CVE Alert: CVE-2020-25079 – n/a – n/a
CVE-2020-25079 UnknownCISA KEVExploitation active An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. cgi-bin/ddns_enc.cgi...
CVE Alert: CVE-2020-25078 – n/a – n/a
CVE-2020-25078 UnknownCISA KEVExploitation active An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The...
CVE Alert: CVE-2022-40799 – n/a – n/a
CVE-2022-40799 UnknownCISA KEVExploitation active Data Integrity Failure in 'Backup Config' in D-Link DNR-322L <= 2.60B15 allows an authenticated attacker to...
CVE Alert: CVE-2013-3893 – n/a – n/a
CVE-2013-3893 UnknownCISA KEVExploitation active Use-after-free vulnerability in the SetMouseCapture implementation in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows...
CVE Alert: CVE-2025-8876 – N-able – N-central
CVE-2025-8876 UnknownCISA KEVExploitation active Improper Input Validation vulnerability in N-able N-central allows OS Command Injection.This issue affects N-central: before 2025.3.1....
CVE Alert: CVE-2025-54948 – Trend Micro, Inc. – Trend Micro Apex One
CVE-2025-54948 CRITICALCISA KEVExploitation active A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker...
CVE Alert: CVE-2025-8875 – N-able – N-central
CVE-2025-8875 UnknownCISA KEVExploitation active Deserialization of Untrusted Data vulnerability in N-able N-central allows Local Execution of Code.This issue affects N-central:...
CVE Alert: CVE-2007-0671 – n/a – n/a
CVE-2007-0671 UnknownCISA KEVExploitation active Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office...
CVE Alert: CVE-2025-8088 – win.rar GmbH – WinRAR
CVE-2025-8088 UnknownCISA KEVExploitation active A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to execute arbitrary...
CVE Alert: CVE-2025-49706 – Microsoft – Microsoft SharePoint Enterprise Server 2016
CVE-2025-49706 MEDIUMCISA KEVExploitation active Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network....
CVE Alert: CVE-2025-25257 – Fortinet – FortiWeb
CVE-2025-25257 CRITICALCISA KEVExploitation active An improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Fortinet...
CVE Alert: CVE-2025-54309 – CrushFTP – CrushFTP
CVE-2025-54309 CRITICALCISA KEVExploitation active CrushFTP 10 before 10.8.5 and 11 before 11.3.4_23, when the DMZ proxy feature is not used,...
CVE Alert: CVE-2025-53770 – Microsoft – Microsoft SharePoint Enterprise Server 2016
CVE-2025-53770 CRITICALCISA KEVExploitation active Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code...
CVE Alert: CVE-2025-49704 – Microsoft – Microsoft SharePoint Enterprise Server 2016
CVE-2025-49704 HIGHCISA KEVExploitation active Improper control of generation of code ('code injection') in Microsoft Office SharePoint allows an authorized attacker...
CVE Alert: CVE-2025-20337 – Cisco – Cisco Identity Services Engine Software
CVE-2025-20337 CRITICALCISA KEVExploitation active A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated,...
CVE Alert: CVE-2025-2775 – SysAid – SysAid On-Prem
CVE-2025-2775 CRITICALCISA KEVExploitation active SysAid On-Prem versions <= 23.3.40 are vulnerable to an unauthenticated XML External Entity (XXE) vulnerability in...
CVE Alert: CVE-2025-2776 – SysAid – SysAid On-Prem
CVE-2025-2776 CRITICALCISA KEVExploitation active SysAid On-Prem versions <= 23.3.40 are vulnerable to an unauthenticated XML External Entity (XXE) vulnerability in...
CVE Alert: CVE-2025-20281 – Cisco – Cisco Identity Services Engine Software
CVE-2025-20281 CRITICALCISA KEVExploitation active A vulnerability in a specific API of Cisco ISE and Cisco ISE-PIC could allow an unauthenticated,...
CVE Alert: CVE-2025-6558 – Google – Chrome
CVE-2025-6558 UnknownCISA KEVExploitation active Insufficient validation of untrusted input in ANGLE and GPU in Google Chrome prior to 138.0.7204.157 allowed...
CVE Alert: CVE-2013-3893 – n/a – n/a
CVE-2013-3893 UnknownCISA KEVExploitation active Use-after-free vulnerability in the SetMouseCapture implementation in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows...
CVE Alert: CVE-2023-2533 – PaperCut – PaperCut NG/MF
CVE-2023-2533 HIGHCISA KEVExploitation active A Cross-Site Request Forgery (CSRF) vulnerability has been identified in PaperCut NG/MF, which, under specific conditions,...
CVE Alert: CVE-2020-25078 – n/a – n/a
CVE-2020-25078 UnknownCISA KEVExploitation active An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The...
CVE Alert: CVE-2020-25079 – n/a – n/a
CVE-2020-25079 UnknownCISA KEVExploitation active An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. cgi-bin/ddns_enc.cgi...
CVE Alert: CVE-2022-40799 – n/a – n/a
CVE-2022-40799 UnknownCISA KEVExploitation active Data Integrity Failure in 'Backup Config' in D-Link DNR-322L <= 2.60B15 allows an authenticated attacker to...
