…2023-11-14
16.3%
CVE-2023-36844Juniper / Junos OSJuniper Junos OS EX Series PHP External Variable Modification Vulnerability2023-11-13
89.6%
CVE-2023-36845Juniper / Junos OSJuniper Junos OS EX Series and SRX Series PHP External Variable Modification …2023-11-13
93.5%
CVE-2023-36846Juniper / Junos OSJuniper Junos OS SRX Series Missing Authentication for Critical Function Vuln…2023-11-13
94.2%
CVE-2023-36847Juniper / Junos OSJuniper Junos OS EX Series Missing Authentication for Critical Function Vulne…2023-11-13
84.7%
CVE-2023-36851Juniper / Junos OSJuniper Junos OS SRX Series Missing Authentication for Critical Function Vuln…2023-11-13
1.1%
CVE-2023-47246SysAid / SysAid ServerSysAid Server Path Traversal Vulnerability2023-11-13
98.9%
CVE-2023-29552IETF / Service Location Protocol (SLP)Service Location Protocol (SLP) Denial-of-Service Vulnerability2023-11-08
65.9%
CVE-2023-22518Atlassian / Confluence Data Center and ServerAtlassian Confluence Data Center and Server Improper Authorization Vulnerability2023-11-07
100.0%
CVE-2023-46604Apache / ActiveMQApache ActiveMQ Deserialization of Untrusted Data Vulnerability2023-11-02
99.7%
CVE-2023-46747F5 / BIG-IP Configuration UtilityF5 BIG-IP Configuration Utility Authentication Bypass Vulnerability2023-10-31
96.5%
CVE-2023-46748F5 / BIG-IP Configuration UtilityF5 BIG-IP Configuration Utility SQL Injection Vulnerability2023-10-31
4.5%
CVE-2023-5631Roundcube / WebmailRoundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability2023-10-26
70.9%
CVE-2023-20273Cisco / Cisco IOS XE Web UICisco IOS XE Web UI Command Injection Vulnerability2023-10-23
89.6%
CVE-2023-4966Citrix / NetScaler ADC and NetScaler GatewayCitrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability2023-10-18
100.0%
Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.