Export limit exceeded: 364612 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (364612 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2023-47837 1 Reputeinfosystems 1 Armember 2025-05-29 8.3 High
Improper Privilege Management vulnerability in Repute Infosystems ARMember allows Privilege Escalation.This issue affects ARMember: from n/a through 4.0.10.
CVE-2024-35283 1 Mitel 1 Micontact Center Business 2025-05-29 6.1 Medium
A vulnerability in the Ignite component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a stored cross-site scripting (XSS) attack due to insufficient input validation.
CVE-2024-35284 1 Mitel 1 Micontact Center Business 2025-05-29 5.4 Medium
A vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.0.0.4 could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient input validation.
CVE-2024-36042 1 Silverpeas 1 Silverpeas 2025-05-29 9.8 Critical
Silverpeas before 6.3.5 allows authentication bypass by omitting the Password field to AuthenticationServlet, often providing an unauthenticated user with superadmin access.
CVE-2024-4180 1 Stellarwp 1 The Events Calendar 2025-05-29 9.1 Critical
The Events Calendar WordPress plugin before 6.4.0.1 does not properly sanitize user-submitted content when rendering some views via AJAX.
CVE-2023-51667 1 Blazzdev 1 Rate My Post 2025-05-29 5.3 Medium
Authentication Bypass by Spoofing vulnerability in FeedbackWP Rate my Post – WP Rating System allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Rate my Post – WP Rating System: from n/a through 3.4.2.
CVE-2024-36302 1 Trendmicro 1 Apex One 2025-05-29 7.8 High
An origin validation vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. This vulnerability is similar to, but not identical to, CVE-2024-36303.
CVE-2022-35772 1 Microsoft 1 Azure Site Recovery Vmware To Azure 2025-05-29 7.2 High
Azure Site Recovery Remote Code Execution Vulnerability
CVE-2022-35771 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-05-29 7.8 High
Windows Defender Credential Guard Elevation of Privilege Vulnerability
CVE-2022-35769 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2025-05-29 7.5 High
Windows Point-to-Point Protocol (PPP) Denial of Service Vulnerability
CVE-2022-35767 1 Microsoft 10 Windows 10, Windows 11, Windows 7 and 7 more 2025-05-29 8.1 High
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-35766 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-05-29 8.1 High
Windows Secure Socket Tunneling Protocol (SSTP) Remote Code Execution Vulnerability
CVE-2022-35765 1 Microsoft 4 Windows 10, Windows Server 2016, Windows Server 2019 and 1 more 2025-05-29 7.8 High
Storage Spaces Direct Elevation of Privilege Vulnerability
CVE-2022-35764 1 Microsoft 4 Windows 10, Windows Server 2016, Windows Server 2019 and 1 more 2025-05-29 7.8 High
Storage Spaces Direct Elevation of Privilege Vulnerability
CVE-2022-35763 1 Microsoft 4 Windows 10, Windows Server 2016, Windows Server 2019 and 1 more 2025-05-29 7.8 High
Storage Spaces Direct Elevation of Privilege Vulnerability
CVE-2022-35762 1 Microsoft 4 Windows 10, Windows Server 2016, Windows Server 2019 and 1 more 2025-05-29 7.8 High
Storage Spaces Direct Elevation of Privilege Vulnerability
CVE-2022-35761 1 Microsoft 5 Windows 10, Windows 11, Windows Server 2016 and 2 more 2025-05-29 7.8 High
Windows Kernel Elevation of Privilege Vulnerability
CVE-2022-34716 2 Microsoft, Redhat 5 .net, .net Core, Powershell and 2 more 2025-05-29 5.9 Medium
.NET Spoofing Vulnerability
CVE-2024-5246 1 Netgear 2 Prosafe Network Management Software 300, Prosafe Network Management System 2025-05-29 8.8 High
NETGEAR ProSAFE Network Management System Tomcat Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is required to exploit this vulnerability. The specific flaw exists within the product installer. The issue results from the use of a vulnerable version of Apache Tomcat. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-22868.
CVE-2024-40505 1 Dlink 2 Dap-1650, Dap-1650 Firmware 2025-05-29 9.3 Critical
Directory Traversal vulnerability in D-Link DAP-1650 Firmware v.1.03 allows a local attacker to escalate privileges via the hedwig.cgi component.