Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (372 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2021-1677 1 Microsoft 1 Azure Kubernetes Service 2024-11-21 5.5 Medium
Azure Active Directory Pod Identity Spoofing Vulnerability
CVE-2020-8567 3 Google, Hashicorp, Microsoft 3 Secret Manager Provider For Secret Store Csi Driver, Vault Provider For Secrets Store Csi Driver, Azure Key Vault Provider For Secrets Store Csi Driver 2024-11-21 4.9 Medium
Kubernetes Secrets Store CSI Driver Vault Plugin prior to v0.0.6, Azure Plugin prior to v0.0.10, and GCP Plugin prior to v0.2.0 allow an attacker who can create specially-crafted SecretProviderClass objects to write to arbitrary file paths on the host filesystem, including /var/lib/kubelet/pods.
CVE-2020-35609 1 Microsoft 1 Azure Sphere 2024-11-21 5.5 Medium
A denial-of-service vulnerability exists in the asynchronous ioctl functionality of Microsoft Azure Sphere 20.05. A sequence of specially crafted ioctl calls can cause a denial of service. An attacker can write shellcode to trigger this vulnerability.
CVE-2020-35608 1 Microsoft 1 Azure Sphere 2024-11-21 7.8 High
A code execution vulnerability exists in the normal world’s signed code execution functionality of Microsoft Azure Sphere 20.07. A specially crafted AF_PACKET socket can cause a process to create an executable memory mapping with controllable content. An attacker can execute a shellcode that uses the PACKET_MMAP functionality to trigger this vulnerability.
CVE-2020-1416 1 Microsoft 5 Azure Storage Explorer, Typescript, Visual Studio 2017 and 2 more 2024-11-21 8.8 High
An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies, aka 'Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability'.
CVE-2020-1327 1 Microsoft 1 Azure Devops Server 2024-11-21 6.1 Medium
A spoofing vulnerability exists in Microsoft Azure DevOps Server when it fails to properly handle web requests, aka 'Azure DevOps Server HTML Injection Vulnerability'.
CVE-2020-1326 1 Microsoft 1 Azure Devops Server 2024-11-21 5.4 Medium
A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'.
CVE-2020-1325 1 Microsoft 1 Azure Devops Server 2024-11-21 5.4 Medium
Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
CVE-2020-16994 1 Microsoft 1 Azure Sphere 2024-11-21 7.3 High
Azure Sphere Unsigned Code Execution Vulnerability
CVE-2020-16993 1 Microsoft 1 Azure Sphere 2024-11-21 5.4 Medium
Azure Sphere Elevation of Privilege Vulnerability
CVE-2020-16992 1 Microsoft 1 Azure Sphere 2024-11-21 7.5 High
Azure Sphere Elevation of Privilege Vulnerability
CVE-2020-16991 1 Microsoft 1 Azure Sphere 2024-11-21 7.3 High
Azure Sphere Unsigned Code Execution Vulnerability
CVE-2020-16990 1 Microsoft 1 Azure Sphere 2024-11-21 6.2 Medium
Azure Sphere Information Disclosure Vulnerability
CVE-2020-16989 1 Microsoft 1 Azure Sphere 2024-11-21 5.4 Medium
Azure Sphere Elevation of Privilege Vulnerability
CVE-2020-16988 1 Microsoft 1 Azure Sphere 2024-11-21 6.9 Medium
Azure Sphere Elevation of Privilege Vulnerability
CVE-2020-16987 1 Microsoft 1 Azure Sphere 2024-11-21 7.3 High
Azure Sphere Unsigned Code Execution Vulnerability
CVE-2020-16986 1 Microsoft 1 Azure Sphere 2024-11-21 6.2 Medium
Azure Sphere Denial of Service Vulnerability
CVE-2020-16985 1 Microsoft 1 Azure Sphere 2024-11-21 6.2 Medium
Azure Sphere Information Disclosure Vulnerability
CVE-2020-16984 1 Microsoft 1 Azure Sphere 2024-11-21 7.3 High
Azure Sphere Unsigned Code Execution Vulnerability
CVE-2020-16983 1 Microsoft 1 Azure Sphere 2024-11-21 5.7 Medium
Azure Sphere Tampering Vulnerability