1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

Showing 1,619 of 1,619 · page 28 of 33

CVEVendor / ProductTitleKEV addedEPSS
CVE-2017-11774Microsoft / OfficeMicrosoft Office Outlook Security Feature Bypass Vulnerability2021-11-03
59.9%
CVE-2017-11882Microsoft / OfficeMicrosoft Office Memory Corruption Vulnerability2021-11-03
99.9%
CVE-2017-16651Roundcube / Roundcube WebmailRoundcube Webmail File Disclosure Vulnerability2021-11-03
42.8%
CVE-2017-5638Apache / StrutsApache Struts Remote Code Execution Vulnerability2021-11-03
100.0%
CVE-2017-6327Symantec / Symantec Messaging GatewaySymantec Messaging Gateway Remote Code Execution Vulnerability2021-11-03
35.3%
CVE-2017-7269Microsoft / Internet Information Services (IIS)Microsoft Windows Server Buffer Overflow Vulnerability2021-11-03
99.8%
CVE-2017-8759Microsoft / .NET FrameworkMicrosoft .NET Framework Remote Code Execution Vulnerability2021-11-03
88.7%
CVE-2017-9248Progress / ASP.NET AJAX and SitefinityProgress Telerik UI for ASP.NET AJAX and Sitefinity Cryptographic Weakness Vu…2021-11-03
75.1%
CVE-2017-9805Apache / StrutsApache Struts Deserialization of Untrusted Data Vulnerability2021-11-03
99.5%
CVE-2017-9822DotNetNuke (DNN) / DotNetNuke (DNN)DotNetNuke (DNN) Remote Code Execution Vulnerability2021-11-03
94.8%
CVE-2018-0171Cisco / IOS and IOS XECisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability2021-11-03
99.5%
CVE-2018-0296Cisco / Adaptive Security Appliance (ASA)Cisco Adaptive Security Appliance (ASA) Denial-of-Service Vulnerability2021-11-03
99.9%
CVE-2018-0798Microsoft / OfficeMicrosoft Office Memory Corruption Vulnerability2021-11-03
95.2%
CVE-2018-0802Microsoft / OfficeMicrosoft Office Memory Corruption Vulnerability2021-11-03
93.4%
CVE-2018-11776Apache / StrutsApache Struts Remote Code Execution Vulnerability2021-11-03
100.0%
CVE-2018-13379Fortinet / FortiOSFortinet FortiOS SSL VPN Path Traversal Vulnerability2021-11-03
100.0%
CVE-2018-14558Tenda / AC7, AC9, and AC10 RoutersTenda AC7, AC9, and AC10 Routers Command Injection Vulnerability2021-11-03
8.7%
CVE-2018-15811DotNetNuke (DNN) / DotNetNuke (DNN)DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability2021-11-03
74.0%
CVE-2018-15961Adobe / ColdFusionAdobe ColdFusion Unrestricted File Upload Vulnerability2021-11-03
100.0%
CVE-2018-18325DotNetNuke (DNN) / DotNetNuke (DNN)DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability2021-11-03
74.0%
CVE-2018-20062ThinkPHP / noneCmsThinkPHP "noneCms" Remote Code Execution Vulnerability2021-11-03
99.5%
CVE-2018-2380SAP / Customer Relationship Management (CRM)SAP Customer Relationship Management (CRM) Path Traversal Vulnerability2021-11-03
29.2%
CVE-2018-4878Adobe / Flash PlayerAdobe Flash Player Use-After-Free Vulnerability2021-11-03
89.6%
CVE-2018-4939Adobe / ColdFusionAdobe ColdFusion Deserialization of Untrusted Data Vulnerability2021-11-03
63.3%
CVE-2018-6789Exim / EximExim Buffer Overflow Vulnerability2021-11-03
82.2%
CVE-2018-7600Drupal / Drupal CoreDrupal Core Remote Code Execution Vulnerability2021-11-03
100.0%
CVE-2018-8653Microsoft / Internet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03
29.1%
CVE-2019-0211Apache / HTTP ServerApache HTTP Server Privilege Escalation Vulnerability2021-11-03
65.0%
CVE-2019-0541Microsoft / MSHTMLMicrosoft MSHTML Remote Code Execution Vulnerability2021-11-03
53.2%
CVE-2019-0604Microsoft / SharePointMicrosoft SharePoint Remote Code Execution Vulnerability2021-11-03
99.9%
CVE-2019-0708Microsoft / Remote Desktop ServicesMicrosoft Remote Desktop Services Remote Code Execution Vulnerability2021-11-03
100.0%
CVE-2019-0797Microsoft / Win32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03
1.9%
CVE-2019-0803Microsoft / Win32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03
45.2%
CVE-2019-0808Microsoft / Win32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03
53.3%
CVE-2019-0859Microsoft / Win32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03
4.2%
CVE-2019-0863Microsoft / WindowsMicrosoft Windows Error Reporting (WER) Privilege Escalation Vulnerability2021-11-03
5.2%
CVE-2019-11510Ivanti / Pulse Connect SecureIvanti Pulse Connect Secure Arbitrary File Read Vulnerability2021-11-03
100.0%
CVE-2019-11539Ivanti / Pulse Connect Secure and Pulse Policy SecureIvanti Pulse Connect Secure and Policy Secure Command Injection Vulnerability2021-11-03
98.6%
CVE-2019-11580Atlassian / Crowd and Crowd Data CenterAtlassian Crowd and Crowd Data Center Remote Code Execution Vulnerability2021-11-03
95.4%
CVE-2019-11634Citrix / Workspace Application and Receiver for WindowsCitrix Workspace Application and Receiver for Windows Remote Code Execution V…2021-11-03
8.1%
CVE-2019-1214Microsoft / WindowsMicrosoft Windows Privilege Common Log File System (CLFS) Escalation Vulnerab…2021-11-03
1.3%
CVE-2019-1215Microsoft / WindowsMicrosoft Windows Privilege Escalation Vulnerability2021-11-03
19.4%
CVE-2019-13608Citrix / StoreFront ServerCitrix StoreFront Server XML External Entity (XXE) Processing Vulnerability2021-11-03
28.0%
CVE-2019-1367Microsoft / Internet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03
52.7%
CVE-2019-1429Microsoft / Internet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03
72.6%
CVE-2019-15752Docker / Desktop Community EditionDocker Desktop Community Edition Privilege Escalation Vulnerability2021-11-03
29.6%
CVE-2019-15949Nagios / Nagios XINagios XI Remote Code Execution Vulnerability2021-11-03
77.7%
CVE-2019-16256SIMalliance / Toolbox BrowserSIMalliance Toolbox Browser Command Injection Vulnerability2021-11-03
4.9%
CVE-2019-1653Cisco / Small Business RV320 and RV325 RoutersCisco Small Business RV320 and RV325 Routers Information Disclosure Vulnerabi…2021-11-03
99.9%
CVE-2019-16759vBulletin / vBulletinvBulletin PHP Module Remote Code Execution Vulnerability2021-11-03
99.7%
Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.