Lucene search

K

Core Platform Security Vulnerabilities

cve
cve

CVE-2024-30040

Windows MSHTML Platform Security Feature Bypass...

8.8CVSS

6.3AI Score

0.008EPSS

2024-05-14 05:17 PM
92
In Wild
cve
cve

CVE-2023-35628

Windows MSHTML Platform Remote Code Execution...

8.1CVSS

8.8AI Score

0.018EPSS

2023-12-12 06:15 PM
67
cve
cve

CVE-2023-32460

Dell PowerEdge BIOS contains an improper privilege management security vulnerability. An unauthenticated local attacker could potentially exploit this vulnerability, leading to privilege...

8.8CVSS

7.6AI Score

0.0004EPSS

2023-12-08 06:15 AM
22
cve
cve

CVE-2023-39913

Deserialization of Untrusted Data, Improper Input Validation vulnerability in Apache UIMA Java SDK, Apache UIMA Java SDK, Apache UIMA Java SDK, Apache UIMA Java SDK.This issue affects Apache UIMA Java SDK: before 3.5.0. Users are recommended to upgrade to version 3.5.0, which fixes the issue....

8.8CVSS

8.6AI Score

0.001EPSS

2023-11-08 08:15 AM
25
cve
cve

CVE-2023-4061

A flaw was found in wildfly-core. A management user could use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This issue could allow a malicious user to access the system and obtain possible sensitive information from the...

6.5CVSS

5.9AI Score

0.001EPSS

2023-11-08 01:15 AM
125
cve
cve

CVE-2023-36717

Windows Virtual Trusted Platform Module Denial of Service...

6.5CVSS

6.8AI Score

0.0005EPSS

2023-10-10 06:15 PM
321
cve
cve

CVE-2023-36718

Microsoft Virtual Trusted Platform Module Remote Code Execution...

7.8CVSS

8.6AI Score

0.001EPSS

2023-10-10 06:15 PM
327
cve
cve

CVE-2023-36436

Windows MSHTML Platform Remote Code Execution...

7.8CVSS

8.2AI Score

0.001EPSS

2023-10-10 06:15 PM
340
cve
cve

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October...

7.5CVSS

8AI Score

0.732EPSS

2023-10-10 02:15 PM
2890
In Wild
cve
cve

CVE-2023-32461

Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability, leading to corrupt memory and potentially escalate...

6.7CVSS

6.8AI Score

0.0004EPSS

2023-09-15 07:15 AM
12
cve
cve

CVE-2023-36805

Windows MSHTML Platform Security Feature Bypass...

7CVSS

6.8AI Score

0.001EPSS

2023-09-12 05:15 PM
631
cve
cve

CVE-2023-2759

A hidden API exists in TapHome's core platform before version 2023.2 that allows an authenticated, low privileged user to change passwords of other users without any prior knowledge. The attacker may gain full access to the device by using this...

8.8CVSS

8.5AI Score

0.001EPSS

2023-07-17 07:15 AM
2309
cve
cve

CVE-2023-2760

An SQL injection vulnerability exists in TapHome core HandleMessageUpdateDevicePropertiesRequest function before version 2023.2, allowing low privileged users to inject arbitrary SQL directives into an SQL query and execute arbitrary SQL commands and get full reading access. This may also lead to.....

7.6CVSS

7.9AI Score

0.001EPSS

2023-07-17 07:15 AM
10
cve
cve

CVE-2023-35336

Windows MSHTML Platform Security Feature Bypass...

6.5CVSS

6.1AI Score

0.001EPSS

2023-07-11 06:15 PM
41
cve
cve

CVE-2023-35308

Windows MSHTML Platform Security Feature Bypass...

6.5CVSS

6.8AI Score

0.001EPSS

2023-07-11 06:15 PM
48
cve
cve

CVE-2023-32046

Windows MSHTML Platform Elevation of Privilege...

7.8CVSS

8AI Score

0.001EPSS

2023-07-11 06:15 PM
341
In Wild
cve
cve

CVE-2023-29368

Windows Filtering Platform Elevation of Privilege...

7CVSS

7.2AI Score

0.001EPSS

2023-06-14 12:15 AM
57
cve
cve

CVE-2023-25537

Dell PowerEdge 14G server BIOS versions prior to 2.18.1 and Dell Precision BIOS versions prior to 2.18.2, contain an Out of Bounds write vulnerability. A local attacker with low privileges could potentially exploit this vulnerability leading to exposure of some SMRAM stack/data/code in System...

