Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

5.5

MEDIUM

CVE-2024-53044

In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_api: fix xa_insert() error path in tcf_block_get_ext() This command: $ tc qdisc replace dev eth0 ingress_block 1 egress_block 1 clsact Error: block dev insert failed: -E...

Affected Products : linux_kernel
Published: Nov. 19, 2024

Modified: Nov. 27, 2024
5.5

MEDIUM

CVE-2022-22484

IBM Spectrum Protect Operations Center 8.1.12 and 8.1.13 could allow a local attacker to obtain sensitive information, caused by plain text user account passwords potentially being stored in the browser's application command history. By accessing browser ...

Affected Products : linux_kernel aix windows spectrum_protect spectrum_protect_operations_center
Published: May. 17, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-22583

A permissions issue was addressed with improved validation. This issue is fixed in Security Update 2022-001 Catalina, macOS Monterey 12.2, macOS Big Sur 11.6.3. An application may be able to access restricted files....

Affected Products : macos mac_os_x
Published: Mar. 18, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-22233

An Unchecked Return Value to NULL Pointer Dereference vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privileges to cause a Denial of Service (DoS). In Segme...

Affected Products : junos junos_os_evolved
Published: Oct. 18, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-22271

A missing input validation before memory copy in TIMA trustlet prior to SMR Jan-2022 Release 1 allows attackers to copy data from arbitrary memory....

Affected Products : android dex
Published: Jan. 10, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-22263

Unprotected dynamic receiver in SecSettings prior to SMR Jan-2022 Release 1 allows untrusted applications to launch arbitrary activity....

Affected Products : android dex
Published: Jan. 10, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-35206

Null pointer dereference vulnerability in Binutils readelf 2.38.50 via function read_and_display_attr_value in file dwarf.c....

Affected Products : binutils
Published: Aug. 22, 2023

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-22010

Media Foundation Information Disclosure Vulnerability...

Affected Products : windows_10 windows_8.1 windows_rt_8.1 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 windows_10_1809 windows_10_20h2 +10 more products
Published: Mar. 09, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2024-53055

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix 6 GHz scan construction If more than 255 colocated APs exist for the set of all APs found during 2.4/5 GHz scanning, then the 6 GHz scan construction will loop f...

Affected Products : linux_kernel
Published: Nov. 19, 2024

Modified: Nov. 22, 2024
5.5

MEDIUM

CVE-2024-53047

In the Linux kernel, the following vulnerability has been resolved: mptcp: init: protect sched with rcu_read_lock Enabling CONFIG_PROVE_RCU_LIST with its dependence CONFIG_RCU_EXPERT creates this splat when an MPTCP socket is created: ===============...

Affected Products : linux_kernel
Published: Nov. 19, 2024

Modified: Nov. 27, 2024
5.5

MEDIUM

CVE-2022-21973

Windows Media Center Update Denial of Service Vulnerability...

Affected Products : windows_7 windows_8.1 windows_rt_8.1 windows_server_2012 windows windows_server_2012_r2
Published: Mar. 09, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-21906

Windows Defender Application Control Security Feature Bypass Vulnerability...

Affected Products : windows_10 windows_server_2019 windows_server windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows_11_21h2 windows_11 windows +3 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2014-3835

ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not check permissions to the files_external application, which allows remote authenticated users to add external storage via unspecified vectors....

Affected Products : owncloud owncloud_server
Published: Jun. 04, 2014

Modified: Apr. 12, 2025
5.5

MEDIUM

CVE-2022-21876

Win32k Information Disclosure Vulnerability...

Affected Products : windows_10 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 +7 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2023-23898

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in CreativeThemes Blocksy Companion plugin <= 1.8.67 versions....

Affected Products : blocksy_companion
Published: Apr. 06, 2023

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2024-53045

In the Linux kernel, the following vulnerability has been resolved: ASoC: dapm: fix bounds checker error in dapm_widget_list_create The widgets array in the snd_soc_dapm_widget_list has a __counted_by attribute attached to it, which points to the num_wi...

Affected Products : linux_kernel
Published: Nov. 19, 2024

Modified: Nov. 27, 2024
5.5

MEDIUM

CVE-2022-21877

Storage Spaces Controller Information Disclosure Vulnerability...

Affected Products : windows_10 windows_server_2019 windows_server windows_10_1809 windows_10_20h2 windows_10_21h2 windows_server_2022 windows_11_21h2 windows_11 windows +3 more products
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-21793

Insufficient control flow management in the Intel(R) Ethernet 500 Series Controller drivers for VMWare before version 1.11.4.0 and in the Intel(R) Ethernet 700 Series Controller drivers for VMWare before version 2.1.5.0 may allow an authenticated user to ...

Affected Products : ixgben i40en ethernet_controller_xxv710 ethernet_controller_xl710 ethernet_controller_x710 82599_10_gigabit_ethernet_controller ethernet_controller_x540 ethernet_controller_x550 ethernet_controller_x552 ethernet_controller_x722
Published: Aug. 18, 2022

Modified: May. 05, 2025
5.5

MEDIUM

CVE-2022-21899

Windows Extensible Firmware Interface Security Feature Bypass Vulnerability...

Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_10_1507 windows windows_server_2012_r2 windows_server_2008_r2
Published: Jan. 11, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2022-21749

In telephony, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS0651...

Affected Products : android mt6779 mt6781 mt6785 mt6789 mt6833 mt6853 mt6853t mt6873 mt6875 +45 more products
Published: Jun. 06, 2022

Modified: Nov. 21, 2024

Showing 20 of 293330 Results

Browse by Apps

Latest CVE Feed

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

5.5

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable