Vulnerability Garden: A growing list of named vulnerabilities, attack techniques and exploits

Lobsters Hottest Tools

Summary

Vulnerability Garden is a curated list of named vulnerabilities, attack techniques, and exploits, providing references and dates for each entry.

<p><a href="https://lobste.rs/s/0xnfql/vulnerability_garden_growing_list_named">Comments</a></p>
Original Article
View Cached Full Text

Cached at: 05/08/26, 08:32 PM

# Vulnerability Garden Source: [https://vulnerability.garden/](https://vulnerability.garden/) [Copy Fail 2](https://github.com/0xdeadbeefnetwork/Copy_Fail2-Electric_Boogaloo)05/07/26[CVE\-2026\-43284](https://nvd.nist.gov/vuln/detail/CVE-2026-43284)05/07/26[https://afflicted.sh/blog/posts/copy-fail-2.html](https://afflicted.sh/blog/posts/copy-fail-2.html)[https://www.openwall.com/lists/oss-security/2026/05/07/12](https://www.openwall.com/lists/oss-security/2026/05/07/12)[https://www.wiz.io/blog/dirty-frag-linux-kernel-local-privilege-escalation-via-esp-and-rxrpc](https://www.wiz.io/blog/dirty-frag-linux-kernel-local-privilege-escalation-via-esp-and-rxrpc)[Dirty Frag](https://github.com/V4bel/dirtyfrag/blob/master/assets/write-up.md)![](https://vulnerability.garden/assets/img/vulns/dirtyfrag.png)05/07/26[CVE\-2026\-43284](https://nvd.nist.gov/vuln/detail/CVE-2026-43284)[CVE\-2026\-43500](https://nvd.nist.gov/vuln/detail/CVE-2026-43500)05/07/26[https://lwn.net/ml/all/afzgS2SCWNcZU3vU%40v4bel/](https://lwn.net/ml/all/afzgS2SCWNcZU3vU%40v4bel/)[https://www.wiz.io/blog/dirty-frag-linux-kernel-local-privilege-escalation-via-esp-and-rxrpc](https://www.wiz.io/blog/dirty-frag-linux-kernel-local-privilege-escalation-via-esp-and-rxrpc)[https://seclists.org/oss-sec/2026/q2/442](https://seclists.org/oss-sec/2026/q2/442)[https://core-jmp.org/2026/05/dirty-frag-a-new-linux-page-cache-privilege-escalation-class/](https://core-jmp.org/2026/05/dirty-frag-a-new-linux-page-cache-privilege-escalation-class/)[Trustfall](https://adversa.ai/blog/trustfall-coding-agent-security-flaw-rce-claude-cursor-gemini-cli-copilot/)05/07/2605/07/26[Bleeding Llama](https://www.cyera.com/research/bleeding-llama-critical-unauthenticated-memory-leak-in-ollama)![](https://vulnerability.garden/assets/img/vulns/bleedingllama.png)05/05/26[CVE\-2026\-7482](https://nvd.nist.gov/vuln/detail/CVE-2026-7482)05/05/26[Ouroboros](https://www.huntress.com/blog/dmsa-ouroboros-credential-extraction-windows-server-2025)05/04/2605/05/26[https://www.akamai.com/blog/security-research/ouroboros-technique-how-fits-dmsas-security-model](https://www.akamai.com/blog/security-research/ouroboros-technique-how-fits-dmsas-security-model)[BoundHook](https://www.cyberark.com/resources/threat-research-blog/boundhook-exception-based-kernel-controlled-usermode-hooking)10/18/1705/04/26[aLTEr](https://montsecure.com/research/alter-attack/)03/01/1905/04/26[TokenBreak](https://www.hiddenlayer.com/research/the-tokenbreak-attack)![](https://vulnerability.garden/assets/img/vulns/tokenbreak.png)06/12/2505/04/26[R\-U\-Dead Yet \(R\.U\.D\.Y\)](https://code.google.com/archive/p/r-u-dead-yet/)11/19/1105/04/26[https://www.invicti.com/learn/rudy-attack](https://www.invicti.com/learn/rudy-attack)[GateBleed](https://arxiv.org/pdf/2507.17033)10/02/2505/04/26[https://news.ncsu.edu/2025/10/ai-privacy-hardware-vulnerability/](https://news.ncsu.edu/2025/10/ai-privacy-hardware-vulnerability/)[BadDNS](https://issues.chromium.org/issues/40063570)03/11/2305/04/26[MDB Leaker](https://www.mimecast.com/blog/2020/01/mimecast-discovers-mdb-leaker-microsoft-access-vulnerability-cve-2019-1463/)01/07/20[CVE\-2019\-1463](https://nvd.nist.gov/vuln/detail/CVE-2019-1463)05/04/26[https://web.archive.org/web/20200115011257/https://www.mimecast.com/blog/2020/01/mimecast-discovers-mdb-leaker-microsoft-access-vulnerability-cve-2019-1463/](https://web.archive.org/web/20200115011257/https://www.mimecast.com/blog/2020/01/mimecast-discovers-mdb-leaker-microsoft-access-vulnerability-cve-2019-1463/)[TBONE](https://kunnamon.io/tbone/)10/16/2005/04/26[SplitSSHell](https://www.cyera.com/pt-br/research/splitsshell-when-a-comma-becomes-root-how-a-single-character-broke-openssh-certificate-authentication)![](https://vulnerability.garden/assets/img/vulns/splitsshell.png)04/29/26[CVE\-2026\-35414](https://nvd.nist.gov/vuln/detail/CVE-2026-35414)05/04/26[MSC EvilTwin](https://www.trendmicro.com/en_us/research/25/c/cve-2025-26633-water-gamayun.html)03/25/25[CVE\-2025\-26633](https://nvd.nist.gov/vuln/detail/CVE-2025-26633)05/04/26[Clinejection](https://adnanthekhan.com/posts/clinejection/)02/09/2605/04/26[Janus](https://www.guardsquare.com/blog/new-android-vulnerability-allows-attackers-to-modify-apps-without-affecting-their-signatures-guardsquare)11/13/17[CVE\-2017\-13156](https://nvd.nist.gov/vuln/detail/CVE-2017-13156)05/04/26[Lightspeed](https://www.synacktiv.com/en/publications/lightspeed-a-race-for-an-iosmacos-sandbox-escape.html#the-vulnerability-lightspeed)10/29/18[CVE\-2018\-4344](https://nvd.nist.gov/vuln/detail/CVE-2018-4344)05/04/26[ret2dir](https://blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation-wp.pdf)10/16/14[CVE\-2013\-0268](https://nvd.nist.gov/vuln/detail/CVE-2013-0268)[CVE\-2013\-2094](https://nvd.nist.gov/vuln/detail/CVE-2013-2094)[CVE\-2013\-1763](https://nvd.nist.gov/vuln/detail/CVE-2013-1763)[CVE\-2010\-4258](https://nvd.nist.gov/vuln/detail/CVE-2010-4258)[CVE\-2010\-3904](https://nvd.nist.gov/vuln/detail/CVE-2010-3904)\.\.\.*and 3 more*05/04/26[https://blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation.pdf](https://blackhat.com/docs/eu-14/materials/eu-14-Kemerlis-Ret2dir-Deconstructing-Kernel-Isolation.pdf)[https://blackhat.com/eu-14/briefings.html#ret2dir-deconstructing-kernel-isolation](https://blackhat.com/eu-14/briefings.html#ret2dir-deconstructing-kernel-isolation)[BadTunnel](https://blackhat.com/docs/us-16/materials/us-16-Yu-BadTunnel-How-Do-I-Get-Big-Brother-Power-wp.pdf)08/03/1605/04/26[HomeHack](https://blog.checkpoint.com/security/homehack-how-hackers-could-have-taken-control-of-lgs-iot-home-appliances/)10/26/1705/04/26[Man\-in\-the\-Disk](https://blog.checkpoint.com/security/man-in-the-disk-a-new-attack-surface-for-android-apps/)08/12/1805/04/26[Spooky SSL](https://github.com/NCSC-NL/OpenSSL-2022)![](https://vulnerability.garden/assets/img/vulns/spookyssl.png)10/28/22[CVE\-2022\-3602](https://nvd.nist.gov/vuln/detail/CVE-2022-3602)[CVE\-2022\-3786](https://nvd.nist.gov/vuln/detail/CVE-2022-3786)05/04/26[https://www.forescout.com/blog/openssl-cve-2022-3602-and-cve-2022-3786-spooky-ssl-what-they-are-and-how-to-mitigate-risk/](https://www.forescout.com/blog/openssl-cve-2022-3602-and-cve-2022-3786-spooky-ssl-what-they-are-and-how-to-mitigate-risk/)[Squiblydoo](http://subt0x10.blogspot.com/2016/04/bypass-application-whitelisting-script.html)![](https://vulnerability.garden/assets/img/vulns/squiblydoo.png)04/19/1605/04/26[https://web.archive.org/web/20160423152317/http://subt0x10.blogspot.com/2016/04/bypass-application-whitelisting-script.html](https://web.archive.org/web/20160423152317/http://subt0x10.blogspot.com/2016/04/bypass-application-whitelisting-script.html)[https://car.mitre.org/analytics/CAR-2019-04-003/](https://car.mitre.org/analytics/CAR-2019-04-003/)[CosMiss](https://orca.security/resources/blog/cosmiss-vulnerability-azure-cosmos-db/)11/01/2205/04/26[Psychic Paper](https://blog.siguza.net/psychicpaper/)05/01/20[CVE\-2020\-3883](https://nvd.nist.gov/vuln/detail/CVE-2020-3883)[CVE\-2022\-42855](https://nvd.nist.gov/vuln/detail/CVE-2022-42855)05/04/26[https://vulnerability.garden/DER%20Entitlements:%20The%20(Brief)%20Return%20of%20the%20Psychic%20Paper](https://vulnerability.garden/DER%20Entitlements:%20The%20(Brief)%20Return%20of%20the%20Psychic%20Paper)[JoltandBleed](https://erpscan.com/press-center/blog/peoplesoft-joltandbleed/)11/22/17[CVE\-2017\-10272](https://nvd.nist.gov/vuln/detail/CVE-2017-10272)[CVE\-2017\-10267](https://nvd.nist.gov/vuln/detail/CVE-2017-10267)[CVE\-2017\-10278](https://nvd.nist.gov/vuln/detail/CVE-2017-10278)[CVE\-2017\-10266](https://nvd.nist.gov/vuln/detail/CVE-2017-10266)[CVE\-2017\-10269](https://nvd.nist.gov/vuln/detail/CVE-2017-10269)05/04/26[https://www.bleepingcomputer.com/news/security/oracle-products-affected-by-critical-joltandbleed-vulnerabilities/](https://www.bleepingcomputer.com/news/security/oracle-products-affected-by-critical-joltandbleed-vulnerabilities/)[SACK slowness](https://www.tenable.com/blog/sack-panic-linux-and-freebsd-kernels-vulnerable-to-remote-denial-of-service-vulnerabilities-cve)06/18/19[CVE\-2019\-11478](https://nvd.nist.gov/vuln/detail/CVE-2019-11478)[CVE\-2019\-5599](https://nvd.nist.gov/vuln/detail/CVE-2019-5599)05/04/26[CARPE \(DIEM\)](https://cfreal.github.io/carpe-diem-cve-2019-0211-apache-local-root.html)04/03/19[CVE\-2019\-0211](https://nvd.nist.gov/vuln/detail/CVE-2019-0211)05/04/26[LookOut](https://www.tenable.com/blog/google-looker-vulnerabilities-rce-internal-access-lookout)02/04/26[CVE\-2025\-12743](https://nvd.nist.gov/vuln/detail/CVE-2025-12743)05/04/26[Gemini Trifecta](https://www.tenable.com/blog/the-trifecta-how-three-new-gemini-vulnerabilities-in-cloud-assist-search-model-and-browsing)09/30/2505/04/26[Golden SAML](https://www.cyberark.com/resources/threat-research-blog/golden-saml-newly-discovered-attack-technique-forges-authentication-to-cloud-apps)![](https://vulnerability.garden/assets/img/vulns/goldensaml.png)11/21/1705/03/26[https://techcommunity.microsoft.com/blog/microsoft-entra-blog/understanding-and-mitigating-golden-saml-attacks/4418864](https://techcommunity.microsoft.com/blog/microsoft-entra-blog/understanding-and-mitigating-golden-saml-attacks/4418864)[PerplexedBrowser](https://zenity.io/blog/security/perplexedbrowser-accepting-a-meeting-or-handing-your-local-files-to-an-attacker)03/05/2605/03/26[BAndroid](https://www.vusec.net/projects/bandroid/)06/27/1505/03/26[BreakingFormation](https://orca.security/resources/blog/aws-cloudformation-vulnerability/)01/13/2205/03/26[Uncrew](https://noma.security/blog/uncrew-the-risk-behind-a-leaked-internal-github-token-at-crewai/)09/24/2505/03/26[XLATE](https://www.vusec.net/projects/xlate/)08/15/1805/03/26[Frostbyte10](https://www.armis.com/research/frostbyte10/)09/08/25[CVE\-2025\-6519](https://nvd.nist.gov/vuln/detail/CVE-2025-6519)[CVE\-2025\-52543](https://nvd.nist.gov/vuln/detail/CVE-2025-52543)[CVE\-2025\-52544](https://nvd.nist.gov/vuln/detail/CVE-2025-52544)[CVE\-2025\-52545](https://nvd.nist.gov/vuln/detail/CVE-2025-52545)[CVE\-2025\-52546](https://nvd.nist.gov/vuln/detail/CVE-2025-52546)\.