Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (23165 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-21872 1 Microsoft 4 Windows 10, Windows 11, Windows Server and 1 more 2025-01-02 7 High
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2022-21857 1 Microsoft 9 Windows 10, Windows 11, Windows 7 and 6 more 2025-01-02 8.8 High
Active Directory Domain Services Elevation of Privilege Vulnerability
CVE-2022-21852 1 Microsoft 4 Windows 10, Windows 11, Windows Server and 1 more 2025-01-02 7.8 High
Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2024-11112 2 Google, Microsoft 2 Chrome, Windows 2025-01-02 7.5 High
Use after free in Media in Google Chrome on Windows prior to 131.0.6778.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
CVE-2024-11114 2 Google, Microsoft 2 Chrome, Windows 2025-01-02 8.3 High
Inappropriate implementation in Views in Google Chrome on Windows prior to 131.0.6778.69 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
CVE-2024-9120 2 Google, Microsoft 2 Chrome, Windows 2025-01-02 8.8 High
Use after free in Dawn in Google Chrome on Windows prior to 129.0.6668.70 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-7023 2 Google, Microsoft 2 Chrome, Windows 2025-01-02 8 High
Insufficient data validation in Updater in Google Chrome prior to 128.0.6537.0 allowed a remote attacker to perform privilege escalation via a malicious file. (Chromium security severity: Medium)
CVE-2023-45246 4 Acronis, Apple, Linux and 1 more 5 Agent, Cyber Protect Cloud Agent, Macos and 2 more 2025-01-02 7.1 High
Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 36343, Acronis Cyber Protect 16 (Linux, macOS, Windows) before build 39169.
CVE-2023-38174 1 Microsoft 1 Edge Chromium 2025-01-01 4.3 Medium
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2023-36880 1 Microsoft 1 Edge Chromium 2025-01-01 4.8 Medium
Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
CVE-2023-35644 1 Microsoft 8 Windows 10 1809, Windows 10 21h2, Windows 10 22h2 and 5 more 2025-01-01 7.8 High
Windows Sysmain Service Elevation of Privilege Vulnerability
CVE-2023-35633 1 Microsoft 3 Windows 10 1507, Windows Server 2008, Windows Server 2012 2025-01-01 7.8 High
Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-35618 1 Microsoft 1 Edge Chromium 2025-01-01 9.6 Critical
Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2023-36878 1 Microsoft 1 Edge Chromium 2025-01-01 4.3 Medium
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2023-21751 1 Microsoft 1 Azure Devops Server 2025-01-01 6.5 Medium
Azure DevOps Server Spoofing Vulnerability
CVE-2023-35624 1 Microsoft 1 Azure Connected Machine Agent 2025-01-01 7.3 High
Azure Connected Machine Agent Elevation of Privilege Vulnerability
CVE-2023-35621 1 Microsoft 1 Dynamics 365 2025-01-01 7.5 High
Microsoft Dynamics 365 Finance and Operations Denial of Service Vulnerability
CVE-2023-35619 1 Microsoft 1 Office Long Term Servicing Channel 2025-01-01 5.3 Medium
Microsoft Outlook for Mac Spoofing Vulnerability
CVE-2023-35636 1 Microsoft 3 365 Apps, Office, Office Long Term Servicing Channel 2025-01-01 6.5 Medium
Microsoft Outlook Information Disclosure Vulnerability
CVE-2023-35634 1 Microsoft 3 Windows 11 21h2, Windows 11 22h2, Windows 11 23h2 2025-01-01 8 High
Windows Bluetooth Driver Remote Code Execution Vulnerability