CVE-2012-2034

CVE-2012-2034 concerns memory corruption in Adobe Flash Player (and Adobe AIR) that enables remote code execution or DoS via unspecified vectors. Affected platforms include Windows/macOS prior to 10.3.183.20 and 11.x before 11.3.300.257 (Windows/macOS), Linux prior to 11.2.202.236, Android 2.x/3....

CVE-2013-1347

CVE-2013-1347 (Internet Explorer 8) is a remote code execution vulnerability in IE8 arising from a use-after-free in CGenericElement/mshtml.dll when handling in-memory objects. Exploitation in the wild during 2013 (notably DoL incident) demonstrated remote code execution by visiting a crafted web...

CVE-2024-4577

CVE-2024-4577 affects PHP on Windows when using Apache + PHP-CGI with certain code pages. Vulnerable: PHP 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8; the Windows Best-Fit codepage handling can cause Win32 API command lines to be misinterpreted as PHP options, enabling an attacke...

CVE-2023-23529

CVE-2023-23529 is a type confusion vulnerability in WebKit/WebKitGTK that could allow arbitrary code execution when processing malicious web content. Apple’s advisory covers iOS/iPadOS/macOS/Safari patches (iOS 15.7.4, 16.3.1, macOS Ventura 13.2.1, Safari 16.3) and notes active exploitation repor...

CVE-2021-21017

CVE-2021-21017 affects Adobe Acrobat/Reader (DC Continuous and prior releases) with a heap-based buffer overflow that could allow arbitrary code execution in the user’s context after opening a malicious file. The linked exploit analyses describe a flaw in URL/baseURL handling within PDFs (potenti...

CVE-2016-10011

CVE-2016-10011 – OpenSSH sshd (OpenSSH before 7.4) : The vulnerability arises from how authfile.c handles realloc on buffer contents, potentially leaking host private key material to privilege-separated child processes. This is a local, privilege-edge case: an attacker with access to the privileg...

CVE-2010-2861

Adobe ColdFusion

CVE-2010-1428

CVE-2010-1428 affects Red Hat JBoss Enterprise Application Platform (JBEAP) Web Console, where access control was enforced only for GET/POST; other methods allowed unauthorized access to sensitive information. Affected versions are JBEAP 4.2 up to 4.2.0.CP08/4.3 up to 4.3.0.CP07 (per initial desc...

CVE-2022-20812

CVE-2022-20812 affects Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS). It enables an authenticated remote attacker with Administrator read-write privileges to trigger path traversal and overwrite arbitrary files via the cluster database API due to insufficient inp...

CVE-2018-6065

CVE-2018-6065 is an integer overflow in Google Chrome/Chromium’s V8 engine that could allow remote heap corruption via a crafted HTML page. Documents confirm the affected component as the V8 JavaScript engine and indicate potential remote code execution/heap corruption in versions prior to 65.0.3...

CVE-2026-35273

CVE-2026-35273 is a remote, unauthenticated RCE in Oracle PeopleSoft Enterprise PeopleTools Updates Environment Management (PSEMHUB) affecting PeopleTools 8.61 and 8.62. Vendor advisories describe the flaw as a high-severity, network-exposed vulnerability with CVSS v3.1 score 9.8. Exploitation ha...

CVE-2019-16920

CVE-2019-16920 is an unauthenticated remote code execution flaw in D-Link consumer routers (DIR-655C, DIR-866L, DIR-652, DHP-1565, DIR-855L, DAP-1533, DIR-862L, DIR-615, DIR-835, DIR-825, and others) triggered by arbitrary input to the PingTest CGI, allowing command injection and full system comp...

CVE-2015-2051

CVE-2015-2051 describes a remote command execution in D-Link DIR-645 (Wired/Wireless Router) Rev. Ax with firmware 1.04b12 and earlier via the HNAP GetDeviceSettings action. The flaw allows an unauthenticated attacker to trigger arbitrary commands through the HNAP SOAP interface, leading to full ...

