1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

Showing 1,619 of 1,619 · page 29 of 33

CVEVendor / ProductTitleKEV addedEPSS
CVE-2019-17026Mozilla / Firefox and ThunderbirdMozilla Firefox And Thunderbird Type Confusion Vulnerability2021-11-03
46.6%
CVE-2019-17558Apache / SolrApache Solr VelocityResponseWriter Plug-In Remote Code Execution Vulnerability2021-11-03
98.6%
CVE-2019-18187Trend Micro / OfficeScanTrend Micro OfficeScan Directory Traversal Vulnerability2021-11-03
25.1%
CVE-2019-18935Progress / Telerik UI for ASP.NET AJAXProgress Telerik UI for ASP.NET AJAX Deserialization of Untrusted Data Vulner…2021-11-03
99.7%
CVE-2019-18988TeamViewer / DesktopTeamViewer Desktop Bypass Remote Login Vulnerability2021-11-03
4.7%
CVE-2019-19356Netis / WF2419 DevicesNetis WF2419 Devices Remote Code Execution Vulnerability2021-11-03
28.0%
CVE-2019-19781Citrix / Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP ApplianceCitrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability2021-11-03
100.0%
CVE-2019-20085TVT / NVMS-1000TVT NVMS-1000 Directory Traversal Vulnerability2021-11-03
96.1%
CVE-2019-2215Android / Android KernelAndroid Kernel Use-After-Free Vulnerability2021-11-03
72.1%
CVE-2019-3396Atlassian / Confluence Server and Data ServerAtlassian Confluence Server and Data Center Server-Side Template Injection Vu…2021-11-03
99.9%
CVE-2019-3398Atlassian / Confluence Server and Data CenterAtlassian Confluence Server and Data Center Path Traversal Vulnerability2021-11-03
97.2%
CVE-2019-4716IBM / Planning AnalyticsIBM Planning Analytics Remote Code Execution Vulnerability2021-11-03
86.4%
CVE-2019-5544VMware / VMware ESXi and Horizon DaaSVMware ESXi and Horizon DaaS OpenSLP Heap-Based Buffer Overflow Vulnerability2021-11-03
96.8%
CVE-2019-5591Fortinet / FortiOSFortinet FortiOS Default Configuration Vulnerability2021-11-03
18.6%
CVE-2019-6223Apple / iOS and macOSApple iOS and macOS Group Facetime Vulnerability2021-11-03
2.6%
CVE-2019-7481SonicWall / SMA100SonicWall SMA100 SQL Injection Vulnerability2021-11-03
99.9%
CVE-2019-8394Zoho / ManageEngineZoho ManageEngine ServiceDesk Plus (SDP) File Upload Vulnerability2021-11-03
64.1%
CVE-2019-9082ThinkPHP / ThinkPHPThinkPHP Remote Code Execution Vulnerability2021-11-03
97.4%
CVE-2019-9978WordPress / Social Warfare PluginWordPress Social Warfare Plugin Cross-Site Scripting (XSS) Vulnerability2021-11-03
73.5%
CVE-2020-0041Android / Android KernelAndroid Kernel Out-of-Bounds Write Vulnerability2021-11-03
3.2%
CVE-2020-0069MediaTek / Multiple ChipsetsMediatek Multiple Chipsets Insufficient Input Validation Vulnerability2021-11-03
1.3%
CVE-2020-0601Microsoft / WindowsMicrosoft Windows CryptoAPI Spoofing Vulnerability2021-11-03
89.4%
CVE-2020-0646Microsoft / .NET FrameworkMicrosoft .NET Framework Remote Code Execution Vulnerability2021-11-03
99.2%
CVE-2020-0674Microsoft / Internet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03
86.9%
CVE-2020-0683Microsoft / WindowsMicrosoft Windows Installer Privilege Escalation Vulnerability2021-11-03
7.7%
CVE-2020-0688Microsoft / Exchange ServerMicrosoft Exchange Server Validation Key Remote Code Execution Vulnerability2021-11-03
100.0%
CVE-2020-0878Microsoft / Edge and Internet ExplorerMicrosoft Edge and Internet Explorer Memory Corruption Vulnerability2021-11-03
2.7%
CVE-2020-0938Microsoft / WindowsMicrosoft Windows Adobe Font Manager Library Remote Code Execution Vulnerability2021-11-03
69.2%
CVE-2020-0968Microsoft / Internet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03
30.0%
CVE-2020-0986Microsoft / WindowsMicrosoft Windows Kernel Privilege Escalation Vulnerability2021-11-03
15.9%
CVE-2020-10148SolarWinds / OrionSolarWinds Orion Authentication Bypass Vulnerability2021-11-03
95.1%
CVE-2020-10181Sumavision / Enhanced Multimedia Router (EMR)Sumavision EMR Cross-Site Request Forgery (CSRF) Vulnerability2021-11-03
14.2%
CVE-2020-10189Zoho / ManageEngineZoho ManageEngine Desktop Central File Upload Vulnerability2021-11-03
99.9%
CVE-2020-10199Sonatype / Nexus RepositorySonatype Nexus Repository Remote Code Execution Vulnerability2021-11-03
99.1%
CVE-2020-1020Microsoft / WindowsMicrosoft Windows Adobe Font Manager Library Remote Code Execution Vulnerability2021-11-03
65.0%
CVE-2020-10221rConfig / rConfigrConfig OS Command Injection Vulnerability2021-11-03
36.8%
CVE-2020-1040Microsoft / Hyper-V RemoteFXMicrosoft Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability2021-11-03
6.9%
CVE-2020-1054Microsoft / Win32kMicrosoft Win32k Privilege Escalation Vulnerability2021-11-03
52.8%
CVE-2020-10987Tenda / AC1900 Router AC15 ModelTenda AC1900 Router AC15 Model Remote Code Execution Vulnerability2021-11-03
79.7%
CVE-2020-1147Microsoft / .NET Framework, SharePoint, Visual StudioMicrosoft .NET Framework, SharePoint, and Visual Studio Remote Code Execution…2021-11-03
94.2%
CVE-2020-11651SaltStack / SaltSaltStack Salt Authentication Bypass Vulnerability2021-11-03
96.4%
CVE-2020-11652SaltStack / SaltSaltStack Salt Path Traversal Vulnerability2021-11-03
86.1%
CVE-2020-11738WordPress / Snap Creek Duplicator PluginWordPress Snap Creek Duplicator Plugin File Download Vulnerability2021-11-03
97.8%
CVE-2020-12271Sophos / SFOSSophos SFOS SQL Injection Vulnerability2021-11-03
43.1%
CVE-2020-12812Fortinet / FortiOSFortinet FortiOS SSL VPN Improper Authentication Vulnerability2021-11-03
49.3%
CVE-2020-1350Microsoft / WindowsMicrosoft Windows DNS Server Remote Code Execution Vulnerability2021-11-03
92.2%
CVE-2020-1380Microsoft / Internet ExplorerMicrosoft Internet Explorer Scripting Engine Memory Corruption Vulnerability2021-11-03
24.2%
CVE-2020-1464Microsoft / WindowsMicrosoft Windows Spoofing Vulnerability2021-11-03
41.1%
CVE-2020-1472Microsoft / NetlogonMicrosoft Netlogon Privilege Escalation Vulnerability2021-11-03
99.5%
CVE-2020-14750Oracle / WebLogic ServerOracle WebLogic Server Remote Code Execution Vulnerability2021-11-03
99.3%
Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.