CVE-2026-32998: This vulnerability in Veeam Service Provider Console allows for remote code execution.
CVE-2024-31808 — CVSS 8.8 (high): TOTOLINK EX200 V4.0.3c.7646_B20201211 was discovered to contain a remote code execution (RCE) vulnerability via the webWlanIdx parameter in…
CVE-2021-0269 — CVSS 8.8 (high): The improper handling of client-side parameters in J-Web of Juniper Networks Junos OS allows an attacker to perform a number of different…
CVE-2023-20514: Improper handling of parameters in the AMD Secure Processor (ASP) could allow a privileged attacker to pass an arbitrary memory value to…
CVE-2021-1230 — CVSS 8.6 (high): A vulnerability with the Border Gateway Protocol (BGP) for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure…
CVE-2026-2370 — CVSS 8.1 (high): GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1…
CVE-2025-52970 — CVSS 8.1 (high): A improper handling of parameters in Fortinet FortiWeb versions 7.6.3 and below, versions 7.4.7 and below, versions 7.2.10 and below, and…
CVE-2023-7261 — CVSS 7.8 (high): Inappropriate implementation in Google Updator prior to 1.3.36.351 in Google Chrome allowed a local attacker to perform privilege…
CVE-2023-26549 — CVSS 7.5 (high): The SystemUI module has a vulnerability of repeated app restart due to improper parameters. Successful exploitation of this vulnerability…
CVE-2022-3697 — CVSS 7.5 (high): A flaw was found in Ansible in the amazon.aws collection when using the tower_callback parameter from the amazon.aws.ec2_instance module…
CVE-2025-55080 — CVSS 7.1 (high): In Eclipse ThreadX before 6.4.3, when memory protection is enabled, syscall parameters verification wasn't enough, allowing an attacker to…
CVE-2022-22792 — CVSS 6.6 (medium): MobiSoft - MobiPlus User Take Over and Improper Handling of url Parameters Attacker can navigate to specific url which will expose all the…
CVE-2021-45478 — CVSS 6.5 (medium): Improper Handling of Parameters vulnerability in Bordam Information Technologies Library Automation System allows Collect Data as Provided…
CVE-2021-45477 — CVSS 6.5 (medium): Improper Handling of Parameters vulnerability in Bordam Information Technologies Library Automation System allows Collect Data as Provided…
CVE-2018-25233 — CVSS 6.2 (medium): WebDrive 18.00.5057 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an…
CVE-2024-20306 — CVSS 6.0 (medium): A vulnerability in the Unified Threat Defense (UTD) configuration CLI of Cisco IOS XE Software could allow an authenticated, local attacker…
CVE-2023-1419 — CVSS 5.9 (medium): A script injection vulnerability was found in the Debezium database connector, where it does not properly sanitize some parameters. This…
CVE-2025-55078 — CVSS 5.5 (medium): In Eclipse ThreadX before version 6.4.3, an attacker can cause a denial of service (crash) by providing a pointer to a reserved or unmapped…
CVE-2023-28898 — CVSS 5.3 (medium): The Real-Time Streaming Protocol implementation in the MIB3 infotainment incorrectly handles requests to /logs URI, when the id parameter…
CVE-2022-32261 — CVSS 5.3 (medium): A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). The affected application contains a…
CVE-2026-22626 — CVSS 4.9 (medium): Due to insufficient input parameter validation on the interface, authenticated users of certain HIKSEMI NAS products can cause abnormal…
CVE-2024-33433 — CVSS 4.8 (medium): Cross Site Scripting vulnerability in TOTOLINK X2000R before v1.0.0-B20231213.1013 allows a remote attacker to execute arbitrary code via…
CVE-2020-10069 — CVSS 4.3 (medium): Zephyr Bluetooth unchecked packet data results in denial of service. Zephyr versions >= v1.14.2, >= v2.2.0 contain Improper Handling of…
CVE-2026-33585 — CVSS 3.8 (low): Improper management of the idle timeout parameter in the Keycloak interface of the Arqit SKA-Platform enables an attacker to impersonate an…