CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2015-0311	High	92.8%	AdobeFlash Player	Unspecified vulnerability in Adobe Flash Player allows remote attackers to execute code.	Apr 13, 2022	KEV
CVE-2018-20753	High	37.7%	KaseyaVirtual System/Server Administrator (VSA)	Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices.	Apr 13, 2022	KEV
CVE-2015-5123	High	47.6%	AdobeFlash Player	Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).	Apr 13, 2022	KEV
CVE-2018-7602	High	94.4%	DrupalCore	A remote code execution vulnerability exists within multiple subsystems of Drupal that can allow attackers to exploit multiple attack vectors on a Drupal site.	Apr 13, 2022	KEV
CVE-2014-9163	High	3.6%	AdobeFlash Player	Stack-based buffer overflow in Adobe Flash Player allows attackers to execute code remotely.	Apr 13, 2022	KEV
CVE-2015-5122	High	92.8%	AdobeFlash Player	Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).	Apr 13, 2022	KEV
CVE-2020-2509	High	85.0%	QNAPQNAP Network-Attached Storage (NAS)	QNAP NAS devices contain a command injection vulnerability which could allow attackers to perform remote code execution.	Apr 11, 2022	KEV
CVE-2021-39793	High	0.1%	GooglePixel	Google Pixel contains a possible out-of-bounds write due to a logic error in the code that could lead to local escalation of privilege.	Apr 11, 2022	KEV
CVE-2021-27852	High	25.5%	CheckboxCheckbox Survey	Deserialization of Untrusted Data vulnerability in CheckboxWeb.dll of Checkbox Survey allows an unauthenticated remote attacker to execute arbitrary code.	Apr 11, 2022	KEV
CVE-2021-42278	High	94.1%	MicrosoftActive Directory	Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.	Apr 11, 2022	KEV
CVE-2021-42287	High	94.0%	MicrosoftActive Directory	Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.	Apr 11, 2022	KEV
CVE-2021-22600	High	0.1%	LinuxKernel	Linux Kernel contains a flaw in the packet socket (AF_PACKET) implementation which could lead to incorrectly freeing memory. A local user could exploit this for denial-of-service (DoS) or possibly for privilege escalation.	Apr 11, 2022	KEV
CVE-2017-11317	High	92.0%	TelerikUser Interface (UI) for ASP.NET AJAX	Telerik.Web.UI in Progress Telerik UI for ASP.NET AJAX allows remote attackers to perform arbitrary file uploads or execute arbitrary code.	Apr 11, 2022	KEV
CVE-2022-23176	High	9.6%	WatchGuardFirebox and XTM	WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access.	Apr 11, 2022	KEV
CVE-2021-3156	High	92.3%	SudoSudo	Sudo contains an off-by-one error that can result in a heap-based buffer overflow, which allows for privilege escalation.	Apr 6, 2022	KEV
CVE-2017-0148	High	94.1%	MicrosoftSMBv1 server	The SMBv1 server in Microsoft allows remote attackers to execute arbitrary code via crafted packets.	Apr 6, 2022	KEV
CVE-2021-31166	High	93.1%	MicrosoftHTTP Protocol Stack	Microsoft HTTP Protocol Stack contains a vulnerability in http.sys that allows for remote code execution.	Apr 6, 2022	KEV
CVE-2022-22674	High	0.2%	ApplemacOS	macOS Monterey contains an out-of-bounds read vulnerability that could allow an application to read kernel memory.	Apr 4, 2022	KEV
CVE-2021-45382	High	94.2%	D-LinkMultiple Routers	A remote code execution vulnerability exists in all series H/W revisions routers via the DDNS function in ncc2 binary file.	Apr 4, 2022	KEV
CVE-2022-22675	High	1.0%	ApplemacOS	macOS Monterey contains an out-of-bounds write vulnerability that could allow an application to execute arbitrary code with kernel privileges.	Apr 4, 2022	KEV

CVE-2015-0311KEV

High

Unspecified vulnerability in Adobe Flash Player allows remote attackers to execute code.

AdobeEPSS 92.8%

CVE-2018-20753KEV

High

Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices.

KaseyaEPSS 37.7%

CVE-2015-5123KEV

High

Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).

AdobeEPSS 47.6%

CVE-2018-7602KEV

High

A remote code execution vulnerability exists within multiple subsystems of Drupal that can allow attackers to exploit multiple attack vectors on a Drupal site.

DrupalEPSS 94.4%

CVE-2014-9163KEV

High

Stack-based buffer overflow in Adobe Flash Player allows attackers to execute code remotely.

AdobeEPSS 3.6%

CVE-2015-5122KEV

High

Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).

AdobeEPSS 92.8%

CVE-2020-2509KEV

High

QNAP NAS devices contain a command injection vulnerability which could allow attackers to perform remote code execution.

QNAPEPSS 85.0%

CVE-2021-39793KEV

High

Google Pixel contains a possible out-of-bounds write due to a logic error in the code that could lead to local escalation of privilege.

GoogleEPSS 0.1%

CVE-2021-27852KEV

High

Deserialization of Untrusted Data vulnerability in CheckboxWeb.dll of Checkbox Survey allows an unauthenticated remote attacker to execute arbitrary code.

CheckboxEPSS 25.5%

CVE-2021-42278KEV

High

Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.

MicrosoftEPSS 94.1%

CVE-2021-42287KEV

High

Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.

MicrosoftEPSS 94.0%

CVE-2021-22600KEV

High

Linux Kernel contains a flaw in the packet socket (AF_PACKET) implementation which could lead to incorrectly freeing memory. A local user could exploit this for denial-of-service (DoS) or possibly for privilege escalation.

LinuxEPSS 0.1%

CVE-2017-11317KEV

High

Telerik.Web.UI in Progress Telerik UI for ASP.NET AJAX allows remote attackers to perform arbitrary file uploads or execute arbitrary code.

TelerikEPSS 92.0%

CVE-2022-23176KEV

High

WatchGuard Firebox and XTM appliances allow a remote attacker with unprivileged credentials to access the system with a privileged management session via exposed management access.

WatchGuardEPSS 9.6%

CVE-2021-3156KEV

High

Sudo contains an off-by-one error that can result in a heap-based buffer overflow, which allows for privilege escalation.

SudoEPSS 92.3%

CVE-2017-0148KEV

High

The SMBv1 server in Microsoft allows remote attackers to execute arbitrary code via crafted packets.

MicrosoftEPSS 94.1%

CVE-2021-31166KEV

High

Microsoft HTTP Protocol Stack contains a vulnerability in http.sys that allows for remote code execution.

MicrosoftEPSS 93.1%

CVE-2022-22674KEV

High

macOS Monterey contains an out-of-bounds read vulnerability that could allow an application to read kernel memory.

AppleEPSS 0.2%

CVE-2021-45382KEV

High

A remote code execution vulnerability exists in all series H/W revisions routers via the DDNS function in ncc2 binary file.

D-LinkEPSS 94.2%

CVE-2022-22675KEV

High

macOS Monterey contains an out-of-bounds write vulnerability that could allow an application to execute arbitrary code with kernel privileges.

AppleEPSS 1.0%

46 47 48 49 50 51 52