CVE Search Explorer

Search vulnerability database with CVSS score visualizer

30 of 30 CVEs

CVE-2024-3094Critical2024

XZ Utils Backdoor

XZ Utils 5.6.0 / 5.6.1

CVSS10.0

CVE-2024-21762Critical2024

FortiOS Out-of-Bounds Write

Fortinet FortiOS / FortiProxy

CVSS9.6

CVE-2024-23897Critical2024

Jenkins Arbitrary File Read

Jenkins <= 2.441 / LTS <= 2.426.2

CVSS9.8

CVE-2023-44487High2023

HTTP/2 Rapid Reset

HTTP/2 Protocol Implementations

CVSS7.5

CVE-2023-4863High2023

WebP Heap Buffer Overflow

Google Chrome / libwebp / Electron apps

CVSS8.8

CVE-2023-34362Critical2023

MOVEit Transfer SQL Injection

Progress MOVEit Transfer

CVSS9.8

CVE-2023-27997Critical2023

FortiGate SSL-VPN RCE

Fortinet FortiOS SSL-VPN

CVSS9.2

CVE-2022-22965Critical2022

Spring4Shell

Spring Framework 5.3.x / 5.2.x

CVSS9.8

CVE-2022-41040High2022

ProxyNotShell (Exchange)

Microsoft Exchange Server 2013/2016/2019

CVSS8.8

CVE-2022-30190High2022

Follina (MSDT RCE)

Microsoft Windows MSDT

CVSS7.8

CVE-2021-44228Critical2021

Log4Shell

Apache Log4j 2.x (< 2.15.0)

CVSS10.0

CVE-2021-45046Critical2021

Log4j Second Vulnerability

Apache Log4j 2.x (< 2.16.0)

CVSS9.0

CVE-2021-34527High2021

PrintNightmare

Windows Print Spooler Service

CVSS8.8

CVE-2021-27065High2021

Exchange ProxyLogon

Microsoft Exchange Server 2013-2019

CVSS7.8

CVE-2021-21972Critical2021

VMware vCenter RCE

VMware vCenter Server 6.5-7.0

CVSS9.8

CVE-2020-1472Critical2020

Zerologon

Microsoft Netlogon (Windows Server)

CVSS10.0

CVE-2020-0601High2020

CurveBall (CryptoAPI Spoofing)

Windows CryptoAPI (crypt32.dll)

CVSS8.1

CVE-2020-0688High2020

Exchange Validation Key RCE

Microsoft Exchange Server 2010-2019

CVSS8.8

CVE-2019-19781Critical2019

Citrix ADC Path Traversal

Citrix ADC / Gateway / SD-WAN

CVSS9.8

CVE-2019-0708Critical2019

BlueKeep

Windows RDP (XP through Server 2008 R2)

CVSS9.8

CVE-2018-11776High2018

Apache Struts RCE

Apache Struts 2.3-2.3.34 / 2.5-2.5.16

CVSS8.1

CVE-2017-11882High2017

Microsoft Equation Editor RCE

Microsoft Office 2007-2016

CVSS7.8

CVE-2017-5638Critical2017

Apache Struts (Equifax Breach)

Apache Struts 2.3.5-2.3.31 / 2.5-2.5.10

CVSS10.0

CVE-2017-0144High2017

EternalBlue (WannaCry)

Microsoft SMBv1 (Windows XP-Server 2008)

CVSS8.1

CVE-2016-5195High2016

Dirty COW

Linux Kernel (2.x through 4.x)

CVSS7.8

CVE-2015-7547High2015

glibc getaddrinfo Buffer Overflow

GNU C Library (glibc) 2.9+

CVSS8.1

CVE-2014-6271Critical2014

Shellshock

GNU Bash (through 4.3)

CVSS9.8

CVE-2014-0160High2014

Heartbleed

OpenSSL 1.0.1-1.0.1f

CVSS7.5

CVE-2014-0050High2014

Apache Commons FileUpload DoS

Apache Commons FileUpload < 1.3.1

CVSS7.5

CVE-2013-3900High2013

WinVerifyTrust Signature Validation

Microsoft Windows (all versions)

