External Remote Services

CVE-2026-50751 is a critical authentication bypass vulnerability in Check Point Security Gateway affecting the deprecated IKEv1 key exchange. It allows unauthen…

CVE-2026-24061 is a critical command injection vulnerability in telnetd within GNU Inetutils through version 2.7, classified under CWE-88. The flaw allows remot…

Jenkins versions 2.56 and earlier, as well as 2.46.1 LTS and earlier, are vulnerable to an unauthenticated remote code execution flaw involving insecure deseria…

CVE-2025-20352 is a stack overflow vulnerability in the SNMP subsystem of Cisco IOS and IOS XE Software, classified under CWE-121. It carries a CVSS v3.1 score …

CVE-2025-47812 is a critical remote code execution vulnerability in Wing FTP Server versions prior to 7.4.4, caused by mishandling of null bytes in web interfac…

CVE-2025-32433 is a critical remote code execution vulnerability in Erlang/OTP SSH servers affecting versions prior to OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2…

CVE-2024-40891 is a command injection vulnerability (CWE-78) affecting the legacy Zyxel VMG4325-B10A DSL CPE firmware version 1.00(AAFR.4)C0_20170615. It allows…

CVE-2023-27997 is a critical heap-based buffer overflow vulnerability affecting FortiOS and FortiProxy SSL-VPN services across multiple version branches. The fl…

CVE-2020-2551 is a critical vulnerability in Oracle WebLogic Server (versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, and 12.2.1.4.0) affecting the WLS Core Compone…

CVE-2017-6742 is a buffer overflow vulnerability (CWE-119) in Cisco IOS and IOS XE Software SNMP implementations affecting versions 1, 2c, and 3. It allows auth…

CVE-2022-42475 is a critical heap-based buffer overflow vulnerability in Fortinet FortiOS and FortiProxy SSL-VPN components, affecting versions 7.2.0 through 7.…

CVE-2016-6366 is a buffer overflow vulnerability (CWE-120) in Cisco Adaptive Security Appliance (ASA) Software through version 9.4.2.3 affecting multiple platfo…

CVE-2019-0703 is an information disclosure vulnerability in the Windows SMB Server that allows attackers to obtain sensitive information via crafted requests. T…

CVE-2017-3881 is a critical vulnerability in Cisco IOS and IOS XE Software affecting the Cluster Management Protocol (CMP) processing code, allowing unauthentic…

CVE-2022-20708 affects Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, allowing attackers to execute arbitrary code, elevate privileges, byp…

CVE-2022-20703 affects Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, allowing attackers to execute arbitrary code, elevate privileges, byp…

CVE-2022-20701 affects Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, allowing attackers to execute arbitrary code, elevate privileges, byp…

CVE-2022-20700 is a critical vulnerability affecting Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, with a CVSS v3.1 score of 10.0. The fla…

CVE-2017-6744 is a high-severity buffer overflow vulnerability (CWE-119) in the SNMP subsystem of Cisco IOS and IOS XE Software, allowing authenticated remote a…

CVE-2017-6743 is a high-severity buffer overflow vulnerability in the SNMP subsystem of Cisco IOS and IOS XE Software, affecting all SNMP versions. It allows au…

CVE-2017-6740 is a high-severity buffer overflow vulnerability (CWE-119) in the SNMP subsystem of Cisco IOS and IOS XE Software, affecting all SNMP versions. It…

CVE-2017-6739 is a buffer overflow vulnerability (CWE-119) in the SNMP implementation of Cisco IOS and IOS XE Software, affecting versions 1, 2c, and 3. It allo…

CVE-2017-6737 is a buffer overflow vulnerability (CWE-119) in the SNMP implementation of Cisco IOS and IOS XE Software affecting versions 1, 2c, and 3. It allow…

CVE-2017-6736 is a high-severity buffer overflow vulnerability (CWE-119) in the SNMP subsystem of Cisco IOS and IOS XE Software, affecting all SNMP versions. It…

CVE-2017-10271 is a high-severity vulnerability in Oracle WebLogic Server affecting versions 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0, and 12.2.1.2.0. It allows unaut…

CVE-2021-26855 is a server-side request forgery vulnerability in Microsoft Exchange Server that allows unauthenticated attackers to forge requests to the intern…

CVE-2021-22893 is a critical authentication bypass vulnerability in Ivanti Pulse Connect Secure versions 9.0R3, 9.1R1, and higher, affecting the Windows File Sh…

CVE-2020-8260 is a high-severity vulnerability in Ivanti Pulse Connect Secure versions prior to 9.1R9 that allows authenticated attackers to execute arbitrary c…

CVE-2021-35395 affects Realtek Jungle SDK versions v2.x through v3.4.14B, which expose an HTTP web server for access point management. The vulnerability involve…

CVE-2026-0257 is a critical authentication bypass vulnerability (CWE-565) in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS software, allowin…

CVE-2025-33073 is a high-severity (CVSS 8.8) improper access control vulnerability in Microsoft Windows SMB, classified under CWE-284, which allows an authorize…

CVE-2025-57819 is a critical vulnerability in Sangoma FreePBX versions 15, 16, and 17, classified as SQL injection and authentication bypass. The flaw allows un…

CVE-2017-15944 is a critical remote code execution vulnerability in Palo Alto Networks PAN-OS versions before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, …

Eclipse Equinox OSGi versions 3.7.2 and earlier contain a critical remote code execution vulnerability (CWE-306) with a CVSS score of 9.8. Unauthenticated attac…

Eclipse Equinox OSGi versions 3.8 through 3.18 contain a critical remote code execution vulnerability in the console interface. Unauthenticated attackers can ex…

CVE-2026-20781 is a critical authentication bypass vulnerability in OCPP WebSocket endpoints that allows unauthenticated attackers to impersonate charging stati…

CVE-2026-30495 affects the Optoma CinemaX P2 projector running firmware TVOS-04.24.010.04.01 on Android 8.0.0, exposing Android Debug Bridge (ADB) on TCP port 5…

NVIDIA TRT-LLM for any platform contains a vulnerability in RPC testing involving unsafe deserialization (CWE-502). This flaw allows an attacker to potentially …

CVE-2026-33892 is a HIGH severity authentication bypass vulnerability (CWE-305) affecting Industrial Edge Management Pro V1 (versions >= V1.7.6 < V1.15.17), V2 …