Critical
|
11 Apr 2021 |
24 Jan 2023 |
CPAI-2021-0211
|
|
CVE-2011-3600 CVE-2016-3542 CVE-2018-14485 CVE-2020-11991 CVE-2021-26703 CVE-2021-37425
|
XML External Entity Over HTTP Request (CVE-2011-3600; CVE-2016-3542; CVE-2018-14485; CVE-2020-11991; CVE-2021-26703; CVE-2021-37425)
|
Critical
|
19 Oct 2021 |
11 Jan 2023 |
CPAI-2021-0765
|
|
CVE-2017-9830 CVE-2018-15139 CVE-2018-19423 CVE-2018-6383 CVE-2020-29607 CVE-2021-24155 CVE-2021-24347
|
p0wny Shell Remote Code Execution (CVE-2017-9830; CVE-2018-15139; CVE-2018-19423; CVE-2018-6383; CVE-2020-29607; CVE-2021-24155; CVE-2021-24347)
|
High
|
15 Feb 2021 |
11 Jan 2023 |
CPAI-2021-0069
|
|
CVE-2021-25646 CVE-2021-26919
|
Apache Druid Remote Code Execution (CVE-2021-25646; CVE-2021-26919)
|
Critical
|
15 Jul 2021 |
9 Jan 2023 |
CPAI-2021-0461
|
|
CVE-2021-35464
|
ForgeRock OpenAM Remote Code Execution (CVE-2021-35464)
|
High
|
16 Dec 2021 |
3 Jan 2023 |
CPAI-2021-0900
|
|
CVE-2021-31207
|
Microsoft Exchange Server Security Feature Authentication Bypass (CVE-2021-31207)
|
Critical
|
18 Oct 2021 |
3 Jan 2023 |
CPAI-2021-0772
|
|
CVE-2021-40438
|
Apache HTTP Server Server-Side Request Forgery (CVE-2021-40438)
|
Critical
|
5 Sep 2021 |
3 Jan 2023 |
CPAI-2021-0548
|
|
CVE-2021-26084
|
Atlassian Confluence Remote Code Execution (CVE-2021-26084)
|
High
|
29 Apr 2021 |
3 Jan 2023 |
CPAI-2021-0270
|
|
|
Visual Studio Code Python Extension Remote Code Execution
|
High
|
2 Mar 2021 |
29 Dec 2022 |
CPAI-2021-0107
|
Microsoft CVE-2021-26857
|
CVE-2021-26857 CVE-2021-26858
|
Microsoft Exchange Server Remote Code Execution (CVE-2021-26857; CVE-2021-26858)
|
High
|
29 Sep 2021 |
28 Dec 2022 |
CPAI-2021-0529
|
|
CVE-2021-21225
|
Google Chrome Heap Corruption (CVE-2021-21225)
|
High
|
8 Dec 2021 |
22 Dec 2022 |
CPAI-2021-0931
|
|
CVE-2021-43798
|
Grafana Directory Traversal (CVE-2021-43798)
|
Critical
|
22 Mar 2021 |
19 Dec 2022 |
CPAI-2021-0198
|
|
CVE-2021-22986 CVE-2021-22987 CVE-2022-1388
|
F5 BIG-IP Remote Code Execution (CVE-2021-22986; CVE-2021-22987; CVE-2022-1388)
|
Critical
|
28 Nov 2021 |
19 Dec 2022 |
CPAI-2020-3442
|
|
CVE-2020-10148
|
SolarWinds Orion Platform Authentication Bypass (CVE-2020-10148)
|
Critical
|
16 Nov 2021 |
19 Dec 2022 |
CPAI-2020-3431
|
|
CVE-2020-16846
|
SaltStack Salt API SSH Client Command Injection (CVE-2020-16846)
|
Critical
|
8 Jun 2021 |
19 Dec 2022 |
CPAI-2021-0376
|
|
CVE-2021-21985
|
VMware vCenter Server Remote Code Execution (CVE-2021-21985)