\.\.*and 5 more*05/03/26[Oh Snap\! More Lemmings](https://blog.qualys.com/vulnerabilities-threat-research/2022/02/17/oh-snap-more-lemmings-local-privilege-escalation-vulnerability-discovered-in-snap-confine-cve-2021-44731)![](https://vulnerability.garden/assets/img/vulns/ohsnapmorelemmings.png)12/23/22[CVE\-2021\-44731](https://nvd.nist.gov/vuln/detail/CVE-2021-44731)05/03/26[RebirthDay Attack](https://lixiang521.com/publication/ccs25/)10/13/25[CVE\-2025\-5994](https://nvd.nist.gov/vuln/detail/CVE-2025-5994)[CVE\-2024\-47081](https://nvd.nist.gov/vuln/detail/CVE-2024-47081)[CVE\-2025\-32415](https://nvd.nist.gov/vuln/detail/CVE-2025-32415)[CVE\-2025\-40909](https://nvd.nist.gov/vuln/detail/CVE-2025-40909)[CVE\-2025\-6965](https://nvd.nist.gov/vuln/detail/CVE-2025-6965)\.\.\.*and 1 more*05/03/26[Peekaboo](https://www.tenable.com/blog/tenable-research-advisory-peekaboo-critical-vulnerability-in-nuuo-network-video-recorder)09/17/18[CVE\-2018\-1149](https://nvd.nist.gov/vuln/detail/CVE-2018-1149)[CVE\-2018\-1150](https://nvd.nist.gov/vuln/detail/CVE-2018-1150)05/03/26[Local Mess](https://localmess.github.io/)06/03/2505/03/26[DarkSword](https://www.lookout.com/threat-intelligence/article/darksword)![](https://vulnerability.garden/assets/img/vulns/darksword.png)03/18/26[CVE\-2025\-31277](https://nvd.nist.gov/vuln/detail/CVE-2025-31277)[CVE\-2026\-20700](https://nvd.nist.gov/vuln/detail/CVE-2026-20700)[CVE\-2025\-43529](https://nvd.nist.gov/vuln/detail/CVE-2025-43529)[CVE\-2025\-14174](https://nvd.nist.gov/vuln/detail/CVE-2025-14174)[CVE\-2025\-43510](https://nvd.nist.gov/vuln/detail/CVE-2025-43510)\.\.\.*and 1 more*05/03/26[https://cloud.google.com/blog/topics/threat-intelligence/darksword-ios-exploit-chain](https://cloud.google.com/blog/topics/threat-intelligence/darksword-ios-exploit-chain)[EchoSpoofing](https://guard.io/labs/echospoofing-a-massive-phishing-campaign-exploiting-proofpoints-email-protection-to-dispatch)07/29/2405/03/26[checkm8](https://x.com/axi0mX/status/1177542201670168576)09/27/19[CVE\-2019\-8900](https://nvd.nist.gov/vuln/detail/CVE-2019-8900)05/03/26[https://github.com/axi0mX/ipwndfu](https://github.com/axi0mX/ipwndfu)[https://theapplewiki.com/wiki/Checkm8_Exploit](https://theapplewiki.com/wiki/Checkm8_Exploit)[Kaminsky bug](https://blackhat.com/presentations/bh-jp-08/bh-jp-08-Kaminsky/BlackHat-Japan-08-Kaminsky-DNS08-BlackOps.pdf)07/08/08[CVE\-2008\-1447](https://nvd.nist.gov/vuln/detail/CVE-2008-1447)05/01/26[https://seclists.org/pen-test/2008/Aug/1](https://seclists.org/pen-test/2008/Aug/1)[https://hackaday.com/2008/07/24/dns-cache-poisoning-webcast/](https://hackaday.com/2008/07/24/dns-cache-poisoning-webcast/)[https://web.archive.org/web/20080728233324/https://www.linuxjournal.com/content/understanding-kaminskys-dns-bug](https://web.archive.org/web/20080728233324/https://www.linuxjournal.com/content/understanding-kaminskys-dns-bug)[https://web.archive.org/web/20160623122553/https://www.security-database.com/detail.php?alert=VU800113](https://web.archive.org/web/20160623122553/https://www.security-database.com/detail.php?alert=VU800113)[https://www.dns-oarc.net/index.php/node/107?utm_source=chatgpt.com](https://www.dns-oarc.net/index.php/node/107?utm_source=chatgpt.com)[tldr\.fail](https://tldr.fail/)![](https://vulnerability.garden/assets/img/vulns/tldrfail.png)09/27/2304/30/26[PrinterLeak](https://link.springer.com/chapter/10.1007/978-3-031-37111-0_15)07/03/2304/29/26[https://www.covertchannels.com/](https://www.covertchannels.com/)All Guests are Admin 01/12/07[CVE\-2007\-0192](https://nvd.nist.gov/vuln/detail/CVE-2007-0192)04/29/26[https://cxsecurity.com/issue/WLB-2007010046](https://cxsecurity.com/issue/WLB-2007010046)[overBuy](https://www.anquanke.com/post/id/147913)06/13/18[CVE\-2018\-11809](https://nvd.nist.gov/vuln/detail/CVE-2018-11809)04/29/26[allocateAny](https://www.anquanke.com/post/id/147913)06/13/18[CVE\-2018\-11810](https://nvd.nist.gov/vuln/detail/CVE-2018-11810)04/29/26[overMint](https://www.anquanke.com/post/id/147913)06/13/18[CVE\-2018\-11809](https://nvd.nist.gov/vuln/detail/CVE-2018-11809)04/29/26[mintAny](https://www.anquanke.com/post/id/147913)06/13/18[CVE\-2018\-11812](https://nvd.nist.gov/vuln/detail/CVE-2018-11812)04/29/26[owner Underflow](https://www.anquanke.com/post/id/147913)06/13/18[CVE\-2018\-11687](https://nvd.nist.gov/vuln/detail/CVE-2018-11687)04/29/26[underSell](https://www.anquanke.com/post/id/147913)06/13/18[CVE\-2018\-11811](https://nvd.nist.gov/vuln/detail/CVE-2018-11811)04/29/26[Naptha](http://razor.bindview.com/publish/advisories/adv_NAPTHA.html)11/30/00[CVE\-2000\-1039](https://nvd.nist.gov/vuln/detail/CVE-2000-1039)04/29/26[https://web.archive.org/web/20010124094200/http://razor.bindview.com/publish/advisories/adv_NAPTHA.html](https://web.archive.org/web/20010124094200/http://razor.bindview.com/publish/advisories/adv_NAPTHA.html)Billion Laughs 06/12/02[CVE\-2003\-1564](https://nvd.nist.gov/vuln/detail/CVE-2003-1564)04/29/26[https://bugzilla.mozilla.org/show_bug.cgi?id=151380](https://bugzilla.mozilla.org/show_bug.cgi?id=151380)[https://en.wikipedia.org/wiki/Billion_laughs_attack](https://en.wikipedia.org/wiki/Billion_laughs_attack)[Voices from the deep](http://archives.neohapsis.com/archives/bugtraq/2004-03/0352.html)03/31/04[CVE\-2004\-2451](https://nvd.nist.gov/vuln/detail/CVE-2004-2451)04/29/26[https://web.archive.org/web/20070807173043/http://archives.neohapsis.com/archives/bugtraq/2004-03/0352.html](https://web.archive.org/web/20070807173043/http://archives.neohapsis.com/archives/bugtraq/2004-03/0352.html)Mailslot DOS 10/10/06[CVE\-2006\-3942](https://nvd.nist.gov/vuln/detail/CVE-2006-3942)04/29/26[https://learn.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-063](https://learn.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-063)[ICMP Land Attack](https://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049434.html)07/08/06[CVE\-2006\-4833](https://nvd.nist.gov/vuln/detail/CVE-2006-4833)04/29/26[Spoof on Bridge](http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf)03/17/07[CVE\-2007\-1528](https://nvd.nist.gov/vuln/detail/CVE-2007-1528)04/29/26[https://web.archive.org/web/20070513172519/http://www.symantec.com/enterprise/security_response/weblog/2007/04/microsofts_inaccurate_teredo_d.html](https://web.archive.org/web/20070513172519/http://www.symantec.com/enterprise/security_response/weblog/2007/04/microsofts_inaccurate_teredo_d.html)[https://web.archive.org/web/20070402053650/http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf](https://web.archive.org/web/20070402053650/http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf)[Total Spoof](http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf)03/17/07[CVE\-2007\-1529](https://nvd.nist.gov/vuln/detail/CVE-2007-1529)04/29/26[https://web.archive.org/web/20070513172519/http://www.symantec.com/enterprise/security_response/weblog/2007/04/microsofts_inaccurate_teredo_d.html](https://web.archive.org/web/20070513172519/http://www.symantec.com/enterprise/security_response/weblog/2007/04/microsofts_inaccurate_teredo_d.html)[https://web.archive.org/web/20070402053650/http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf](https://web.archive.org/web/20070402053650/http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf)Amnesia 11/18/15[CVE\-2015\-7266](https://nvd.nist.gov/vuln/detail/CVE-2015-7266)04/29/26[http://media.pixalate.com/white-papers/xindi.pdf](http://media.pixalate.com/white-papers/xindi.pdf)[Dark Portal](https://www.powerofcommunity.net/poc2016/wei.pdf)05/09/16[CVE\-2016\-3710](https://nvd.nist.gov/vuln/detail/CVE-2016-3710)04/29/26[https://web.archive.org/web/20200417025701/https://www.powerofcommunity.net/poc2016/wei.pdf](https://web.archive.org/web/20200417025701/https://www.powerofcommunity.net/poc2016/wei.pdf)[https://blog.betamao.me/posts/2022/virtualization-vmm-security/](https://blog.betamao.me/posts/2022/virtualization-vmm-security/)[https://www.openwall.com/lists/oss-security/2016/05/09/3](https://www.openwall.com/lists/oss-security/2016/05/09/3)[Bad