| | CVE-2024-21755 |  Fortinet | high | 8.8 | 1.0%
| | A improper neutralization of special elements used in an os command ('os command injection') vulnera… | Apr 9, 2024 | Jan 14, 2026 |
| | CVE-2024-21756 | Fortinet | high | 8.8 | 1.0%
| | A improper neutralization of special elements used in an os command ('os command injection') vulnera… | Apr 9, 2024 | Jan 14, 2026 |
| | CVE-2024-23671 | Fortinet | high | 8.1 | 0.8%
| | A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fo… | Apr 9, 2024 | Jan 14, 2026 |
| | CVE-2024-31487 | Fortinet | medium | 5.9 | 0.5%
| | A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fo… | Apr 9, 2024 | Jan 14, 2026 |
| | CVE-2024-1249 |  Apache | high | 7.4 | 0.2%
| | A flaw was found in Keycloak's OIDC component in the "checkLoginIframe," which allows unvalidated cr… | Apr 17, 2024 | Apr 30, 2026 |
| | CVE-2024-24910 |  Check Point | high | 7.3 | 0.1%
| | A local attacker can erscalate privileges on affected Check Point ZoneAlarm ExtremeSecurity NextGen,… | Apr 18, 2024 | Jan 15, 2026 |
| | CVE-2024-20358 |  Cisco | medium | 6.0 | 0.0%
| | A vulnerability in the Cisco Adaptive Security Appliance (ASA) restore functionality that is availab… | Apr 24, 2024 | Mar 4, 2026 |
| | CVE-2024-28893 |  HPE | high | 7.7 | 0.4%
| | Certain HP software packages (SoftPaqs) are potentially vulnerable to arbitrary code execution when … | May 1, 2024 | Jan 14, 2026 |
| | CVE-2024-32761 |  F5 | medium | 6.5 | 0.3%
| | Under certain conditions, a data leak may occur in the Traffic Management Microkernels (TMMs) of BIG… | May 8, 2024 | Feb 4, 2026 |
| | CVE-2024-27460 | HPE | medium | 6.7 | 2.5%
| | A privilege escalation exists in the updater for Plantronics Hub 3.25.1 and below. | May 14, 2024 | Jan 21, 2026 |
| | CVE-2024-29212 |  Veeam | critical | 9.9 | — | | Due to an unsafe de-serialization method used by the Veeam Service Provider Console(VSPC) server in… | May 14, 2024 | Jun 30, 2025 |
| | CVE-2024-31491 | Fortinet | high | 8.8 | 1.1%
| | A client-side enforcement of server-side security vulnerability in Fortinet FortiSandbox 4.4.0 throu… | May 14, 2024 | Jan 14, 2026 |
| | CVE-2024-29849 | Veeam | critical | 9.8 | — | | Veeam Backup Enterprise Manager allows unauthenticated users to log in as any user to enterprise man… | May 22, 2024 | Jul 3, 2025 |
| | CVE-2024-29850 | Veeam | high | 8.8 | — | | Veeam Backup Enterprise Manager allows account takeover via NTLM relay. | May 22, 2024 | Jul 3, 2025 |
| | CVE-2024-29851 | Veeam | high | 7.2 | — | | Veeam Backup Enterprise Manager allows high-privileged users to steal NTLM hash of Enterprise manage… | May 22, 2024 | Jul 3, 2025 |
| | CVE-2024-29852 | Veeam | low | 2.7 | — | | Veeam Backup Enterprise Manager allows high-privileged users to read backup session logs. | May 22, 2024 | Jul 3, 2025 |
| | CVE-2024-29853 | Veeam | high | 7.8 | — | | An authentication bypass vulnerability in Veeam Agent for Microsoft Windows allows for local privile… | May 22, 2024 | Jul 3, 2025 |
| | CVE-2024-29855 | Veeam | critical | 9.0 | — | | Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator | Jun 11, 2024 | Jul 14, 2025 |
| | CVE-2024-37079 |  VMware | critical | 9.8 | 82.7%
| ⚠ KEV | vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. … | Jun 18, 2024 | Jan 26, 2026 |
| | CVE-2024-27782 | Fortinet | high | 8.1 | 0.8%
| | Multiple insufficient session expiration weaknesses [CWE-613] vulnerability in Fortinet FortiAIOps 2… | Jul 9, 2024 | Jan 9, 2026 |
| | CVE-2024-27783 | Fortinet | high | 7.6 | 1.1%
| | Multiple cross-site request forgery (CSRF) weaknesses [CWE-352] vulnerability in Fortinet FortiAIOps… | Jul 9, 2024 | Jan 9, 2026 |
| | CVE-2024-27784 | Fortinet | high | 8.8 | 0.6%
| | Multiple Exposure of sensitive information to an unauthorized actor weaknesses [CWE-200] vulnerabili… | Jul 9, 2024 | Jan 9, 2026 |
| | CVE-2024-27785 | Fortinet | medium | 5.4 | 0.6%
| | An improper neutralization of formula elements in a CSV File [CWE-1236] vulnerability in Fortinet Fo… | Jul 9, 2024 | Jan 9, 2026 |
| | CVE-2024-22377 |  ForgeRock | medium | 5.3 | — | | The deploy directory in PingFederate runtime nodes is reachable to unauthorized users. | Jul 9, 2024 | Nov 21, 2024 |
| | CVE-2024-22477 | ForgeRock | low | 1.8 | — | | A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The … | Jul 9, 2024 | Nov 21, 2024 |
