Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (34372 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-3584 1 Qdrant 1 Qdrant 2025-07-10 7.5 High
qdrant/qdrant version 1.9.0-dev is vulnerable to path traversal due to improper input validation in the `/collections/{name}/snapshots/upload` endpoint. By manipulating the `name` parameter through URL encoding, an attacker can upload a file to an arbitrary location on the system, such as `/root/poc.txt`. This vulnerability allows for the writing and overwriting of arbitrary files on the server, potentially leading to a full takeover of the system. The issue is fixed in version 1.9.0.
CVE-2024-4287 1 Mintplexlabs 1 Anythingllm 2025-07-10 7.2 High
In mintplex-labs/anything-llm, a vulnerability exists due to improper input validation in the workspace update process. Specifically, the application fails to validate or format JSON data sent in an HTTP POST request to `/api/workspace/:workspace-slug/update`, allowing it to be executed as part of a database query without restrictions. This flaw enables users with a manager role to craft a request that includes nested write operations, effectively allowing them to create new Administrator accounts.
CVE-2023-24932 1 Microsoft 13 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 10 more 2025-07-10 6.7 Medium
Secure Boot Security Feature Bypass Vulnerability
CVE-2023-29344 1 Microsoft 3 365 Apps, Office, Office Long Term Servicing Channel 2025-07-10 7.8 High
Microsoft Office Remote Code Execution Vulnerability
CVE-2023-29333 1 Microsoft 2 365 Apps, Office 2025-07-10 3.3 Low
Microsoft Access Denial of Service Vulnerability
CVE-2023-29325 1 Microsoft 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more 2025-07-10 8.1 High
Windows OLE Remote Code Execution Vulnerability
CVE-2023-24904 1 Microsoft 1 Windows Server 2008 2025-07-10 7.1 High
Windows Installer Elevation of Privilege Vulnerability
CVE-2023-24881 1 Microsoft 1 Teams 2025-07-10 6.5 Medium
Microsoft Teams Information Disclosure Vulnerability
CVE-2023-28290 1 Microsoft 1 Remote Desktop App 2025-07-10 5.3 Medium
Microsoft Remote Desktop app for Windows Information Disclosure Vulnerability
CVE-2023-29350 1 Microsoft 1 Edge Chromium 2025-07-10 7.5 High
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2023-29354 1 Microsoft 1 Edge Chromium 2025-07-10 4.7 Medium
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2023-29343 1 Microsoft 1 Windows Sysmon 2025-07-10 7.8 High
SysInternals Sysmon for Windows Elevation of Privilege Vulnerability
CVE-2023-29341 1 Microsoft 1 Av1 Video Extension 2025-07-10 7.8 High
AV1 Video Extension Remote Code Execution Vulnerability
CVE-2023-29340 1 Microsoft 1 Av1 Video Extension 2025-07-10 7.8 High
AV1 Video Extension Remote Code Execution Vulnerability
CVE-2023-29338 1 Microsoft 1 Visual Studio Code 2025-07-10 6.6 Medium
Visual Studio Code Spoofing Vulnerability
CVE-2023-29335 1 Microsoft 15 365 Apps, Office, Windows 10 1507 and 12 more 2025-07-10 7.5 High
Microsoft Word Security Feature Bypass Vulnerability
CVE-2023-29324 1 Microsoft 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more 2025-07-10 6.5 Medium
Windows MSHTML Platform Security Feature Bypass Vulnerability
CVE-2023-24954 1 Microsoft 14 Sharepoint Enterprise Server, Sharepoint Server, Windows 10 1507 and 11 more 2025-07-10 6.5 Medium
Microsoft SharePoint Server Information Disclosure Vulnerability
CVE-2023-24953 1 Microsoft 5 365 Apps, Excel, Office and 2 more 2025-07-10 7.8 High
Microsoft Excel Remote Code Execution Vulnerability
CVE-2023-24950 1 Microsoft 2 Sharepoint Enterprise Server, Sharepoint Server 2025-07-10 6.5 Medium
Microsoft SharePoint Server Spoofing Vulnerability