CVEs classified under CWE-779, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2024-36072 — CVSS 9.8 (critical): Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote code execution vulnerability in the…
CVE-2024-36416 — CVSS 8.6 (high): SuiteCRM is an open-source Customer Relationship Management (CRM) software application. Prior to versions 7.14.4 and 8.6.1, a deprecated v4…
CVE-2026-28718 — CVSS 7.5 (high): Denial of service due to insufficient input validation in authentication logging. The following products are affected: Acronis Cyber…
CVE-2025-8696 — CVSS 7.5 (high): If an unauthenticated user sends a large amount of data to the Stork UI, it may cause memory and disk use problems for the system running…
CVE-2024-1141 — CVSS 5.5 (medium): A vulnerability was found in python-glance-store. The issue occurs when the package logs the access_key for the glance-store when the DEBUG…
CVE-2022-22291 — CVSS 5.5 (medium): Logging of excessive data vulnerability in telephony prior to SMR Feb-2022 Release 1 allows privileged attackers to get Cell Location…
CVE-2026-20210 — CVSS 5.4 (medium): A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with…
CVE-2026-20209 — CVSS 5.4 (medium): A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with…
CVE-2025-51397 — CVSS 5.4 (medium): A stored cross-site scripting (XSS) vulnerability in the Facebook Chat module of Live Helper Chat v4.60 allows attackers to execute…
CVE-2025-69230 — CVSS 5.3 (medium): AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, reading multiple invalid…