| | CVE-2024-39718 | Veeam | high | 8.1 | — | | An improper input validation vulnerability that allows a low-privileged user to remotely remove file… | Sep 7, 2024 | May 8, 2025 |
| | CVE-2024-40710 | Veeam | high | 8.8 | — | | A series of related high-severity vulnerabilities, the most notable enabling remote code execution (… | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-40711 | Veeam | critical | 9.8 | — | | A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthentica… | Sep 7, 2024 | Oct 30, 2025 |
| | CVE-2024-40712 | Veeam | high | 7.8 | — | | A path traversal vulnerability allows an attacker with a low-privileged account and local access to … | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-40713 | Veeam | high | 7.8 | — | | A vulnerability that allows a user who has been assigned a low-privileged role within Veeam Backup &… | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-40714 | Veeam | high | 8.3 | — | | An improper certificate validation vulnerability in TLS certificate validation allows an attacker on… | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-42019 | Veeam | high | 8.0 | — | | A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service servic… | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-42020 | Veeam | medium | 5.4 | — | | A Cross-site-scripting (XSS) vulnerability exists in the Reporter Widgets that allows HTML injection… | Sep 7, 2024 | Oct 27, 2024 |
| | CVE-2024-42021 | Veeam | medium | 6.5 | — | | An improper access control vulnerability allows an attacker with valid access tokens to access saved… | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42022 | Veeam | medium | 5.3 | — | | An incorrect permission assignment vulnerability allows an attacker to modify product configuration … | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42023 | Veeam | high | 8.8 | — | | An improper access control vulnerability allows low-privileged users to execute code with Administra… | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42024 | Veeam | high | 8.8 | — | | A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credent… | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-31490 | Fortinet | medium | 4.3 | 0.7%
| | An exposure of sensitive information to an unauthorized actor vulnerability in Fortinet FortiSandbox… | Sep 10, 2024 | Jan 14, 2026 |
| | CVE-2024-9355 | Apache | medium | 6.5 | 0.1%
| | A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly caus… | Oct 1, 2024 | Mar 18, 2026 |
| | CVE-2024-20432 | Cisco | critical | 9.9 | 2.6%
| | A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fabric Controller (NDFC) could a… | Oct 2, 2024 | Apr 2, 2026 |
| | CVE-2024-43468 |  Microsoft | critical | 9.8 | 84.9%
| ⚠ KEV | Microsoft Configuration Manager Remote Code Execution Vulnerability | Oct 8, 2024 | Feb 13, 2026 |
| | CVE-2024-20340 | Cisco | medium | 6.5 | 0.2%
| | A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM… | Oct 23, 2024 | Mar 4, 2026 |
| | CVE-2024-25566 | ForgeRock | medium | 6.1 | — | | An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper valid… | Oct 29, 2024 | Nov 8, 2024 |
| | CVE-2024-9419 | HPE | high | 7.8 | 3.4%
| | Client / Server PCs with the HP Smart Universal Printing Driver installed are potentially vulnerable… | Oct 30, 2024 | Jan 26, 2026 |
| | CVE-2024-40715 | Veeam | high | 7.7 | — | | A vulnerability in Veeam Backup & Replication Enterprise Manager has been identified, which allows a… | Nov 7, 2024 | Jul 11, 2025 |
| | CVE-2024-6233 | Check Point | high | 7.8 | 0.0%
| | Check Point ZoneAlarm Extreme Security Link Following Local Privilege Escalation Vulnerability. This… | Nov 22, 2024 | Jan 15, 2026 |
| | CVE-2024-40717 | Veeam | high | 8.8 | — | | A vulnerability in Veeam Backup & Replication allows a low-privileged user with certain roles to per… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42451 | Veeam | medium | 6.5 | — | | A vulnerability in Veeam Backup & Replication allows low-privileged users to leak all saved credenti… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42452 | Veeam | high | 8.8 | — | | A vulnerability in Veeam Backup & Replication allows a low-privileged user to start an agent remotel… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42453 | Veeam | high | 8.1 | — | | A vulnerability Veeam Backup & Replication allows low-privileged users to control and modify configu… | Dec 4, 2024 | Apr 24, 2025 |