| | CVE-2024-35276 | Fortinet | medium | 5.6 | 0.4%
| | A stack-based buffer overflow vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.3, FortiAnal… | Jan 14, 2025 | Jul 8, 2026 |
| | CVE-2024-33503 | Fortinet | medium | 6.7 | 0.2%
| | A improper privilege management vulnerability in Fortinet FortiManager Cloud 7.4.1 through 7.4.3, Fo… | Jan 14, 2025 | Jul 8, 2026 |
| | CVE-2024-27778 | Fortinet | high | 8.8 | 0.5%
| | An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] vulnerab… | Jan 14, 2025 | Jan 14, 2026 |
| | CVE-2024-52963 | Fortinet | low | 3.5 | 0.1%
| | A out-of-bounds write in Fortinet FortiOS versions 7.6.0, 7.4.0 through 7.4.6, 7.2.0 through 7.2.10,… | Jan 14, 2025 | Jun 9, 2026 |
| | CVE-2025-23082 | Veeam | high | 7.2 | — | | Veeam Backup for Microsoft Azure is vulnerable to Server-Side Request Forgery (SSRF). This may allow… | Jan 14, 2025 | Nov 18, 2025 |
| | CVE-2024-45207 | Veeam | high | 7.0 | — | | DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure l… | Dec 4, 2024 | Jul 2, 2025 |
| | CVE-2024-45206 | Veeam | medium | 6.5 | — | | A vulnerability in Veeam Service Provider Console has been identified, which allows to perform arbit… | Dec 4, 2024 | Jul 2, 2025 |
| | CVE-2024-45204 | Veeam | medium | 4.3 | — | | A vulnerability exists where a low-privileged user can exploit insufficient permissions in credentia… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42457 | Veeam | medium | 6.5 | — | | A vulnerability in Veeam Backup & Replication allows users with certain operator roles to expose sav… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42456 | Veeam | high | 8.8 | — | | A vulnerability in Veeam Backup & Replication platform allows a low-privileged user with a specific … | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42455 | Veeam | high | 8.1 | — | | A vulnerability in Veeam Backup & Replication allows a low-privileged user to connect to remoting se… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42453 | Veeam | high | 8.1 | — | | A vulnerability Veeam Backup & Replication allows low-privileged users to control and modify configu… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42452 | Veeam | high | 8.8 | — | | A vulnerability in Veeam Backup & Replication allows a low-privileged user to start an agent remotel… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42451 | Veeam | medium | 6.5 | — | | A vulnerability in Veeam Backup & Replication allows low-privileged users to leak all saved credenti… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-40717 | Veeam | high | 8.8 | — | | A vulnerability in Veeam Backup & Replication allows a low-privileged user with certain roles to per… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-6233 | Check Point | high | 7.8 | 0.0%
| | Check Point ZoneAlarm Extreme Security Link Following Local Privilege Escalation Vulnerability. This… | Nov 22, 2024 | Jan 15, 2026 |
| | CVE-2024-40715 | Veeam | high | 7.7 | — | | A vulnerability in Veeam Backup & Replication Enterprise Manager has been identified, which allows a… | Nov 7, 2024 | Jul 11, 2025 |
| | CVE-2024-9419 | HPE | high | 7.8 | 3.4%
| | Client / Server PCs with the HP Smart Universal Printing Driver installed are potentially vulnerable… | Oct 30, 2024 | Jan 26, 2026 |
| | CVE-2024-25566 | ForgeRock | medium | 6.1 | — | | An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper valid… | Oct 29, 2024 | Nov 8, 2024 |
| | CVE-2024-20340 | Cisco | medium | 6.5 | 0.2%
| | A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM… | Oct 23, 2024 | Mar 4, 2026 |
| | CVE-2023-50780 | Apache | high | 8.8 | 16.5%
| | Apache ActiveMQ Artemis allows access to diagnostic information and controls through MBeans, which a… | Oct 14, 2024 | Jun 15, 2026 |
| | CVE-2024-43590 | Microsoft | high | 7.8 | 0.4%
| | Visual C++ Redistributable Installer Elevation of Privilege Vulnerability | Oct 8, 2024 | Jul 7, 2026 |
| | CVE-2024-43468 | Microsoft | critical | 9.8 | 84.9%
| ⚠ KEV | Microsoft Configuration Manager Remote Code Execution Vulnerability | Oct 8, 2024 | Feb 13, 2026 |
| | CVE-2024-20432 | Cisco | critical | 9.9 | 1.1%
| | A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fabric Controller (NDFC) could a… | Oct 2, 2024 | Jun 17, 2026 |
| | CVE-2024-9355 | Apache | medium | 6.5 | 0.3%
| | A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly caus… | Oct 1, 2024 | Jun 18, 2026 |
