1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

Showing 1,619 of 1,619 · page 15 of 33

CVEVendor / ProductTitleKEV addedEPSS
CVE-2023-27350PaperCut / MF/NGPaperCut MF/NG Improper Access Control Vulnerability2023-04-21
100.0%
CVE-2023-28432MinIO / MinIOMinIO Information Disclosure Vulnerability2023-04-21
84.0%
CVE-2017-6742Cisco / IOS and IOS XE SoftwareCisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2023-04-19
21.4%
CVE-2019-8526Apple / macOSApple macOS Use-After-Free Vulnerability2023-04-17
0.7%
CVE-2023-2033Google / Chromium V8Google Chromium V8 Type Confusion Vulnerability2023-04-17
40.7%
CVE-2023-20963Android / FrameworkAndroid Framework Privilege Escalation Vulnerability2023-04-13
1.4%
CVE-2023-29492Novi Survey / Novi SurveyNovi Survey Insecure Deserialization Vulnerability2023-04-13
2.7%
CVE-2023-28252Microsoft / WindowsMicrosoft Windows Common Log File System (CLFS) Driver Privilege Escalation V…2023-04-11
49.0%
CVE-2023-28205Apple / Multiple ProductsApple Multiple Products WebKit Use-After-Free Vulnerability2023-04-10
27.1%
CVE-2023-28206Apple / iOS, iPadOS, and macOSApple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write Vulnera…2023-04-10
24.5%
CVE-2019-1388Microsoft / WindowsMicrosoft Windows Certificate Dialog Privilege Escalation Vulnerability2023-04-07
8.6%
CVE-2021-27876Veritas / Backup Exec AgentVeritas Backup Exec Agent File Access Vulnerability2023-04-07
13.2%
CVE-2021-27877Veritas / Backup Exec AgentVeritas Backup Exec Agent Improper Authentication Vulnerability2023-04-07
64.9%
CVE-2021-27878Veritas / Backup Exec AgentVeritas Backup Exec Agent Command Execution Vulnerability2023-04-07
23.6%
CVE-2023-26083Arm / Mali Graphics Processing Unit (GPU)Arm Mali GPU Kernel Driver Information Disclosure Vulnerability2023-04-07
1.4%
CVE-2022-27926Synacor / Zimbra Collaboration Suite (ZCS)Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerabi…2023-04-03
17.3%
CVE-2013-3163Microsoft / Internet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2023-03-30
70.7%
CVE-2017-7494Samba / SambaSamba Remote Code Execution Vulnerability2023-03-30
99.4%
CVE-2021-30900Apple / iOS, iPadOS, and macOSApple iOS, iPadOS, and macOS Out-of-Bounds Write Vulnerability2023-03-30
5.2%
CVE-2022-22706Arm / Mali Graphics Processing Unit (GPU)Arm Mali GPU Kernel Driver Unspecified Vulnerability2023-03-30
1.2%
CVE-2022-3038Google / Chromium Network ServiceGoogle Chromium Network Service Use-After-Free Vulnerability2023-03-30
24.7%
CVE-2022-38181Arm / Mali Graphics Processing Unit (GPU)Arm Mali GPU Kernel Driver Use-After-Free Vulnerability2023-03-30
12.6%
CVE-2022-39197Fortra / Cobalt StrikeFortra Cobalt Strike Teamserver Cross-Site Scripting (XSS) Vulnerability2023-03-30
46.4%
CVE-2022-42948Fortra / Cobalt StrikeFortra Cobalt Strike User Interface Remote Code Execution Vulnerability2023-03-30
2.7%
CVE-2023-0266debian / debian_linuxCVE-2023-02662023-03-30
3.7%
CVE-2023-26360Adobe / ColdFusionAdobe ColdFusion Deserialization of Untrusted Data Vulnerability2023-03-15
97.1%
CVE-2022-41328Fortinet / FortiOSFortinet FortiOS Path Traversal Vulnerability2023-03-14
12.3%
CVE-2023-23397Microsoft / OfficeMicrosoft Office Outlook Privilege Escalation Vulnerability2023-03-14
97.4%
CVE-2023-24880Microsoft / WindowsMicrosoft Windows SmartScreen Security Feature Bypass Vulnerability2023-03-14
78.2%
CVE-2020-5741Plex / Media ServerPlex Media Server Remote Code Execution Vulnerability2023-03-10
72.9%
CVE-2021-39144XStream / XStreamXStream Remote Code Execution Vulnerability2023-03-10
98.5%
CVE-2022-28810Zoho / ManageEngineZoho ManageEngine ADSelfService Plus Remote Code Execution Vulnerability2023-03-07
70.4%
CVE-2022-33891Apache / SparkApache Spark Command Injection Vulnerability2023-03-07
93.0%
CVE-2022-35914Teclib / GLPITeclib GLPI Remote Code Execution Vulnerability2023-03-07
99.5%
CVE-2022-36537ZK Framework / AuUploaderZK Framework AuUploader Unspecified Vulnerability2023-02-27
95.3%
CVE-2022-40765mitel / mivoice_connectCVE-2022-407652023-02-21
10.5%
CVE-2022-41223mitel / mivoice_connectCVE-2022-412232023-02-21
10.6%
CVE-2022-47986ibm / aspera_faspexCVE-2022-479862023-02-21
100.0%
CVE-2022-46169cacti / cactiCVE-2022-461692023-02-16
99.8%
CVE-2023-21715microsoft / 365_appsCVE-2023-217152023-02-14
12.1%
CVE-2023-21823microsoft / windows_10_1507CVE-2023-218232023-02-14
5.6%
CVE-2023-23376microsoft / windows_10_1507CVE-2023-233762023-02-14
10.9%
CVE-2023-23529apple / safariCVE-2023-235292023-02-14
9.5%
CVE-2015-2291Intel / Ethernet Diagnostics Driver for WindowsIntel Ethernet Diagnostics Driver for Windows Denial-of-Service Vulnerability2023-02-10
8.6%
CVE-2022-24990TerraMaster / TerraMaster OSTerraMaster OS Remote Command Execution Vulnerability2023-02-10
84.0%
CVE-2023-0669fortra / goanywhere_managed_file_transferCVE-2023-06692023-02-10
100.0%
CVE-2022-21587Oracle / E-Business SuiteOracle E-Business Suite Unspecified Vulnerability2023-02-02
98.3%
CVE-2023-22952sugarcrm / sugarcrmCVE-2023-229522023-02-02
80.3%
CVE-2017-11357Telerik / User Interface (UI) for ASP.NET AJAXTelerik UI for ASP.NET AJAX Insecure Direct Object Reference Vulnerability2023-01-26
75.7%
CVE-2022-47966zohocorp / manageengine_access_manager_plusCVE-2022-479662023-01-23
99.8%
Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.