7.8CVSS

7.9AI Score

0.0004EPSS

2023-05-22 11:15 AM
14
cve
cve

CVE-2023-29324

Windows MSHTML Platform Security Feature Bypass...

6.5CVSS

7.8AI Score

0.186EPSS

2023-05-09 06:15 PM
207
cve
cve

CVE-2023-25575

API Platform Core is the server component of API Platform: hypermedia and GraphQL APIs. Resource properties secured with the security option of the ApiPlatform\Metadata\ApiProperty attribute can be disclosed to unauthorized users. The problem affects most serialization formats, including raw JSON,....

7.7CVSS

6.3AI Score

0.001EPSS

2023-02-28 11:15 PM
45
cve
cve

CVE-2023-21805

Windows MSHTML Platform Remote Code Execution...

7.8CVSS

7.7AI Score

0.001EPSS

2023-02-14 08:15 PM
86
cve
cve

CVE-2023-25571

Backstage is an open platform for building developer portals. @backstage/catalog-model prior to version 1.2.0, @backstage/core-components prior to 0.12.4, and @backstage/plugin-catalog-backend prior to 1.7.2 are affected by a cross-site scripting vulnerability. This vulnerability allows a...

6.8CVSS

5.1AI Score

0.001EPSS

2023-02-14 06:15 PM
20
cve
cve

CVE-2022-40136

An information leak vulnerability in SMI Handler used to configure platform settings over WMI in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM...

4.4CVSS

4.4AI Score

0.0004EPSS

2023-01-30 10:15 PM
18
cve
cve

CVE-2022-30212

Windows Connected Devices Platform Service Information Disclosure...

4.7CVSS

5.2AI Score

0.001EPSS

2022-07-12 11:15 PM
61
5
cve
cve

CVE-2021-3629

A flaw was found in Undertow. A potential security issue in flow control handling by the browser over http/2 may potentially cause overhead or a denial of service in the server. The highest threat from this vulnerability is availability. This flaw affects Undertow versions prior to 2.0.40.Final...

5.9CVSS

6AI Score

0.001EPSS

2022-05-24 07:15 PM
166
9
cve
cve

CVE-2021-3717

A flaw was found in Wildfly. An incorrect JBOSS_LOCAL_USER challenge location when using the elytron configuration may lead to JBOSS_LOCAL_USER access to all users on the machine. The highest threat from this vulnerability is to confidentiality, integrity, and availability. This flaw affects...

7.8CVSS

7.2AI Score

0.0004EPSS

2022-05-24 07:15 PM
101
7
cve
cve

CVE-2022-22965

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it...

9.8CVSS

8.7AI Score

0.975EPSS

2022-04-01 11:15 PM
1744
In Wild
5
cve
cve

CVE-2022-22963

In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression that may result in remote code execution and access to local...

9.8CVSS

9.5AI Score

0.975EPSS

2022-04-01 11:15 PM
1217
In Wild
3
cve
cve

CVE-2022-26562

An issue in provider/libserver/ECKrbAuth.cpp of Kopano Core <= v11.0.2.51 contains an issue which allows attackers to authenticate even if the user account or password is expired. It also exists in the predecessor Zarafa Collaboration Platform (ZCP) in provider/libserver/ECPamAuth.cpp of Zarafa ...

9.8CVSS

9.4AI Score

0.015EPSS

2022-04-01 08:15 PM
63
cve
cve

CVE-2020-36518

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested...

7.5CVSS

7.4AI Score

0.002EPSS

2022-03-11 07:15 AM
341
11
cve
cve

CVE-2022-21865

Connected Devices Platform Service Elevation of Privilege...

7CVSS

7.2AI Score

0.0004EPSS

2022-01-11 09:15 PM
98
cve
cve

CVE-2021-35234

Numerous exposed dangerous functions within Orion Core has allows for read-only SQL injection leading to privileged escalation. An attacker with low-user privileges may steal password hashes and password salt...

8.8CVSS

8.9AI Score

0.018EPSS

2021-12-20 09:15 PM
34
cve
cve

CVE-2021-45105

Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue...