| | CVE-2024-31490 | Fortinet | medium | 4.3 | 0.7%
| | An exposure of sensitive information to an unauthorized actor vulnerability in Fortinet FortiSandbox… | Sep 10, 2024 | Jan 14, 2026 |
| | CVE-2024-42024 | Veeam | high | 8.8 | — | | A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credent… | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42023 | Veeam | high | 8.8 | — | | An improper access control vulnerability allows low-privileged users to execute code with Administra… | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42022 | Veeam | medium | 5.3 | — | | An incorrect permission assignment vulnerability allows an attacker to modify product configuration … | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42021 | Veeam | medium | 6.5 | — | | An improper access control vulnerability allows an attacker with valid access tokens to access saved… | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42020 | Veeam | medium | 5.4 | — | | A Cross-site-scripting (XSS) vulnerability exists in the Reporter Widgets that allows HTML injection… | Sep 7, 2024 | Oct 27, 2024 |
| | CVE-2024-42019 | Veeam | high | 8.0 | — | | A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service servic… | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-40714 | Veeam | high | 8.3 | — | | An improper certificate validation vulnerability in TLS certificate validation allows an attacker on… | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-40713 | Veeam | high | 7.8 | — | | A vulnerability that allows a user who has been assigned a low-privileged role within Veeam Backup &… | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-40712 | Veeam | high | 7.8 | — | | A path traversal vulnerability allows an attacker with a low-privileged account and local access to … | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-40711 | Veeam | critical | 9.8 | — | | A deserialization of untrusted data vulnerability with a malicious payload can allow an unauthentica… | Sep 7, 2024 | Oct 30, 2025 |
| | CVE-2024-40710 | Veeam | high | 8.8 | — | | A series of related high-severity vulnerabilities, the most notable enabling remote code execution (… | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-39718 | Veeam | high | 8.1 | — | | An improper input validation vulnerability that allows a low-privileged user to remotely remove file… | Sep 7, 2024 | May 8, 2025 |
| | CVE-2024-22477 | ForgeRock | low | 1.8 | — | | A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The … | Jul 9, 2024 | Nov 21, 2024 |
| | CVE-2024-22377 | ForgeRock | medium | 5.3 | — | | The deploy directory in PingFederate runtime nodes is reachable to unauthorized users. | Jul 9, 2024 | Nov 21, 2024 |
| | CVE-2024-27785 | Fortinet | medium | 5.4 | 0.6%
| | An improper neutralization of formula elements in a CSV File [CWE-1236] vulnerability in Fortinet Fo… | Jul 9, 2024 | Jan 9, 2026 |
| | CVE-2024-27784 | Fortinet | high | 8.8 | 0.6%
| | Multiple Exposure of sensitive information to an unauthorized actor weaknesses [CWE-200] vulnerabili… | Jul 9, 2024 | Jan 9, 2026 |
| | CVE-2024-27783 | Fortinet | high | 7.6 | 1.1%
| | Multiple cross-site request forgery (CSRF) weaknesses [CWE-352] vulnerability in Fortinet FortiAIOps… | Jul 9, 2024 | Jan 9, 2026 |
| | CVE-2024-27782 | Fortinet | high | 8.1 | 0.8%
| | Multiple insufficient session expiration weaknesses [CWE-613] vulnerability in Fortinet FortiAIOps 2… | Jul 9, 2024 | Jan 9, 2026 |
| | CVE-2024-37079 | VMware | critical | 9.8 | 82.7%
| ⚠ KEV | vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. … | Jun 18, 2024 | Jan 26, 2026 |
| | CVE-2024-30104 | Microsoft | high | 7.8 | 0.6%
| | Microsoft Office Remote Code Execution Vulnerability | Jun 11, 2024 | May 19, 2026 |
| | CVE-2024-30103 | Microsoft | high | 8.8 | 15.0%
| | Microsoft Outlook Remote Code Execution Vulnerability | Jun 11, 2024 | May 19, 2026 |
| | CVE-2024-30101 | Microsoft | high | 7.5 | 1.1%
| | Microsoft Office Remote Code Execution Vulnerability | Jun 11, 2024 | May 19, 2026 |
| | CVE-2024-29855 | Veeam | critical | 9.0 | — | | Hard-coded JWT secret allows authentication bypass in Veeam Recovery Orchestrator | Jun 11, 2024 | Jul 14, 2025 |
| | CVE-2024-23669 | Fortinet | medium | 6.5 | 0.5%
| | An improper authorization in Fortinet FortiWebManager 7.2.0, FortiWebManager 7.0.0 through 7.0.4, Fo… | Jun 5, 2024 | Jul 8, 2026 |