CVE & Exploit Intelligence Database

Updated 4h ago

Search and track vulnerabilities with real-time exploit intelligence. Cross-reference CVEs against public exploits from ExploitDB, Metasploit, GitHub, and Nuclei — with CVSS and EPSS scoring, CISA KEV monitoring, and AI-powered exploit analysis.

338,325 CVEs tracked 53,302 with exploits 4,731 exploited in wild 1,542 CISA KEV 3,931 Nuclei templates 48,916 vendors 42,598 researchers
110,849 results Clear all
CVE-2016-3925 5.5 MEDIUM EPSS 0.00
Android <6.0.1 & <7.0 - DoS
server/wifi/anqp/ANQPFactory.java in Android 6.x before 2016-10-01 and 7.0 before 2016-10-01 allows attackers to cause a denial of service (blocked Wi-Fi usage) via a crafted application, aka internal bug 30230534.
CWE-284 Oct 10, 2016
CVE-2016-3924 5.5 MEDIUM EPSS 0.00
Android <4.4.4, <5.0.2, <5.1.1, <2016-10-01 - Info Disclosure
services/audioflinger/Effects.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before 2016-10-01 does not validate EFFECT_CMD_SET_PARAM and EFFECT_CMD_SET_PARAM_DEFERRED commands, which allows attackers to obtain sensitive information via a crafted application, aka internal bug 30204301.
CWE-200 Oct 10, 2016
CVE-2016-3923 5.5 MEDIUM EPSS 0.00
Android 7.0 - Privilege Escalation
The Accessibility services in Android 7.0 before 2016-10-01 mishandle motion events, which allows attackers to conduct touchjacking attacks and consequently gain privileges via a crafted application, aka internal bug 30647115.
CWE-284 Oct 10, 2016
CVE-2016-3920 5.5 MEDIUM EPSS 0.00
Android <5.0.2, <5.1.1, <=2016-10-01 - DoS
id3/ID3.cpp in libstagefright in mediaserver in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before 2016-10-01 allows remote attackers to cause a denial of service (device hang or reboot) via a crafted file, aka internal bug 30744884.
CWE-20 Oct 10, 2016
CVE-2016-3918 5.5 MEDIUM EPSS 0.00
AOSP Mail <4.4.4, <5.0.2, <5.1.1, <2016-10-01 - Info Disclosure
email/provider/AttachmentProvider.java in AOSP Mail in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-10-01, and 7.0 before 2016-10-01 does not ensure that certain values are integers, which allows attackers to read arbitrary attachments via a crafted application that provides a pathname value, aka internal bug 30745403.
CWE-200 Oct 10, 2016
CVE-2016-3908 5.5 MEDIUM EPSS 0.00
Android <7.0 - Privilege Escalation
The Lock Settings Service in Android 6.x before 2016-10-01 and 7.0 before 2016-10-01 allows attackers to remove a device's PIN or password, and consequently gain privileges, via a crafted application, aka internal bug 30003944.
CWE-264 Oct 10, 2016
CVE-2016-3902 5.5 MEDIUM 1 PoC Analysis EPSS 0.00
Qualcomm IPA <2016-10-05 - Info Disclosure
drivers/platform/msm/ipa/ipa_qmi_service.c in the Qualcomm IPA driver in Android before 2016-10-05 on Nexus 5X and 6P devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 29953313 and Qualcomm internal bug CR 1044072.
CWE-200 Oct 10, 2016
CVE-2016-3882 6.5 MEDIUM EPSS 0.00
Android <7.0 - DoS
Off-by-one error in server/wifi/anqp/VenueNameElement.java in Wi-Fi in Android 6.x before 2016-10-01 and 7.0 before 2016-10-01 allows remote attackers to cause a denial of service (reboot) via an access point that provides a crafted (1) Venue Group or (2) Venue Type value, aka internal bug 29464811.
CWE-284 Oct 10, 2016
CVE-2016-3860 5.5 MEDIUM EPSS 0.00
Qualcomm sound driver <2016-10-05 - Info Disclosure
sound/soc/msm/qdsp6v2/audio_calibration.c in the Qualcomm sound driver in Android before 2016-10-05 on Nexus 5X, Nexus 6P, and Android One devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 29323142 and Qualcomm internal bug CR 1038127.
CWE-200 Oct 10, 2016
CVE-2015-8956 6.1 MEDIUM EPSS 0.00
Linux Kernel < 4.1.33 - NULL Pointer Dereference
The rfcomm_sock_bind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of service (NULL pointer dereference) via vectors involving a bind system call on a Bluetooth RFCOMM socket.
CWE-476 Oct 10, 2016
CVE-2015-8950 5.5 MEDIUM EPSS 0.00
Linux Kernel < 4.0.2 - Information Disclosure
arch/arm64/mm/dma-mapping.c in the Linux kernel before 4.0.3, as used in the ION subsystem in Android and other products, does not initialize certain data structures, which allows local users to obtain sensitive information from kernel memory by triggering a dma_mmap call.
CWE-200 Oct 10, 2016
CVE-2016-1000007 6.1 MEDIUM EPSS 0.00
Pagure 2.2.1 - XSS
Pagure 2.2.1 XSS in raw file endpoint
CWE-79 Oct 07, 2016
CVE-2016-7777 6.3 MEDIUM EPSS 0.00
Xen < 4.7.0 - Race Condition
Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it.
CWE-362 Oct 07, 2016
CVE-2016-7424 5.5 MEDIUM EPSS 0.00
Debian Linux < 11.7 - NULL Pointer Dereference
The put_no_rnd_pixels8_xy2_mmx function in x86/rnd_template.c in libav 11.7 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted MP3 file.
CWE-476 Oct 07, 2016
CVE-2015-7363 5.4 MEDIUM EPSS 0.00
Fortinet Fortimanager Firmware - XSS
Cross-site scripting (XSS) vulnerability in the advanced settings page in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.3, in hardware models with a hard disk, and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.3 allows remote administrators to inject arbitrary web script or HTML via vectors related to report filters.
CWE-79 Oct 07, 2016
CVE-2016-1000114 6.1 MEDIUM EPSS 0.00
huge IT gallery v1.1.5 for Joomla - XSS
XSS in huge IT gallery v1.1.5 for Joomla
CWE-79 Oct 06, 2016
CVE-2015-1000008 5.3 MEDIUM EPSS 0.06
MP3-jPlayer <2.3.2 - Info Disclosure
Path Disclosure Vulnerability in wordpress plugin MP3-jPlayer v2.3.2
CWE-200 Oct 06, 2016
CVE-2015-1000004 6.1 MEDIUM EPSS 0.01
Filedownload <1.4 - XSS
XSS in filedownload v1.4 wordpress plugin
CWE-79 Oct 06, 2016
CVE-2016-6436 6.1 MEDIUM EPSS 0.00
HostScan Engine <3.1.14018 - XSS
Cross-site scripting (XSS) vulnerability in HostScan Engine 3.0.08062 through 3.1.14018 in the Cisco Host Scan package, as used in ASA Web VPN, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz14682.
CWE-79 Oct 06, 2016
CVE-2016-6435 6.5 MEDIUM 2 PoCs Analysis EPSS 0.55
Cisco Firepower Management Center 6.0.1 - Info Disclosure
The web console in Cisco Firepower Management Center 6.0.1 allows remote authenticated users to read arbitrary files via crafted parameters, aka Bug ID CSCva30376.
CWE-200 Oct 06, 2016