5.9CVSS

7.5AI Score

0.966EPSS

2021-12-18 12:15 PM
751
In Wild
4
cve
cve

CVE-2021-43797

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. Netty prior to version 4.1.71.Final skips control chars when they are present at the beginning / end of the header name. It should instead fail...

6.5CVSS

6.8AI Score

0.002EPSS

2021-12-09 07:15 PM
209
8
cve
cve

CVE-2021-38153

Some components in Apache Kafka use Arrays.equals to validate a password or key, which is vulnerable to timing attacks that make brute force attacks for such credentials more likely to be successful. Users should upgrade to 2.8.1 or higher, or 3.0.0 or higher where this vulnerability has been...

5.9CVSS

6.4AI Score

0.002EPSS

2021-09-22 09:15 AM
135
5
cve
cve

CVE-2021-36160

A carefully crafted request uri-path can cause mod_proxy_uwsgi to read above the allocated memory and crash (DoS). This issue affects Apache HTTP Server versions 2.4.30 to 2.4.48...

7.5CVSS

8.4AI Score

0.002EPSS

2021-09-16 03:15 PM
1137
In Wild
3
cve
cve

CVE-2021-34798

Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and...

7.5CVSS

8.6AI Score

0.005EPSS

2021-09-16 03:15 PM
1461
5
cve
cve

CVE-2021-34447

Windows MSHTML Platform Remote Code Execution...

6.8CVSS

7.5AI Score

0.008EPSS

2021-07-16 09:15 PM
121
3
cve
cve

CVE-2021-36090

When reading a specially crafted ZIP archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress' zip...

7.5CVSS

7.4AI Score

0.01EPSS

2021-07-13 08:15 AM
291
13
cve
cve

CVE-2021-30640

A vulnerability in the JNDI Realm of Apache Tomcat allows an attacker to authenticate using variations of a valid user name and/or to bypass some of the protection provided by the LockOut Realm. This issue affects Apache Tomcat 10.0.0-M1 to 10.0.5; 9.0.0.M1 to 9.0.45; 8.5.0 to...

6.5CVSS

6.5AI Score

0.002EPSS

2021-07-12 03:15 PM
464
19
cve
cve

CVE-2021-31970

Windows TCP/IP Driver Security Feature Bypass...

5.5CVSS

5.2AI Score

0.0004EPSS

2021-06-08 11:15 PM
71
9
cve
cve

CVE-2021-3529

A flaw was found in noobaa-core in versions before 5.7.0. This flaw results in the name of an arbitrarily URL being copied into an HTML document as plain text between tags, including potentially a payload script. The input was echoed unmodified in the application response, resulting in arbitrary...

7.1CVSS

6.7AI Score

0.001EPSS

2021-06-02 05:15 PM
51
4
cve
cve

CVE-2020-14340

A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial of service. It affects XNIO versions 3.6.0.Beta1 through...

5.9CVSS

5.5AI Score

0.001EPSS

2021-06-02 01:15 PM
95
30
cve
cve

CVE-2020-25710

A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest threat from this vulnerability is to system...

7.5CVSS

7.2AI Score

0.02EPSS

2021-05-28 11:15 AM
247
11
cve
cve

CVE-2021-3517

There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this...

8.6CVSS

8.4AI Score

0.012EPSS

2021-05-19 02:15 PM
426
11
cve
cve

CVE-2021-3518

There's a flaw in libxml2 in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality, integrity, and...

8.8CVSS

8.4AI Score

0.004EPSS

2021-05-18 12:15 PM
324
16
cve
cve

CVE-2021-3537

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS

7AI Score

0.014EPSS

2021-05-14 08:15 PM
373
In Wild
11
cve
cve

CVE-2021-29425

In Apache Commons IO before 2.7, When invoking the method FileNameUtils.normalize with an improper input string, like "//../foo", or "..\foo", the result would be the same value, thus possibly providing access to files in the parent directory, but not further above (thus "limited" path...

4.8CVSS

5.5AI Score

0.002EPSS

2021-04-13 07:15 AM
339
In Wild
26
cve
cve

CVE-2020-13936

An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache...

8.8CVSS

8.8AI Score

0.002EPSS

2021-03-10 08:15 AM
287
24
cve
cve

CVE-2021-23840

Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating...

7.5CVSS

7.9AI Score

0.008EPSS

2021-02-16 05:15 PM
600
37
Total number of security vulnerabilities136