Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

CISA KEV Catalog
CISA KEV Catalogadded 2026/05/20 12:0 a.m.8 views

Microsoft Internet Explorer Use-After-Free Vulnerability

Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code by accessing a pointer associated with a deleted object. The impacted product could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product...

9.3CVSS7.7AI score0.91885EPSS
In wildExploits16
CISA KEV Catalog
CISA KEV Catalogadded 2025/12/17 12:0 a.m.14 views

ASUS Live Update Embedded Malicious Code Vulnerability

ASUS Live Update contains an embedded malicious code vulnerability client were distributed with unauthorized modifications introduced through a supply chain compromise. The modified builds could cause devices meeting specific targeting conditions to perform unintended actions. The impacted produc...

9.8CVSS7.1AI score0.01084EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalogadded 2025/10/20 12:0 a.m.9 views

Apple Multiple Products Unspecified Vulnerability

Apple macOS, iOS, tvOS, Safari, and watchOS contain an unspecified vulnerability in JavaScriptCore that when processing web content may lead to arbitrary code execution. The impacted product could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product utilization...

8.8CVSS8.8AI score0.02879EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalogadded 2025/10/06 12:0 a.m.9 views

Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerability

Microsoft Internet Explorer contains an uninitialized memory corruption vulnerability that could allow for remote code execution. The impacted product could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product utilization...

9.3CVSS8.1AI score0.96889EPSS
In wildExploits14
CISA KEV Catalog
CISA KEV Catalogadded 2025/09/02 12:0 a.m.7 views

TP-link TL-WA855RE Missing Authentication for Critical Function Vulnerability

TP-link TL-WA855RE contains a missing authentication for critical function vulnerability. This vulnerability could allow an unauthenticated attacker on the same network to submit a TDDPRESET POST request for a factory reset and reboot. The attacker can then obtain incorrect access control by...

8.8CVSS8.7AI score0.20689EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalogadded 2025/08/12 12:0 a.m.9 views

Microsoft Internet Explorer Resource Management Errors Vulnerability

Microsoft Internet Explorer contains a memory corruption vulnerability that allows for remote code execution. The impacted products could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product utilization...

9.3CVSS8.2AI score0.8593EPSS
In wildExploits18
VulnCheck KEV
VulnCheck KEVadded 2024/11/15 12:0 a.m.1 views

VulnCheck KEV: CVE-2024-11120

Multiple GeoVision devices contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to inject and execute arbitrary system commands. The impacted products could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product utilization...

9.8CVSS7.5AI score0.28554EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEVadded 2024/09/04 12:0 a.m.0 views

VulnCheck KEV: CVE-2024-6047

Multiple GeoVision devices contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to inject and execute arbitrary system commands. The impacted products could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product utilization...

9.8CVSS7.5AI score0.09992EPSS
Exploits1References1
OSV
OSVadded 2024/06/26 5:15 a.m.0 views

UBUNTU-CVE-2024-34580

Apache XML Security for C++ through 2.0.4 implements the XML Signature Syntax and Processing XMLDsig specification without protection against an SSRF payload in a KeyInfo element. NOTE: the project disputes this CVE Record on the grounds that any vulnerabilities are the result of a failure to...

5.3CVSS7.3AI score0.99999EPSS
Exploits5References6
Intel
Inteladded 2024/02/13 12:0 a.m.19 views

Intel® QSFP+ Configuration Utility Software Advisory

Summary: A potential security vulnerability in some Intel® QSFP+ Configuration Utility software may allow escalation of privilege. Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation Notice for Intel® QSFP+ Configuration Utility softwar...

6.7CVSS6.6AI score0.00186EPSS
Exploits0
VulnCheck KEV
VulnCheck KEVadded 2023/11/16 12:0 a.m.1 views

VulnCheck KEV: CVE-2021-32030

ASUS Lyra Mini and ASUS GT-AC2900 devices contain an improper authentication vulnerability that allows an attacker to gain unauthorized access to the administrative interface. The impacted products could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product utilization...

9.8CVSS7.4AI score0.99351EPSS
Exploits1References1
Prion
Prionadded 2021/07/07 2:15 p.m.17 views

Improper access control

Improper access control vulnerability in FirmwareUpgrade in QSAN Storage Manager allows remote attackers to reboot and discontinue the device. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3...

5CVSS7.6AI score0.01205EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2021/07/07 2:11 p.m.51 views

CVE-2021-32514

CVE-2021-32514 concerns an improper access control flaw in the FirmwareUpgrade component of QSAN Storage Manager. Multiple connected sources confirm that versions prior to 3.3.3 are affected and that a remote attacker could reboot or disrupt the device. The issue is addressed by updating to QSAN ...

7.5CVSS7.6AI score0.01205EPSS
Exploits0References1Affected Software1
VulnCheck KEV
VulnCheck KEVadded 2021/06/01 12:0 a.m.4 views

VulnCheck KEV: CVE-2020-25078

D-Link DCS-2530L and DCS-2670L devices contains an unspecified vulnerability that could allow for remote administrator password disclosure. The impacted products could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product utilization...

7.5CVSS7.3AI score0.97901EPSS
Exploits4References1
Intel
Inteladded 2020/11/10 12:0 a.m.19 views

Intel® Board ID Tool Advisory

Summary: A potential security vulnerability in Intel® Board ID Tool may allow escalation of privilege. Intel is not releasing updates to mitigate this potential vulnerability and has issued a Product Discontinuation Notice for Intel® Board ID Tool. Vulnerability Details: CVEID: CVE-2020-24456...

7.8CVSS7.7AI score0.00278EPSS
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2017/05/19 12:0 a.m.35 views

JVN#11326581: Empirical Project Monitor - eXtended vulnerable to cross-site scripting

Empirical Project Monitor - eXtended provided by INFORMATION-TECHNOLOGY PROMOTION AGENCY, JAPAN IPA contains a reflected cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the user's web browser. Solution Do not use Empirical Project Monitor - eXtended The...

6.1CVSS6.1AI score0.01195EPSS
Exploits0
ThreatPost
ThreatPostadded 2016/06/01 3:30 p.m.12 views

Moxa Discontinuing Vulnerable Line of ICS Devices

A vulnerability that exists in embedded computers manufactured by Moxa could allow remote authenticated users to overwrite firmware, in turn rendering the devices unusable. Moxa, a Taiwan-based networking company, announced recently that instead of patching the line of products affected by the...

0.2AI score
Exploits0References7
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2015/09/07 4:38 a.m.1 views

ELPhoneBtnV6 ActiveX control vulnerable to buffer overflow

Overview ELPhoneBtnV6 ActiveX control was used for "Click to Live" service provided by FreeBit Co., Ltd. Although "Click to Live" service has been discontinued, PCs that used the "Click to Live" service may still have the ActiveX control installed. ELPhoneBtnV6 ActiveX control, which is provided ...

6.8CVSS7.9AI score0.02324EPSS
Exploits0References5
F5 Networks
F5 Networksadded 2015/02/12 12:0 a.m.191 views

SOL16136 - OpenSSL vulnerability CVE-2014-8275

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

5CVSS1.6AI score0.1653EPSS
Exploits0References3
VulnCheck KEV
VulnCheck KEVadded 2013/09/21 12:0 a.m.2 views

VulnCheck KEV: CVE-2013-3893

Microsoft Internet Explorer contains a memory corruption vulnerability that allows for remote code execution. The impacted products could be end-of-life EoL and/or end-of-service EoS. Users should discontinue product utilization...

9.3CVSS7.7AI score0.8593EPSS
Exploits18References1
Rows per page
Query Builder