CVE-2020-3580

Cisco ASA/FTD web services suffer XSS due to insufficient input validation in the web UI, allowing unauthenticated, remote attackers to induce script execution or access browser data via crafted links. Affected products include Cisco ASA and FTD with specific AnyConnect/WebVPN configurations. Imp...

CVE-2019-1405

CVE-2019-1405 is a local privilege-escalation flaw in the Windows UPnP service where improper handling allows COM object creation. Root cause per the connected CISA KEV entry is improper COM object creation by the UPnP service, enabling elevation of privileges. The CVSSv3.1 metrics in the initial...

CVE-2019-0880

CVE-2019-0880 is a local privilege-escalation in Windows where splwow64.exe mishandles certain calls, allowing a low-privilege user to elevate to medium integrity. Public details in the Initial and connected documents confirm the vulnerability class and affected component, and Microsoft’s MSRC en...

CVE-2017-0263

CVE-2017-0263: Windows Win32k local privilege escalation via kernel-mode drivers. The CVE concerns memory-object handling in Win32k.sys that allows a local attacker to gain privileges through a crafted application. Documents identify the affected Windows family (Windows 7 SP1, 8.1, Windows Server...

CVE-2013-2465

CVE-2013-2465 is a Java 2D component vulnerability that can cause memory corruption and potential sandbox bypass/remote code execution. It affected Oracle Java SE up to JRE 7u21, JDK 6 up to 6u45, and OpenJDK 7, with 2D-related vectors noted in public disclosures. Several advisories (Debian DSA-2...

CVE-2021-26626

CVE-2021-26626 affects Tobesoft XPlatform (execBrowser method). A input-validation flaw when the second parameter equals 'default' allows the first parameter to be passed to ShellExecuteW, enabling remote arbitrary code execution. Impact and vulnerable version range are described as Tobesoft XPla...

CVE-2021-36948

Technical details are not publicly provided in the available documents. The CVE is described as Windows Update Medic Service EoP, with some sources noting exploitation in the wild, but there is no concrete root cause, affected versions, or fix details here.

CVE-2021-27101

CVE-2021-27101 is an SQL injection vulnerability in Accellion FTA (affects 9_12_370 and earlier) that can be triggered via a crafted HTTP Host header to document_root.html. Public sources confirm exploitation by threat actors, with attackers deploying a webshell on compromised devices and, in som...

CVE-2023-52459

CVE-2023-52459 concerns the Linux kernel, specifically the media: v4l: async path. The vulnerability is caused by a duplicated list deletion: a second list_del() is performed after the list item was already removed, which can lead to list_del corruption (LIST_POISON) when CONFIG_DEBUG_LIST is ena...

CVE-2022-3602

OpenSSL CVE-2022-3602 is a stack-based buffer overrun in X.509 name-contraint verification that can crash a TLS client/server or, potentially, allow RCE. The issue is triggered by crafting an email address and affects OpenSSL 3.0.x (3.0.0–3.0.6). Mitigation is upgrading to OpenSSL 3.0.7 or later ...

CVE-2021-46905

CVE-2021-46905 : Linux kernel vulnerability where a NULL-pointer dereference was introduced in net: hso during tty device unregistration after a minor was released. The issue arose because the serial device table could be accessed post-release of the minor by hso_serial_tty_unregister(), leading ...

CVE-2023-2033

CVE-2023-2033: A type confusion in Google's V8 engine used by Chromium-based browsers allowed remote heap corruption via crafted HTML. The vulnerability affected Google Chrome/Chromium up to version 112.0.5615.121 and was fixed in the 112.0.5615.121 release (M112 Stable Update). Chrome’s advisory...

CVE-2025-23419

CVE-2025-23419 affects nginx where multiple server blocks share an IP/port and an attacker can reuse TLS session tickets or the SSL session cache to bypass client certificate authentication on the default server. The issue stems from how session resumption is handled when the default server perfo...

CVE-2022-3075

CVE-2022-3075 affects Google Chrome/Chromium Mojo within the renderer. The issue is insufficient data validation that could allow a remote attacker who has compromised the renderer process to escape the sandbox via a crafted HTML page, potentially enabling remote code execution. Affected versions...

CVE-2020-6819

CVE-2020-6819 is a use-after-free caused by a race condition in the nsDocShell destructor identified in Mozilla Firefox and Thunderbird. The flaw affects Thunderbird < 68.7.0, Firefox < 74.0.1, and Firefox ESR

CVE-2024-25062

CVE-2024-25062 : Affects libxml2 prior to 2.11.7 and 2.12.x prior to 2.12.5. When using the XML Reader with DTD validation and XInclude expansion, crafted XML can trigger an xmlValidatePopElement use-after-free, as described in multiple connected sources. Impact is described as an availability co...

CVE-2020-16846

CVE-2020-16846 affects SaltStack Salt via the Salt API SSH Client. The issue allows an unauthenticated, network-accessible user to execute arbitrary commands by injecting shell commands through crafted requests to the Salt API when the SSH client is enabled. The vulnerability is cited across mult...

CVE-2020-3541

CVE-2020-3541 affects Cisco Webex on Windows (Webex Meetings Client/Desktop App/Teams). The root cause is unsafe logging of authentication requests, allowing an authenticated, local attacker to read log files in the application directory and access sensitive information. Impact is information dis...

CVE-2013-2551

CVE-2013-2551 is a use-after-free vulnerability in Microsoft Internet Explorer (IE 6–10) that allows remote code execution when a crafted web page triggers access to a deleted object. The issue is documented as an internet-explorer use-after-free vulnerability exploited via drive-by pages (notabl...

CVE-2025-21176

CVE-2025-21176 is a remote code execution vulnerability affecting .NET/.NET Framework and Visual Studio components. Public sources describe a buffer over-read in DiaSymReader.dll not checking length when processing symbolic data, impacting EOL ASP.NET 6.0.0–6.0.36 and also 8.0.0–8.0.11 and up to ...

CVE-2019-0859

CVE-2019-0859 (Windows Win32k Privilege Escalation) : A local privilege escalation vulnerability in the Win32k component of Microsoft Windows arises from Win32k failing to properly handle objects in memory, enabling an attacker to run code in kernel mode. Several connected sources corroborate thi...

CVE-2021-1905

CVE-2021-1905 is a memory-management vulnerability (use-after-free) in Qualcomm Snapdragon chipsets caused by improper handling of memory mapping across multiple processes. Affects a broad range of Snapdragon products (Auto, Compute, Connectivity, IoT, Mobile, Wearables, etc.). The CVE is charact...

CVE-2022-32893

CVE-2022-32893 is an out-of-bounds write vulnerability in WebKit/WebKitGTK that could allow arbitrary code execution when processing malicious web content. The CVE is fixed in Apple products by updates: iOS 15.6.1 / iPadOS 15.6.1, macOS Monterey 12.5.1, and Safari 15.6.1. Connected advisories not...

CVE-2021-22600

CVE-2021-22600 is a local kernel vulnerability in the Linux packet migration path. A double-free in packet_set_ring() within net/packet/af_packet.c can be exploited by a local user via crafted syscalls, enabling either denial of service or privilege escalation. Connected sources confirm the under...

CVE-2021-37973

CVE-2021-37973 is a use-after-free vulnerability in Chrome’s Portals, fixed in Chrome 94.0.4606.61. Details across connected sources confirm the flaw exists in Portals code when a renderer is compromised, enabling a sandbox escape via a crafted HTML page and potentially high impact (network vecto...

CVE-2021-21975

CVE-2021-21975 (vROps SSRF) affects VMware vRealize Operations Manager API prior to 8.4. An attacker with network access can abuse SSRF via /casa/nodes/thumbprints to read internal resources and steal administrative credentials; when combined with CVE-2021-21983 (post-auth file write) this chain ...

CVE-2021-30666

CVE-2021-30666 is a WebKit-related buffer overflow in Apple iOS WebKit that could allow arbitrary code execution when processing malicious web content. The vulnerability affects WebKit in iOS and is fixed in iOS 12.5.3 (Apple’s advisory HT212341 lists WebKit updates and CVE-2021-30666 with impact...

CVE-2021-31201

CVE-2021-31201 is a Windows privilege-escalation vulnerability affecting the Enhanced Cryptographic Provider . The available documents confirm it enables local privilege escalation (local access required) and classify the impact as elevation of privileges; exact root-cause details are not provide...

CVE-2008-1446

CVE-2008-1446 describes an integer overflow in the IPP ISAPI extension of Microsoft IIS (versions 5.0–7.0) on Windows 2000 SP4, XP SP2/SP3, Server 2003 SP1/SP2, and Server 2008. An authenticated remote attacker can trigger arbitrary code execution by sending a crafted HTTP POST that causes the se...

CVE-2024-26924

CVE-2024-26924 affects the Linux kernel netfilter nft_set_pipapo implementation. The bug occurs in nft_pipapo_remove() where removal can unmap the wrong element when multiple elements share the same key, especially if an existing key’s mapping timed out or is inactive in the next generation. This...

CVE-2022-20699

CVE-2022-20699 affects Cisco Small Business RV160/RV260/RV340/RV345 Series Routers. The available connected materials indicate a stack-based buffer overflow in the RV340 SSL VPN functionality, leading to unauthenticated remote code execution with root-level impact on the device. Metasploit also d...

CVE-2021-34448

CVE-2021-34448 is a memory corruption vulnerability in the Microsoft Windows Scripting Engine (IE/JavaScript). Exploitation can be remote via a crafted web page or email, enabling code execution at the logged-on user level. Public analyses reference exploitation in the wild and Microsoft Patch Tu...

CVE-2019-0193

CVE-2019-0193 affects Apache Solr via the DataImportHandler (DIH) module. The vulnerability arises because DIH can read a request parameter dataConfig containing a DIH configuration, which can include scripts, enabling code injection. The issue is mitigated by requiring enabling the Java system p...

