CVEs from 2024
Total
9,429
critical
critical 114
high
high 1,043
medium
medium 1,991
low
low 40
% Critical
1.2%
% with KEV
1.7%
% with exploit
1.7%
Top vendors
Top products
- checkmk 10
- office 8
- profilegrid 8
- office_long_term_servicing_channel 6
- glibc 5
- virtual_traffic_manager 5
- element_pack 5
- propertyhive 5
Top packages
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2024-7593 | critical | 9.8 | 10.0 | 2y ago | Ivanti Virtual Traffic Manager contains an authentication bypass vulnerability that allows a remote, unauthenticated attacker to create a chosen administrator account. | |
| CVE-2024-1708 | high | 8.4 | 9.9 | 2y ago | ConnectWise ScreenConnect contains a path traversal vulnerability which could allow an attacker to execute remote code or directly impact confidential data and critical systems. | |
| CVE-2024-53197 | high | — | 9.5 | 1y ago | Important: kernel security update | |
| CVE-2024-53104 | high | — | 9.5 | 1y ago | Important: kernel security update | |
| CVE-2024-44309 | high | — | 9.5 | 2y ago | Important: webkit2gtk3 security update | |
| CVE-2024-9680 | high | — | 9.5 | 2y ago | Important: firefox security update | |
| CVE-2024-36971 | high | — | 9.5 | 2y ago | Important: kernel security update | |
| CVE-2024-38475 | high | — | 9.5 | 2y ago | Important: httpd security update | |
| CVE-2024-1086 | high | — | 9.5 | 2y ago | Important: kernel security, bug fix, and enhancement update | |
| CVE-2024-23222 | high | — | 9.5 | 3y ago | Apple iOS, iPadOS, macOS, tvOS, and Safari WebKit contain a type confusion vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact … |