CVE Database

4425+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2023-45039
3.8 LOW

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow …

Jan 5, 2024
CVE-2023-34321
3.3 LOW

Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure …

Jan 5, 2024
CVE-2023-41782
3.9 LOW

There is a DLL hijacking vulnerability in ZTE ZXCLOUD iRAI, an attacker could place a fake DLL file in a specific directory and successfully exploit …

Jan 5, 2024
CVE-2024-22047
3.1 LOW

A race condition exists in Audited 4.0.0 to 5.3.3 that can result in an authenticated user to cause audit log entries to be attributed to …

Jan 4, 2024
CVE-2024-20807
3.3 LOW

Implicit intent hijacking vulnerability in Samsung Email prior to version 6.1.90.16 allows local attacker to get sensitive information.

Jan 4, 2024
CVE-2024-20805
3.3 LOW

Path traversal vulnerability in ZipCompressor of MyFiles prior to SMR Jan-2024 Release 1 in Android 11 and Android 12, and version 14.5.00.21 in Android 13 …

Jan 4, 2024
CVE-2024-0217
3.3 LOW

A use-after-free flaw was found in PackageKitd. In some conditions, the order of cleanup mechanics for a transaction could be impacted. As a result, some …

Jan 3, 2024
CVE-2023-50348
3.1 LOW

HCL DRYiCE MyXalytics is impacted by an improper error handling vulnerability. The application returns detailed error messages that can provide an attacker with insight into …

Jan 3, 2024
CVE-2023-50346
3.1 LOW

HCL DRYiCE MyXalytics is impacted by an information disclosure vulnerability. Certain endpoints within the application disclose detailed file information.

Jan 3, 2024
CVE-2023-50345
3.7 LOW

HCL DRYiCE MyXalytics is impacted by an Open Redirect vulnerability which could allow an attacker to redirect users to malicious sites, potentially leading to phishing …

Jan 3, 2024
CVE-2020-26625
3.8 LOW

A SQL injection vulnerability was discovered in Gila CMS 1.15.4 and earlier which allows a remote attacker to execute arbitrary web scripts via the 'user_id' …

Jan 2, 2024
CVE-2020-26624
3.8 LOW

A SQL injection vulnerability was discovered in Gila CMS 1.15.4 and earlier which allows a remote attacker to execute arbitrary web scripts via the ID …

Jan 2, 2024
CVE-2020-26623
3.8 LOW

SQL Injection vulnerability discovered in Gila CMS 1.15.4 and earlier allows a remote attacker to execute arbitrary web scripts via the Area parameter under the …

Jan 2, 2024
CVE-2024-0190
3.5 LOW

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0 and classified as problematic. This issue affects some unknown processing of the file …

Jan 2, 2024
CVE-2024-0189
3.5 LOW

A vulnerability has been found in RRJ Nueva Ecija Engineer Online Portal 1.0 and classified as problematic. This vulnerability affects unknown code of the file …

Jan 2, 2024
CVE-2018-25097
3.5 LOW

A vulnerability, which was classified as problematic, was found in Acumos Design Studio up to 2.0.7. Affected is an unknown function. The manipulation leads to …

Jan 2, 2024
CVE-2024-0188
3.1 LOW

A vulnerability, which was classified as problematic, was found in RRJ Nueva Ecija Engineer Online Portal 1.0. This affects an unknown part of the file …

Jan 2, 2024
CVE-2017-20188
2.6 LOW

A vulnerability has been found in Zimbra zm-ajax up to 8.8.1 and classified as problematic. Affected by this vulnerability is the function XFormItem.prototype.setError of the …

Jan 2, 2024
CVE-2015-10128
3.5 LOW

A vulnerability was found in rt-prettyphoto Plugin up to 1.2 on WordPress and classified as problematic. Affected by this issue is the function royal_prettyphoto_plugin_links of …

Jan 2, 2024
CVE-2023-50333
3.7 LOW

Mattermost fails to update the permissions of the current session for a user who was just demoted to guest, allowing freshly demoted guests to change …

Jan 2, 2024
CVE-2023-47216
2.9 LOW

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause DOS through occupy all resources

Jan 2, 2024
CVE-2024-0186
3.7 LOW

A vulnerability classified as problematic has been found in HuiRan Host Reseller System up to 2.0.0. Affected is an unknown function of the file /user/index/findpass?do=4 …

Jan 2, 2024
CVE-2024-0184
2.4 LOW

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. This vulnerability affects unknown code of the …

Jan 2, 2024
CVE-2024-0183
2.4 LOW

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been classified as problematic. This affects an unknown part of the …

Jan 1, 2024
CVE-2024-0181
2.4 LOW

A vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown …

Jan 1, 2024

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.