1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

Showing 1,619 of 1,619 · page 22 of 33

CVEVendor / ProductTitleKEV addedEPSS
CVE-2009-0927Adobe / Reader and AcrobatAdobe Reader and Adobe Acrobat Stack-Based Buffer Overflow Vulnerability2022-03-25
96.6%
CVE-2009-1151phpMyAdmin / phpMyAdminphpMyAdmin Remote Code Execution Vulnerability2022-03-25
95.4%
CVE-2009-2055Cisco / IOS XRCisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability2022-03-25
3.3%
CVE-2010-2861Adobe / ColdFusionAdobe ColdFusion Directory Traversal Vulnerability2022-03-25
99.7%
CVE-2010-3035Cisco / IOS XRCisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability2022-03-25
5.6%
CVE-2010-4344Exim / EximExim Heap-Based Buffer Overflow Vulnerability2022-03-25
71.8%
CVE-2010-4345Exim / EximExim Privilege Escalation Vulnerability2022-03-25
17.8%
CVE-2012-1823PHP / PHPPHP-CGI Query String Parameter Vulnerability2022-03-25
100.0%
CVE-2013-2251Apache / StrutsApache Struts Improper Input Validation Vulnerability2022-03-25
100.0%
CVE-2013-4810Hewlett Packard (HP) / ProCurve Manager (PCM), PCM+, Identity Driven Manager (IDM), and Application Lifecycle ManagementHP Multiple Products Remote Code Execution Vulnerability2022-03-25
79.0%
CVE-2013-5223D-Link / DSL-2760UD-Link DSL-2760U Gateway Cross-Site Scripting Vulnerability2022-03-25
33.6%
CVE-2014-0130Rails / Ruby on RailsRuby on Rails Directory Traversal Vulnerability2022-03-25
53.7%
CVE-2014-3120Elastic / ElasticsearchElasticsearch Remote Code Execution Vulnerability2022-03-25
88.6%
CVE-2014-6287Rejetto / HTTP File Server (HFS)Rejetto HTTP File Server (HFS) Remote Code Execution Vulnerability2022-03-25
99.3%
CVE-2014-6324Microsoft / Kerberos Key Distribution Center (KDC)Microsoft Kerberos Key Distribution Center (KDC) Privilege Escalation Vulnera…2022-03-25
87.4%
CVE-2014-6332Microsoft / WindowsMicrosoft Windows Object Linking & Embedding (OLE) Automation Array Remote Co…2022-03-25
95.0%
CVE-2015-0666Cisco / Prime Data Center Network Manager (DCNM)Cisco Prime Data Center Network Manager (DCNM) Directory Traversal Vulnerability2022-03-25
40.6%
CVE-2015-1187D-Link and TRENDnet / Multiple DevicesD-Link and TRENDnet Multiple Devices Remote Code Execution Vulnerability2022-03-25
82.9%
CVE-2015-1427Elastic / ElasticsearchElasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability2022-03-25
99.9%
CVE-2015-3035TP-Link / Multiple Archer DevicesTP-Link Multiple Archer Devices Directory Traversal Vulnerability2022-03-25
83.8%
CVE-2015-4068Arcserve / Unified Data Protection (UDP)Arcserve Unified Data Protection (UDP) Directory Traversal Vulnerability2022-03-25
63.6%
CVE-2016-0752Rails / Ruby on RailsRuby on Rails Directory Traversal Vulnerability2022-03-25
95.5%
CVE-2016-10174NETGEAR / WNR2000v5 RouterNETGEAR WNR2000v5 Router Buffer Overflow Vulnerability2022-03-25
83.5%
CVE-2016-11021D-Link / DCS-930L DevicesD-Link DCS-930L Devices OS Command Injection Vulnerability2022-03-25
68.5%
CVE-2016-1555NETGEAR / Wireless Access Point (WAP) DevicesNETGEAR Multiple WAP Devices Command Injection Vulnerability2022-03-25
98.3%
CVE-2016-4171Adobe / Flash PlayerAdobe Flash Player Remote Code Execution Vulnerability2022-03-25
19.9%
CVE-2016-7892Adobe / Flash PlayerAdobe Flash Player Use-After-Free Vulnerability2022-03-25
18.8%
CVE-2017-0146Microsoft / WindowsMicrosoft Windows SMB Remote Code Execution Vulnerability2022-03-25
89.9%
CVE-2017-12615Apache / TomcatApache Tomcat on Windows Remote Code Execution Vulnerability2022-03-25
99.6%
CVE-2017-12617Apache / TomcatApache Tomcat Remote Code Execution Vulnerability2022-03-25
100.0%
CVE-2017-3881Cisco / IOS and IOS XECisco IOS and IOS XE Remote Code Execution Vulnerability2022-03-25
99.0%
CVE-2017-6316Citrix / NetScaler SD-WAN Enterprise, CloudBridge Virtual WAN, and XenMobile ServerCitrix Multiple Products Remote Code Execution Vulnerability2022-03-25
72.6%
CVE-2017-6334NETGEAR / DGN2200 DevicesNETGEAR DGN2200 Devices OS Command Injection Vulnerability2022-03-25
72.2%
CVE-2018-0125Cisco / VPN RoutersCisco VPN Routers Remote Code Execution Vulnerability2022-03-25
54.8%
CVE-2018-0147Cisco / Secure Access Control System (ACS)Cisco Secure Access Control System Java Deserialization Vulnerability2022-03-25
18.6%
CVE-2018-11138Quest / KACE System Management ApplianceQuest KACE System Management Appliance Remote Command Execution Vulnerability2022-03-25
91.9%
CVE-2018-1273broadcom / spring_data_commonsCVE-2018-12732022-03-25
95.6%
CVE-2018-14839LG / N1A1 NASLG N1A1 NAS Remote Command Execution Vulnerability2022-03-25
89.4%
CVE-2018-6961VMware / SD-WAN EdgeVMware SD-WAN Edge by VeloCloud Command Injection Vulnerability2022-03-25
86.4%
CVE-2018-8373Microsoft / Internet Explorer Scripting EngineMicrosoft Scripting Engine Memory Corruption Vulnerability2022-03-25
61.9%
CVE-2018-8414Microsoft / WindowsMicrosoft Windows Shell Remote Code Execution Vulnerability2022-03-25
74.0%
CVE-2019-0903Microsoft / Graphics Device Interface (GDI)Microsoft GDI Remote Code Execution Vulnerability2022-03-25
21.7%
CVE-2019-1003030Jenkins / Matrix Project PluginJenkins Matrix Project Plugin Remote Code Execution Vulnerability2022-03-25
76.0%
CVE-2019-10068Kentico / XperienceKentico Xperience Deserialization of Untrusted Data Vulnerability2022-03-25
96.0%
CVE-2019-11043PHP / FastCGI Process Manager (FPM)PHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability2022-03-25
99.5%
CVE-2019-12989Citrix / SD-WAN and NetScalerCitrix SD-WAN and NetScaler SQL Injection Vulnerability2022-03-25
94.4%
CVE-2019-12991Citrix / SD-WAN and NetScalerCitrix SD-WAN and NetScaler Command Injection Vulnerability2022-03-25
74.5%
CVE-2019-15107Webmin / WebminWebmin Command Injection Vulnerability2022-03-25
99.8%
CVE-2019-16920D-Link / Multiple RoutersD-Link Multiple Routers Command Injection Vulnerability2022-03-25
100.0%
CVE-2019-2616Oracle / BI Publisher (Formerly XML Publisher)Oracle BI Publisher Unauthorized Access Vulnerability2022-03-25
92.2%
Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.