CVE-2021-44168

Fortinet FortiOS FortiGate vulnerability CVE-2021-44168: a local authenticated attacker can exploit the FortiOS “execute restore src-vis” path to download arbitrary files on the device via specially crafted update packages, potentially yielding a root shell via LD_PRELOAD. Published exploit code ...

CVE-2021-20022

CVE-2021-20022 affects SonicWall Email Security versions 10.0.9.x and enables post-authenticated arbitrary file upload via the branding ZIP mechanism (Zip Slip style) to write files to the server. FireEye/Mandiant detail that lack of input validation allows an attacker to place a web shell in a w...

CVE-2012-0754

CVE-2012-0754 affects Adobe Flash Player on Windows, macOS, Linux, Solaris, and Android (various versions). The vulnerability is a memory corruption issue in Flash Player that can be exploited to execute arbitrary code or cause a denial of service via unspecified vectors. Affected versions includ...

CVE-2020-8616

CVE-2020-8616 (ISC BIND): A denial-of-service exists due to failure to limit the number of fetches when processing referrals. A remote attacker can craft referrals to cause a recursing server to perform a very large number of fetches, degrading performance and enabling potential reflection attack...

CVE-2019-1429

CVE-2019-1429 is a Microsoft Internet Explorer JScript memory-corruption vulnerability (use-after-free) in the scripting engine. It fixes a shortcoming/variant of CVE-2019-1367, specifically triggered via toJSON in the arguments array, with exploitation in-the-wild noted and a patch released by M...

CVE-2013-0431

CVE-2013-0431 is an Oracle Java sandbox bypass in the JRE/OpenJDK stack affecting Java SE 7 up to Update 11 and OpenJDK 7, exploitable by a user‑assisted remote attacker via JMX‑related vectors. The vulnerability allows bypassing sandbox restrictions and is discussed alongside CVE-2013-1490 (dist...

CVE-2022-22047

CVE-2022-22047 is a Windows CSRSS Elevation of Privilege vulnerability. The CSRSS component may allow a local attacker who can execute code on the target to gain SYSTEM privileges. Public exploitation has been reported; Microsoft’s July 2022 Patch Tuesday addressed this family of issues (CSRSS Eo...

CVE-2020-27932

CVE-2020-27932 is a kernel-type-confusion issue in Apple’s XNU (mach turnstiles) that could allow a malicious app to execute code with kernel privileges. Connected sources confirm the root cause as a type confusion in kernel IPC machinery and note exploitation in-the-wild only in a macOS/iOS/macO...

CVE-2020-11978

Apache Airflow CVE-2020-11978 affects Airflow 1.10.10 and earlier in one of the shipped example DAGs, enabling remote command execution. The root cause is a command-injection vulnerability in the example DAGs, which could allow an authenticated user to run arbitrary commands as the user running t...

CVE-2018-19277

CVE-2018-19277 affects PhpSpreadsheet (PHPOffice) up to version 1.5.0. The flaw: the library’s XML handling in Xlsx files can bypass protection via UTF-7 encoding, enabling an XML External Entity (XXE) attack. Root cause per sources: XmlScanner/Xml parsing when declared encoding differs from UTF-...

CVE-2020-36193

CVE-2020-36193 affects PHP’s PEAR Archive_Tar (Archive_Tar) up to version 1.4.11. The root cause is inadequate checking of symbolic links, enabling directory traversal for write operations inside an archive. This is a related issue to CVE-2020-28948. Mitigation: upgrade Archive_Tar to 1.4.14 or l...

CVE-2006-1547

CVE-2006-1547 affects Apache Struts 1.x before 1.2.9 when used with BeanUtils 1.7. The vulnerability arises from ActionForm handling a multipart/form-data form where a parameter name references getMultipartRequestHandler, granting access to elements in CommonsMultipartRequestHandler and BeanUtils...

