Security Bulletins

Active threat advisories and known exploited vulnerabilities.

Pulled daily from the CISA Known Exploited Vulnerabilities catalog. Every entry has confirmed active exploitation in the wild. Last synced Jun 12, 2026.

1,619 total bulletins 1,619 critical or high severity Source: CISA KEV + NVD

All 1,619 Critical 1,619 High 0 Medium 0 Low 0 1,619 critical entries

Critical CVE-2024-13161 Ivanti · Endpoint Manager (EPM) Added Mar 10, 2025

Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability

Ivanti Endpoint Manager (EPM) contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2024-13160 Ivanti · Endpoint Manager (EPM) Added Mar 10, 2025

Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability

Ivanti Endpoint Manager (EPM) contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2024-13159 Ivanti · Endpoint Manager (EPM) Added Mar 10, 2025

Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability

Ivanti Endpoint Manager (EPM) contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2024-57968 Advantive · VeraCore Added Mar 10, 2025

Advantive VeraCore Unrestricted File Upload Vulnerability

Advantive VeraCore contains an unrestricted file upload vulnerability that allows a remote unauthenticated attacker to upload files to unintended folders via upload.apsx.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2025-25181 Advantive · VeraCore Added Mar 10, 2025

Advantive VeraCore SQL Injection Vulnerability

Advantive VeraCore contains a SQL injection vulnerability in timeoutWarning.asp that allows a remote attacker to execute arbitrary SQL commands via the PmSess1 parameter.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2025-22226 VMware · ESXi, Workstation, and Fusion Added Mar 4, 2025

VMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. Successful exploitation allows an attacker with administrative privileges to a virtual machine to leak memory from the vmx process.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2025-22225 VMware · ESXi Added Mar 4, 2025

VMware ESXi Arbitrary Write Vulnerability

VMware ESXi contains an arbitrary write vulnerability. Successful exploitation allows an attacker with privileges within the VMX process to trigger an arbitrary kernel write leading to an escape of the sandbox.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2025-22224 VMware · ESXi and Workstation Added Mar 4, 2025

VMware ESXi and Workstation TOCTOU Race Condition Vulnerability

VMware ESXi and Workstation contain a time-of-check time-of-use (TOCTOU) race condition vulnerability that leads to an out-of-bounds write. Successful exploitation enables an attacker with local administrative privileges on a virtual machine to execute code as the virtual machine's VMX process running on the host.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2024-50302 Linux · Kernel Added Mar 4, 2025

Linux Kernel Use of Uninitialized Resource Vulnerability

The Linux kernel contains a use of uninitialized resource vulnerability that allows an attacker to leak kernel memory via a specially crafted HID report.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2024-4885 Progress · WhatsUp Gold Added Mar 3, 2025

Progress WhatsUp Gold Path Traversal Vulnerability

Progress WhatsUp Gold contains a path traversal vulnerability that allows an unauthenticated attacker to achieve remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2018-8639 Microsoft · Windows Added Mar 3, 2025

Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability

Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for local, authenticated privilege escalation. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2022-43769 Hitachi Vantara · Pentaho Business Analytics (BA) Server Added Mar 3, 2025

Hitachi Vantara Pentaho BA Server Special Element Injection Vulnerability

Hitachi Vantara Pentaho BA Server contains a special element injection vulnerability that allows an attacker to inject Spring templates into properties files, allowing for arbitrary command execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2022-43939 Hitachi Vantara · Pentaho Business Analytics (BA) Server Added Mar 3, 2025

Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability

Hitachi Vantara Pentaho BA Server contains a use of non-canonical URL paths for authorization decisions vulnerability that enables an attacker to bypass authorization.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2023-20118 Cisco · Small Business RV Series Routers Added Mar 3, 2025

Cisco Small Business RV Series Routers Command Injection Vulnerability

Multiple Cisco Small Business RV Series Routers contains a command injection vulnerability in the web-based management interface. Successful exploitation could allow an authenticated, remote attacker to gain root-level privileges and access unauthorized data.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2023-34192 Synacor · Zimbra Collaboration Suite (ZCS) Added Feb 25, 2025

Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability

Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting (XSS) vulnerability that allows a remote authenticated attacker to execute arbitrary code via a crafted script to the /h/autoSaveDraft function.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2024-49035 Microsoft · Partner Center Added Feb 25, 2025

Microsoft Partner Center Improper Access Control Vulnerability

Microsoft Partner Center contains an improper access control vulnerability that allows an attacker to escalate privileges.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2024-20953 Oracle · Agile Product Lifecycle Management (PLM) Added Feb 24, 2025

Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability

Oracle Agile Product Lifecycle Management (PLM) contains a deserialization vulnerability that allows a low-privileged attacker with network access via HTTP to compromise the system.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2017-3066 Adobe · ColdFusion Added Feb 24, 2025

Adobe ColdFusion Deserialization Vulnerability

Adobe ColdFusion contains a deserialization vulnerability in the Apache BlazeDS library that allows for arbitrary code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2025-24989 Microsoft · Power Pages Added Feb 21, 2025

Microsoft Power Pages Improper Access Control Vulnerability

Microsoft Power Pages contains an improper access control vulnerability that allows an unauthorized attacker to elevate privileges over a network potentially bypassing the user registration control.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2025-0111 Palo Alto Networks · PAN-OS Added Feb 20, 2025

Palo Alto Networks PAN-OS File Read Vulnerability

Palo Alto Networks PAN-OS contains an external control of file name or path vulnerability. Successful exploitation enables an authenticated attacker with network access to the management web interface to read files on the PAN-OS filesystem that are readable by the “nobody” user.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2025-23209 Craft CMS · Craft CMS Added Feb 20, 2025

Craft CMS Code Injection Vulnerability

Craft CMS contains a code injection vulnerability caused by improper validation of the database backup path, ultimately enabling remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2025-0108 Palo Alto Networks · PAN-OS Added Feb 18, 2025

Palo Alto Networks PAN-OS Authentication Bypass Vulnerability

Palo Alto Networks PAN-OS contains an authentication bypass vulnerability in its management web interface. This vulnerability allows an unauthenticated attacker with network access to the management web interface to bypass the authentication normally required and invoke certain PHP scripts.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2024-53704 SonicWall · SonicOS Added Feb 18, 2025

SonicWall SonicOS SSLVPN Improper Authentication Vulnerability

SonicWall SonicOS contains an improper authentication vulnerability in the SSLVPN authentication mechanism that allows a remote attacker to bypass authentication.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2024-57727 SimpleHelp · SimpleHelp Added Feb 13, 2025

SimpleHelp Path Traversal Vulnerability

SimpleHelp remote support software contains multiple path traversal vulnerabilities that allow unauthenticated remote attackers to download arbitrary files from the SimpleHelp host via crafted HTTP requests. These files may include server configuration files and hashed user passwords.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Critical CVE-2025-24200 Apple · iOS and iPadOS Added Feb 12, 2025

Apple iOS and iPadOS Incorrect Authorization Vulnerability

Apple iOS and iPadOS contains an incorrect authorization vulnerability that allows a physical attacker to disable USB Restricted Mode on a locked device.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Need help prioritizing these vulnerabilities?

ThreatGrid can assess your environment and map active CVEs to your monitored assets.

Request Assessment TLINK PRO