Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (9570 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2021-27028 1 Autodesk 1 Fbx Review 2024-11-21 7.8 High
A Memory Corruption Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to remote code execution through maliciously crafted DLL files.
CVE-2021-26987 2 Netapp, Vmware 4 Element Plug-in For Vcenter Server, Management Services For Element Software And Netapp Hci, Solidfire \& Hci Management Node and 1 more 2024-11-21 9.8 Critical
Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework versions prior to 1.3.2 are susceptible to a vulnerability which when successfully exploited could lead to Remote Code Execution. All versions of Element Plug-in for vCenter Server, Management Services versions prior to 2.17.56 and Management Node versions through 12.2 contain vulnerable versions of SpringBoot Framework.
CVE-2021-26902 1 Microsoft 1 High Efficiency Video Coding 2024-11-21 7.8 High
HEVC Video Extensions Remote Code Execution Vulnerability
CVE-2021-26897 1 Microsoft 10 Windows Server 1909, Windows Server 2004, Windows Server 2008 and 7 more 2024-11-21 9.8 Critical
Windows DNS Server Remote Code Execution Vulnerability
CVE-2021-26895 1 Microsoft 10 Windows Server 1909, Windows Server 2004, Windows Server 2008 and 7 more 2024-11-21 9.8 Critical
Windows DNS Server Remote Code Execution Vulnerability
CVE-2021-26894 1 Microsoft 10 Windows Server 1909, Windows Server 2004, Windows Server 2008 and 7 more 2024-11-21 9.8 Critical
Windows DNS Server Remote Code Execution Vulnerability
CVE-2021-26893 1 Microsoft 10 Windows Server 1909, Windows Server 2004, Windows Server 2008 and 7 more 2024-11-21 9.8 Critical
Windows DNS Server Remote Code Execution Vulnerability
CVE-2021-26890 1 Microsoft 9 Windows 10, Windows 10 1809, Windows 10 1909 and 6 more 2024-11-21 7.8 High
Application Virtualization Remote Code Execution Vulnerability
CVE-2021-26881 1 Microsoft 19 Windows 10, Windows 10 1507, Windows 10 1607 and 16 more 2024-11-21 7.5 High
Microsoft Windows Media Foundation Remote Code Execution Vulnerability
CVE-2021-26877 1 Microsoft 10 Windows Server 1909, Windows Server 2004, Windows Server 2008 and 7 more 2024-11-21 9.8 Critical
Windows DNS Server Remote Code Execution Vulnerability
CVE-2021-26876 1 Microsoft 10 Windows 10, Windows 10 1803, Windows 10 1809 and 7 more 2024-11-21 8.8 High
OpenType Font Parsing Remote Code Execution Vulnerability
CVE-2021-26867 1 Microsoft 7 Windows 10, Windows 10 1809, Windows 10 1909 and 4 more 2024-11-21 9.9 Critical
Windows Hyper-V Remote Code Execution Vulnerability
CVE-2021-26861 1 Microsoft 20 Windows 10, Windows 10 1507, Windows 10 1607 and 17 more 2024-11-21 7.8 High
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2021-26854 1 Microsoft 1 Exchange Server 2024-11-21 6.6 Medium
Microsoft Exchange Server Remote Code Execution Vulnerability
CVE-2021-26835 1 Zettlr 1 Zettlr 2024-11-21 6.1 Medium
No filtering of cross-site scripting (XSS) payloads in the markdown-editor in Zettlr 1.8.7 allows attackers to perform remote code execution via a crafted file.
CVE-2021-26747 1 Netis-systems 4 Wf2411, Wf2411 Firmware, Wf2780 and 1 more 2024-11-21 9.8 Critical
Netis WF2780 2.3.40404 and WF2411 1.1.29629 devices allow Shell Metacharacter Injection into the ping command, leading to remote code execution.
CVE-2021-26726 1 Valmet 1 Dna 2024-11-21 8.8 High
A remote code execution vulnerability affecting a Valmet DNA service listening on TCP port 1517, allows an attacker to execute commands with SYSTEM privileges This issue affects: Valmet DNA versions from Collection 2012 until Collection 2021.
CVE-2021-26724 1 Nozominetworks 2 Central Management Control, Guardian 2024-11-21 7.2 High
OS Command Injection vulnerability when changing date settings or hostname using web GUI of Nozomi Networks Guardian and CMC allows authenticated administrators to perform remote code execution. This issue affects: Nozomi Networks Guardian 20.0.7.3 version 20.0.7.3 and prior versions. Nozomi Networks CMC 20.0.7.3 version 20.0.7.3 and prior versions.
CVE-2021-26701 3 Fedoraproject, Microsoft, Redhat 8 Fedora, .net, .net Core and 5 more 2024-11-21 8.1 High
.NET Core Remote Code Execution Vulnerability
CVE-2021-26636 2 Linux, Maxb 2 Linux Kernel, Maxboard 2024-11-21 8.8 High
Stored XSS and SQL injection vulnerability in MaxBoard could lead to occur Remote Code Execution, which could lead to information exposure and privilege escalation.