Taste](http://news.dieweltistgarnichtso.net/posts/gnome-thumbnailer-msi-fail.html)![](https://vulnerability.garden/assets/img/vulns/badtaste.png)07/17/17[CVE\-2017\-11421](https://nvd.nist.gov/vuln/detail/CVE-2017-11421)04/29/26[https://web.archive.org/web/20170717171212/http://news.dieweltistgarnichtso.net/posts/gnome-thumbnailer-msi-fail.html](https://web.archive.org/web/20170717171212/http://news.dieweltistgarnichtso.net/posts/gnome-thumbnailer-msi-fail.html)[GarlicRust](https://eyalitkin.wordpress.com/2017/12/04/cve-publication-garlicrust-cve-2017-17066/)12/04/17[CVE\-2017\-17066](https://nvd.nist.gov/vuln/detail/CVE-2017-17066)04/29/26[https://hackerone.com/reports/291489](https://hackerone.com/reports/291489)[SamFAIL](https://xdaforums.com/t/root-snapdragon-samfail-for-galaxy-note8-v3.3685340/)10/08/17[CVE\-2017\-18649](https://nvd.nist.gov/vuln/detail/CVE-2017-18649)04/29/26[https://androidcommunity.com/samfail-method-gives-root-access-to-samsung-galaxy-note-8-snapdragon-variant-20171009/](https://androidcommunity.com/samfail-method-gives-root-access-to-samsung-galaxy-note-8-snapdragon-variant-20171009/)[ownerAnyone](https://www.peckshield.com/2018/05/03/ownerAnyone/)05/03/18[CVE\-2018\-10705](https://nvd.nist.gov/vuln/detail/CVE-2018-10705)04/29/26[https://web.archive.org/web/20180520105148/https://www.peckshield.com/2018/05/03/ownerAnyone/](https://web.archive.org/web/20180520105148/https://www.peckshield.com/2018/05/03/ownerAnyone/)[transferFlaw](https://www.peckshield.com/2018/04/28/transferFlaw/)04/28/18[CVE\-2018–10468](https://nvd.nist.gov/vuln/detail/CVE-2018%E2%80%9310468)04/29/26[https://web.archive.org/web/20180520105144/https://www.peckshield.com/2018/04/28/transferFlaw/](https://web.archive.org/web/20180520105144/https://www.peckshield.com/2018/04/28/transferFlaw/)[proxyOverflow](https://www.peckshield.com/2018/04/25/proxyOverflow/)04/25/18[CVE\-2018\-10376](https://nvd.nist.gov/vuln/detail/CVE-2018-10376)04/29/26[https://web.archive.org/web/20180520105150/https://www.peckshield.com/2018/04/25/proxyOverflow/](https://web.archive.org/web/20180520105150/https://www.peckshield.com/2018/04/25/proxyOverflow/)[batchOverflow](https://www.peckshield.com/2018/04/22/batchOverflow/)04/22/18[CVE\-2018\-10299](https://nvd.nist.gov/vuln/detail/CVE-2018-10299)04/29/26[https://web.archive.org/web/20180520105146/https://www.peckshield.com/2018/04/22/batchOverflow/](https://web.archive.org/web/20180520105146/https://www.peckshield.com/2018/04/22/batchOverflow/)[multiOverflow](https://peckshield.com/2018/05/10/multiOverflow/)05/10/18[CVE\-2018\-10706](https://nvd.nist.gov/vuln/detail/CVE-2018-10706)04/29/26[https://web.archive.org/web/20180520105146/https://peckshield.com/2018/05/10/multiOverflow/](https://web.archive.org/web/20180520105146/https://peckshield.com/2018/05/10/multiOverflow/)[burnOverflow](https://peckshield.com/2018/05/18/burnOverflow/)05/18/18[CVE\-2018\-11239](https://nvd.nist.gov/vuln/detail/CVE-2018-11239)04/29/26[https://web.archive.org/web/20180620063826/https://peckshield.com/2018/05/18/burnOverflow/](https://web.archive.org/web/20180620063826/https://peckshield.com/2018/05/18/burnOverflow/)[Ethereum Packet of Death \(EPoD\)](https://peckshield.com/2018/06/27/EPoD/)06/27/18[CVE\-2018\-12018](https://nvd.nist.gov/vuln/detail/CVE-2018-12018)04/29/26[https://web.archive.org/web/20180628022133/https://peckshield.com/2018/06/27/EPoD/](https://web.archive.org/web/20180628022133/https://peckshield.com/2018/06/27/EPoD/)[tradeTrap](https://peckshield.com/2018/06/11/tradeTrap/)06/11/18[CVE\-2018\-11446](https://nvd.nist.gov/vuln/detail/CVE-2018-11446)[CVE\-2018\-12062](https://nvd.nist.gov/vuln/detail/CVE-2018-12062)[CVE\-2018\-12063](https://nvd.nist.gov/vuln/detail/CVE-2018-12063)[CVE\-2018\-12067](https://nvd.nist.gov/vuln/detail/CVE-2018-12067)[CVE\-2018\-12068](https://nvd.nist.gov/vuln/detail/CVE-2018-12068)\.\.\.*and 7 more*04/29/26[https://web.archive.org/web/20180628022148/https://peckshield.com/2018/06/11/tradeTrap/](https://web.archive.org/web/20180628022148/https://peckshield.com/2018/06/11/tradeTrap/)[evilReflex](https://peckshield.com/2018/06/23/evilReflex/)06/23/18[CVE\-2018\-12703](https://nvd.nist.gov/vuln/detail/CVE-2018-12703)[CVE\-2018\-12702](https://nvd.nist.gov/vuln/detail/CVE-2018-12702)04/29/26[https://web.archive.org/web/20180715090532/https://peckshield.com/2018/06/23/evilReflex/](https://web.archive.org/web/20180715090532/https://peckshield.com/2018/06/23/evilReflex/)[GRO packet of death](https://www.openwall.com/lists/oss-security/2019/05/02/1)05/02/19[CVE\-2019\-11683](https://nvd.nist.gov/vuln/detail/CVE-2019-11683)04/29/26[Copy Fail](https://copy.fail/)![](https://vulnerability.garden/assets/img/vulns/copyfail.png)04/29/26[CVE\-2026\-31431](https://nvd.nist.gov/vuln/detail/CVE-2026-31431)04/29/26[https://xint.io/blog/copy-fail-linux-distributions](https://xint.io/blog/copy-fail-linux-distributions)[https://www.cisa.gov/news-events/alerts/2026/05/01/cisa-adds-one-known-exploited-vulnerability-catalog](https://www.cisa.gov/news-events/alerts/2026/05/01/cisa-adds-one-known-exploited-vulnerability-catalog)[Shittrix](https://shittrix.moksha.dk/)![](https://vulnerability.garden/assets/img/vulns/shittrix.png)04/24/2604/28/26[Video Jacking](https://krebsonsecurity.com/2016/08/road-warriors-beware-of-video-jacking/)08/11/1604/28/26[Trustjacking](https://www.security.com/feature-stories/ios-trustjacking-dangerous-new-ios-vulnerability)04/16/1804/28/26[Juice Jacking](https://www.phvillage.io/pages/juice/)08/17/1104/28/26[https://krebsonsecurity.com/2011/08/beware-of-juice-jacking/](https://krebsonsecurity.com/2011/08/beware-of-juice-jacking/)[https://www.pcworld.com/article/482054/charging_stations_may_be_juice_jacking_data_from_your_cellphone.html](https://www.pcworld.com/article/482054/charging_stations_may_be_juice_jacking_data_from_your_cellphone.html)[AirKeyLogger](https://ieeexplore.ieee.org/document/10197022)06/26/2304/28/26[https://www.covertchannels.com/](https://www.covertchannels.com/)[AIR\-FI](https://arxiv.org/pdf/2012.06884)12/12/2004/28/26[https://www.covertchannels.com/](https://www.covertchannels.com/)[GAIROSCOPE](https://ar5iv.labs.arxiv.org/html/2208.09764)08/21/22[CVE\-2021\-1905](https://nvd.nist.gov/vuln/detail/CVE-2021-1905)[CVE\-2021\-1906](https://nvd.nist.gov/vuln/detail/CVE-2021-1906)04/28/26[https://www.covertchannels.com/](https://www.covertchannels.com/)[https://arxiv.org/pdf/2208.09764](https://arxiv.org/pdf/2208.09764)[POWER\-SUPPLaY](https://arxiv.org/pdf/2005.00395)05/01/2004/28/26[https://www.covertchannels.com/](https://www.covertchannels.com/)[CD\-LEAK](https://ieeexplore.ieee.org/document/9202547)07/13/2004/28/26[https://www.covertchannels.com/](https://www.covertchannels.com/)[VisiSploit](https://arxiv.org/pdf/1607.03946)07/13/1604/28/26[https://www.covertchannels.com/](https://www.covertchannels.com/)[DiskFiltration](https://arxiv.org/pdf/1608.03431)08/11/1604/28/26[https://www.covertchannels.com/](https://www.covertchannels.com/)[https://www.youtube.com/watch?v=H7lQXmSLiP8](https://www.youtube.com/watch?v=H7lQXmSLiP8)[PIXHELL](https://arxiv.org/html/2409.04930v1)09/07/2404/28/26[https://www.covertchannels.com/](https://www.covertchannels.com/)[Tetsuji](https://xcellerator.github.io/posts/tetsuji/)08/27/2204/28/26[UniPwn](https://takeonme.org/cves/cve-2025-35027/)09/26/25[CVE\-2025\-35027](https://nvd.nist.gov/vuln/detail/CVE-2025-35027)[CVE\-2025\-60017](https://nvd.nist.gov/vuln/detail/CVE-2025-60017)[CVE\-2025\-60250](https://nvd.nist.gov/vuln/detail/CVE-2025-60250)[CVE\-2025\-60251](https://nvd.nist.gov/vuln/detail/CVE-2025-60251)04/28/26[https://github.com/Bin4ry/UniPwn](https://github.com/Bin4ry/UniPwn)[SpectreRSB](https://arxiv.org/pdf/1807.07940)07/20/1804/28/26[ENDOFDAYS](https://citizenlab.ca/research/spyware-vendor-quadream-exploits-victims-customers/)04/11/2304/28/26[HOMAGE](https://citizenlab.ca/research/catalangate-extensive-mercenary-spyware-operation-against-catalans-using-pegasus-candiru/)04/18/2204/28/26[Curse Of Silence](https://berlin.ccc.de/~tobias/cos/s60-curse-of-silence-advisory.txt)11/09/0804/28/26[https://www.f-secure.com/weblog/archives/00001569.html](https://www.f-secure.com/weblog/archives/00001569.html)[https://web.archive.org/web/20090103230526/https://www.f-secure.com/weblog/archives/00001569.html](https://web.archive.org/web/20090103230526/https://www.f-secure.com/weblog/archives/00001569.html)[IOHIDeous](https://blog.siguza.net/IOHIDeous/)![](https://vulnerability.garden/assets/img/vulns/iohideous.png)12/01/1704/28/26[Metaphor](https://github.com/NorthBit/Metaphor)03/24/16[CVE­\-2015\-­3864](https://nvd.nist.gov/vuln/detail/CVE%C2%AD-2015-%C2%AD3864)04/28/26[ThinkPwn](https://blog.cr4.sh/2016/06/exploring-and-exploiting-lenovo.html)06/28/1604/28/26[https://web.archive.org/web/20160629172629/https://blog.cr4.sh/2016/06/exploring-and-exploiting-lenovo.html](https://web.archive.org/web/20160629172629/https://blog.cr4.sh/2016/06/exploring-and-exploiting-lenovo.html)[https://github.com/Cr4sh/ThinkPwn](https://github.com/Cr4sh/ThinkPwn)[https://www.cio.de/article/3685733/firmware-exploit-can-defeat-new-windows-security-features-on-lenovo-thinkpads-4.html](https://www.cio.de/article/3685733/firmware-exploit-can-defeat-new-windows-security-features-on-lenovo-thinkpads-4.html)[BigSpender](https://zengo.com/bigspender-double-spend-vulnerability-in-bitcoin-wallets/)![](https://vulnerability.garden/assets/img/vulns/bigspender.png)07/02/20[CVE\-2020\-12119](https://nvd.nist.gov/vuln/detail/CVE-2020-12119)04/28/26[https://github.com/ZenGo-X/big-spender](https://github.com/ZenGo-X/big-spender)[DNS BailiWicked Host Attack](https://www.rapid7.com/blog/post/2008/07/24/bailiwicked/)07/21/0804/28/26[http://www.caughq.org/exploits/CAU-EX-2008-0002.txt](http://www.caughq.org/exploits/CAU-EX-2008-0002.txt)[https://web.archive.org/web/20080725173027/http://www.caughq.org/exploits/CAU-EX-2008-0002.txt](https://web.archive.org/web/20080725173027/http://www.caughq.org/exploits/CAU-EX-2008-0002.txt)[AOF](https://arxiv.org/pdf/2201.10937)01/26/2204/28/26[Apache