Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (324 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2014-4657 1 Redhat 1 Ansible 2024-11-21 9.8 Critical
The safe_eval function in Ansible before 1.5.4 does not properly restrict the code subset, which allows remote attackers to execute arbitrary code via crafted instructions.
CVE-2014-2686 1 Redhat 1 Ansible 2024-11-21 7.5 High
Ansible prior to 1.5.4 mishandles the evaluation of some strings.
CVE-2013-2233 1 Redhat 1 Ansible 2024-11-21 N/A
Ansible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle attacks by leveraging failure to cache SSH host keys.
CVE-2024-41990 2 Djangoproject, Redhat 3 Django, Ansible Automation Platform, Rhui 2024-09-18 7.5 High
An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The urlize() and urlizetrunc() template filters are subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters.