| | CVE-2025-25002 |  Microsoft | medium | 6.8 | 1.8%
| | Insertion of sensitive information into log file in Azure Local Cluster allows an authorized attacke… | Apr 8, 2025 | Jan 16, 2026 |
| | CVE-2023-37930 |  Fortinet | high | 7.5 | 0.6%
| | Multiple issues including the use of uninitialized ressources [CWE-908] and excessive iteration [CWE… | Apr 8, 2025 | Jan 14, 2026 |
| | CVE-2025-23120 |  Veeam | high | 8.8 | — | | A vulnerability allowing remote code execution (RCE) for domain users. | Mar 20, 2025 | Apr 2, 2025 |
| | CVE-2024-47552 |  Apache | critical | 9.8 | 0.2%
| | Deserialization of Untrusted Data vulnerability in Apache Seata (incubating).
This issue affect… | Mar 20, 2025 | Mar 30, 2026 |
| | CVE-2025-26627 | Microsoft | high | 7.0 | 0.1%
| | Improper neutralization of special elements used in a command ('command injection') in Azure Arc all… | Mar 11, 2025 | Jan 20, 2026 |
| | CVE-2024-54026 | Fortinet | medium | 4.3 | 0.1%
| | An improper neutralization of special elements used in an sql command ('sql injection') in Fortinet … | Mar 11, 2025 | Jan 14, 2026 |
| | CVE-2024-52961 | Fortinet | high | 8.8 | 0.2%
| | An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] vulnerab… | Mar 11, 2025 | Jan 14, 2026 |
| | CVE-2025-26466 | Fortinet | medium | 5.9 | 42.5%
| | A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet… | Feb 28, 2025 | Feb 10, 2026 |
| | CVE-2024-27781 | Fortinet | high | 7.1 | 0.3%
| | An improper neutralization of input during web page generation ('cross-site scripting') vulnerabilit… | Feb 11, 2025 | Jan 14, 2026 |
| | CVE-2023-40721 | Fortinet | medium | 6.7 | 0.0%
| | A use of externally-controlled format string vulnerability [CWE-134] vulnerability in Fortinet allo… | Feb 11, 2025 | Jan 14, 2026 |
| | CVE-2024-11831 | Apache | medium | 5.4 | 1.7%
| | A flaw was found in npm-serialize-javascript. The vulnerability occurs because the serialize-javascr… | Feb 10, 2025 | Mar 18, 2026 |
| | CVE-2025-24319 |  F5 | medium | 6.5 | 0.3%
| | When BIG-IP Next Central Manager is running, undisclosed requests to the BIG-IP Next Central Manager… | Feb 5, 2025 | Feb 4, 2026 |
| | CVE-2025-23419 | F5 | medium | 4.3 | 0.6%
| | When multiple server blocks are configured to share the same IP address and port, an attacker can us… | Feb 5, 2025 | Jan 27, 2026 |
| | CVE-2025-23239 | F5 | high | 8.7 | 0.4%
| | When running in Appliance mode, and logged into a highly-privileged role, an authenticated remote co… | Feb 5, 2025 | Feb 4, 2026 |
| | CVE-2025-20205 |  Cisco | medium | 4.8 | 0.0%
| | Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (IS… | Feb 5, 2025 | May 6, 2026 |
| | CVE-2025-20204 | Cisco | medium | 4.8 | 0.0%
| | Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (IS… | Feb 5, 2025 | May 6, 2026 |
| | CVE-2022-23439 | Fortinet | medium | 4.7 | 0.2%
| | A externally controlled reference to a resource in another sphere vulnerability in Fortinet allows … | Jan 22, 2025 | Jan 14, 2026 |
| | CVE-2024-48885 | Fortinet | medium | 5.3 | 0.3%
| | A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fo… | Jan 16, 2025 | Jan 14, 2026 |
| | CVE-2024-35280 | Fortinet | medium | 5.4 | 0.6%
| | A improper neutralization of input during web page generation ('cross-site scripting') vulnerability… | Jan 15, 2025 | Feb 4, 2026 |
| | CVE-2024-50566 | Fortinet | high | 7.2 | 0.3%
| | A improper neutralization of special elements used in an os command ('os command injection') vulnera… | Jan 14, 2025 | Jan 14, 2026 |
| | CVE-2024-48884 | Fortinet | high | 7.5 | 39.3%
| | A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability in Fo… | Jan 14, 2025 | Jan 14, 2026 |
| | CVE-2024-45326 | Fortinet | medium | 4.3 | 0.3%
| | An Improper Access Control vulnerability [CWE-284] vulnerability in Fortinet FortiDeceptor 6.0.0, Fo… | Jan 14, 2025 | Feb 4, 2026 |
| | CVE-2024-27778 | Fortinet | high | 8.8 | 0.5%
| | An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] vulnerab… | Jan 14, 2025 | Jan 14, 2026 |
| | CVE-2025-23082 | Veeam | high | 7.2 | — | | Veeam Backup for Microsoft Azure is vulnerable to Server-Side Request Forgery (SSRF). This may allow… | Jan 14, 2025 | Nov 18, 2025 |
| | CVE-2024-45207 | Veeam | high | 7.0 | — | | DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes insecure l… | Dec 4, 2024 | Jul 2, 2025 |
| | CVE-2024-45206 | Veeam | medium | 6.5 | — | | A vulnerability in Veeam Service Provider Console has been identified, which allows to perform arbit… | Dec 4, 2024 | Jul 2, 2025 |