Killer](https://issues.apache.org/bugzilla/show_bug.cgi?id=51714)08/24/11[CVE\-2011\-3192](https://nvd.nist.gov/vuln/detail/CVE-2011-3192)04/28/26[https://lists.grok.org.uk/pipermail/full-disclosure/2011-August/082299.html](https://lists.grok.org.uk/pipermail/full-disclosure/2011-August/082299.html)[https://lists.apache.org/thread/w2x57zhgnz67bns58b5s7jp0o11pyfmn](https://lists.apache.org/thread/w2x57zhgnz67bns58b5s7jp0o11pyfmn)[https://blog.cloudflare.com/apache-killer-killed-zero-day-exploit-zero-da/](https://blog.cloudflare.com/apache-killer-killed-zero-day-exploit-zero-da/)[DolphinAttack](https://arxiv.org/pdf/1708.09537)08/31/1704/28/26[PacketPrint](https://www.ndss-symposium.org/wp-content/uploads/2022-210-paper.pdf)04/26/2204/28/26[https://www.youtube.com/watch?v=vfQSY0-Tzns&list=PLfUWWM-POgQtzPFl7uyswbTadNgg3j_za&index=2](https://www.youtube.com/watch?v=vfQSY0-Tzns&list=PLfUWWM-POgQtzPFl7uyswbTadNgg3j_za&index=2)[OT\-Attack](https://arxiv.org/html/2312.04403v1)12/07/2304/28/26[Chameleon](https://arxiv.org/pdf/2001.05668)01/24/2004/28/26[RAMBO](https://arxiv.org/pdf/2409.02292)09/03/2404/28/26[http://www.covertchannels.com/](http://www.covertchannels.com/)[ToRPEDO](https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_05B-5_Hussain_paper.pdf)02/26/1904/28/26[https://www.youtube.com/watch?v=Wh603IiqSLY&list=PLfUWWM-POgQsm2VGNuRfzySNd2IPd3YRv&index=7&t=1s](https://www.youtube.com/watch?v=Wh603IiqSLY&list=PLfUWWM-POgQsm2VGNuRfzySNd2IPd3YRv&index=7&t=1s)[FMM\-Attack](https://arxiv.org/html/2403.13507v2)03/21/2404/28/26[Battering RAM](https://batteringram.eu/)![](https://vulnerability.garden/assets/img/vulns/batteringram.png)09/30/2504/28/26[Atteq\-NN](https://www.ndss-symposium.org/wp-content/uploads/2022-12-paper.pdf)04/26/2204/28/26[https://www.youtube.com/watch?v=GZ_5JM4BCGk&list=PLfUWWM-POgQt7VNdo6CNRJ_SdOr3VVZV8&index=2](https://www.youtube.com/watch?v=GZ_5JM4BCGk&list=PLfUWWM-POgQt7VNdo6CNRJ_SdOr3VVZV8&index=2)[LiDAttack](https://arxiv.org/pdf/2411.01889)11/04/2404/28/26[SMBEA](https://arxiv.org/pdf/1911.07682)11/18/1904/28/26[SMGEA](https://ieeexplore.ieee.org/document/9288740)11/18/1904/28/26[Double Kill](https://blog.360totalsecurity.com/en/ie-zero-day-double-kill-first-wild-attack-found-360/)04/26/18[CVE\-2018\-8174](https://nvd.nist.gov/vuln/detail/CVE-2018-8174)04/27/26[https://unit42.paloaltonetworks.com/unit42-web-based-threats-2018-q2-u-s-remains-1-malicious-web-addresses-china-falls-2-7/](https://unit42.paloaltonetworks.com/unit42-web-based-threats-2018-q2-u-s-remains-1-malicious-web-addresses-china-falls-2-7/)[https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2018-8174](https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2018-8174)[https://www.exploit-db.com/exploits/44741](https://www.exploit-db.com/exploits/44741)[EpMe](https://shadowbrokers.tumblr.com/)04/14/17[CVE\-2017\-0005](https://nvd.nist.gov/vuln/detail/CVE-2017-0005)04/27/26[https://research.checkpoint.com/2021/the-story-of-jian/](https://research.checkpoint.com/2021/the-story-of-jian/)[Port Fail](https://www.perfect-privacy.com/blog/2015/11/26/ip-leak-vulnerability-affecting-vpn-providers-with-port-forwarding/)11/26/1504/27/26[https://web.archive.org/web/20151126164716/https://www.perfect-privacy.com/blog/2015/11/26/ip-leak-vulnerability-affecting-vpn-providers-with-port-forwarding/](https://web.archive.org/web/20151126164716/https://www.perfect-privacy.com/blog/2015/11/26/ip-leak-vulnerability-affecting-vpn-providers-with-port-forwarding/)[SkyJack](http://www.airmagnet.com/news/press_releases/2009/08252009.php)08/27/09[CVE\-2009\-2861](https://nvd.nist.gov/vuln/detail/CVE-2009-2861)04/27/26[https://web.archive.org/web/20090828020247/http://www.airmagnet.com/news/press_releases/2009/08252009.php](https://web.archive.org/web/20090828020247/http://www.airmagnet.com/news/press_releases/2009/08252009.php)[ESCALATEPLOWMAN](http://pastebin.com/JBcih6wR)08/13/16[CVE\-2016\-7089](https://nvd.nist.gov/vuln/detail/CVE-2016-7089)04/27/26[https://www.exploit-db.com/exploits/40270](https://www.exploit-db.com/exploits/40270)[EGREGIOUSBLUNDER](http://pastebin.com/JBcih6wR)08/13/16[CVE\-2016\-6909](https://nvd.nist.gov/vuln/detail/CVE-2016-6909)04/27/26[https://fortiguard.com/psirt/FG-IR-16-023](https://fortiguard.com/psirt/FG-IR-16-023)[EBBISLAND / EBBSHAVE](https://shadowbrokers.tumblr.com/)04/14/17[CVE\-2017\-3623](https://nvd.nist.gov/vuln/detail/CVE-2017-3623)04/27/26[https://www.oracle.com/security-alerts/cpuapr2017.html](https://www.oracle.com/security-alerts/cpuapr2017.html)[https://www.scworld.com/news/struts-and-shadow-brokers-exploits-among-the-299-fixed-by-oracle-patch](https://www.scworld.com/news/struts-and-shadow-brokers-exploits-among-the-299-fixed-by-oracle-patch)[BENIGNCERTAIN / PIXPOCKET](https://twitter.com/shadowbrokerss/status/764806012534030336)08/13/16[CVE\-2016\-6415](https://nvd.nist.gov/vuln/detail/CVE-2016-6415)04/27/26[http://pastebin.com/JBcih6wR](http://pastebin.com/JBcih6wR)[https://blogs.cisco.com/security/shadow-brokers](https://blogs.cisco.com/security/shadow-brokers)[EXTREMEPARR](https://shadowbrokers.tumblr.com/)04/14/17[CVE\-2017\-3622](https://nvd.nist.gov/vuln/detail/CVE-2017-3622)04/27/26[https://www.oracle.com/security-alerts/cpuapr2017.html](https://www.oracle.com/security-alerts/cpuapr2017.html)[https://www.scworld.com/news/struts-and-shadow-brokers-exploits-among-the-299-fixed-by-oracle-patch](https://www.scworld.com/news/struts-and-shadow-brokers-exploits-among-the-299-fixed-by-oracle-patch)[EPICBANANA](https://twitter.com/shadowbrokerss/status/764806012534030336)08/13/16[CVE\-2016\-6367](https://nvd.nist.gov/vuln/detail/CVE-2016-6367)04/27/26[https://blogs.cisco.com/security/shadow-brokers](https://blogs.cisco.com/security/shadow-brokers)[http://pastebin.com/JBcih6wR](http://pastebin.com/JBcih6wR)[https://www.keysight.com/blogs/en/tech/nwvs/2022/06/02/the-equation-groups-firewall-exploit-chain](https://www.keysight.com/blogs/en/tech/nwvs/2022/06/02/the-equation-groups-firewall-exploit-chain)[EXTRABACON](https://twitter.com/shadowbrokerss/status/764806012534030336)08/13/16[CVE\-2016\-6366](https://nvd.nist.gov/vuln/detail/CVE-2016-6366)04/27/26[https://blogs.cisco.com/security/shadow-brokers](https://blogs.cisco.com/security/shadow-brokers)[http://pastebin.com/JBcih6wR](http://pastebin.com/JBcih6wR)[https://www.keysight.com/blogs/en/tech/nwvs/2022/06/02/the-equation-groups-firewall-exploit-chain](https://www.keysight.com/blogs/en/tech/nwvs/2022/06/02/the-equation-groups-firewall-exploit-chain)[ROPEMAKER](https://www.mimecast.com/blog/2017/08/introducing-the-ropemaker-email-exploit/)08/23/1704/27/26[https://web.archive.org/web/20170823205311/https://www.mimecast.com/blog/2017/08/introducing-the-ropemaker-email-exploit/](https://web.archive.org/web/20170823205311/https://www.mimecast.com/blog/2017/08/introducing-the-ropemaker-email-exploit/)[EKUwu](https://trustedsec.com/blog/ekuwu-not-just-another-ad-cs-esc)11/13/24[CVE\-2024\-49019](https://nvd.nist.gov/vuln/detail/CVE-2024-49019)04/27/26[BRIDGE:BREAK](https://www.forescout.com/blog/exploiting-serial-to-ethernet-converters-in-critical-infrastructure/)04/21/26[CVE\-2026\-32955](https://nvd.nist.gov/vuln/detail/CVE-2026-32955)[CVE\-2026\-32956](https://nvd.nist.gov/vuln/detail/CVE-2026-32956)[CVE\-2026\-32957](https://nvd.nist.gov/vuln/detail/CVE-2026-32957)[CVE\-2026\-32958](https://nvd.nist.gov/vuln/detail/CVE-2026-32958)[CVE\-2026\-32959](https://nvd.nist.gov/vuln/detail/CVE-2026-32959)\.\.\.*and 16 more*04/24/26[https://www.forescout.com/resources/bridgebreak-report/](https://www.forescout.com/resources/bridgebreak-report/)[PhantomRPC](https://securelist.com/phantomrpc-rpc-vulnerability/119428/)04/24/2604/24/26[Pack2TheRoot](https://github.security.telekom.com/2026/04/pack2theroot-linux-local-privilege-escalation.html)![](https://vulnerability.garden/assets/img/vulns/pack2theroot.png)04/22/26[CVE\-2026\-41651](https://nvd.nist.gov/vuln/detail/CVE-2026-41651)04/22/26[GodPotato](https://medium.com/@iamkumarraj/godpotato-empowering-windows-privilege-escalation-techniques-400b88403a71)04/16/2404/22/26[Cookie Tossing](https://www.thomashouhou.com/post/cookie-tossing-attacks/)![](https://vulnerability.garden/assets/img/vulns/cookie-tossing.png)07/15/24[CVE\-2024\-28233](https://nvd.nist.gov/vuln/detail/CVE-2024-28233)04/22/26[Cloak & Dagger](https://cloak-and-dagger.org/)05/22/1704/22/26[https://www.youtube.com/watch?v=BmXaMaxx7OY](https://www.youtube.com/watch?v=BmXaMaxx7OY)[https://www.ieee-security.org/TC/SP2017/program.html](https://www.ieee-security.org/TC/SP2017/program.html)[https://www.ieee-security.org/TC/SP2017/papers/117.pdf](https://www.ieee-security.org/TC/SP2017/papers/117.pdf)[Stealtooth](https://arxiv.org/pdf/2507.00847)07/03/2504/22/26[DirtyTooth](https://dirtytooth.com/)![](https://vulnerability.garden/assets/img/vulns/dirtytooth.png)03/26/1704/22/26[https://web.archive.org/web/20170326093558/http://dirtytooth.com/](https://web.archive.org/web/20170326093558/http://dirtytooth.com/)[https://www.elladodelmal.com/2017/03/dirtytooth-hack-its-only-rockn-roll-but.html](https://www.elladodelmal.com/2017/03/dirtytooth-hack-its-only-rockn-roll-but.html)[https://www.youtube.com/watch?v=xv9OtSBgWII](https://www.youtube.com/watch?v=xv9OtSBgWII)[ROHNP](https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/)06/13/18[CVE\-2018\-0495](https://nvd.nist.gov/vuln/detail/CVE-2018-0495)[CVE\-2018\-12436](https://nvd.nist.gov/vuln/detail/CVE-2018-12436)[CVE\-2018\-12440](https://nvd.nist.gov/vuln/detail/CVE-2018-12440)[CVE\-2018\-12439](https://nvd.nist.gov/vuln/detail/CVE-2018-12439)[CVE\-2018\-12438](https://nvd.nist.gov/vuln/detail/CVE-2018-12438)\.\.\.*and 4 more*04/22/26[https://web.archive.org/web/20180620014933/https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/](https://web.archive.org/web/20180620014933/https://www.nccgroup.trust/us/our-research/technical-advisory-return-of-the-hidden-number-problem/)[https://www.fox-it.com/be/technical-advisory-rohnp-key-extraction-side-channel-in-multiple-crypto-libraries/](https://www.fox-it.com/be/technical-advisory-rohnp-key-extraction-side-channel-in-multiple-crypto-libraries/)[https://ches.iacr.org/2019/src/slides/Day2/Session7_PBuKeyScheme/Paper1_CHES%20ROHNP.pdf](https://ches.iacr.org/2019/src/slides/Day2/Session7_PBuKeyScheme/Paper1_CHES%20ROHNP.pdf)[https://www.wolfssl.com/wolfssh-and-rohnp/](https://www.wolfssl.com/wolfssh-and-rohnp/)[noPac](https://github.com/Ridter/noPac)12/13/21[CVE\-2021\-42278](https://nvd.nist.gov/vuln/detail/CVE-2021-42278)[CVE\-2021\-42287](https://nvd.nist.gov/vuln/detail/CVE-2021-42287)04/22/26[https://www.sophos.com/zh-cn/blog/nopac-a-tale-of-two-vulnerabilities-that-could-end-in-ransomware](https://www.sophos.com/zh-cn/blog/nopac-a-tale-of-two-vulnerabilities-that-could-end-in-ransomware)[Slopsquatting](https://socket.dev/blog/slopsquatting-how-ai-hallucinations-are-fueling-a-new-class-of-supply-chain-attacks)04/08/2504/22/26[https://mastodon.social/@andrewnez/114302875075999244](https://mastodon.social/@andrewnez/114302875075999244)[BadBluetooth](https://sites.google.com/view/bluetoothvul/home)02/26/1904/22/26[https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_06B-4_Xu_paper.pdf](https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_06B-4_Xu_paper.pdf)[Comment and Control](https://oddguan.com/blog/comment-and-control-prompt-injection-credential-theft-claude-code-gemini-cli-github-copilot/)04/15/2604/21/26[Stagefright 2\.0](https://blog.zimperium.com/zimperium-zlabs-is-raising-the-volume-new-vulnerability-processing-mp3mp4-media/)![](https://vulnerability.garden/assets/img/vulns/stagefright2.webp)10/01/15[CVE\-2015\-6602](https://nvd.nist.gov/vuln/detail/CVE-2015-6602)04/21/26[https://web.archive.org/web/20151001180208/https://blog.zimperium.com/zimperium-zlabs-is-raising-the-volume-new-vulnerability-processing-mp3mp4-media/](https://web.archive.org/web/20151001180208/https://blog.zimperium.com/zimperium-zlabs-is-raising-the-volume-new-vulnerability-processing-mp3mp4-media/)[Pork Explosion](https://bbqand0days.com/Pork-Explosion-Unleashed/)10/12/1604/21/26[https://web.archive.org/web/20161013164423/https://bbqand0days.com/Pork-Explosion-Unleashed/](https://web.archive.org/web/20161013164423/https://bbqand0days.com/Pork-Explosion-Unleashed/)[Rootpipe](https://truesecdev.wordpress.com/2015/04/09/hidden-backdoor-api-to-root-privileges-in-apple-os-x/)04/09/15[CVE\-2015\-1130](https://nvd.nist.gov/vuln/detail/CVE-2015-1130)04/21/26[https://www.youtube.com/watch?v=fCQg2I_pFDk](https://www.youtube.com/watch?v=fCQg2I_pFDk)[https://x.com/emilkvarnhammar/status/522646505128480768](https://x.com/emilkvarnhammar/status/522646505128480768)[PoodleBleed \(POODLE\)](https://poodlebleed.com/)![](https://vulnerability.garden/assets/img/vulns/poodlebleed.svg)09/20/14[CVE\-2014\-8730](https://nvd.nist.gov/vuln/detail/CVE-2014-8730)04/21/26[https://openssl-library.org/files/ssl-poodle.pdf](https://openssl-library.org/files/ssl-poodle.pdf)[Wavethrough](https://jakearchibald.com/2018/i-discovered-a-browser-bug/)![](https://vulnerability.garden/assets/img/vulns/wavethrough.png)06/20/18[CVE\-2018\-8235](https://nvd.nist.gov/vuln/detail/CVE-2018-8235)04/21/26[QuadRooter](http://www.checkpoint.com/quadrooter)08/07/16[CVE\-2016\-2059](https://nvd.nist.gov/vuln/detail/CVE-2016-2059)[CVE\-2016\-5340](https://nvd.nist.gov/vuln/detail/CVE-2016-5340)[CVE\-2016\-2503](https://nvd.nist.gov/vuln/detail/CVE-2016-2503)[CVE\-2106\-2504](https://nvd.nist.gov/vuln/detail/CVE-2106-2504)04/21/26[https://blog.checkpoint.com/research/quadrooter/](https://blog.checkpoint.com/research/quadrooter/)[https://blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf](https://blackhat.com/docs/eu-16/materials/eu-16-Donenfeld-Stumping-The-Mobile-Chipset-wp.pdf)[SirenJack](https://bastille.net/research/vulnerabilities/sirenjack)![](https://vulnerability.garden/assets/img/vulns/sirenjack.png)04/10/1804/21/26[https://web.archive.org/web/20190414074027/https://bastille.net/research/vulnerabilities/sirenjack](https://web.archive.org/web/20190414074027/https://bastille.net/research/vulnerabilities/sirenjack)[Sringbleed](https://stringbleed.github.io/)![](https://vulnerability.garden/assets/img/vulns/stringbleed.png)04/04/17[CVE\-2017\-5135](https://nvd.nist.gov/vuln/detail/CVE-2017-5135)04/21/26[Ring\-Road](https://ringroadbug.com/)![](https://vulnerability.garden/assets/img/vulns/ringroad.png)04/17/1704/21/26[https://www.cerias.purdue.edu/site/blog/post/purdue_cerias_researchers_find_vulnerability_in_google_protocol](https://www.cerias.purdue.edu/site/blog/post/purdue_cerias_researchers_find_vulnerability_in_google_protocol)[The Riddle](https://riddle.link/)![](https://vulnerability.garden/assets/img/vulns/riddle.png)03/17/17[CVE\-2017\-3305](https://nvd.nist.gov/vuln/detail/CVE-2017-3305)04/21/26[PwnScriptum](https://exploitbox.io/paper/Pwning-PHP-Mail-Function-For-Fun-And-RCE.html)![](https://vulnerability.garden/assets/img/vulns/pwnscriptum.png)12/30/16[CVE\-2016\-10033](https://nvd.nist.gov/vuln/detail/CVE-2016-10033)[CVE\-2016\-10045](https://nvd.nist.gov/vuln/detail/CVE-2016-10045)[CVE\-2016\-10034](https://nvd.nist.gov/vuln/detail/CVE-2016-10034)[CVE\-2016\-10074](https://nvd.nist.gov/vuln/detail/CVE-2016-10074)04/21/26[https://legalhackers.com/exploits/CVE-2016-10033/10045/10034/10074/PwnScriptum_RCE_exploit.py](https://legalhackers.com/exploits/CVE-2016-10033/10045/10034/10074/PwnScriptum_RCE_exploit.py)[https://www.exploit-db.com/exploits/40986](https://www.exploit-db.com/exploits/40986)[https://thehackernews.com/2017/01/phpmailer-swiftmailer-zendmail.html](https://thehackernews.com/2017/01/phpmailer-swiftmailer-zendmail.html)[Phwned](http://phwned.com/)![](https://vulnerability.garden/assets/img/vulns/phwned.png)07/07/1504/21/26[https://web.archive.org/web/20160528085929/http://phwned.com/](https://web.archive.org/web/20160528085929/http://phwned.com/)[NoToken / BadCSRF](http://notoken.pl/)![](https://vulnerability.garden/assets/img/vulns/notoken.png)08/02/1604/20/26[https://web.archive.org/web/20160501230604/http://notoken.pl/](https://web.archive.org/web/20160501230604/http://notoken.pl/)[Misfortune Cookie](https://sc1.checkpoint.com/misfortune-cookie/index.html)![](https://vulnerability.garden/assets/img/vulns/misfortune-cookie.png)12/30/14[CVE\-2014\-9222](https://nvd.nist.gov/vuln/detail/CVE-2014-9222)04/20/26[LOBSTER](https://www.tenable.com/security/research/tra-2016-12)07/19/16[CVE\-2016\-1000031](https://nvd.nist.gov/vuln/detail/CVE-2016-1000031)04/20/26[ghostbutt](https://web.archive.org/web/20170519015240/http://ghostbutt.com/)![](https://vulnerability.garden/assets/img/vulns/ghostbutt.png)05/19/17[CVE\-2017\-8291](https://nvd.nist.gov/vuln/detail/CVE-2017-8291)04/20/26[https://web.archive.org/web/20170701000000*/http://ghostbutt.com/](https://web.archive.org/web/20170701000000*/http://ghostbutt.com/)[BitErrant](https://biterrant.io/)![](https://vulnerability.garden/assets/img/vulns/biterrant.png)03/05/1704/20/26[https://web.archive.org/web/20170306021654/https://biterrant.io/](https://web.archive.org/web/20170306021654/https://biterrant.io/)[Antbleed](http://www.antbleed.com/)![](https://vulnerability.garden/assets/img/vulns/antbleed.png)04/26/1704/20/26[https://web.archive.org/web/20170426203630/http://www.antbleed.com/](https://web.archive.org/web/20170426203630/http://www.antbleed.com/)[Sadlock](https://sadlock.org/)![](https://vulnerability.garden/assets/img/vulns/sadlock.png)04/12/1604/20/26[https://web.archive.org/web/20160414123832/https://sadlock.org/](https://web.archive.org/web/20160414123832/https://sadlock.org/)[https://web.archive.org/web/20160322161740/http://badlock.org/](https://web.archive.org/web/20160322161740/http://badlock.org/)[BACKRONYM](http://backronym.fail/)![](https://vulnerability.garden/assets/img/vulns/backronym.png)04/30/15[CVE\-2015\-3152](https://nvd.nist.gov/vuln/detail/CVE-2015-3152)04/20/26[https://web.archive.org/web/20150501174846/http://backronym.fail/](https://web.archive.org/web/20150501174846/http://backronym.fail/)[NomShub](https://www.straiker.ai/blog/nomshub-cursor-remote-tunneling-sandbox-breakout)04/03/2604/17/26[RedSun](https://deadeclipse666.blogspot.com/2026/04/public-disclosure-response-for-cve-2026.html?m=1)04/15/26[CVE\-2026\-33825](https://nvd.nist.gov/vuln/detail/CVE-2026-33825)04/15/26[https://github.com/Nightmare-Eclipse/RedSun](https://github.com/Nightmare-Eclipse/RedSun)[https://infosec.exchange/@wdormann/116412019416916182](https://infosec.exchange/@wdormann/116412019416916182)[ShareLeak](https://www.capsulesecurity.io/blog-post/shareleak-taking-the-wheel-of-microsofts-copilot-studio-cve-2026-21520)04/15/26[CVE\-2026\-21520](https://nvd.nist.gov/vuln/detail/CVE-2026-21520)04/15/26[PipeLeak](https://www.capsulesecurity.io/blog-post/pipeleak-the-lead-that-stole-your-database-exploiting-salesforce-agentforce-with-indirect-prompt-injection)04/15/2604/15/26[MCPwn](https://pluto.security/blog/mcp-bug-nginx-security-vulnerability-cvss-9-8/)04/15/26[CVE\-2026\-33032](https://nvd.nist.gov/vuln/detail/CVE-2026-33032)04/15/26[Fabricked](https://fabricked-attack.github.io/)![](https://vulnerability.garden/assets/img/vulns/fabricked.png)04/14/26[CVE\-2025\-54510](https://nvd.nist.gov/vuln/detail/CVE-2025-54510)04/15/26[Neural