| CVE-2021-30983 | High | AppleiOS and iPadOS | Apple iOS and iPadOS contain a buffer overflow vulnerability that could allow an application to execute code with kernel privileges. | Jun 27, 2022 | KEV |
| CVE-2020-3837 | High | AppleMultiple Products | Apple iOS, iPadOS, macOS, tvOS, and watchOS contain a memory corruption vulnerability that could allow an application to execute code with kernel privileges. | Jun 27, 2022 | KEV |
| CVE-2020-9907 | High | AppleMultiple Products | Apple iOS, iPadOS, and tvOS contain a memory corruption vulnerability that could allow an application to execute code with kernel privileges. | Jun 27, 2022 | KEV |
| CVE-2022-30190 | High | MicrosoftWindows | A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run code with the privileges of the calling application. | Jun 14, 2022 | KEV |
| CVE-2021-38163 | High | SAPNetWeaver | SAP NetWeaver contains a vulnerability that allows unrestricted file upload. | Jun 9, 2022 | KEV |
| CVE-2016-2386 | High | SAPNetWeaver | SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | Jun 9, 2022 | KEV |
| CVE-2016-2388 | High | SAPNetWeaver | The Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a crafted HTTP request. | Jun 9, 2022 | KEV |
| CVE-2010-2572 | High | MicrosoftPowerPoint | Microsoft PowerPoint contains a buffer overflow vulnerability that alllows for remote code execution. | Jun 8, 2022 | KEV |
| CVE-2010-1297 | High | AdobeFlash Player | Adobe Flash Player contains a memory corruption vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS). | Jun 8, 2022 | KEV |
| CVE-2009-4324 | High | AdobeAcrobat and Reader | Use-after-free vulnerability in Adobe Acrobat and Reader allows remote attackers to execute code via a crafted PDF file. | Jun 8, 2022 | KEV |
| CVE-2009-3953 | High | AdobeAcrobat and Reader | Adobe Acrobat and Reader contains an array boundary issue in Universal 3D (U3D) support that could lead to remote code execution. | Jun 8, 2022 | KEV |
| CVE-2019-7193 | High | QNAPQTS | QNAP QTS contains an improper input validation vulnerability allowing remote attackers to inject code on the system. | Jun 8, 2022 | KEV |
| CVE-2011-2462 | High | AdobeReader and Acrobat | The Universal 3D (U3D) component in Adobe Reader and Acrobat contains a memory corruption vulnerability which could allow remote attackers to execute code or cause denial-of-service (DoS). | Jun 8, 2022 | KEV |
| CVE-2009-1862 | High | AdobeAcrobat and Reader, Flash Player | Adobe Acrobat and Reader and Adobe Flash Player allows remote attackers to execute code or cause denial-of-service (DoS). | Jun 8, 2022 | KEV |
| CVE-2019-7195 | High | QNAPPhoto Station | QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files. | Jun 8, 2022 | KEV |
| CVE-2019-7194 | High | QNAPPhoto Station | QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files. | Jun 8, 2022 | KEV |
| CVE-2019-7192 | High | QNAPPhoto Station | QNAP NAS devices running Photo Station contain an improper access control vulnerability allowing remote attackers to gain unauthorized access to the system. | Jun 8, 2022 | KEV |
| CVE-2019-5825 | High | GoogleChromium V8 | Google Chromium V8 Engine contains an out-of-bounds write vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera. | Jun 8, 2022 | KEV |
| CVE-2010-2883 | High | AdobeAcrobat and Reader | Adobe Acrobat and Reader contain a stack-based buffer overflow vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS). | Jun 8, 2022 | KEV |
| CVE-2019-15271 | High | CiscoRV Series Routers | A deserialization of untrusted data vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an attacker to execute code with root privileges. | Jun 8, 2022 | KEV |