Export limit exceeded: 364155 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (364155 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-24380 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2022-22147 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2022-21130 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2021-3926 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8460 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8459 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8458 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8457 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8456 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8455 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8454 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8453 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8452 | 2026-01-22 | N/A | ||
| ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. The CVE was never used. | ||||
| CVE-2020-8451 | 2026-01-22 | N/A | ||
| The reserved CVE was never used. | ||||
| CVE-2024-23807 | 1 Apache | 2 Xerces-c, Xerces-c\+\+ | 2026-01-22 | 8.1 High |
| The Apache Xerces C++ XML parser on versions 3.0.0 before 3.2.5 contains a use-after-free error triggered during the scanning of external DTDs. Users are recommended to upgrade to version 3.2.5 which fixes the issue, or mitigate the issue by disabling DTD processing. This can be accomplished via the DOM using a standard parser feature, or via SAX using the XERCES_DISABLE_DTD environment variable. This issue has been disclosed before as CVE-2018-1311, but unfortunately that advisory incorrectly stated the issue would be fixed in version 3.2.3 or 3.2.4. | ||||
| CVE-2023-1393 | 3 Fedoraproject, Redhat, X.org | 7 Fedora, Enterprise Linux, Rhel Aus and 4 more | 2026-01-22 | 7.8 High |
| A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window (aka COW), the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-free later. | ||||
| CVE-2023-47038 | 3 Fedoraproject, Perl, Redhat | 5 Fedora, Perl, Enterprise Linux and 2 more | 2026-01-22 | 7 High |
| A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap allocated buffer. | ||||
| CVE-2025-66686 | 2 Grabaperch, Perch | 2 Perch, Perch Cms | 2026-01-21 | 6.1 Medium |
| A stored Cross-Site Scripting (XSS) vulnerability exists in Perch CMS version 3.2. An authenticated attacker with administrative privileges can inject malicious JavaScript code into the “Help button url” setting within the admin panel. The injected payload is stored and executed when any authenticated user clicks the Help button, potentially leading to session hijacking, information disclosure, privilege escalation, and unauthorized administrative actions. | ||||
| CVE-2025-66838 | 1 Softwareag | 1 Aris | 2026-01-21 | 6.5 Medium |
| In Aris v10.0.23.0.3587512 and before, the file upload functionality does not enforce any rate limiting or throttling, allowing users to upload files at an unrestricted rate. An attacker can exploit this behavior to rapidly upload a large volume of files, potentially leading to resource exhaustion such as disk space depletion, increased server load, or degraded performance | ||||
| CVE-2025-66837 | 1 Softwareag | 1 Aris | 2026-01-21 | 6.8 Medium |
| A file upload vulnerability in ARIS 10.0.23.0.3587512 allows attackers to execute arbitrary code via uploading a crafted PDF file/Malware | ||||