Security Bulletins

Active threat advisories and known exploited vulnerabilities.

Pulled daily from the CISA Known Exploited Vulnerabilities catalog. Every entry has confirmed active exploitation in the wild. Last synced Jun 12, 2026.

1,619 total bulletins 1,619 critical or high severity Source: CISA KEV + NVD
All 1,619 Critical 1,619 High 0 Medium 0 Low 0 1,619 entries
Critical CVE-2023-32046 Microsoft · Windows Added Jul 11, 2023

Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability

Microsoft Windows MSHTML Platform contains an unspecified vulnerability that allows for privilege escalation.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-32049 Microsoft · Windows Added Jul 11, 2023

Microsoft Windows Defender SmartScreen Security Feature Bypass Vulnerability

Microsoft Windows Defender SmartScreen contains a security feature bypass vulnerability that allows an attacker to bypass the Open File - Security Warning prompt.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-35311 Microsoft · Outlook Added Jul 11, 2023

Microsoft Outlook Security Feature Bypass Vulnerability

Microsoft Outlook contains a security feature bypass vulnerability that allows an attacker to bypass the Microsoft Outlook Security Notice prompt.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-36874 Microsoft · Windows Added Jul 11, 2023

Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability

Microsoft Windows Error Reporting Service contains an unspecified vulnerability that allows for privilege escalation.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2022-31199 Netwrix · Auditor Added Jul 11, 2023

Netwrix Auditor Insecure Object Deserialization Vulnerability

Netwrix Auditor User Activity Video Recording component contains an insecure objection deserialization vulnerability that allows an unauthenticated, remote attacker to execute code as the NT AUTHORITY\SYSTEM user. Successful exploitation requires that the attacker is able to reach port 9004/TCP, which is commonly blocked by standard enterprise firewalling.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2021-29256 Arm · Mali Graphics Processing Unit (GPU) Added Jul 7, 2023

Arm Mali GPU Kernel Driver Use-After-Free Vulnerability

Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2019-17621 D-Link · DIR-859 Router Added Jun 29, 2023

D-Link DIR-859 Router Command Execution Vulnerability

D-Link DIR-859 router contains a command execution vulnerability in the UPnP endpoint URL, /gena.cgi. Exploitation allows an unauthenticated remote attacker to execute system commands as root by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2019-20500 D-Link · DWL-2600AP Access Point Added Jun 29, 2023

D-Link DWL-2600AP Access Point Command Injection Vulnerability

D-Link DWL-2600AP access point contains an authenticated command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admin.cgi?action=config_save configBackup or downloadServerip parameter.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2021-25487 Samsung · Mobile Devices Added Jun 29, 2023

Samsung Mobile Devices Out-of-Bounds Read Vulnerability

Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in set_skb_priv(), leading to remote code execution by dereference of an invalid function pointer.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2021-25489 Samsung · Mobile Devices Added Jun 29, 2023

Samsung Mobile Devices Improper Input Validation Vulnerability

Samsung mobile devices contain an improper input validation vulnerability within the modem interface driver that results in a format string bug leading to kernel panic.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2021-25394 Samsung · Mobile Devices Added Jun 29, 2023

Samsung Mobile Devices Race Condition Vulnerability

Samsung mobile devices contain a race condition vulnerability within the MFC charger driver that leads to a use-after-free allowing for a write given a radio privilege is compromised.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2021-25395 Samsung · Mobile Devices Added Jun 29, 2023

Samsung Mobile Devices Race Condition Vulnerability

Samsung mobile devices contain a race condition vulnerability within the MFC charger driver that leads to a use-after-free allowing for a write given a radio privilege is compromised.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2021-25371 Samsung · Mobile Devices Added Jun 29, 2023

Samsung Mobile Devices Unspecified Vulnerability

Samsung mobile devices contain an unspecified vulnerability within DSP driver that allows attackers to load ELF libraries inside DSP.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2021-25372 Samsung · Mobile Devices Added Jun 29, 2023

Samsung Mobile Devices Improper Boundary Check Vulnerability

Samsung mobile devices contain an improper boundary check vulnerability within DSP driver that allows for out-of-bounds memory access.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-32434 Apple · Multiple Products Added Jun 23, 2023

Apple Multiple Products Integer Overflow Vulnerability

Apple iOS. iPadOS, macOS, and watchOS contain an integer overflow vulnerability that could allow an application to execute code with kernel privileges.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-32435 Apple · Multiple Products Added Jun 23, 2023

Apple Multiple Products WebKit Memory Corruption Vulnerability

Apple iOS, iPadOS, macOS, and Safari WebKit contain a memory corruption vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-32439 Apple · Multiple Products Added Jun 23, 2023

Apple Multiple Products WebKit Type Confusion Vulnerability

Apple iOS, iPadOS, macOS, and Safari WebKit contain a type confusion vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-20867 VMware · Tools Added Jun 23, 2023

VMware Tools Authentication Bypass Vulnerability

VMware Tools contains an authentication bypass vulnerability in the vgauth module. A fully compromised ESXi host can force VMware Tools to fail to authenticate host-to-guest operations, impacting the confidentiality and integrity of the guest virtual machine. An attacker must have root access over ESXi to exploit this vulnerability.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-27992 Zyxel · Multiple Network-Attached Storage (NAS) Devices Added Jun 23, 2023

Zyxel Multiple NAS Devices Command Injection Vulnerability

Multiple Zyxel network-attached storage (NAS) devices contain a pre-authentication command injection vulnerability that could allow an unauthenticated attacker to execute commands remotely via a crafted HTTP request.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2023-20887 VMware · Aria Operations for Networks Added Jun 22, 2023

Vmware Aria Operations for Networks Command Injection Vulnerability

VMware Aria Operations for Networks (formerly vRealize Network Insight) contains a command injection vulnerability that allows a malicious actor with network access to perform an attack resulting in remote code execution.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2020-35730 Roundcube · Roundcube Webmail Added Jun 22, 2023

Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability

Roundcube Webmail contains a cross-site scripting (XSS) vulnerability that allows an attacker to send a plain text e-mail message with Javascript in a link reference element that is mishandled by linkref_addinindex in rcube_string_replacer.php.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2020-12641 Roundcube · Roundcube Webmail Added Jun 22, 2023

Roundcube Webmail Remote Code Execution Vulnerability

Roundcube Webmail contains an remote code execution vulnerability that allows attackers to execute code via shell metacharacters in a configuration setting for im_convert_path or im_identify_path.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2021-44026 Roundcube · Roundcube Webmail Added Jun 22, 2023

Roundcube Webmail SQL Injection Vulnerability

Roundcube Webmail is vulnerable to SQL injection via search or search_params.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2016-9079 Mozilla · Firefox, Firefox ESR, and Thunderbird Added Jun 22, 2023

Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free Vulnerability

Mozilla Firefox, Firefox ESR, and Thunderbird contain a use-after-free vulnerability in SVG Animation, targeting Firefox and Tor browser users on Windows.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed
Critical CVE-2016-0165 Microsoft · Win32k Added Jun 22, 2023

Microsoft Win32k Privilege Escalation Vulnerability

Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.

NVD Detail ↗ CISA KEV ↗ Patch deadline passed

Need help prioritizing these vulnerabilities?

ThreatGrid can assess your environment and map active CVEs to your monitored assets.