|
Critical
|
20 Jun 2021 |
4 Dec 2022 |
CPAI-2021-0305
|
|
CVE-2021-29200
|
Apache OFBiz Insecure Deserialization (CVE-2021-29200)
|
Critical
|
29 Nov 2021 |
28 Nov 2022 |
CPAI-2021-0899
|
|
CVE-2020-4006
|
VMWare Workspace Command Injection (CVE-2020-4006)
|
Critical
|
14 Nov 2021 |
28 Nov 2022 |
CPAI-2021-0867
|
|
CVE-2021-22205
|
GitLab CE Remote Code Execution (CVE-2021-22205)
|
Critical
|
15 Mar 2021 |
28 Nov 2022 |
CPAI-2020-3297
|
|
CVE-2020-14756
|
Oracle Coherence Remote Code Execution (CVE-2020-14756)
|
Critical
|
14 Mar 2021 |
28 Nov 2022 |
CPAI-2021-0148
|
|
CVE-2021-21978
|
VMware View Planner Remote Code Execution (CVE-2021-21978)
|
Critical
|
2 Mar 2021 |
28 Nov 2022 |
CPAI-2021-0099
|
Microsoft CVE-2021-26855
|
CVE-2021-26855 CVE-2021-27065
|
Microsoft Exchange Server Remote Code Execution (CVE-2021-26855; CVE-2021-27065)
|
Critical
|
25 Jan 2021 |
23 Nov 2022 |
CPAI-2019-2414
|
|
CVE-2019-16057
|
D-Link DNS-320 ShareCenter Command Injection (CVE-2019-16057)
|
Critical
|
28 Nov 2021 |
23 Nov 2022 |
CPAI-2018-1796
|
|
CVE-2018-1000533
|
GitList Remote Code Execution (CVE-2018-1000533)
|
Critical
|
28 Nov 2021 |
23 Nov 2022 |
CPAI-2017-1215
|
|
CVE-2017-17419
|
Quest NetVault Backup Remote Code Execution (CVE-2017-17419)
|
Critical
|
28 Feb 2021 |
23 Nov 2022 |
CPAI-2021-0106
|
|
CVE-2021-21972 CVE-2021-21973
|
VMware vSphere Client Remote Code Execution (CVE-2021-21972; CVE-2021-21973)
|
Critical
|
20 Mar 2021 |
20 Nov 2022 |
CPAI-2020-1396
|
|
CVE-2022-23463
|
Java Server Pages Backdoor (CVE-2022-23463)
|
Critical
|
7 Dec 2021 |
13 Nov 2022 |
CPAI-2021-0920
|
|
CVE-2021-44077
|
Zoho ManageEngine ServiceDesk Plus Remote Code Execution (CVE-2021-44077)
|
Critical
|
12 May 2021 |
13 Nov 2022 |
CPAI-2021-0292
|
Microsoft CVE-2021-31166
|
CVE-2021-31166
|
Microsoft HTTP Protocol Stack Remote Code Execution (CVE-2021-31166)
|
Critical
|
14 Jul 2021 |
30 Sep 2022 |
CPAI-2021-0476
|
Microsoft CVE-2021-34473
|
CVE-2021-34473 CVE-2021-34523
|
Microsoft Exchange Server Remote Code Execution (CVE-2021-34473; CVE-2021-34523)
|
High
|
20 Jan 2021 |
8 Sep 2022 |
CPAI-2020-1389
|
|
CVE-2020-35606 CVE-2022-36446
|
Webmin Command Injection (CVE-2020-35606; CVE-2022-36446)
|
Critical
|
10 Dec 2021 |
21 Aug 2022 |
CPAI-2021-0936
|
|
CVE-2021-44228 CVE-2021-45046
|
Apache Log4j Remote Code Execution (CVE-2021-44228; CVE-2021-45046)
|
High
|
5 Dec 2021 |
26 Jun 2022 |
CPAI-2021-0240
|
|
|
Java Server Side Template Injection