CVE-2021-36742

CVE-2021-36742 is an improper input validation vulnerability that affects Trend Micro Apex One, Apex One as a Service, OfficeScan XG and Worry-Free Business Security 10.0 SP1. The root cause is flawed input validation that lets a local attacker escalate privileges after obtaining the ability to r...

CVE-2020-8644

CVE-2020-8644 affects PlaySMS pre-1.4.3, where a server-side template injection leads to remote code execution. The root cause is double processing of a server-side template (TPL) in the PlaySMS template engine, enabling arbitrary code execution via unauthenticated input. Affected version: before...

CVE-2020-25687

CVE-2020-25687 affects dnsmasq and is fixed in version 2.83. Affected component: DNSSEC-enabled processing in dnsmasq where a heap-based buffer overflow can occur. The root cause is insufficient length checks in rfc1035.c:extract_name() and related code paths in sort_rrset()/get_rdata(), enabling...

CVE-2019-5591

CVE-2019-5591 in FortiOS is a default-configuration vulnerability that allows an unauthenticated attacker on the same subnet to intercept sensitive information by impersonating an LDAP server, enabling man‑in‑the‑middle credential exposure. A PoC (GitHub: fortios-ldap-mitm-poc-CVE-2019-5591) demo...

CVE-2019-1652

CVE-2019-1652 affects Cisco Small Business RV320/RV325 routers. The vulnerability is a command injection in the web-based management interface exploited via authenticated HTTP POST requests, allowing an admin-level attacker to execute commands as root on the underlying Linux shell. Public details...

CVE-2010-5326

The CVE-2010-5326 issue affects SAP NetWeaver Application Server Java, specifically the Invoker Servlet, and is exploitable without authentication. Affected are SAP NetWeaver AS Java platforms possibly older than version 7.3, where an unauthenticated HTTP/HTTPS request can trigger remote code exe...

CVE-2011-4415

The CVE-2011-4415 issue affects the Apache HTTP Server (2.0.x up to 2.0.64 and 2.2.x up to 2.2.21) when mod_setenvif is enabled. The root cause is an integer overflow in ap_pregsub during environment variable handling (SetEnvIf), with a crafted .htaccess and HTTP header causing memory exhaustion ...

CVE-2022-0547

OpenVPN 2.1–2.4.12 and 2.5.6 are affected by CVE-2022-0547, which enables authentication bypass when multiple external authentication plug-ins use deferred authentication replies, potentially granting access with partially correct credentials. The root cause involves how deferred responses from m...

CVE-2019-8605

CVE-2019-8605 is a use-after-free vulnerability in Apple’s XNU kernel (iOS, macOS, tvOS, watchOS) that could allow a malicious app to execute arbitrary code with system privileges. The initial description notes a use-after-free that was fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, and watc...

CVE-2018-18325

Summary: CVE-2018-18325 affects DNN (DotNetNuke) platforms running version 9.2 through 9.2.2. The issue is an inadequate encryption strength for input parameters, arising from an incomplete fix for CVE-2018-15811. The vulnerability is tied to the use of a weak encryption algorithm in protecting i...

CVE-2016-6935

Adobe Creative Cloud Desktop on Windows is affected by CVE-2016-6935 due to an unquoted Windows search path in versions prior to 3.8.0.310, enabling local privilege escalation via a Trojan horse executable placed in the SYSTEMDRIVE root. The advisory APSB16-34 recommends updating to 3.8.0.310 to ...

CVE-2011-0609

The CVE-2011-0609 issue is an Adobe Flash Player AVM Bytecode Verification vulnerability that allows remote code execution via crafted SWF content. Affected products include Flash Player 10.2.x and earlier (Windows, macOS, Linux, Solaris), Flash Player 10.1.106.16 and earlier on Android, Adobe AI...

CVE-2021-1782

CVE-2021-1782 is an iOS/XNU in-the-wild vulnerability in the IPC vouchers subsystem. Project Zero details a race window around user_data handling: an non-atomic increment of e_made in a user_data_value_element can desynchronize with ivace->ivace_made, enabling a race between releasing and revi...

