CVE Tracker
Track known exploited vulnerabilities, CISA KEV alerts, and linked threat intelligence.
1,540
Total CVEs
1,540
CISA KEV
1540
Critical & High
Mar 11, 2026
Last KEV Update
| CVE ID | Severity | Vendor | Description | Published | KEV |
|---|---|---|---|---|---|
| CVE-2025-32706 | High | MicrosoftWindows | Microsoft Windows Common Log File System (CLFS) Driver contains a heap-based buffer overflow vulnerability that allows an authorized attacker to elevate privileges locally. | May 13, 2025 | KEV |
| CVE-2025-30397 | High | MicrosoftWindows | Microsoft Windows Scripting Engine contains a type confusion vulnerability that allows an unauthorized attacker to execute code over a network via a specially crafted URL. | May 13, 2025 | KEV |
| CVE-2025-32701 | High | MicrosoftWindows | Microsoft Windows Common Log File System (CLFS) Driver contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally. | May 13, 2025 | KEV |
| CVE-2025-30400 | High | MicrosoftWindows | Microsoft Windows DWM Core Library contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally. | May 13, 2025 | KEV |
| CVE-2025-47729 | High | TeleMessageTM SGNL | TeleMessage TM SGNL contains a hidden functionality vulnerability in which the archiving backend holds cleartext copies of messages from TM SGNL application users. | May 12, 2025 | KEV |
| CVE-2024-11120 | High | GeoVisionMultiple Devices | Multiple GeoVision devices contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to inject and execute arbitrary system commands. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization. | May 7, 2025 | KEV |
| CVE-2024-6047 | High | GeoVisionMultiple Devices | Multiple GeoVision devices contain an OS command injection vulnerability that allows a remote, unauthenticated attacker to inject and execute arbitrary system commands. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization. | May 7, 2025 | KEV |
| CVE-2025-27363 | High | FreeTypeFreeType | FreeType contains an out-of-bounds write vulnerability when attempting to parse font subglyph structures related to TrueType GX and variable font files that may allow for arbitrary code execution. | May 6, 2025 | KEV |
| CVE-2025-3248 | High | LangflowLangflow | Langflow contains a missing authentication vulnerability in the /api/v1/validate/code endpoint that allows a remote, unauthenticated attacker to execute arbitrary code via crafted HTTP requests. | May 5, 2025 | KEV |
| CVE-2025-34028 | High | CommvaultCommand Center | Commvault Command Center contains a path traversal vulnerability that allows a remote, unauthenticated attacker to execute arbitrary code. | May 2, 2025 | KEV |
| CVE-2024-58136 | High | YiiframeworkYii | Yii Framework contains an improper protection of alternate path vulnerability that may allow a remote attacker to execute arbitrary code. This vulnerability could affect other products that implement Yii, including—but not limited to—Craft CMS, as represented by CVE-2025-32432. | May 2, 2025 | KEV |
| CVE-2023-44221 | High | SonicWallSMA100 Appliances | SonicWall SMA100 appliances contain an OS command injection vulnerability in the SSL-VPN management interface that allows a remote, authenticated attacker with administrative privilege to inject arbitrary commands as a 'nobody' user. | May 1, 2025 | KEV |
| CVE-2024-38475 | High | ApacheHTTP Server | Apache HTTP Server contains an improper escaping of output vulnerability in mod_rewrite that allows an attacker to map URLs to filesystem locations that are permitted to be served by the server but are not intentionally/directly reachable by any URL, resulting in code execution or source code disclosure. | May 1, 2025 | KEV |
| CVE-2025-31324 | High | SAPNetWeaver | SAP NetWeaver Visual Composer Metadata Uploader contains an unrestricted file upload vulnerability that allows an unauthenticated agent to upload potentially malicious executable binaries. | Apr 29, 2025 | KEV |
| CVE-2025-1976 | High | BroadcomBrocade Fabric OS | Broadcom Brocade Fabric OS contains a code injection vulnerability that allows a local user with administrative privileges to execute arbitrary code with full root privileges. | Apr 28, 2025 | KEV |
| CVE-2025-42599 | High | QualitiaActive! Mail | Qualitia Active! Mail contains a stack-based buffer overflow vulnerability that allows a remote, unauthenticated attacker to execute arbitrary or trigger a denial-of-service via a specially crafted request. | Apr 28, 2025 | KEV |
| CVE-2025-3928 | High | CommvaultWeb Server | Commvault Web Server contains an unspecified vulnerability that allows a remote, authenticated attacker to create and execute webshells. | Apr 28, 2025 | KEV |
| CVE-2025-24054 | High | MicrosoftWindows | Microsoft Windows NTLM contains an external control of file name or path vulnerability that allows an unauthorized attacker to perform spoofing over a network. | Apr 17, 2025 | KEV |
| CVE-2025-31201 | High | AppleMultiple Products | Apple iOS, iPadOS, macOS, and other Apple products contain an arbitrary read and write vulnerability that allows an attacker to bypass Pointer Authentication. | Apr 17, 2025 | KEV |
| CVE-2025-31200 | High | AppleMultiple Products | Apple iOS, iPadOS, macOS, and other Apple products contain a memory corruption vulnerability that allows for code execution when processing an audio stream in a maliciously crafted media file. | Apr 17, 2025 | KEV |