| | CVE-2024-45204 | Veeam | medium | 4.3 | — | | A vulnerability exists where a low-privileged user can exploit insufficient permissions in credentia… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42457 | Veeam | medium | 6.5 | — | | A vulnerability in Veeam Backup & Replication allows users with certain operator roles to expose sav… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42456 | Veeam | high | 8.8 | — | | A vulnerability in Veeam Backup & Replication platform allows a low-privileged user with a specific … | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42455 | Veeam | high | 8.1 | — | | A vulnerability in Veeam Backup & Replication allows a low-privileged user to connect to remoting se… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42453 | Veeam | high | 8.1 | — | | A vulnerability Veeam Backup & Replication allows low-privileged users to control and modify configu… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42452 | Veeam | high | 8.8 | — | | A vulnerability in Veeam Backup & Replication allows a low-privileged user to start an agent remotel… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-42451 | Veeam | medium | 6.5 | — | | A vulnerability in Veeam Backup & Replication allows low-privileged users to leak all saved credenti… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-40717 | Veeam | high | 8.8 | — | | A vulnerability in Veeam Backup & Replication allows a low-privileged user with certain roles to per… | Dec 4, 2024 | Apr 24, 2025 |
| | CVE-2024-6233 |  Check Point | high | 7.8 | 0.0%
| | Check Point ZoneAlarm Extreme Security Link Following Local Privilege Escalation Vulnerability. This… | Nov 22, 2024 | Jan 15, 2026 |
| | CVE-2024-40715 | Veeam | high | 7.7 | — | | A vulnerability in Veeam Backup & Replication Enterprise Manager has been identified, which allows a… | Nov 7, 2024 | Jul 11, 2025 |
| | CVE-2024-9419 |  HPE | high | 7.8 | 3.4%
| | Client / Server PCs with the HP Smart Universal Printing Driver installed are potentially vulnerable… | Oct 30, 2024 | Jan 26, 2026 |
| | CVE-2024-25566 |  ForgeRock | medium | 6.1 | — | | An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper valid… | Oct 29, 2024 | Nov 8, 2024 |
| | CVE-2024-20340 | Cisco | medium | 6.5 | 0.2%
| | A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM… | Oct 23, 2024 | Mar 4, 2026 |
| | CVE-2024-43468 | Microsoft | critical | 9.8 | 84.9%
| ⚠ KEV | Microsoft Configuration Manager Remote Code Execution Vulnerability | Oct 8, 2024 | Feb 13, 2026 |
| | CVE-2024-20432 | Cisco | critical | 9.9 | 2.6%
| | A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fabric Controller (NDFC) could a… | Oct 2, 2024 | Apr 2, 2026 |
| | CVE-2024-9355 | Apache | medium | 6.5 | 0.1%
| | A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly caus… | Oct 1, 2024 | Mar 18, 2026 |
| | CVE-2024-31490 | Fortinet | medium | 4.3 | 0.7%
| | An exposure of sensitive information to an unauthorized actor vulnerability in Fortinet FortiSandbox… | Sep 10, 2024 | Jan 14, 2026 |
| | CVE-2024-42024 | Veeam | high | 8.8 | — | | A vulnerability that allows an attacker in possession of the Veeam ONE Agent service account credent… | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42023 | Veeam | high | 8.8 | — | | An improper access control vulnerability allows low-privileged users to execute code with Administra… | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42022 | Veeam | medium | 5.3 | — | | An incorrect permission assignment vulnerability allows an attacker to modify product configuration … | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42021 | Veeam | medium | 6.5 | — | | An improper access control vulnerability allows an attacker with valid access tokens to access saved… | Sep 7, 2024 | Apr 28, 2025 |
| | CVE-2024-42020 | Veeam | medium | 5.4 | — | | A Cross-site-scripting (XSS) vulnerability exists in the Reporter Widgets that allows HTML injection… | Sep 7, 2024 | Oct 27, 2024 |
| | CVE-2024-42019 | Veeam | high | 8.0 | — | | A vulnerability that allows an attacker to access the NTLM hash of the Veeam Reporter Service servic… | Sep 7, 2024 | May 1, 2025 |
| | CVE-2024-40714 | Veeam | high | 8.3 | — | | An improper certificate validation vulnerability in TLS certificate validation allows an attacker on… | Sep 7, 2024 | May 1, 2025 |