Investigate

Critical + Public Exploits Exploited in Wild + PoC High EPSS (>=0.7) + PoC With Nuclei Templates Latest Public Exploits

Ecosystems

Linux Maven Packagist PyPI npm Go ecosystem RubyGems crates.io NuGet Hex SwiftURL GitHub Actions

Reference Indexes

Exploit Database Researchers Vendors CWE Categories

Recent Blog Posts

Six AI Agents, One Security Company: The Paperclip AI Experiment
Mar 16, 2026
CVE-2026-4105: systemd-machined Privilege Escalation - 72 Minutes from Drop to Bypass
Mar 13, 2026
CVE-2026-28391: OpenClaw Command Injection - The Day I Hacked Myself
Mar 09, 2026
Introducing FuzzForge: Autonomous Source-Code Fuzzing - Finding Bugs in nginx in 112 Minutes
Mar 08, 2026
CVE-2025-68670 Part 2: From Crash to RCE - The One That Fought Back (and Lost)
Mar 04, 2026
CVE-2025-68670: Pre-Auth xrdp Overflow - The One Where the Protocol Fought Back
Mar 04, 2026
 View all posts →

CVEForge Labs

CVE-2016-15057 CRITICAL
Apache Continuum - Command Injection
CVE-2021-32824 CRITICAL
Apache Dubbo <2.6.10-2.7.10 - RCE
CVE-2023-42117 CRITICAL
Exim < 4.96.2 - Remote Code Execution
CVE-2024-31866 CRITICAL
Apache Zeppelin <0.11.1 - RCE
CVE-2024-37288 CRITICAL
Elastic Kibana - Insecure Deserialization
CVE-2024-43115 HIGH
Apache DolphinScheduler <3.2.2 - RCE
CVE-2024-45409 CRITICAL
Ruby-SAML <=1.16.0 - Auth Bypass
CVE-2024-56143 HIGH
Strapi < 5.5.2 - IDOR
CVE-2025-10622 HIGH
Red Hat Satellite - Command Injection
CVE-2025-11539 CRITICAL
Grafana Image Renderer - RCE
 View all labs →

KEV Gaps

CVE-2026-3910
Google Chrome <146.0.7680.75 - RCE
 CVE-2026-3909
Google Chrome < 146.0.7680.75 - Out-of-Bounds Access
 CVE-2026-1603
Ivanti Endpoint Manager < 2024 - Authentication Bypass
 CVE-2023-43000
macOS Ventura <13.5-iPadOS <16.6-Safari <16.6 - Use After Free
 CVE-2021-30952
tvOS <15.2 - RCE
 CVE-2021-22681
Rockwell Automation Studio 5000 <21 - Path Traversal
 CVE-2026-22719
VMware Aria Operations - Command Injection
 CVE-2026-25108
FileZen - Command Injection
 CVE-2026-22769
Dell RecoverPoint <6.0.3.1 HF1 - Auth Bypass
 CVE-2021-22175
Gitlab < 13.6.7 - SSRF
 CVE-2024-7694
Teamt5 Threatsonar Anti-ransomware < 3.5.0 - Unrestricted File Upload
 CVE-2020-7796
Zimbra Collaboration Suite <8.8.15 Patch 7 - SSRF