CVE List – Find High-Risk & Exploited Vulnerabilities

Aggregating NVD, CVE, and multi-source threat feeds, this list provides deep analysis of high-risk threats such as RCE. By integrating CVSS and EPSS models, the system dynamically tracks Exp (Exploit) resources and PoC availability to accurately assess Exploitability. Combined with official Patches and remediation strategies, it helps prioritize Vulnerability Management workflows, significantly shortening response cycles and securing your critical assets.

Assigner (CNA / source):[email protected] Remove this filter

Showing 6180 of 395 results
«« First « Prev Page 4 / 20 Next »
CVE Description Max CVSS EPSS % Published Updated
CVE-2023-44167 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A 0.04% 2023-09-28 2024-01-02
CVE-2023-44165 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A 0.04% 2023-09-28 2024-01-02
CVE-2023-44162 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A 0.04% 2023-10-26 2024-01-02
CVE-2023-43738 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A 0.04% 2023-10-26 2024-01-02
CVE-2023-43737 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A 0.04% 2023-10-26 2024-01-02
CVE-2023-5306 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A 0.05% 2023-10-31 2024-01-02
CVE-2023-44486 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A 0.05% 2023-10-31 2024-01-02
CVE-2023-44485 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A 0.05% 2023-10-31 2024-01-02
CVE-2026-2638 A vulnerability in the quarantine and restore workflow of the X-VPN macOS website versions 77.0 through 77.5 allow a local attacker to leverage a race condition and symlink manipulation to achieve privileged file corruption. 7.3 0.08% 2026-06-09 2026-06-17
CVE-2025-14979 AirVPN Eddie on MacOS contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root.This issue affects Eddie: 2.24.6. 8.5 0.15% 2026-01-06 2026-06-17
CVE-2024-8159 Deep Freeze 9.00.020.5760 is vulnerable to an out-of-bounds read vulnerability by triggering the 0x70014 IOCTL code of the FarDisk.sys driver. 6.4 0.15% 2024-10-03 2026-06-17
CVE-2026-0924 BuhoCleaner contains an insecure XPC service that allows local, unprivileged users to escalate their privileges to root via insecure functions.This issue affects BuhoCleaner: 1.15.2. 7.3 0.16% 2026-02-02 2026-06-17
CVE-2024-1140 Twister Antivirus v8.17 is vulnerable to an Out-of-bounds Read vulnerability by triggering the 0x801120B8 IOCTL code of the filmfd.sys driver. 6.1 0.16% 2024-02-13 2026-06-17
CVE-2024-1241 Watchdog Antivirus v1.6.415 is vulnerable to a Denial of Service vulnerability by triggering the 0x80002014 IOCTL code of the wsdk-driver.sys driver. 5.5 0.17% 2024-04-23 2026-06-17
CVE-2026-2637 iBoysoft NTFS for Mac contains a local privilege escalation vulnerability in its privileged helper daemon ntfshelperd. The daemon exposes an NSConnection service that runs as root without implementing any authentication or authorization checks. This issue affects iBoysoft NTFS: 8.0.0. 8.5 0.17% 2026-03-03 2026-06-17
CVE-2026-40229 Helpy contains a stored cross-site scripting vulnerability in the post author display logic. Any registered user can persist arbitrary HTML in their account name field and cause it to be rendered unescaped in public forum threads where they participate, in the admin ticket view, and in HTML notification emails sent to other users.This issue affects helpy: 2.8.0. 5.1 0.18% 2026-04-29 2026-06-17
CVE-2025-9638 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Portabilis i-Educar allows Stored Cross-Site Scripting (XSS) via the matricula_interna parameter in the educar_usuario_cad.php endpoint. This issue affects i-Educar: 2.10.0. 4.8 0.18% 2025-12-09 2026-06-17
CVE-2026-40230 Helpy contains a stored cross-site scripting vulnerability in the knowledge base Doc rendering logic. An authenticated attacker with admin or agent editor privileges can persist arbitrary HTML or JavaScript in the body field of a knowledge base Doc.This issue affects helpy: 2.8.0. 4.8 0.18% 2026-04-29 2026-06-17
CVE-2025-12843 Code Injection using Electron Fuses in waveterm on MacOS allows TCC Bypass. This issue affects waveterm: 0.12.2. 6.9 0.18% 2025-12-12 2026-06-17
CVE-2025-53914 Excessive Privileges vulnerability in Calix GigaCenter ONT (Broadcom SoC modules) allows Privilege Abuse.This issue affects GigaCenter ONT: 844E, 844G, 844GE, 854GE, 812G, 813G, 818G. 7.0 0.18% 2025-09-09 2026-06-17
«« First « Prev Page 4 / 20 Next »
cvelogic Threat Intelligence