1559 matches found
CVE-2025-48928
The TeleMessage service through 2025-05-05 is based on a JSP application in which the heap content is roughly equivalent to a "core dump" in which a password previously sent over HTTP would be included in this dump, as exploited in the wild in May 2025...
CVE-2021-25250
An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a sensitive file could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute...
CVE-2020-14704
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.44, prior to 6.0.24 and prior to 6.1.12. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle...
CVE-2017-20140
A vulnerability was found in Itech Movie Portal Script 7.36. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /movie.php. The manipulation of the argument f with the input leads to basic cross site scripting Reflected. The attack may be launched...
Update your Chrome to fix serious actively exploited vulnerability
Google released an emergency update for the Chrome browser to patch an actively exploited vulnerability that could have serious ramifications. The update brings the Stable channel to versions 136.0.7103.113/.114 for Windows and Mac and 136.0.7103.113 for Linux. The easiest way to update Chrome is...
Geo Vision EoL Devices Improper Neutralization of Special Elements used in an OS Command (CVE-2024-11120)
Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device. Moreover, this vulnerability has already been exploited by attackers, and we have received relat...
CISCO-SA-ERLANG-OTP-SSH-XYZZY
creationtimestamp| type| source ---|---|--- 2025-04-23 15:26:17+00:00| exploited| https://github.com/ProDefense/CVE-2025-32433...
CVE-2025-21575
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL...
CVE-2023-46347
creationtimestamp| type| source ---|---|--- 2025-03-27 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-03-27 2025-07-07 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-07-07 2026-06-19 12:46:01+00:00| exploited|...
CVE-2020-5775
creationtimestamp| type| source ---|---|--- 2025-03-09 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-03-09 2026-06-23 14:06:19+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/06cf3e8b-5bea-44c8-9546-6e0aa85bffd2...
PT-2025-6336 · Microsoft · Windows Ancillary Function Driver For Winsock +1
Name of the Vulnerable Software and Affected Versions: Windows Ancillary Function Driver for WinSock affected versions not specified Description: The issue is an elevation-of-privilege vulnerability in the Windows Ancillary Function Driver for WinSock, which allows attackers to gain SYSTEM...
CVE-2020-2839
Vulnerability in the Oracle Service Intelligence product of Oracle E-Business Suite component: Internal Operations- Search. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...
CVE-2022-1916
creationtimestamp| type| source ---|---|--- 2025-02-05 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-05 2026-06-23 14:06:15+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/044528da-a7bc-4173-b783-5bcb4fe5a921...
CVE-2020-8115
creationtimestamp| type| source ---|---|--- 2025-02-05 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-05 2026-06-23 14:06:20+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/757cedff-80db-453e-831d-304a90718978...
CVE-2020-1943
creationtimestamp| type| source ---|---|--- 2025-02-05 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-05 2025-06-20 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-06-20 2025-11-11 00:00:00+00:00| seen| The Shadowserver...
CVE-2019-17503
creationtimestamp| type| source ---|---|--- 2025-02-05 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-05 2026-04-29 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2026-04-29 2026-06-23 14:06:20+00:00| exploited|...
CVE-2024-32735
creationtimestamp| type| source ---|---|--- 2025-02-05 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-05 2025-06-10 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-06-10 2025-06-26 00:00:00+00:00| exploited| The...
CVE-2023-0552
creationtimestamp| type| source ---|---|--- 2025-02-05 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-05 2026-06-23 14:06:13+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/036eaf0e-75d2-477e-a9c9-0cb7b1ef5e8a...
CVE-2024-6188
creationtimestamp| type| source ---|---|--- 2025-02-04 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-02-04 2025-05-15 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2025-05-15 2026-06-23 14:06:09+00:00| exploited|...
CVE-2022-45835
creationtimestamp| type| source ---|---|--- 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-01-31 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-31 2025-02-10 00:00:00+00:00| seen| The Shadowserver...