Security Lists & Frameworks
Curated references for practitioners. Bookmark this page.
AI & LLM Security
App / API / Cloud
CISA Known Exploited Vulnerabilities Live
Last updated: 2026-02-03T18:02:42.4117Z · Total CVEs: 1505
| CVE | Vendor | Product | Added | Description |
|---|---|---|---|---|
| CVE-2021-39935 | GitLab | Community and Enterprise Editions | 2026-02-03 | GitLab Community and Enterprise Editions contain a server-side request forgery vulnerability which could allow unauthorized external users to perform Server Side Requests via the CI Lint API. |
| CVE-2025-64328 | Sangoma | FreePBX | 2026-02-03 | Sangoma FreePBX Endpoint Manager contains an OS command injection vulnerability that could allow for a post-authentication command injection by an authenticated known user via the testconnection -> check_ssh_connect() function. An attacker can leverage this vulnerability to potentially obtain remote access to the system as an asterisk user. |
| CVE-2019-19006 | Sangoma | FreePBX | 2026-02-03 | Sangoma FreePBX contains an improper authentication vulnerability that potentially allows unauthorized users to bypass password authentication and access services provided by the FreePBX admin. |
| CVE-2025-40551 | SolarWinds | Web Help Desk | 2026-02-03 | SolarWinds Web Help Desk contains a deserialization of untrusted data vulnerability that could lead to remote code execution, which would allow an attacker to run commands on the host machine. This could be exploited without authentication. |
| CVE-2026-1281 | Ivanti | Endpoint Manager Mobile (EPMM) | 2026-01-29 | Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution. |
| CVE-2026-24858 | Fortinet | Multiple Products | 2026-01-27 | Fortinet FortiAnalyzer, FortiManager, FortiOS, and FortiProxy contain an authentication bypass using an alternate path or channel that could allow an attacker with a FortiCloud account and a registered device to log into other devices registered to other accounts, if FortiCloud SSO authentication is enabled on those devices. |
| CVE-2018-14634 | Linux | Kernal | 2026-01-26 | Linux Kernel contains an integer overflow vulnerability in the create_elf_tables() function which could allow an unprivileged local user with access to SUID (or otherwise privileged) binary to escalate their privileges on the system. |
| CVE-2025-52691 | SmarterTools | SmarterMail | 2026-01-26 | SmarterTools SmarterMail contains an unrestricted upload of file with dangerous type vulnerability that could allow an unauthenticated attacker to upload arbitrary files to any location on the mail server, potentially enabling remote code execution. |
| CVE-2026-23760 | SmarterTools | SmarterMail | 2026-01-26 | SmarterTools SmarterMail contains an authentication bypass using an alternate path or channel vulnerability in the password reset API. The force-reset-password endpoint permits anonymous requests and fails to verify the existing password or a reset token when resetting system administrator accounts. This could allow an unauthenticated attacker to supply a target administrator username and a new password to reset the account, resulting in full administrative compromise of the SmarterMail instance. |
| CVE-2026-24061 | GNU | InetUtils | 2026-01-26 | GNU InetUtils contains an argument injection vulnerability in telnetd that could allow for remote authentication bypass via a "-f root" value for the USER environment variable. |
| CVE-2026-21509 | Microsoft | Office | 2026-01-26 | Microsoft Office contains a security feature bypass vulnerability in which reliance on untrusted inputs in a security decision in Microsoft Office could allow an unauthorized attacker to bypass a security feature locally. Some of the impacted product(s) could be end-of-life (EoL) and/or end-of-service (EoS). Users are advised to discontinue use and/or transition to a supported version. |
| CVE-2024-37079 | Broadcom | VMware vCenter Server | 2026-01-23 | Broadcom VMware vCenter Server contains an out-of-bounds write vulnerability in the implementation of the DCERPC protocol. This could allow a malicious actor with network access to vCenter Server to send specially crafted network packets, potentially leading to remote code execution. |
| CVE-2025-68645 | Synacor | Zimbra Collaboration Suite (ZCS) | 2026-01-22 | Synacor Zimbra Collaboration Suite (ZCS) contains a PHP remote file inclusion vulnerability that could allow for remote attackers to craft requests to the /h/rest endpoint to influence internal request dispatching, allowing inclusion of arbitrary files from the WebRoot directory. |
| CVE-2025-34026 | Versa | Concerto | 2026-01-22 | Versa Concerto SD-WAN orchestration platform contains an improper authentication vulnerability in the Traefik reverse proxy configuration, allowing at attacker to access administrative endpoints. The internal Actuator endpoint can be leveraged for access to heap dumps and trace logs. |
| CVE-2025-31125 | Vite | Vitejs | 2026-01-22 | Vite Vitejs contains an improper access control vulnerability that exposes content of non-allowed files using ?inline&import or ?raw?import. Only apps explicitly exposing the Vite dev server to the network (using --host or server.host config option) are affected. |
| CVE-2025-54313 | Prettier | eslint-config-prettier | 2026-01-22 | Prettier eslint-config-prettier contains an embedded malicious code vulnerability. Installing an affected package executes an install.js file that launches the node-gyp.dll malware on Windows. |
| CVE-2026-20045 | Cisco | Unified Communications Manager | 2026-01-21 | Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME), Cisco Unified Communications Manager IM & Presence Service (Unified CM IM&P), Cisco Unity Connection, and Cisco Webex Calling Dedicated Instance contain a code injection vulnerability that could allow the attacker to obtain user-level access to the underlying operating system and then elevate privileges to root. |
| CVE-2026-20805 | Microsoft | Windows | 2026-01-13 | Microsoft Windows Desktop Windows Manager contains an information disclosure vulnerability that allows an authorized attacker to disclose information locally. |
| CVE-2025-8110 | Gogs | Gogs | 2026-01-12 | Gogs contains a path traversal vulnerability affecting improper Symbolic link handling in the PutContents API that could allow for code execution. |
| CVE-2009-0556 | Microsoft | Office | 2026-01-07 | Microsoft Office PowerPoint contains a code injection vulnerability that allows remote attackers to execute arbitrary code via a PowerPoint file with an OutlineTextRefAtom containing an invalid index value that triggers memory corruption. |
| CVE-2025-37164 | Hewlett Packard Enterprise (HPE) | OneView | 2026-01-07 | Hewlett Packard Enterprise (HPE) OneView contains a code injection vulnerability that allows a remote unauthenticated user to perform remote code execution. |
| CVE-2025-14847 | MongoDB | MongoDB and MongoDB Server | 2025-12-29 | MongoDB Server contains an improper handling of length parameter inconsistency vulnerability in Zlib compressed protocol headers. This vulnerability may allow a read of uninitialized heap memory by an unauthenticated client. |
| CVE-2023-52163 | Digiever | DS-2105 Pro | 2025-12-22 | Digiever DS-2105 Pro contains a missing authorization vulnerability which could allow for command injection via time_tzsetup.cgi. |
| CVE-2025-14733 | WatchGuard | Firebox | 2025-12-19 | WatchGuard Fireware OS iked process contains an out of bounds write vulnerability in the OS iked process. This vulnerability may allow a remote unauthenticated attacker to execute arbitrary code and affects both the mobile user VPN with IKEv2 and the branch office VPN using IKEv2 when configured with a dynamic gateway peer. |
| CVE-2025-59374 | ASUS | Live Update | 2025-12-17 | ASUS Live Update contains an embedded malicious code vulnerability client were distributed with unauthorized modifications introduced through a supply chain compromise. The modified builds could cause devices meeting specific targeting conditions to perform unintended actions. The impacted product could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization. |
EPSS – Exploit Prediction Scoring System Live
Error loading EPSS: HTTP 403