Exec](https://arxiv.org/pdf/2403.03792)05/02/2404/11/26[https://www.rsaconference.com/library/blog/rotten-apples-the-technical-details-of-rsacs-successful-apple-intelligence-prompt-injection-attack](https://www.rsaconference.com/library/blog/rotten-apples-the-technical-details-of-rsacs-successful-apple-intelligence-prompt-injection-attack)[DogeReaper](https://x.com/EfficiencyDOGE/status/1864357823163060316)12/04/2404/10/26[https://x.com/aejkohl/status/1867078471190712741](https://x.com/aejkohl/status/1867078471190712741)[ReVault](https://blog.talosintelligence.com/revault-when-your-soc-turns-against-you/)08/05/25[CVE\-2025\-24311](https://nvd.nist.gov/vuln/detail/CVE-2025-24311)[CVE\-2025\-25050](https://nvd.nist.gov/vuln/detail/CVE-2025-25050)[CVE\-2025\-25215](https://nvd.nist.gov/vuln/detail/CVE-2025-25215)[CVE\-2025\-24922](https://nvd.nist.gov/vuln/detail/CVE-2025-24922)[CVE\-2025\-24919](https://nvd.nist.gov/vuln/detail/CVE-2025-24919)04/10/26[Vault Fault](https://cyata.ai/vault-fault/)08/06/25[CVE\-2025\-6000](https://nvd.nist.gov/vuln/detail/CVE-2025-6000)[CVE\-2025\-5999](https://nvd.nist.gov/vuln/detail/CVE-2025-5999)[CVE\-2025\-6004](https://nvd.nist.gov/vuln/detail/CVE-2025-6004)[CVE\-2025\-6010](https://nvd.nist.gov/vuln/detail/CVE-2025-6010)[CVE\-2025\-6011](https://nvd.nist.gov/vuln/detail/CVE-2025-6011)\.\.\.*and 9 more*04/10/26[VillainNet](https://saltaformaggio.ece.gatech.edu/publications/oygenblik2025villainnet.pdf)11/19/2504/10/26[https://research.gatech.edu/researchers-warn-ai-blind-spot-could-allow-attackers-hijack-self-driving-vehicles](https://research.gatech.edu/researchers-warn-ai-blind-spot-could-allow-attackers-hijack-self-driving-vehicles)[https://www.youtube.com/watch?v=H1fyPD8vWDo](https://www.youtube.com/watch?v=H1fyPD8vWDo)[Sploitlight](https://www.microsoft.com/en-us/security/blog/2025/07/28/sploitlight-analyzing-a-spotlight-based-macos-tcc-vulnerability/)07/28/25[CVE\-2025\-31199](https://nvd.nist.gov/vuln/detail/CVE-2025-31199)04/10/26[AlphaDog](https://sites.google.com/view/alphachannelattack/home)02/21/2504/10/26[https://www.ndss-symposium.org/ndss-paper/alphadog-no-box-camouflage-attacks-via-alpha-channel-oversight/](https://www.ndss-symposium.org/ndss-paper/alphadog-no-box-camouflage-attacks-via-alpha-channel-oversight/)[https://www.ndss-symposium.org/wp-content/uploads/2025-789-paper.pdf](https://www.ndss-symposium.org/wp-content/uploads/2025-789-paper.pdf)[https://www.ndss-symposium.org/wp-content/uploads/7D-s0789-Xia-2.pdf](https://www.ndss-symposium.org/wp-content/uploads/7D-s0789-Xia-2.pdf)[https://web.archive.org/web/20250221023115/https://sites.google.com/view/alphachannelattack/home](https://web.archive.org/web/20250221023115/https://sites.google.com/view/alphachannelattack/home)[https://www.youtube.com/watch?v=V1mxpx1khMI](https://www.youtube.com/watch?v=V1mxpx1khMI)[G\-Door](https://potsolutions.net/the-g-door-microsoft-365-the-risk-of-unmanaged-google-doc-accounts/)12/23/2404/10/26[https://web.archive.org/web/20241225143606/https://potsolutions.net/the-g-door-microsoft-365-the-risk-of-unmanaged-google-doc-accounts/](https://web.archive.org/web/20241225143606/https://potsolutions.net/the-g-door-microsoft-365-the-risk-of-unmanaged-google-doc-accounts/)[CurXecute](https://www.aim.security/lp/aim-labs-curxecute-blogpost)08/01/25[CVE\-2025\-54135](https://nvd.nist.gov/vuln/detail/CVE-2025-54135)04/09/26[https://web.archive.org/web/20250801170149/https://www.aim.security/lp/aim-labs-curxecute-blogpost](https://web.archive.org/web/20250801170149/https://www.aim.security/lp/aim-labs-curxecute-blogpost)[https://github.com/cursor/cursor/security/advisories/GHSA-4cxx-hrm3-49rm](https://github.com/cursor/cursor/security/advisories/GHSA-4cxx-hrm3-49rm)[React2DoS](https://securityboulevard.com/2026/04/react2dos-cve-2026-23869-when-the-flight-protocol-crashes-at-takeoff/)04/09/26[CVE\-2026\-23869](https://nvd.nist.gov/vuln/detail/CVE-2026-23869)04/09/26[RC4 NOMORE](https://www.rc4nomore.com/)07/15/1504/09/26[pixie dust](https://archive.hack.lu/2014/Hacklu2014_offline_bruteforce_attack_on_wps.pdf)10/27/1404/09/26[https://web.archive.org/web/20150804063347/https://github.com/wiire/pixiewps](https://web.archive.org/web/20150804063347/https://github.com/wiire/pixiewps)[https://www.kali.org/blog/pixiewps-reaver-aircrack-ng-updates/](https://www.kali.org/blog/pixiewps-reaver-aircrack-ng-updates/)[SgxPectre](https://arxiv.org/pdf/1802.09085)06/03/1804/09/26[https://github.com/OSUSecLab/SgxPectre](https://github.com/OSUSecLab/SgxPectre)[EVICT\+TIME / AnC / ASLR\+Cache](https://www.vusec.net/projects/anc/)02/15/17[CVE\-2017\-5925](https://nvd.nist.gov/vuln/detail/CVE-2017-5925)[CVE\-2017\-5926](https://nvd.nist.gov/vuln/detail/CVE-2017-5926)[CVE\-2017\-5927](https://nvd.nist.gov/vuln/detail/CVE-2017-5927)[CVE\-2017\-5928](https://nvd.nist.gov/vuln/detail/CVE-2017-5928)04/09/26[https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017_09-1_Gras_paper.pdf](https://www.ndss-symposium.org/wp-content/uploads/2017/09/ndss2017_09-1_Gras_paper.pdf)[https://eprint.iacr.org/2024/149.pdf](https://eprint.iacr.org/2024/149.pdf)[Hole196](https://www.airtightnetworks.com/WPA2-Hole196)![](https://vulnerability.garden/assets/img/vulns/hole196.png)07/26/2004/09/26[https://web.archive.org/web/20111101074830/http://www.airtightnetworks.com/wpa2-hole196](https://web.archive.org/web/20111101074830/http://www.airtightnetworks.com/wpa2-hole196)[MemJam](https://arxiv.org/pdf/1711.08002)11/21/1704/09/26[httpoxy](https://httpoxy.org/)![](https://vulnerability.garden/assets/img/vulns/httpoxy.png)07/18/16[CVE\-2016\-5385](https://nvd.nist.gov/vuln/detail/CVE-2016-5385)[CVE\-2016\-5386](https://nvd.nist.gov/vuln/detail/CVE-2016-5386)[CVE\-2016\-5387](https://nvd.nist.gov/vuln/detail/CVE-2016-5387)[CVE\-2016\-5388](https://nvd.nist.gov/vuln/detail/CVE-2016-5388)04/09/26[DockerDash](https://noma.security/blog/dockerdash-two-attack-paths-one-ai-supply-chain-crisis/)02/03/2604/08/26[GrafanaGhost](https://noma.security/blog/grafana-ghost/)![](https://vulnerability.garden/assets/img/vulns/grafanaghost.png)04/07/2604/08/26[BlueHammer](https://deadeclipse666.blogspot.com/2026/04/public-disclosure.html)04/02/26[CVE\-2026\-33825](https://nvd.nist.gov/vuln/detail/CVE-2026-33825)04/08/26[https://github.com/Nightmare-Eclipse/BlueHammer](https://github.com/Nightmare-Eclipse/BlueHammer)[https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2026-33825](https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2026-33825)[GPUHammer](https://gpuhammer.com/)![](https://vulnerability.garden/assets/img/vulns/gpuhammer.png)08/12/2504/08/26[https://github.com/sith-lab/gpuhammer](https://github.com/sith-lab/gpuhammer)[GeForge](https://gddr.fail/)![](https://vulnerability.garden/assets/img/vulns/geforge.png)04/02/2604/08/26[https://arstechnica.com/security/2026/04/new-rowhammer-attacks-give-complete-control-of-machines-running-nvidia-gpus](https://arstechnica.com/security/2026/04/new-rowhammer-attacks-give-complete-control-of-machines-running-nvidia-gpus)[GDDRHammer](https://gddr.fail/)![](https://vulnerability.garden/assets/img/vulns/gddrhammer.png)04/02/2604/08/26[https://arstechnica.com/security/2026/04/new-rowhammer-attacks-give-complete-control-of-machines-running-nvidia-gpus](https://arstechnica.com/security/2026/04/new-rowhammer-attacks-give-complete-control-of-machines-running-nvidia-gpus)[GPUBreach](https://gpubreach.ca/)![](https://vulnerability.garden/assets/img/vulns/gpubreach.png)04/02/2604/08/26[https://arstechnica.com/security/2026/04/new-rowhammer-attacks-give-complete-control-of-machines-running-nvidia-gpus](https://arstechnica.com/security/2026/04/new-rowhammer-attacks-give-complete-control-of-machines-running-nvidia-gpus)[Prompt Poaching](https://secureannex.com/blog/prompt-poaching/)12/28/2503/29/26[https://www.koi.ai/blog/urban-vpn-browser-extension-ai-conversations-data-collection](https://www.koi.ai/blog/urban-vpn-browser-extension-ai-conversations-data-collection)[Open Sesame](https://www.koi.ai/blog/open-sesame-how-a-fail-open-bug-in-open-vsxs-new-scanner-let-malware-walk-right-in)03/27/2603/28/26[nullifAI](https://www.reversinglabs.com/blog/rl-identifies-malware-ml-model-hosted-on-hugging-face)02/06/2503/28/26[ZombieAgent](https://www.radware.com/blog/threat-intelligence/zombieagent/)01/08/2603/28/26[https://www.radware.com/security/threat-advisories-and-attack-reports/zombieagent/](https://www.radware.com/security/threat-advisories-and-attack-reports/zombieagent/)[strongSwan](https://bishopfox.com/blog/strongswan-cve-2026-25075-integer-underflow-in-vpn-authentication)03/26/26[CVE\-2026\-25075](https://nvd.nist.gov/vuln/detail/CVE-2026-25075)03/26/26[ShadowPrompt](https://www.koi.ai/blog/shadowprompt-how-any-website-could-have-hijacked-anthropic-claude-chrome-extension)03/26/2603/26/26[Out\-of\-Cancel](https://v4bel.github.io/linux/2026/03/23/ooc.html)03/23/26[CVE\-2026\-23239](https://nvd.nist.gov/vuln/detail/CVE-2026-23239)[CVE\-2026\-23240](https://nvd.nist.gov/vuln/detail/CVE-2026-23240)[CVE\-2026\-23393](https://nvd.nist.gov/vuln/detail/CVE-2026-23393)03/26/26[BadAML](https://dl.acm.org/doi/pdf/10.1145/3719027.3765123)11/22/2503/26/26[https://katexochen.aro.bz/posts/badaml/](https://katexochen.aro.bz/posts/badaml/)[C4 Attack \(Chrome Cookie Cipher