1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

Showing 1,619 of 1,619 · page 21 of 33

CVEVendor / ProductTitleKEV addedEPSS
CVE-2021-42278Microsoft / Active DirectoryMicrosoft Active Directory Domain Services Privilege Escalation Vulnerability2022-04-11
70.2%
CVE-2021-42287Microsoft / Active DirectoryMicrosoft Active Directory Domain Services Privilege Escalation Vulnerability2022-04-11
74.3%
CVE-2022-23176WatchGuard / Firebox and XTMWatchGuard Firebox and XTM Privilege Escalation Vulnerability2022-04-11
12.2%
CVE-2017-0148Microsoft / SMBv1 serverMicrosoft SMBv1 Server Remote Code Execution Vulnerability2022-04-06
99.4%
CVE-2021-31166Microsoft / HTTP Protocol StackMicrosoft HTTP Protocol Stack Remote Code Execution Vulnerability2022-04-06
99.7%
CVE-2021-3156Sudo / SudoSudo Heap-Based Buffer Overflow Vulnerability2022-04-06
99.3%
CVE-2021-45382D-Link / Multiple RoutersD-Link Multiple Routers Remote Code Execution Vulnerability2022-04-04
97.8%
CVE-2022-22674Apple / macOSApple macOS Out-of-Bounds Read Vulnerability2022-04-04
1.1%
CVE-2022-22675Apple / macOSApple macOS Out-of-Bounds Write Vulnerability2022-04-04
12.6%
CVE-2022-22965VMware / Spring FrameworkSpring Framework JDK 9+ Remote Code Execution Vulnerability2022-04-04
99.7%
CVE-2018-10561Dasan / Gigabit Passive Optical Network (GPON) RoutersDasan GPON Routers Authentication Bypass Vulnerability2022-03-31
93.3%
CVE-2018-10562Dasan / Gigabit Passive Optical Network (GPON) RoutersDasan GPON Routers Command Injection Vulnerability2022-03-31
100.0%
CVE-2021-21551Dell / dbutil DriverDell dbutil Driver Insufficient Access Control Vulnerability2022-03-31
58.1%
CVE-2021-28799QNAP / Network Attached Storage (NAS)QNAP NAS Improper Authorization Vulnerability2022-03-31
78.4%
CVE-2021-34484Microsoft / WindowsMicrosoft Windows User Profile Service Privilege Escalation Vulnerability2022-03-31
14.4%
CVE-2022-1040Sophos / FirewallSophos Firewall Authentication Bypass Vulnerability2022-03-31
99.8%
CVE-2022-26871Trend Micro / Apex CentralTrend Micro Apex Central Arbitrary File Upload Vulnerability2022-03-31
19.5%
CVE-2010-4398Microsoft / WindowsMicrosoft Windows Kernel Stack-Based Buffer Overflow Vulnerability2022-03-28
8.7%
CVE-2011-2005Microsoft / Ancillary Function Driver (afd.sys)Microsoft Ancillary Function Driver (afd.sys) Improper Input Validation Vulne…2022-03-28
31.8%
CVE-2012-0518Oracle / Fusion MiddlewareOracle Fusion Middleware Unspecified Vulnerability2022-03-28
4.7%
CVE-2012-2034Adobe / Flash PlayerAdobe Flash Player Memory Corruption Vulnerability2022-03-28
7.8%
CVE-2012-2539Microsoft / WordMicrosoft Word Remote Code Execution Vulnerability2022-03-28
53.2%
CVE-2012-5076Oracle / Java SEOracle Java SE Sandbox Bypass Vulnerability2022-03-28
91.0%
CVE-2013-1690Mozilla / Firefox and ThunderbirdMozilla Firefox and Thunderbird Denial-of-Service Vulnerability2022-03-28
69.2%
CVE-2013-2465Oracle / Java SEOracle Java SE Unspecified Vulnerability2022-03-28
98.7%
CVE-2013-2551Microsoft / Internet ExplorerMicrosoft Internet Explorer Use-After-Free Vulnerability2022-03-28
73.9%
CVE-2013-2729Adobe / Reader and AcrobatAdobe Reader and Acrobat Arbitrary Integer Overflow Vulnerability2022-03-28
66.6%
CVE-2013-3660Microsoft / Win32kMicrosoft Win32k Privilege Escalation Vulnerability2022-03-28
39.6%
CVE-2015-1770Microsoft / OfficeMicrosoft Office Uninitialized Memory Use Vulnerability2022-03-28
35.1%
CVE-2015-2419Microsoft / Internet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2022-03-28
44.5%
CVE-2015-2426Microsoft / WindowsMicrosoft Windows Adobe Type Manager Library Remote Code Execution Vulnerability2022-03-28
86.7%
CVE-2016-0040Microsoft / WindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2022-03-28
24.6%
CVE-2016-0151Microsoft / Client-Server Run-time Subsystem (CSRSS)Microsoft Windows CSRSS Security Feature Bypass Vulnerability2022-03-28
63.2%
CVE-2016-0189Microsoft / Internet ExplorerMicrosoft Internet Explorer Memory Corruption Vulnerability2022-03-28
93.2%
CVE-2016-7200Microsoft / EdgeMicrosoft Edge Memory Corruption Vulnerability2022-03-28
82.5%
CVE-2016-7201Microsoft / EdgeMicrosoft Edge Memory Corruption Vulnerability2022-03-28
79.7%
CVE-2017-0037Microsoft / Edge and Internet ExplorerMicrosoft Edge and Internet Explorer Type Confusion Vulnerability2022-03-28
80.4%
CVE-2017-0059Microsoft / Internet ExplorerMicrosoft Internet Explorer Information Disclosure Vulnerability2022-03-28
62.0%
CVE-2017-0213Microsoft / WindowsMicrosoft Windows Privilege Escalation Vulnerability2022-03-28
84.1%
CVE-2018-8405Microsoft / DirectX Graphics Kernel (DXGKRNL)Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability2022-03-28
3.4%
CVE-2018-8406Microsoft / DirectX Graphics Kernel (DXGKRNL)Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability2022-03-28
3.4%
CVE-2018-8440Microsoft / WindowsMicrosoft Windows Privilege Escalation Vulnerability2022-03-28
18.5%
CVE-2019-7483SonicWall / SMA100SonicWall SMA100 Directory Traversal Vulnerability2022-03-28
4.0%
CVE-2021-20028SonicWall / Secure Remote Access (SRA)SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability2022-03-28
30.1%
CVE-2021-26085Atlassian / Confluence ServerAtlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability2022-03-28
99.9%
CVE-2021-34486Microsoft / WindowsMicrosoft Windows Event Tracing Privilege Escalation Vulnerability2022-03-28
7.4%
CVE-2021-38646Microsoft / OfficeMicrosoft Office Access Connectivity Engine Remote Code Execution Vulnerability2022-03-28
4.0%
CVE-2022-0543Redis / Debian-specific Redis ServersDebian-specific Redis Server Lua Sandbox Escape Vulnerability2022-03-28
99.7%
CVE-2022-1096Google / Chromium V8Google Chromium V8 Type Confusion Vulnerability2022-03-28
24.2%
CVE-2005-2773Hewlett Packard (HP) / OpenView Network Node ManagerHP OpenView Network Node Manager Remote Code Execution Vulnerability2022-03-25
74.1%
Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.