CRITICAL9.8 CVE-2020-7961 ⚠ KEV EPSS 94.4% Deserialization of Untrusted Data in Liferay Portal 5/24/2022 CRITICAL9.8 CVE-2016-4437 ⚠ KEV EPSS 94.3% Improper Access Control in Apache Shiro 5/14/2022 CRITICAL9.8 CVE-2016-3088 ⚠ KEV EPSS 94.3% Improper Input Validation in Apache ActiveMQ 5/14/2022 CRITICAL9.8 CVE-2017-9791 ⚠ KEV EPSS 94.1% Code execution in Apache Struts 1 plugin 5/13/2022 CRITICAL9.8 CVE-2018-14667 ⚠ KEV EPSS 89.5% Richfaces vulnerable to arbitrary code execution 5/13/2022 CRITICAL9.8 CVE-2016-8735 ⚠ KEV EPSS 93.8% Apache Tomcat Improper Access Control vulnerability 5/13/2022 CRITICAL9.9 CVE-2019-1003030 ⚠ KEV EPSS 91.8% Sandbox bypass in Jenkins Pipeline: Groovy Plugin 5/13/2022 CRITICAL9.8 CVE-2013-2251 ⚠ KEV EPSS 94.3% Code injection in Apache Struts 5/13/2022 CRITICAL9.8 CVE-2017-1000353 ⚠ KEV EPSS 94.5% Deserialization of Untrusted Data in Jenkins 5/13/2022 CRITICAL9.8 CVE-2018-1000861 ⚠ KEV EPSS 94.5% Deserialization of Untrusted Data in Jenkins 5/13/2022 CRITICAL9.9 CVE-2019-1003029 ⚠ KEV EPSS 92.6% Sandbox bypass in Script Security Plugin 5/13/2022 CRITICAL9.8 CVE-2012-0391 ⚠ KEV EPSS 87.5% Apache Struts Remote Java Code Execution 5/4/2022 CRITICAL9.8 CVE-2022-22963 ⚠ KEV EPSS 94.5% Spring Cloud Function Code Injection with a specially crafted SpEL as a routing expression 4/3/2022 CRITICAL9.8 CVE-2022-22965 ⚠ KEV EPSS 94.4% Remote Code Execution in Spring Framework 3/31/2022 CRITICAL9.8 CVE-2017-9841 ⚠ KEV EPSS 94.2% Code Injection in PHPUnit 3/26/2022 CRITICAL10.0 CVE-2022-22947 ⚠ KEV EPSS 94.5% Spring Cloud Gateway vulnerable to Code Injection when Gateway Actuator endpoint enabled, exposed, unsecured 3/4/2022 CRITICAL10.0 CVE-2022-0543 ⚠ KEV EPSS 94.4% redis - security update 2/18/2022 CRITICAL9.8 CVE-2022-24086 ⚠ KEV EPSS 93.7% Magento improper input validation vulnerability 2/17/2022 CRITICAL9.8 CVE-2020-17530 ⚠ KEV EPSS 94.4% Remote code execution in Apache Struts 2/9/2022 CRITICAL9.0 CVE-2021-45046 ⚠ KEV EPSS 94.3% apache-log4j2 - security update 12/14/2021 CRITICAL10.0 CVE-2021-44228 ⚠ KEV EPSS 94.4% apache-log4j2 - security update 12/10/2021 CRITICAL9.8 CVE-2021-44026 ⚠ KEV EPSS 72.5% Roundcube Webmail SQL Injection Vulnerability 11/19/2021 CRITICAL9.6 CVE-2021-37973 ⚠ KEV EPSS 14.8% Google Chromium Portals Use-After-Free Vulnerability 10/8/2021 CRITICAL9.6 CVE-2021-30633 ⚠ KEV EPSS 30.1% Google Chromium Indexed DB API Use-After-Free Vulnerability 10/8/2021 CRITICAL9.8 CVE-2021-42013 ⚠ KEV EPSS 94.4% Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773) 10/7/2021