VulDB is a vulnerability database documenting more than 174000 vulnerabilities since 1970. The following list shows the latest vulnerabilities threats and exploits
- phoronix-test-suite cross-site request forgery [CVE-2022-0238]
- files_antivirus prior 1.0.0 on ownCloud protection mechanism
- files_antivirus prior 1.0.0 on ownCloud Administrative Setting os command injection
- ownCloud Client up to 2.9.1 URL injection
- Win32.MarsStealer Web Panel cross site scripting
- Ab Stealer Web Panel cross site scripting
- Win32.MarsStealer Web Panel denial of service
- Win32.MarsStealer Web Panel information disclosure
- Checkmk up to 1.6.0p18 javascript: URL cross site scripting
- Pexip Infinity prior 26.2 Call-Setup denial of service
- Pexip Infinity prior 26 Call-Setup denial of service
- Pexip Infinity prior 26 H.264 denial of service
- Pexip Infinity prior 26 H.264 denial of service
- Pexip Infinity prior 26 RMTP denial of service
- CyberArk Endpoint Privilege Manager prior 11.5.3.328 Procmon64.exe uncontrolled search path
- Open Design Alliance Drawings SDK prior 2022.12.1 JPG File memory corruption
- Crestron HD-MD4X2-4K-E 1.0.0.2159 Administrative Web Interface aj.html information disclosure
- China Mobile An Lianbao WF-1 up to 1.0.1 Web Interface mac_addr_clone macType command injection
- Juniper Junos OS Kernel resource consumption [CVE-2022-22161]
- Juniper Junos OS CLI information disclosure [CVE-2022-22162]
- Libreswan 4.2/4.3/4.4/4.5 IKEv1 Packet pluto/ikev1.c null pointer dereference
- Facebook Hermes up to 0.9.x type confusion [CVE-2021-24044]
- livehelperchat cross-site request forgery [CVE-2022-0226]
- Google Android 10.0/11.0/12.0 Emergency Calling CreateConnectionProcessor.java sortSimPhoneAccountsForEmergency denial of service
- Google Android 11.0/12.0 events.cpp inotify_cb out-of-bounds write
- Google Android 12.0 adb Shell OverlayManagerService.java executeRequest permission
- Google Android 9.0/10.0/11.0/12.0 phTmlNfc.cc phTmlNfc_Init/phTmlNfc_CleanUp use after free
- Google Android 9.0/10.0/11.0/12.0 LegacyModeSmsHandler.java sendLegacyVoicemailNotification permission
- Google Android 9.0/10.0/11.0/12.0 Bluetooth Setting ConnectedDeviceDashboardFragment.java onAttach permission
- Google Android 9.0/10.0/11.0/12.0 EuiccNotificationManager.java showCarrierAppInstallationNotification privileges management
- Google Android 10.0/11.0/12.0 GBoard permissions
- Google Android 9.0/10.0/11.0/12.0 LegacyModeSmsHandler.java sendLegacyVoicemailNotification permission
- Google Android 9.0/10.0/11.0/12.0 EuiccNotificationManager.java privileges management
- Google Android 9.0/10.0/11.0/12.0 Bluetooth DevicePickerFragment permission
- Google Android 9.0/10.0/11.0/12.0 AndroidManifest.xml LocationSettingsActivity improper restriction of rendered ui layers
- Google Android 10.0/12.0 BluetoothDevicePickerPreferenceController.java setLaunchtent external reference
- Google Android 12.0 jit_memory_region.cc privileges management
- Omron CX-One up to 4.60 Project File stack-based overflow
- libIEC61850 1.5.0 src/mms/iso_acse/acse.c AcseConnection_parseMessage null pointer dereference
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 out-of-bounds read
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 out-of-bounds read
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 null pointer dereference
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 null pointer dereference
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 Warning Message injection
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 Format Event Action use after free
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 buffer overflow
- Ubiquiti UniFi Network up to 6.5.53 injection [CVE-2021-44530]
- Sensormatic Electronics VideoEdge denial of service [CVE-2021-36199]
- colors up to 1.4.0 americanFlag infinite loop
- nanoid up to 3.1.30 ID Generator valueOf information disclosure
- Google Android Privilege Escalation [CVE-2021-1049]
- SAP Enterprise Threat Detection 2.0 cross site scripting [CVE-2022-22529]
- Google Android target.c target_init allocation of resources
- Google Android 20200335 sss_ice_util.c copy_from_mbox out-of-bounds write
- Google Android memory_group_manager.c mgm_alloc_page out-of-bounds write
- Google Android vendor_graphicbuffer_meta.cpp init use after free
- Google Android Factory Reset Protection Local Privilege Escalation
- Google Android fs/eventpoll.c use after free
- Google Android 10.0/11.0 Lockscreen StatusBar.java exposure of resource
- Google Android 11.0/12.0 Parcel.cpp ipcSetDataReference use after free
- Arista EOS AAA API improper authorization [CVE-2021-28501]
- Arista EOS AAA API improper authorization [CVE-2021-28500]
- Modex 2.11 xtract.c set_create_id null pointer dereference
- Modex 2.11 tcache use after free
- Spin 6.5.1 spinlex.c lex out-of-bounds write
- SAP S4HANA up to 106 F0743 Create Single Payment Application unrestricted upload
- Samsung Internet prior 16.0.6.23 Download improper restriction of rendered ui layers
- Segment lib60870 0d5e76e cs104_slave.c CS104_IPAddress_setFromString null pointer dereference
- GPAC 1.1.0 lsr_read_id denial of service
- GPAC 1.1.0 shift_chunk_offsets.isra null pointer dereference
- GPAC 1.1.0 gf_node_changed denial of service
- GPAC 1.1.0 gf_sg_vrml_mf_reset denial of service
- ROPium 3.1 find null pointer dereference
- SalonERP 3.0.1 Report Generator sql sql injection
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 out-of-bounds write
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 Format Event Action use after free
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 Format Event Action use after free
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 out-of-bounds write
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 out-of-bounds read
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 integer overflow
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 Format Event Action use after free
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 heap-based overflow
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 heap-based overflow
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 out-of-bounds write
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 Format Event Action use after free
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 Format Event Action use after free
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 Format Event Action use after free
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 stack-based overflow
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 ActiveX Control information disclosure
- Adobe Acrobat Reader up to 17.011.30204/20.004.30017/21.007.20099 Format Event Action use after free
- SAP Business One 10.0 log file [CVE-2021-44234]
- Micro Focus ArcSight Enterprise Security Manager 7.4.x/7.5.x cross site scripting
- Micro Focus ArcSight Enterprise Security Manager 7.4.x/7.5.x cross site scripting
- Arista EOS OpenConfig gNOI/OpenConfig RESTCONF access control
- Arista EOS gNOI API improper authorization [CVE-2021-28506]
- Mitsubishi Electric MELSEC-F up to 1.16 Packet denial of service
- Mitsubishi Electric MELSEC-F up to 1.14 denial of service [CVE-2021-20612]
- Google Android main.c delete_protocol use after free
- Google Android sha256_core.c sec_SHA256_Transform information disclosure
- Google Android ip_gre.c gre_handle_offloads information disclosure