Cracker\)](https://www.cyberark.com/resources/threat-research-blog/c4-bomb-blowing-up-chromes-appbound-cookie-encryption)06/30/25[CVE\-2025\-34090](https://nvd.nist.gov/vuln/detail/CVE-2025-34090)[CVE\-2025\-34091](https://nvd.nist.gov/vuln/detail/CVE-2025-34091)[CVE\-2025\-34092](https://nvd.nist.gov/vuln/detail/CVE-2025-34092)03/25/26[EtherHiding](https://cloud.google.com/blog/topics/threat-intelligence/dprk-adopts-etherhiding)10/16/2503/25/26[BIDI Swap](https://www.varonis.com/blog/bidi-swap)![](https://vulnerability.garden/assets/img/vulns/bidiswap.png)09/17/2503/25/26[Golden dMSA](https://www.semperis.com/blog/golden-dmsa-what-is-dmsa-authentication-bypass/)07/16/2503/25/26[FortMajeure](https://pwner.gg/blog/2025-08-13-fortiweb-cve-2025-52970)08/13/25[CVE\-2025\-52970](https://nvd.nist.gov/vuln/detail/CVE-2025-52970)03/25/26[SupaPwn](https://www.hacktron.ai/blog/supapwn)11/17/2503/25/26[LangGrinch](https://cyata.ai/blog/langgrinch-langchain-core-cve-2025-68664/)![](https://vulnerability.garden/assets/img/vulns/langgrinch.png)12/26/25[CVE\-2025\-68664](https://nvd.nist.gov/vuln/detail/CVE-2025-68664)03/25/26[WIBattack](https://ginnoslab.org/2019/09/21/wibattack-vulnerability-in-wib-sim-browser-can-let-attackers-globally-take-control-of-hundreds-of-millions-of-the-victim-mobile-phones-worldwide-to-make-a-phone-call-send-sms-to-any-phone-numbers/)09/21/1903/24/26[https://web.archive.org/web/20191001133057/https://ginnoslab.org/2019/09/21/wibattack-vulnerability-in-wib-sim-browser-can-let-attackers-globally-take-control-of-hundreds-of-millions-of-the-victim-mobile-phones-worldwide-to-make-a-phone-call-send-sms-to-any-phone-numbers/](https://web.archive.org/web/20191001133057/https://ginnoslab.org/2019/09/21/wibattack-vulnerability-in-wib-sim-browser-can-let-attackers-globally-take-control-of-hundreds-of-millions-of-the-victim-mobile-phones-worldwide-to-make-a-phone-call-send-sms-to-any-phone-numbers/)[CitrixBleed 3](https://www.heise.de/en/news/Critical-security-vulnerability-in-Citrix-Gateway-and-Netscaler-ADC-11221853.html)03/23/26[CVE\-2026\-3055](https://nvd.nist.gov/vuln/detail/CVE-2026-3055)[CVE\-2026\-4368](https://nvd.nist.gov/vuln/detail/CVE-2026-4368)03/23/26[https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX696300](https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX696300)[https://labs.watchtowr.com/the-sequels-are-never-as-good-but-were-still-in-pain-citrix-netscaler-cve-2026-3055-memory-overread/](https://labs.watchtowr.com/the-sequels-are-never-as-good-but-were-still-in-pain-citrix-netscaler-cve-2026-3055-memory-overread/)[https://labs.watchtowr.com/please-we-beg-just-one-weekend-free-of-appliances-citrix-netscaler-cve-2026-3055-memory-overread-part-2/](https://labs.watchtowr.com/please-we-beg-just-one-weekend-free-of-appliances-citrix-netscaler-cve-2026-3055-memory-overread-part-2/)[https://www.picussecurity.com/resource/blog/cve-2026-3055-cve-2026-4368-inside-the-netscaler-citrixbleed-3-memory-overread](https://www.picussecurity.com/resource/blog/cve-2026-3055-cve-2026-4368-inside-the-netscaler-citrixbleed-3-memory-overread)[The Symlink Trap](https://www.akamai.com/blog/security-research/2026/mar/cve-2026-31979-symlink-root-privilege-escalation-himmelblau)03/20/26[CVE\-2026\-31979](https://nvd.nist.gov/vuln/detail/CVE-2026-31979)03/23/26[tlbFail](https://www.youtube.com/watch?v=rPTifU1lG7Q)05/16/22[CVE\-2022\-26764](https://nvd.nist.gov/vuln/detail/CVE-2022-26764)03/23/26[https://theapplewiki.com/wiki/TlbFail](https://theapplewiki.com/wiki/TlbFail)landa 05/01/23[CVE\-2023\-41974](https://nvd.nist.gov/vuln/detail/CVE-2023-41974)03/23/26[https://theapplewiki.com/wiki/Kfd_(landa)](https://theapplewiki.com/wiki/Kfd_(landa))smith 05/02/23[CVE\-2023\-32434](https://nvd.nist.gov/vuln/detail/CVE-2023-32434)03/23/26[https://theapplewiki.com/wiki/Kfd_(smith)](https://theapplewiki.com/wiki/Kfd_(smith))[badRecovery](https://www.youtube.com/watch?v=rPTifU1lG7Q)11/01/22[CVE\-2022\-26765](https://nvd.nist.gov/vuln/detail/CVE-2022-26765)03/23/26[https://theapplewiki.com/wiki/BadRecovery](https://theapplewiki.com/wiki/BadRecovery)[https://github.com/pinauten/Fugu15/blob/master/Exploits/oobPCI/Sources/badRecovery.c](https://github.com/pinauten/Fugu15/blob/master/Exploits/oobPCI/Sources/badRecovery.c)[PhysPuppet](https://github.com/felix-pb/kfd/blob/main/writeups/physpuppet.md)07/20/23[CVE\-2023\-23536](https://nvd.nist.gov/vuln/detail/CVE-2023-23536)03/23/26[https://theapplewiki.com/wiki/Kfd_(PhysPuppet)](https://theapplewiki.com/wiki/Kfd_(PhysPuppet))[oobPCI](https://www.youtube.com/watch?v=rPTifU1lG7Q)11/01/22[CVE\-2022\-26763](https://nvd.nist.gov/vuln/detail/CVE-2022-26763)03/23/26[https://theapplewiki.com/wiki/OobPCI](https://theapplewiki.com/wiki/OobPCI)[CPDoS](https://cpdos.org/)![](https://vulnerability.garden/assets/img/vulns/cpdos.png)10/22/19[CVE\-2020\-5401](https://nvd.nist.gov/vuln/detail/CVE-2020-5401)[CVE\-2019\-0941](https://nvd.nist.gov/vuln/detail/CVE-2019-0941)03/23/26[https://blog.cloudflare.com/cloudflare-response-to-cpdos-exploits/](https://blog.cloudflare.com/cloudflare-response-to-cpdos-exploits/)[Flush\+Reload](https://www.usenix.org/conference/usenixsecurity14/technical-sessions/presentation/yarom)08/15/1403/23/26[Collide\+Probe](https://mlq.me/download/takeaway.pdf)10/05/2003/23/26[https://www.zdnet.com/article/amd-processors-from-2011-to-2019-vulnerable-to-two-new-attacks/](https://www.zdnet.com/article/amd-processors-from-2011-to-2019-vulnerable-to-two-new-attacks/)[Minerva](https://minerva.crocs.fi.muni.cz/)![](https://vulnerability.garden/assets/img/vulns/minerva.png)10/03/19[CVE\-2019\-15809](https://nvd.nist.gov/vuln/detail/CVE-2019-15809)[CVE\-2019\-13627](https://nvd.nist.gov/vuln/detail/CVE-2019-13627)[CVE\-2019\-13628](https://nvd.nist.gov/vuln/detail/CVE-2019-13628)[CVE\-2019\-13629](https://nvd.nist.gov/vuln/detail/CVE-2019-13629)[CVE\-2019\-2894](https://nvd.nist.gov/vuln/detail/CVE-2019-2894)\.\.\.*and 3 more*03/23/26[RAMPAGE](https://rampageattack.com/)![](https://vulnerability.garden/assets/img/vulns/rampage.png)06/28/18[CVE\-2018\-9442](https://nvd.nist.gov/vuln/detail/CVE-2018-9442)03/23/26[iTLB multihit](https://www.tacitosecurity.com/multihit.html)01/17/23[CVE\-2018\-12207](https://nvd.nist.gov/vuln/detail/CVE-2018-12207)03/23/26[https://docs.kernel.org/admin-guide/hw-vuln/multihit.html](https://docs.kernel.org/admin-guide/hw-vuln/multihit.html)[Dirty Sock](https://initblog.com/2019/dirty-sock/)02/13/19[CVE\-2019\-7304](https://nvd.nist.gov/vuln/detail/CVE-2019-7304)03/23/26[https://github.com/initstring/dirty_sock](https://github.com/initstring/dirty_sock)[https://bugs.launchpad.net/snapd/+bug/1813365](https://bugs.launchpad.net/snapd/+bug/1813365)[Thunderclap](https://thunderclap.io/)![](https://vulnerability.garden/assets/img/vulns/thunderclap.png)02/26/1903/23/26[JASBUG](https://www.jasadvisors.com/jasbug-high-risk-security-vulnerability-discovered-by-jas-global-advisors/)02/24/15[CVE\-2015\-0008](https://nvd.nist.gov/vuln/detail/CVE-2015-0008)03/23/26[https://web.archive.org/web/20160130202143/https://www.jasadvisors.com/jasbug-high-risk-security-vulnerability-discovered-by-jas-global-advisors/](https://web.archive.org/web/20160130202143/https://www.jasadvisors.com/jasbug-high-risk-security-vulnerability-discovered-by-jas-global-advisors/)[https://learn.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-011](https://learn.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-011)[https://support.microsoft.com/en-us/topic/ms15-014-vulnerability-in-group-policy-could-allow-security-feature-bypass-february-10-2015-5223a481-bf73-6a6c-46da-d1d7088a2e2f](https://support.microsoft.com/en-us/topic/ms15-014-vulnerability-in-group-policy-could-allow-security-feature-bypass-february-10-2015-5223a481-bf73-6a6c-46da-d1d7088a2e2f)[https://arstechnica.com/information-technology/2015/02/15-year-old-bug-allows-malicious-code-execution-in-all-versions-of-windows/](https://arstechnica.com/information-technology/2015/02/15-year-old-bug-allows-malicious-code-execution-in-all-versions-of-windows/)[Prime\+Probe](https://www.usenix.org/conference/usenixsecurity21/presentation/shusterman)08/12/2103/23/26[SPOILER](https://www.usenix.org/conference/usenixsecurity19/presentation/islam)08/15/19[CVE\-2019\-0162](https://nvd.nist.gov/vuln/detail/CVE-2019-0162)03/23/26[NXNSAttack](https://www.usenix.org/conference/usenixsecurity20/presentation/afek)08/12/20[CVE\-2020\-8616](https://nvd.nist.gov/vuln/detail/CVE-2020-8616)[CVE\-2020\-12662](https://nvd.nist.gov/vuln/detail/CVE-2020-12662)[CVE\-2020\-10995](https://nvd.nist.gov/vuln/detail/CVE-2020-10995)[CVE2020\-12667](https://nvd.nist.gov/vuln/detail/CVE2020-12667)03/23/26[ZAPESCAPE](https://zenity.io/blog/research/zapescape-organization-wide-control-over-code-by-zapier)09/20/22[CVE\-2022\-28802](https://nvd.nist.gov/vuln/detail/CVE-2022-28802)03/23/26[Ni8mare](https://www.cyera.com/research/ni8mare-unauthenticated-remote-code-execution-in-n8n-cve-2026-21858)01/07/26[CVE\-2026\-21858](https://nvd.nist.gov/vuln/detail/CVE-2026-21858)03/23/26[https://github.com/n8n-io/n8n/security/advisories/GHSA-v4pr-fm98-w9pg](https://github.com/n8n-io/n8n/security/advisories/GHSA-v4pr-fm98-w9pg)[TileMask](https://dl.acm.org/doi/10.1145/3576915.3616661)11/21/2303/23/26[WireTap](https://wiretap.fail/)![](https://vulnerability.garden/assets/img/vulns/wiretapfail.svg)09/30/2503/22/26[https://architecture.fail/](https://architecture.fail/)[TEE\.fail](https://tee.fail/)![](https://vulnerability.garden/assets/img/vulns/teefail.svg)10/28/2503/22/26[https://architecture.fail/](https://architecture.fail/)[ECC\.fail](https://ecc.fail/)![](https://vulnerability.garden/assets/img/vulns/eccfail.svg)08/14/25[CVE\-2018\-18904](https://nvd.nist.gov/vuln/detail/CVE-2018-18904)03/22/26[https://architecture.fail/](https://architecture.fail/)[SGX\.Fail](https://sgx.fail/)![](https://vulnerability.garden/assets/img/vulns/sgxfail.png)11/29/2203/22/26[https://architecture.fail/](https://architecture.fail/)[SilverPotato](https://decoder.cloud/2024/04/24/hello-im-your-domain-admin-and-i-want-to-authenticate-against-you/)04/24/24[CVE\-2024\-38061](https://nvd.nist.gov/vuln/detail/CVE-2024-38061)03/22/26[dmaFail](https://media.ccc.de/v/37c3-11859-operation_triangulation_what_you_get_when_attack_iphones_of_researchers)12/28/23[CVE\-2023\-38606](https://nvd.nist.gov/vuln/detail/CVE-2023-38606)03/21/26[https://theapplewiki.com/wiki/DmaFail](https://theapplewiki.com/wiki/DmaFail)[Mail2Shell](https://www.ox.security/blog/freescout-rce-cve-2026-28289/)![](https://vulnerability.garden/assets/img/vulns/mail2shell.png)03/03/26[CVE\-2026\-28289](https://nvd.nist.gov/vuln/detail/CVE-2026-28289)03/21/26[DirtyCred