Vulnerabilities
Curated CVE intelligence covering critical software vulnerabilities, real-world exploitation activity, affected technologies, and practical mitigation guidance for defenders.
Index
Platforms
| Date | CVE | Vendor | Product | CVSS | Flags |
|---|---|---|---|---|---|
| 2026-02-25 | CVE-2026-20127 — Cisco Catalyst SD-WAN Authentication Bypass | Cisco | Catalyst SD-WAN Controller, Catalyst SD-WAN Manager | 10 |
CRITICAL
EXPL
|
| 2026-02-24 | CVE-2026-25108 — FileZen Command Injection | FileZen | FileZen | 9.8 |
CRITICAL
EXPL
|
| 2024-03-29 | CVE-2024-3094 — XZ Utils Backdoor Supply-Chain Compromise | Tukaani Project | XZ Utils | 10 |
CRITICAL
|
| 2023-10-10 | CVE-2023-4966 — CitrixBleed Session Hijacking in NetScaler ADC and NetScaler Gateway | Citrix Systems | NetScaler ADC, NetScaler Gateway | 9.4 |
CRITICAL
EXPL
|
| 2023-05-31 | CVE-2023-34362 — MOVEit Transfer SQL Injection Leading to Data Breaches | Progress Software | MOVEit Transfer | 9.8 |
CRITICAL
EXPL
|
| 2023-03-14 | CVE-2023-23397 — Microsoft Outlook NTLM Credential Leak Vulnerability | Microsoft | Microsoft Outlook | 9.8 |
CRITICAL
EXPL
|
| 2022-05-30 | CVE-2022-30190 — Follina MSDT Remote Code Execution in Microsoft Office | Microsoft | Microsoft Office, Windows MSDT | 7.8 |
CRITICAL
EXPL
|
| 2022-03-31 | CVE-2022-22965 — Spring4Shell Remote Code Execution in Spring Framework | VMware | Spring Framework | 9.8 |
CRITICAL
EXPL
|
| 2021-12-09 | CVE-2021-44228 — Log4Shell Remote Code Execution in Apache Log4j | Apache Software Foundation | Apache Log4j | 10 |
CRITICAL
EXPL
|
| 2021-09-07 | CVE-2021-40444 — MSHTML Remote Code Execution via Malicious Office Documents | Microsoft | Microsoft Office, Windows MSHTML Engine | 8.8 |
CRITICAL
EXPL
|
| 2021-07-01 | CVE-2021-34527 — PrintNightmare Windows Print Spooler Remote Code Execution | Microsoft | Windows Print Spooler | 8.8 |
CRITICAL
EXPL
|
| 2021-03-02 | CVE-2021-26855 — ProxyLogon Microsoft Exchange Server SSRF Vulnerability | Microsoft | Microsoft Exchange Server | 9.8 |
CRITICAL
EXPL
|