CVE-2019-0543

Technical details about CVE-2019-0543 are not publicly provided in the supplied documents. Monitor for updates.

CVE-2012-3152

CVE-2012-3152/3153 affect Oracle Fusion Middleware’s Oracle Reports Developer component (11.1.1.4, 11.1.1.6, 11.1.2.0). An unspecified vulnerability in the Report Server/Servlet can allow remote attackers to affect confidentiality and integrity; one note indicates possible file read/upload of a ....

CVE-2019-1385

CVE-2019-1385 is a local privilege-escalation vulnerability in Windows AppX Deployment Extensions (AppXSVC). The issue arises from improper privilege management within the AppX Deployment Extensions, enabling an authenticated attacker who runs a specially crafted application to elevate privileges...

CVE-2022-20821

Cisco IOS XR Software health check RPM opens port 6379 by default, exposing the Redis instance inside the NOSi container to unauthenticated remote access. This could allow writing to the Redis in-memory DB, writing arbitrary files to the container filesystem, and retrieving Redis data. The vulner...

CVE-2022-26143

Mitel MiCollab (TP-240) before 9.4 SP1 FP1 and MiVoice Business Express through 8.1 contains a vulnerability in the TP-240 component that allows remote attackers to obtain sensitive information and trigger denial of service, including detrimental outbound traffic. The issue, known for enabling th...

CVE-2021-44515

Zoho ManageEngine Desktop Central (and Desktop Central MSP) is affected by CVE-2021-44515, a authentication bypass that enables remote code execution on the server. Affected builds: Enterprise 10.1.2127.17 and earlier require upgrading to 10.1.2127.18; Enterprise 10.1.2128.0–10.1.2137.2 require 1...

CVE-2021-30807

CVE-2021-30807 is a memory-corruption flaw in Apple’s IOMobileFrameBuffer kernel extension that can allow an app to execute arbitrary code with kernel privileges. The issue affects iOS, iPadOS, macOS (and watchOS via related advisories) and is fixed in macOS Big Sur 11.5.1, iOS 14.7.1 and iPadOS ...

CVE-2021-30883

CVE-2021-30883 is an memory-corruption vulnerability in Apple’s IOMobileFrameBuffer that can allow a malicious app to execute arbitrary code with kernel privileges. Apple patched it across iOS/iPadOS 14.8.1 and 15.0.2, macOS Big Sur 11.6.1 and Monterey 12.0.1, tvOS 15.1, and watchOS 8.1. The Appl...

CVE-2019-7481

SonicWall SMA100 is affected by CVE-2019-7481, an information-disclosure vulnerability that allows unauthenticated attackers to gain read-only access to unauthorized resources. The vulnerability impacts SMA100 versions up to and including 9.0.0.3 (and earlier per the CVE description). Reported CV...

CVE-2010-1899

CVE-2010-1899 corresponds to a stack consumption vulnerability in the ASP implementation of Microsoft IIS (versions affected: 5.1, 6.0, 7.0, 7.5) that can be triggered by crafted requests to asp.dll, causing a denial of service (daemon outage). Public references indicate the issue is addressed by...

CVE-2025-27427

CVE-2025-27427 affects Apache ActiveMQ Artemis 2.0.0–2.39.0. A user with createDurableQueue or createNonDurableQueue permissions can augment the routing-type of an address without createAddress permission, and with send permission plus automatic queue creation could send messages using a routing-...

CVE-2024-56323

OpenFGA Open Authorization Engine (versions v1.3.8–v1.8.2; Helm openfga-0.1.38–0.2.19; docker 1.3.8–1.8.2) contains a critical authorization bypass vulnerability (CVE-2024-56323). Root cause: when a model uses conditions and contextual tuples are provided in Check or ListObjects calls, and OPENFG...