04
VULNERABILITIES
32
Total CVEs
12
Critical
8
High
9
Medium
9
KEV Listed
28
Patch Avail
| CVE ID | Severity | Title | CVSS | EPSS | CRS | Assets | KEV | Exploit | Patch |
|---|---|---|---|---|---|---|---|---|---|
| CVE-2024-53677 | critical | Apache Struts File Upload Path Traversal | 9.8 | 92% | 97 | 3 | KEV | YES | YES |
| CVE-2024-21626 | critical | runc Container Escape via fd Leak | 8.6 | 87% | 95 | 4 | KEV | YES | YES |
| CVE-2025-0282 | critical | Ivanti Connect Secure Stack Buffer Overflow | 9.0 | 95% | 94 | 1 | KEV | YES | YES |
| CVE-2024-47575 | critical | FortiManager fgfmd Missing Auth RCE | 9.8 | 91% | 93 | 1 | KEV | YES | YES |
| CVE-2024-23652 | high | BuildKit Mount Escape | 8.2 | 72% | 88 | 2 | -- | YES | YES |
| CVE-2025-21298 | critical | Windows OLE Remote Code Execution | 9.8 | 68% | 86 | 5 | -- | no | YES |
| CVE-2024-50623 | critical | Cleo Harmony File Transfer RCE | 9.8 | 88% | 85 | 1 | KEV | YES | YES |
| CVE-2025-1234 | high | PostgreSQL libpq Buffer Overflow | 7.8 | 45% | 82 | 4 | -- | no | YES |
| CVE-2024-38077 | critical | Windows RD Licensing Service RCE | 9.8 | 62% | 80 | 2 | -- | YES | YES |
| CVE-2025-2345 | high | Node.js HTTP/2 Rapid Reset DoS | 7.5 | 55% | 78 | 6 | -- | YES | YES |
| CVE-2024-9143 | medium | OpenSSL Low-Level GF(2^m) OOB Read | 6.5 | 32% | 72 | 8 | -- | no | YES |
| CVE-2025-3456 | high | Redis Lua Sandbox Escape | 8.0 | 48% | 70 | 2 | -- | no | no |
| CVE-2024-45337 | critical | Go SSH Authentication Bypass | 9.1 | 75% | 68 | 3 | -- | YES | YES |
| CVE-2025-4567 | high | Kubernetes API Server AuthZ Bypass | 7.9 | 41% | 65 | 2 | -- | no | YES |
| CVE-2024-52316 | critical | Apache Tomcat Auth Bypass | 9.8 | 38% | 62 | 1 | -- | no | YES |
| CVE-2025-5678 | medium | AWS SDK for Python SSRF via Endpoint Override | 6.8 | 22% | 58 | 4 | -- | no | YES |
| CVE-2024-45519 | critical | Zimbra postjournal RCE | 9.8 | 93% | 55 | 0 | KEV | YES | YES |
| CVE-2025-6789 | high | Nginx HTTP/3 QUIC Memory Corruption | 7.5 | 35% | 52 | 2 | -- | no | no |
| CVE-2024-44243 | medium | macOS SIP Bypass via StorageKit | 5.5 | 18% | 45 | 3 | -- | no | YES |
| CVE-2025-7890 | medium | Terraform Provider Registry Cache Poisoning | 6.2 | 15% | 42 | 1 | -- | no | YES |
| CVE-2024-49113 | critical | Windows LDAP Remote Code Execution | 9.8 | 58% | 40 | 2 | -- | no | YES |
| CVE-2025-8901 | medium | Docker Desktop Privilege Escalation | 6.7 | 12% | 38 | 0 | -- | no | YES |
| CVE-2024-11639 | critical | Ivanti CSA Auth Bypass via Alternative Path | 10.0 | 82% | 35 | 0 | KEV | YES | YES |
| CVE-2025-9012 | medium | Grafana SSRF in Data Source Proxy | 5.8 | 8% | 32 | 1 | -- | no | YES |
| CVE-2024-50379 | high | Apache Tomcat Race Condition TOCTOU | 7.0 | 28% | 30 | 1 | -- | no | YES |
| CVE-2025-0123 | medium | Python pip Index URL Injection | 5.3 | 5% | 28 | 2 | -- | no | YES |
| CVE-2024-12356 | critical | BeyondTrust PRA Command Injection | 9.8 | 90% | 25 | 0 | KEV | YES | YES |
| CVE-2025-1357 | medium | AWS Lambda Runtime API SSRF | 6.5 | 18% | 22 | 3 | -- | no | YES |
| CVE-2024-55591 | critical | FortiOS Auth Bypass via Node.js Websocket | 9.6 | 85% | 20 | 0 | KEV | YES | YES |
| CVE-2025-2468 | medium | Elasticsearch Cross-Cluster Search Bypass | 5.0 | 6% | 18 | 1 | -- | no | no |
| CVE-2024-11972 | critical | Hunk Companion WordPress Plugin RCE | 9.8 | 72% | 15 | 0 | KEV | YES | YES |
| CVE-2025-3579 | low | containerd Image Pull Race Condition | 4.2 | 3% | 12 | 2 | -- | no | no |