CVE-2023-38831

CVE-2023-38831 affects WinRAR prior to 6.23. A crafted ZIP can trigger code execution when a user views a benign file, because a folder with the same name as that file may be processed during access. This vulnerability enables remote or local code execution depending on the user’s interaction wit...

CVE-2021-20090

The CVE-2021-20090 issue affects Buffalo WSR-series routers (WSR-2533DHPL2 <= 1.02 and WSR-2533DHP3

CVE-2018-1333

CVE-2018-1333 affects Apache HTTP Server. By specially crafting HTTP/2 requests, workers could be allocated 60 seconds longer than necessary, causing worker exhaustion and denial of service. Affected versions: 2.4.18–2.4.30 and 2.4.33; fixed in 2.4.34. The vulnerability originates from the HTTP/2...

CVE-2021-36769

CVE-2021-36769 describes a reordering issue in Telegram that allows an attacker to cause a server to receive messages in a different order than sent. Affected products/versions include Telegram for Android prior to 7.8.1, Telegram for iOS prior to 7.8.3, and Telegram Desktop prior to 2.8.8. The i...

CVE-2019-9082

ThinkPHP CVE-2019-9082 affects ThinkPHP before 3.2.4 (used in Open Source BMS v1.1.1). The vulnerability allows Remote Command Execution via a crafted request to public//?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=system&vars[1][]=..., enabling an attacker to run comm...

CVE-2021-22986

CVE-2021-22986 affects F5 BIG-IP iControl REST, allowing unauthenticated remote command execution. Affected software ranges include BIG-IP 16.0.0–16.0.1 (before 16.0.1.1), 15.1.x (before 15.1.2.1), 14.1.x (before 14.1.4), 13.1.x (before 13.1.3.6), 12.1.x (before 12.1.5.3), and BIG-IQ 7.1.0.x (bef...

CVE-2018-2628

Oracle WebLogic Server (WLS Core Components) is affected in versions 10.3.6.0, 12.1.3.0, 12.2.1.2, and 12.2.1.3. The vulnerability is a deserialization RCE over the T3/JRMP interface that allows an unauthenticated remote attacker to take over the server. Public exploits exist (Exploit-DB entries ...

CVE-2017-0148

CVE-2017-0148 is a Microsoft SMBv1 Remote Code Execution vulnerability affecting the SMBv1 server component across multiple Windows versions (Vista SP2; Server 2008 SP2/R2; Windows 7 SP1; Windows 8.1; Server 2012 Gold/R2; Windows RT 8.1; Windows 10 variants; Windows Server 2016). The flaw lets re...

CVE-2023-28252

CVE-2023-28252 – Windows CLFS driver local privilege escalation : The vulnerability stems from CLFS.sys handling of file blocks in memory (m_rgBlocks) and associated metadata, enabling an out-of-bounds access that lets an unprivileged user hijack the SYSTEM token. Public PoCs and in-the-wild acti...

CVE-2020-6207

CVE-2020-6207 affects SAP Solution Manager 7.2, specifically the End User Experience Monitoring (EEM) servlet. The vulnerability is due to missing authentication checks, allowing unauthenticated access that can compromise all connected SMDAgents and enables remote code execution or command execut...

CVE-2022-42919

CVE-2022-42919 affects Python 3.9.x before 3.9.16 and 3.10.x before 3.10.9 on Linux. The issue arises in multiprocessing with the forkserver start method, allowing pickled data to be deserialized by any user in the same machine namespace, enabling local privilege escalation. Affected CPython vers...

CVE-2020-14883

CVE-2020-14883 is an authenticated Remote Code Execution in Oracle WebLogic Server (Console component). Affected versions include 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, and 14.1.1.0.0. Exploitation vectors shown in connected documents rely on a path-traversal to the Admin Console and Jav...

CVE-2016-0189

CVE-2016-0189 is a memory-corruption flaw in Microsoft JScript/VBScript engines used by Internet Explorer 9–11 that attackers could trigger via crafted web content to achieve remote code execution or memory corruption. Connected sources show exploitation within exploit kits (notably Neutrino/Nept...

CVE-2014-6332

CVE-2014-6332 is discussed in connected sources as being exploited by the Neptune Exploit Kit to deliver a Monero-mining payload via Internet Explorer exploits. The Neptune Campaign uses CVE-2014-6332 alongside other IE and Flash exploits to identify vulnerable targets and chain exploits in a sin...

CVE-2023-27997

CVE-2023-27997 is a heap-based buffer overflow in Fortinet FortiOS SSL‑VPN (and FortiProxy) that allows remote code execution via specially crafted requests. Affected families include FortiOS: 7.2.x <=7.2.4, 7.0.x <=7.0.11, 6.4.x <=6.4.12, 6.0.x <=6.0.16; FortiProxy: 7.2.x <=7.2.3,...

CVE-2022-22674

CVE-2022-22674 involves an out-of-bounds read in the Intel Graphics Driver on macOS, allowing a local attacker to read kernel memory. Apple fixed it with patches in macOS Monterey 12.3.1, Security Update 2022-004 Catalina, and macOS Big Sur 11.6.6 by improving input validation/bounds checks. Ther...

CVE-2012-2687

Apache HTTP Server 2.4.x before 2.4.3 is affected by CVE-2012-2687 due to XSS in the mod_negotiation make_variant_list function (mod_negotiation.c) when MultiViews is enabled. The vulnerability arises from improper handling of crafted filenames during variant list construction, allowing remote at...

CVE-2021-22005

CVE-2021-22005 affects VMware vCenter Server via an arbitrary file upload vulnerability in the Analytics service. With network access to port 443, an attacker can upload a crafted file to trigger remote code execution. Public PoCs and exploits exist (e.g., VM attack surfaces and multiple advisori...

CVE-2021-21220

CVE-2021-21220 is a V8 heap‑corruption risk in Google Chrome (Chromium-based) due to insufficient validation of untrusted input. Affected are Chrome versions prior to 89.0.4389.128; Chrome/Chromium updates fixed to 89.0.4389.128. Connected advisories note exploitation in the wild and attribution ...

CVE-2023-52467

CVE-2023-52467 : Linux kernel vulnerability in mfd: syscon addressing a NULL pointer dereference in of_syscon_register() and a potential NULL return from kasprintf(). Connected advisory evidence (e.g., RHSA-2024:9315) confirms the issue and its fix in kernel code. Impact is localized (LOCAL) with...

CVE-2022-1292

CVE-2022-1292 describes a command-injection risk in the OpenSSL c_rehash script due to improper sanitization of shell metacharacters. The issue can allow local attackers to run arbitrary commands with the script’s privileges on systems where c_rehash runs automatically. Fixes are published in Ope...

CVE-2022-21971

CVE-2022-21971 is a Windows Runtime Remote Code Execution vulnerability. The CVE entry references a Windows Runtime flaw with high severity, and connected sources corroborate that patches exist (MSRC/update guides and CISA-kev). Malwarebytes’ 2022 article notes Microsoft patches for CVE-2022-2197...

CVE-2015-2546

CVE-2015-2546 affects the Windows kernel Win32k memory handling (kernel‑mode driver) and enables local privilege escalation via a crafted application on affected Windows versions (Vista SP2 onward, Windows 7 SP1, 8/8.1, 10, Server editions). The root cause is a memory corruption vulnerability in ...

CVE-2022-0934

CVE-2022-0934 affects dnsmasq with a single-byte, non-arbitrary write/use-after-free flaw in the DHCPv6 path (dhcp6_no_relay) that can lead to denial of service when processing crafted packets. Public advisories in connected documents confirm the issue and reference fixes in vendor/security updat...

CVE-2021-21783

CVE-2021-21783 affects Genivia gSOAP 2.8.107 in the WS-Addressing plugin. The vulnerability stems from a flaw in handling SOAP requests, enabling remote code execution when an attacker sends a crafted HTTP SOAP message. Descriptions across connected advisories corroborate that a specially crafted...

CVE-2020-11738

CVE-2020-11738 affects WordPress installations using the Snap Creek Duplicator plugin (pre-1.3.28) and Duplicator Pro (pre-3.8.7.1). The vulnerability is a directory traversal flaw triggered by a ../ in the file parameter to duplicator_download or duplicator_init, enabling unauthenticated access ...

CVE-2026-6366

CVE-2026-6366 — Drupal core insecure gadget chain leading to object injection Affects Drupal core: 8.0.0–10.5.8, 10.6.0–10.6.6, 11.0.0–11.2.10, 11.3.0–11.3.7. The issue is an improperly controlled modification of dynamically-determined object attributes that enables a gadget chain when deserializ...

CVE-2024-26605

CVE-2024-26605 relates to a Linux kernel issue where a last‑minute revert in 6.7-final could deadlock when enabling ASPM during probe of Qualcomm PCIe controllers. The root cause is a potential recursive locking of pci_bus_sem between a read lock and a write/lock path, leading to a deadlock, evid...

CVE-2023-26358

The CVE-2023-26358 issue affects Adobe Creative Cloud Desktop (Windows) versions 5.9.1 and earlier, caused by an Untrusted Search Path that could let an attacker point the application to a malicious resource and execute arbitrary code. Descriptions consistently state local execution potential wit...

CVE-2020-7070

CVE-2020-7070 affects PHP 7.2.x < 7.2.34, 7.3.x < 7.3.23 and 7.4.x

CVE-2019-15107

Webmin vulnerability CVE-2019-15107 affects Webmin

CVE-2021-21148

CVE-2021-21148 is a heap buffer overflow in the V8 engine of Google Chrome/Chromium up to version 88.0.4324.150, enabling a remote attacker to potentially corrupt the heap via a crafted HTML page. Connected advisories confirm this affects Chromium-based browsers and note public fixes: Debian repo...

CVE-2019-9978

CVE-2019-9978 affects WordPress Social Warfare plugin (and Social Warfare Pro). Public records show Remote Code Execution via the settings import flow, exploiting wp-admin/admin-post.php?swp_debug=load_options&swp_url=… to perform RFI-to-RCE. Exploits target versions up to 3.5.2, with references ...

CVE-2019-8720

CVE-2019-8720 is a WebKit-based memory-corruption vulnerability affecting WebKitGTK/WebKit2GTK components. Public sources in the Connected Documents identify arbitrary-code-execution potential when processing malicious web content (WebKitGTK/WebKit2GTK). Debian’s security advisory lists CVE-2019-...

CVE-2021-30665

CVE-2021-30665 is a memory corruption vulnerability in WebKitGTK/WebKit (before 2.32.3) that can lead to arbitrary code execution when processing malicious web content. It is listed in multiple advisories across WebKitGTK/WebKit and Apple platforms (watchOS/iOS/iPadOS/macOS/tvOS) with exploitatio...

CVE-2024-34027

CVE-2024-34027 corresponds to a Linux kernel/F2FS issue where the f2fs compress path ({reserve,release}_compress_blocks()) could race with checkpoint due to cp_rwsem lock issues, risking corruption of filesystem metadata (blkaddr in dnode, inode fields, and .total_valid_block_count) after SPO. Th...

CVE-2023-2454

CVE-2023-2454 concerns PostgreSQL; a flaw in schema_element defeats protective search_path changes could allow an authenticated user with database-level privileges to run arbitrary code. This has been observed in multiple advisories (including Astra Linux and Amazon Linux 2 notes) and is linked t...

CVE-2010-3153

CVE-2010-3153 affects Adobe InDesign CS4 CS5 (Windows) and InDesign Server CS5, and InCopy CS5 up to 7.0.2. The vulnerability arises from DLL hijacking via a Trojan ibfs32.dll placed in the same folder as .indl, .indp, .indt, or .inx files, enabling untrusted search path execution. Impact is arbi...

CVE-2022-21449

CVE-2022-21449 affects Oracle Java SE Libraries (Oracle Java SE 17.0.2, 18) and GraalVM Enterprise Edition (21.3.1, 22.0.0.2). It enables unauthenticated, network‑accessible attackers to compromise data integrity — potentially unauthorized creation, deletion or modification of data in affected Or...

CVE-2022-24093

Summary: CVE-2022-24093 affects Adobe Commerce and Magento Open Source, with an improper input validation vulnerability that could enable post-authentication arbitrary code execution. Affected versions (per sources): Adobe Commerce 2.4.3-p1 and earlier; 2.3.7-p2 and earlier (and related 2.x lines...

CVE-2022-22718

CVE-2022-22718 is a Windows Print Spooler elevation of privilege vulnerability. Connected sources confirm an exploit exists (e.g., SpoolFool PoC) and that it has been tracked in exploit catalogs; Microsoft/MSRC guidance and CISA KEV catalog list it among known issues. Affected component: Windows ...

CVE-2020-9054

CVE-2020-9054 (ZyXEL NAS) affects ZyXEL NAS devices on firmware v5.21 and earlier (NAS326, NAS520, NAS540, NAS542) where the weblogin.cgi authentication path fails to sanitize the username, enabling pre-authentication command injection. The vulnerability can allow an unauthenticated remote attack...

CVE-2022-3328

CVE-2022-3328 documents a race condition in snap-confine's must_mkdir_and_open_with_perms(), tied to snapd. Connected entries (GHSA-CJQF-877P-7M3F, OSV entries, Debian/Ubuntu advisories) describe a snapd race condition affecting components like snap-confine, with the core issue described as a rac...

CVE-2019-1322

CVE-2019-1322 is a Windows local privilege escalation vulnerability, arising from improper handling of authentication requests that can allow an attacker to execute with SYSTEM privileges. Public references and connected items show explicit exploitation tooling and modules (e.g., COMahawk and Ere...

CVE-2019-7609

Kibana Timelion Remote Code Execution (CVE-2019-7609): A flaw in Timelion allowed an attacker with access to the Timelion application to send a request that may execute JavaScript code, potentially yielding arbitrary commands with Kibana process privileges on the host. Affected versions are Kiban...

CVE-2019-6340

CVE-2019-6340 is a Drupal core remote code execution vulnerability affecting Drupal 8.5.x before 8.5.11 and 8.6.x before 8.6.10 when the RESTful Web Services (rest) module is enabled and PATCH/POST requests are allowed, or when other web services modules (e.g., JSON:API, Services, RESTful Web Ser...

CVE-2012-1856

CVE-2012-1856 covers a remote code execution vulnerability in the TabStrip ActiveX control (MSCOMCTL.OCX) used by multiple Microsoft Office components and related products. The issue arises from a system-state corruption triggered by crafted (1) documents or (2) web pages, allowing remote attacke...

CVE-2018-1000840

The CVE-2018-1000840 entry is confirmed: Processing Foundation Processing versions 3.4 and earlier are affected by an XML External Entity (XXE) vulnerability in the loadXML() function. This flaw allows an attacker to read arbitrary files and exfiltrate their contents via HTTP requests, exploitabl...

CVE-2016-3115

OpenSSH CVE-2016-3115 affects sshd in OpenSSH prior to 7.2p2. The vulnerability arises from CRLF injection via crafted X11 forwarding data in session.c (related to do_authenticated1 and session_x11_req), allowing a remote authenticated user to bypass shell-command restrictions. In practice, affec...

CVE-2023-27043

CVE-2023-27043 : The Python email module (email/_parseaddr.py) misparses e-mail addresses with a special character, causing the addr-spec to be taken from the wrong RFC2822 header field. This can allow bypassing domain-based signup protections (e.g., restricting to @company.example.com). The Astr...