CVSS7.6

Back to Playground

CVE Search Explorer

Search vulnerability database with CVSS score visualizer

30 of 30 CVEs

CVE-2024-3094Critical2024

XZ Utils Backdoor

XZ Utils 5.6.0 / 5.6.1

CVSS10.0

CVE-2024-21762Critical2024

FortiOS Out-of-Bounds Write

Fortinet FortiOS / FortiProxy

CVSS9.6

CVE-2024-23897Critical2024

Jenkins Arbitrary File Read

Jenkins <= 2.441 / LTS <= 2.426.2

CVSS9.8

CVE-2023-44487High2023

HTTP/2 Rapid Reset

HTTP/2 Protocol Implementations

CVSS7.5

CVE-2023-4863High2023

WebP Heap Buffer Overflow

Google Chrome / libwebp / Electron apps

CVSS8.8

CVE-2023-34362Critical2023

MOVEit Transfer SQL Injection

Progress MOVEit Transfer

CVSS9.8

CVE-2023-27997Critical2023

FortiGate SSL-VPN RCE

Fortinet FortiOS SSL-VPN

CVSS9.2

CVE-2022-22965Critical2022

Spring4Shell

Spring Framework 5.3.x / 5.2.x

CVSS9.8

CVE-2022-41040High2022

ProxyNotShell (Exchange)

Microsoft Exchange Server 2013/2016/2019

CVSS8.8

CVE-2022-30190High2022

Follina (MSDT RCE)

Microsoft Windows MSDT

CVSS7.8

CVE-2021-44228Critical2021

Log4Shell

Apache Log4j 2.x (< 2.15.0)

CVSS10.0

CVE-2021-45046Critical2021

Log4j Second Vulnerability

Apache Log4j 2.x (< 2.16.0)

CVSS9.0

CVE-2021-34527High2021

PrintNightmare

Windows Print Spooler Service

CVSS8.8

CVE-2021-27065High2021

Exchange ProxyLogon

Microsoft Exchange Server 2013-2019

CVSS7.8

CVE-2021-21972Critical2021

VMware vCenter RCE

VMware vCenter Server 6.5-7.0

CVSS9.8

CVE-2020-1472Critical2020

Zerologon

Microsoft Netlogon (Windows Server)

CVSS10.0

CVE-2020-0601High2020

CurveBall (CryptoAPI Spoofing)

Windows CryptoAPI (crypt32.dll)

CVSS8.1

CVE-2020-0688High2020

Exchange Validation Key RCE

Microsoft Exchange Server 2010-2019

CVSS8.8

CVE-2019-19781Critical2019

Citrix ADC Path Traversal

Citrix ADC / Gateway / SD-WAN

CVSS9.8

CVE-2019-0708Critical2019

BlueKeep

Windows RDP (XP through Server 2008 R2)

CVSS9.8

CVE-2018-11776High2018

Apache Struts RCE

Apache Struts 2.3-2.3.34 / 2.5-2.5.16

CVSS8.1

CVE-2017-11882High2017

Microsoft Equation Editor RCE

Microsoft Office 2007-2016

CVSS7.8

CVE-2017-5638Critical2017

Apache Struts (Equifax Breach)

Apache Struts 2.3.5-2.3.31 / 2.5-2.5.10

CVSS10.0

CVE-2017-0144High2017

EternalBlue (WannaCry)

Microsoft SMBv1 (Windows XP-Server 2008)

CVSS8.1

CVE-2016-5195High2016

Dirty COW

Linux Kernel (2.x through 4.x)

CVSS7.8

CVE-2015-7547High2015

glibc getaddrinfo Buffer Overflow

GNU C Library (glibc) 2.9+

CVSS8.1

CVE-2014-6271Critical2014

Shellshock

GNU Bash (through 4.3)

CVSS9.8

CVE-2014-0160High2014

Heartbleed

OpenSSL 1.0.1-1.0.1f

CVSS7.5

CVE-2014-0050High2014

Apache Commons FileUpload DoS

Apache Commons FileUpload < 1.3.1

CVSS7.5

CVE-2013-3900High2013

WinVerifyTrust Signature Validation

Microsoft Windows (all versions)

CVSS7.6