Vulnerabilities (CVE)

Filtered by CWE-20
Total 11574 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-38131 4 Apple, Google, Intel and 1 more 4 Iphone Os, Android, Unison Software and 1 more 2026-06-17 N/A 6.5 MEDIUM
Improper input validationation for some Intel Unison software may allow an authenticated user to potentially enable denial of service via network access.
CVE-2023-37948 1 Jenkins 1 Cloud Infrastructure Compute 2026-06-17 N/A 3.7 LOW
Jenkins Oracle Cloud Infrastructure Compute Plugin 1.0.16 and earlier does not validate SSH host keys when connecting OCI clouds, enabling man-in-the-middle attacks.
CVE-2023-37833 1 Elenos 2 Etg150, Etg150 Firmware 2026-06-17 N/A 2.7 LOW
Improper access control in Elenos ETG150 FM transmitter v3.12 allows attackers to make arbitrary configuration edits that are only accessed by privileged users.
CVE-2023-37415 1 Apache 1 Apache-airflow-providers-apache-hive 2026-06-17 N/A 8.8 HIGH
Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Apache Hive Provider. Patching on top of CVE-2023-35797 Before 6.1.2 the proxy_user option can also inject semicolon. This issue affects Apache Airflow Apache Hive Provider: before 6.1.2. It is recommended updating provider version to 6.1.2 in order to avoid this vulnerability.
CVE-2023-37241 1 Huawei 2 Emui, Harmonyos 2026-06-17 N/A 7.5 HIGH
Input verification vulnerability in the WMS API. Successful exploitation of this vulnerability may cause the device to restart.
CVE-2023-36912 1 Microsoft 12 Windows 10, Windows 10 1607, Windows 10 1809 and 9 more 2026-06-17 N/A 7.5 HIGH
Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2023-36899 1 Microsoft 10 .net Framework, Windows 10 1809, Windows 10 21h2 and 7 more 2026-06-17 N/A 8.8 HIGH
ASP.NET Elevation of Privilege Vulnerability
CVE-2023-36897 1 Microsoft 7 365 Apps, Office, Office Long Term Servicing Channel and 4 more 2026-06-17 N/A 8.1 HIGH
Visual Studio Tools for Office Runtime Spoofing Vulnerability
CVE-2023-36893 1 Microsoft 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more 2026-06-17 N/A 6.5 MEDIUM
Microsoft Outlook Spoofing Vulnerability
CVE-2023-36888 1 Microsoft 1 Edge Chromium 2026-06-17 N/A 6.3 MEDIUM
Microsoft Edge for Android (Chromium-based) Tampering Vulnerability
CVE-2023-36873 1 Microsoft 12 .net Framework, Windows 10 1607, Windows 10 1809 and 9 more 2026-06-17 N/A 7.4 HIGH
.NET Framework Spoofing Vulnerability
CVE-2023-36872 1 Microsoft 1 Vp9 Video Extensions 2026-06-17 N/A 5.5 MEDIUM
VP9 Video Extensions Information Disclosure Vulnerability
CVE-2023-36860 4 Apple, Google, Intel and 1 more 4 Iphone Os, Android, Unison Software and 1 more 2026-06-17 N/A 7.1 HIGH
Improper input validation for some Intel Unison software may allow an authenticated user to potentially enable escalation of privilege via network access.
CVE-2023-36767 1 Microsoft 3 365 Apps, Office, Office Long Term Servicing Channel 2026-06-17 N/A 4.3 MEDIUM
Microsoft Office Security Feature Bypass Vulnerability
CVE-2023-36762 1 Microsoft 5 365 Apps, Office, Office Long Term Servicing Channel and 2 more 2026-06-17 N/A 7.3 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVE-2023-36761 1 Microsoft 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more 2026-06-17 N/A 6.5 MEDIUM
Microsoft Word Information Disclosure Vulnerability
CVE-2023-36731 1 Microsoft 12 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 9 more 2026-06-17 N/A 7.8 HIGH
Win32k Elevation of Privilege Vulnerability
CVE-2023-36719 1 Microsoft 14 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 11 more 2026-06-17 N/A 7.8 HIGH
Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability
CVE-2023-36707 1 Microsoft 4 Windows Server 2012, Windows Server 2016, Windows Server 2019 and 1 more 2026-06-17 N/A 6.5 MEDIUM
Windows Deployment Services Denial of Service Vulnerability
CVE-2023-36706 1 Microsoft 5 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 2 more 2026-06-17 N/A 6.5 MEDIUM
Windows Deployment Services Information Disclosure Vulnerability