• Home
  • Vulnerability & Exploit Database

Vulnerability & Exploit Database

Vulnerability Scanner
2024 Attack Intel Report

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 01 - 20 of 210,874 in total
Debian: CVE-2018-25107: libcrypt-random-source-perl -- security update
Published: December 29, 2024 | Severity: 4
vulnerability
Explore
PAN-OS: Firewall Denial of Service (DoS) in DNS Security Using a Specially Crafted Packet
Published: December 27, 2024 | Severity: 4
vulnerability
Explore
Debian: CVE-2020-6923: hplip -- security update
Published: December 27, 2024 | Severity: 4
vulnerability
Explore
IBM AIX: kernext_advisory (CVE-2024-47102): Vulnerability in kernext affects AIX
Published: December 25, 2024 | Severity: 4
vulnerability
Explore
IBM AIX: kernext_advisory (CVE-2024-52906): Vulnerability in kernext affects AIX
Published: December 25, 2024 | Severity: 4
vulnerability
Explore
JetBrains TeamCity: CVE-2024-56350: Build credentials allowed unauthorized viewing of projects (TW-24904)
Published: December 20, 2024 | Severity: 4
vulnerability
Explore
JetBrains TeamCity: CVE-2024-56353: Backup file exposed user credentials and session cookies. Reported by Thomas Siegbert (TW-89719)
Published: December 20, 2024 | Severity: 7
vulnerability
Explore
JetBrains TeamCity: CVE-2024-56355: Missing Content-Type header in RemoteBuildLogController response could lead to XSS (TW-80940)
Published: December 20, 2024 | Severity: 5
vulnerability
Explore
Apache Tomcat: Important: Remote Code Execution via write enabled Default Servlet. Mitigation for CVE-2024-50379 was incomplete - (CVE-2024-56337)
Published: December 20, 2024 | Severity: 4
vulnerability
Explore
Debian: CVE-2024-56337: tomcat9 -- security update
Published: December 20, 2024 | Severity: 4
vulnerability
Explore
JetBrains TeamCity: CVE-2024-56349: Improper access control allowed unauthorized users to modify build logs (TW-90726)
Published: December 20, 2024 | Severity: 5
vulnerability
Explore
JetBrains TeamCity: CVE-2024-56348: Improper access control allowed viewing details of unauthorized agents (TW-85841)
Published: December 20, 2024 | Severity: 4
vulnerability
Explore
FreeBSD: VID-0A8DBC7F-BEDC-11EF-B5A1-000EC6D40964: Vaultwarden -- Admin organization permissions
Published: December 20, 2024 | Severity: 4
vulnerability
Explore
JetBrains TeamCity: CVE-2024-56356: Insecure XMLParser configuration could lead to potential XXE attack (TW-86582)
Published: December 20, 2024 | Severity: 6
vulnerability
Explore
OS X update for Security (CVE-2024-54538)
Published: December 20, 2024 | Severity: 4
vulnerability
Explore
JetBrains TeamCity: CVE-2024-56354: Password field value were accessible to users with view settings permission (TW-49870)
Published: December 20, 2024 | Severity: 7
vulnerability
Explore
JetBrains TeamCity: CVE-2024-56351: Access tokens were not revoked after removing user roles (TW-76910)
Published: December 20, 2024 | Severity: 7
vulnerability
Explore
JetBrains TeamCity: CVE-2024-56352: Stored XSS was possible via image name on the agent details page (TW-89485)
Published: December 20, 2024 | Severity: 5
vulnerability
Explore
Debian: CVE-2024-45819: xen -- security update
Published: December 19, 2024 | Severity: 4
vulnerability
Explore
Debian: CVE-2024-45818: xen -- security update
Published: December 19, 2024 | Severity: 4
vulnerability
Explore