|
High
|
29 Apr 2021 |
6 Jun 2022 |
CPAI-2019-2459
|
|
CVE-2019-8315
|
D-Link DIR-878 Command Injection (CVE-2019-8315)
|
Critical
|
22 Feb 2021 |
22 May 2022 |
CPAI-2020-3256
|
|
CVE-2020-15568
|
TerraMaster TOS Command Injection (CVE-2020-15568)
|
High
|
27 Jul 2021 |
10 May 2022 |
CPAI-2021-0487
|
|
CVE-2021-36942 CVE-2022-26925
|
Microsoft Active Directory Certificate Services NTLM Relay (CVE-2021-36942; CVE-2022-26925)
|
High
|
20 Jul 2021 |
16 Feb 2022 |
CPAI-2021-0460
|
|
CVE-2021-42912
|
FiberHome Routers Command Injection (CVE-2021-42912)
|
Critical
|
30 Nov 2021 |
15 Feb 2022 |
CPAI-2020-3445
|
|
CVE-2020-5847 CVE-2020-5849
|
Unraid Remote Code Execution (CVE-2020-5847; CVE-2020-5849)
|
High
|
16 Jun 2021 |
31 Jan 2022 |
CPAI-2020-3368
|
|
CVE-2020-11978 CVE-2020-13927
|
Apache Airflow Command Injection (CVE-2020-11978; CVE-2020-13927)
|
High
|
2 Aug 2021 |
23 Jan 2022 |
CPAI-2021-0328
|
|
CVE-2021-33514
|
NETGEAR Command Injection (CVE-2021-33514)
|
High
|
10 Jan 2021 |
20 Jan 2022 |
CPAI-2021-0005
|
|
|
Nessus Scanners Scanning Attempt
|
High
|
30 Dec 2021 |
30 Dec 2021 |
CPAI-2021-1019
|
|
CVE-2021-37921
|
Zoho ManageEngine ADManager Plus Arbitrary File Upload (CVE-2021-37921)
|
High
|
30 Dec 2021 |
30 Dec 2021 |
CPAI-2021-1018
|
|
CVE-2021-32682
|
ElFinder File Manager Command Injection (CVE-2021-32682)
|
Critical
|
30 Dec 2021 |
30 Dec 2021 |
CPAI-2021-1017
|
|
CVE-2021-34996
|
Commvault CommCell Authentication Bypass (CVE-2021-34996)
|
High
|
30 Dec 2021 |
30 Dec 2021 |
CPAI-2021-1016
|
|
CVE-2021-22795
|
Schneider Electric Struxureware Data Center Expert Command Injection (CVE-2021-22795)
|
High
|
30 Dec 2021 |
30 Dec 2021 |
CPAI-2021-1015
|
|
CVE-2021-22241
|
GitLab Community and Enterprise Cross-Site Scripting (CVE-2021-22241)
|
High
|
30 Dec 2021 |
30 Dec 2021 |
CPAI-2021-0963
|
|
CVE-2021-32789
|
WordPress WooCommerce Gutenberg Blocks Plugin SQL Injection (CVE-2021-32789)
|
Critical
|
30 Dec 2021 |
30 Dec 2021 |
CPAI-2021-0961
|
|
CVE-2021-33357
|
RaspAP Command Injection (CVE-2021-33357)
|
Critical
|
30 Dec 2021 |
30 Dec 2021 |
CPAI-2021-0951
|
|
CVE-2021-40870
|
Aviatrix Controller Directory Traversal (CVE-2021-40870)
|
High
|
29 Dec 2021 |
29 Dec 2021 |
CPAI-2021-1010
|
|
CVE-2021-33722
|
Siemens SINEC NMS Directory Traversal (CVE-2021-33722)
|
High
|
29 Dec 2021 |
29 Dec 2021 |
CPAI-2021-1009
|
|
CVE-2021-38391
|
Delta Electronics DIAEnergie SQL Injection (CVE-2021-38391)
|