CVE-2018-8453

CVE-2018-8453 is a Windows Win32k local privilege escalation vulnerability. The flaw arises when Win32k fails to properly handle memory objects, allowing an attacker to escalate privileges via local code execution. Affected products include Windows 7, Windows 8.1, Windows 10 (and server variants ...

CVE-2018-13042

The CVE affects 1Password for Android (version 6.8) where two exported activities, OpenYoloDeleteActivity and OpenYoloRetrieveActivity, can be started by an external app, causing the 1Password UI to crash (Denial of Service). The vulnerability is tied to the exported components, which can be trig...

CVE-2013-2251

CVE-2013-2251 affects Apache Struts 2 (versions 2.0.0–2.3.15) via improper handling of prefixed parameters in DefaultActionMapper (action:, redirect:, redirectAction:), allowing remote OGNL expression execution and arbitrary code execution. Some sources indicate this was addressed in Struts 2.3.1...

CVE-2021-30761

CVE-2021-30761 is a memory corruption vulnerability in WebKit/iOS WebKit. The issue is triggered by processing malicious web content and can lead to arbitrary code execution. It is fixed in iOS 12.5.4 (WebKit updates included) and Apple notes that this issue may have been actively exploited in th...

CVE-2021-31979

CVE-2021-31979 is a Windows kernel elevation-of-privilege vulnerability that affects multiple kernel components, with confirmed in-the-wild activity. Affected areas include NTOS kernel, Win32k, and ntfs.sys, indicating local privilege escalation via kernel-level flaws. Public documentation in the...

CVE-2021-31199

CVE-2021-31199 is a Windows Elevation of Privilege vulnerability in the Microsoft Enhanced Cryptographic Provider. The CVE affects Windows components and is driven by local exploitation (local access required) with low privileges needed, and no user interaction, but yields high impact on confiden...

CVE-2020-1971

CVE-2020-1971 is described across multiple connected sources as a NULL-dereference in OpenSSL’s GENERAL_NAME_cmp when EDIPARTYNAME is present, potentially enabling a denial-of-service crash. Affected OpenSSL versions include all 1.1.1 and 1.0.2 lines; fixes are published in OpenSSL 1.1.1i and Ope...

CVE-2025-27597

CVE-2025-27597 affects Vue I18n: the vulnerable components are @intlify/message-resolver and @intlify/vue-i18n-core. The handleFlatJson entry point allows prototype pollution via payloads that modify Object.prototype, enabling DoS and potentially enabling remote code execution if polluted propert...

CVE-2023-28782

Described vulnerability CVE-2023-28782 affects Gravity Forms WordPress plugin versions

CVE-2021-45105

Summary of CVE-2021-45105 (Log4j2) : Affected Log4j 2.x versions 2.0-alpha1 through 2.16.0 (except 2.12.3 and 2.3.1) are vulnerable to denial of service via uncontrolled recursion triggered by self-referential lookups in Thread Context Map data. The root cause is improper handling of self-referen...

CVE-2019-0585

CVE-2019-0585 is a remote code execution vulnerability in Microsoft Word/Office products caused by improper handling of objects in memory. Exploitation could occur via specially crafted Word files, potentially in contexts like email/preview panes, with the attacker gaining the same user rights as...

CVE-2023-52454

CVE-2023-52454 affects the Linux kernel nvmet-tcp component; a host data command H2CData with invalid DATAL could crash nvmet_tcp_build_pdu_iovec(), risking a kernel NULL pointer dereference. The fix raises a fatal error when DATAL is not coherent with the packet size and ensures PDU length never...

CVE-2020-29583

CVE-2020-29583 (Zyxel hard-coded credentials) The Zyxel vulnerability concerns an undocumented user account, “zyfwp,” with an unchangeable password found in the firmware of multiple Zyxel devices. The account can grant admin access via SSH or the web interface. Affected devices include Zyxel USG/...

CVE-2020-12271

CVE-2020-12271 is a SQL injection vulnerability in Sophos XG Firewall SFOS against the backend PostgreSQL database. Affected products include SFOS versions on Sophos XG Firewalls (configured with Administration HTTPS or WAN-exposed User Portal). The root cause is improper validation of user-suppl...

CVE-2021-43890

CVE-2021-43890 is a Windows AppX Installer spoofing vulnerability. An attacker could craft a malicious package to be opened by a user, leveraging the ms-appinstaller URI handler to spoof trusted UI and execute code at the user’s level after social engineering (phishing). Attacks have been associa...

CVE-2021-31955

CVE-2021-31955 is a Windows kernel information-disclosure vulnerability in ntoskrnl.exe related to the SuperFetch feature. By sending a SystemSuperfetchInformation query via NtQuerySystemInformation, an attacker can obtain the kernel address of the current process’s EPROCESS, which also contains ...

CVE-2008-3259

OpenSSH vulnerability CVE-2008-3259 affects OpenSSH before 5.1. On affected platforms, when X11UseLocalhost is disabled, SSHD sets SO_REUSEADDR which can allow local users to hijack the X11 forwarding port by binding to a single IP address (demonstrated on HP-UX). The provided description notes t...