Remastered](https://exploiter.dev/blog/2022/CVE-2022-2602.html)12/21/22[CVE\-2022\-2602](https://nvd.nist.gov/vuln/detail/CVE-2022-2602)03/20/26[https://web.archive.org/web/20221221061126/https://blog.hacktivesecurity.com/index.php/2022/12/21/cve-2022-2602-dirtycred-file-exploitation-applied-on-an-io_uring-uaf/](https://web.archive.org/web/20221221061126/https://blog.hacktivesecurity.com/index.php/2022/12/21/cve-2022-2602-dirtycred-file-exploitation-applied-on-an-io_uring-uaf/)[Four Bytes of Power](https://a13xp0p0v.github.io/2021/02/09/CVE-2021-26708.html)02/09/21[CVE\-2021\-26708](https://nvd.nist.gov/vuln/detail/CVE-2021-26708)03/20/26[NAT Slipstreaming v2\.0](https://www.armis.com/research/nat-slipstreaming-v2-0/)01/26/21[CVE\-2020\-16043](https://nvd.nist.gov/vuln/detail/CVE-2020-16043)[CVE\-2021\-23961](https://nvd.nist.gov/vuln/detail/CVE-2021-23961)[CVE\-2021\-1799](https://nvd.nist.gov/vuln/detail/CVE-2021-1799)03/20/26[NAT Slipstreaming](https://sa.my/slipstream/)10/31/2003/20/26[https://www.armis.com/research/nat-slipstreaming-v2-0/](https://www.armis.com/research/nat-slipstreaming-v2-0/)[Towelroot](https://towelroot.com/)![](https://vulnerability.garden/assets/img/vulns/towelroot.png)05/26/14[CVE\-2014\-3153](https://nvd.nist.gov/vuln/detail/CVE-2014-3153)03/20/26[https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html](https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html)[https://appdome.github.io/2017/11/23/towelroot.html](https://appdome.github.io/2017/11/23/towelroot.html)[DoubleDirect](https://blog.zimperium.com/doubledirect-zimperium-discovers-full-duplex-icmp-redirect-attacks-in-the-wild/)11/20/1403/20/26[https://web.archive.org/web/20141121062809/https://blog.zimperium.com/doubledirect-zimperium-discovers-full-duplex-icmp-redirect-attacks-in-the-wild/](https://web.archive.org/web/20141121062809/https://blog.zimperium.com/doubledirect-zimperium-discovers-full-duplex-icmp-redirect-attacks-in-the-wild/)[Bashware](https://research.checkpoint.com/2017/beware-bashware-new-method-malware-bypass-security-solutions/)09/11/1703/20/26[CarsBlues](https://privacy4cars.com/can-my-car-be-hacked/default.aspx)![](https://vulnerability.garden/assets/img/vulns/carsblues.png)11/16/1803/20/26[https://web.archive.org/web/20190203161449/https://privacy4cars.com/can-my-car-be-hacked/default.aspx](https://web.archive.org/web/20190203161449/https://privacy4cars.com/can-my-car-be-hacked/default.aspx)[CloudImposer](https://www.tenable.com/blog/cloudimposer-executing-code-on-millions-of-google-servers-with-a-single-malicious-package)09/16/2403/20/26[SonarSnoop](https://arxiv.org/pdf/1808.10250v1)08/30/1803/20/26[DoubleAgent](http://cybellum.com/doubleagentzero-day-code-injection-and-persistence-technique/)![](https://vulnerability.garden/assets/img/vulns/doubleagent.jpg)03/22/1703/20/26[https://web.archive.org/web/20170804014812/http://cybellum.com/doubleagentzero-day-code-injection-and-persistence-technique/](https://web.archive.org/web/20170804014812/http://cybellum.com/doubleagentzero-day-code-injection-and-persistence-technique/)[https://github.com/Cybellum/DoubleAgent](https://github.com/Cybellum/DoubleAgent)[https://www.youtube.com/watch?v=-ZL9WSuDAqk](https://www.youtube.com/watch?v=-ZL9WSuDAqk)[ChoiceJacking](https://www.usenix.org/system/files/usenixsecurity25-draschbacher.pdf)08/14/25[CVE\-2024\-43085](https://nvd.nist.gov/vuln/detail/CVE-2024-43085)[CVE\-2024\-20900](https://nvd.nist.gov/vuln/detail/CVE-2024-20900)03/20/26[https://www.usenix.org/conference/usenixsecurity25/technical-sessions](https://www.usenix.org/conference/usenixsecurity25/technical-sessions)[ZeroFont](https://www.avanan.com/resources/zerofont-phishing-attack)06/13/1803/20/26[https://web.archive.org/web/20180620193642/https://www.avanan.com/resources/zerofont-phishing-attack](https://web.archive.org/web/20180620193642/https://www.avanan.com/resources/zerofont-phishing-attack)[BLACKNURSE](http://blacknurse.dk/)![](https://vulnerability.garden/assets/img/vulns/blacknurse.png)09/22/1603/20/26[https://web.archive.org/web/20160905103237/http://blacknurse.dk/](https://web.archive.org/web/20160905103237/http://blacknurse.dk/)[https://github.com/jedisct1/blacknurse](https://github.com/jedisct1/blacknurse)[https://www.netresec.com/?page=Blog&month=2016-11&post=BlackNurse-Denial-of-Service-Attack](https://www.netresec.com/?page=Blog&month=2016-11&post=BlackNurse-Denial-of-Service-Attack)[https://web.archive.org/web/20161114100747/http://soc.tdc.dk/blacknurse/blacknurse.pdf](https://web.archive.org/web/20161114100747/http://soc.tdc.dk/blacknurse/blacknurse.pdf)[Exfil Out&Look](https://www.varonis.com/blog/outlook-add-in-exfiltration?wvideo=vzydyz0z9s)![](https://vulnerability.garden/assets/img/vulns/exfiloutlook.png)01/28/2603/20/26[DNSBomb](https://dnsbomb.net/)![](https://vulnerability.garden/assets/img/vulns/dnsbomb.jpg)05/22/24[CVE\-2024\-33655](https://nvd.nist.gov/vuln/detail/CVE-2024-33655)03/20/26[ADFSjacking](https://pushsecurity.com/blog/phishing-with-active-directory-federation-services/)08/12/2503/20/26[Mockingjay](https://www.securityjoes.com/post/process-mockingjay-echoing-rwx-in-userland-to-achieve-code-execution)06/27/2303/20/26[https://web.archive.org/web/20230627130438/https://www.securityjoes.com/post/process-mockingjay-echoing-rwx-in-userland-to-achieve-code-execution](https://web.archive.org/web/20230627130438/https://www.securityjoes.com/post/process-mockingjay-echoing-rwx-in-userland-to-achieve-code-execution)[SpAIware](https://embracethered.com/blog/posts/2024/chatgpt-macos-app-persistent-data-exfiltration/)09/20/2403/20/26[Prying\-Eye](https://www.cequence.ai/blog/cq-prime-threat-research/prying-eye-vulnerability-direct-to-api-enumeration-attack-enables-snooping/)10/01/1903/20/26[Masque Attack](https://www.fireeye.com/blog/technical/cyber-exploits/2014/11/masque-attack-all-your-ios-apps-belong-to-us.html)11/10/14[CVE\-2014\-1276](https://nvd.nist.gov/vuln/detail/CVE-2014-1276)03/20/26[https://web.archive.org/web/20141111070707/https://www.fireeye.com/blog/technical/cyber-exploits/2014/11/masque-attack-all-your-ios-apps-belong-to-us.html](https://web.archive.org/web/20141111070707/https://www.fireeye.com/blog/technical/cyber-exploits/2014/11/masque-attack-all-your-ios-apps-belong-to-us.html)[\#NoFilter](https://www.deepinstinct.com/blog/nofilter-abusing-windows-filtering-platform-for-privilege-escalation)08/17/2303/20/26[https://github.com/deepinstinct/NoFilter](https://github.com/deepinstinct/NoFilter)[https://forum.defcon.org/node/245779](https://forum.defcon.org/node/245779)[StarJacking](https://checkmarx.com/blog/starjacking-making-your-new-open-source-package-popular-in-a-snap/)04/19/2203/20/26[MalDoc in PDF](https://blogs.jpcert.or.jp/en/2023/08/maldocinpdf.html)08/28/2303/20/26[EchoGram](https://www.hiddenlayer.com/research/echogram-the-hidden-vulnerability-undermining-ai-guardrails)11/13/2503/20/26[cookie sandwich](https://portswigger.net/research/stealing-httponly-cookies-with-the-cookie-sandwich-technique)01/22/2503/20/26[PolyShell](https://sansec.io/research/magento-polyshell)03/17/2603/20/26[GraphNinja, GraphGhost, GraphGoblin](https://trustedsec.com/blog/full-disclosure-a-third-and-fourth-azure-sign-in-log-bypass-found)03/19/2603/20/26[GhostHook](https://www.cyberark.com/resources/threat-research-blog/ghosthook-bypassing-patchguard-with-processor-trace-based-hooking)![](https://vulnerability.garden/assets/img/vulns/ghosthook.png)06/22/1703/19/26[https://thehackernews.com/2017/06/ghosthook-windows-10-hacking.html](https://thehackernews.com/2017/06/ghosthook-windows-10-hacking.html)[AtomBombing](https://blog.ensilo.com/atombombing-a-code-injection-that-bypasses-current-security-solutions)10/27/1603/19/26[https://web.archive.org/web/20191028182849/https://blog.ensilo.com/atombombing-a-code-injection-that-bypasses-current-security-solutions](https://web.archive.org/web/20191028182849/https://blog.ensilo.com/atombombing-a-code-injection-that-bypasses-current-security-solutions)[https://www.fortinet.com/blog/threat-research/atombombing-brand-new-code-injection-technique-for-windows](https://www.fortinet.com/blog/threat-research/atombombing-brand-new-code-injection-technique-for-windows)[Turning \(Page\) Tables](https://www.fortinet.com/blog/threat-research/turning-page-tables-bypassing-kerne-mitigations-successfully-escalate-privileges)08/09/18[CVE\-2015\-0057](https://nvd.nist.gov/vuln/detail/CVE-2015-0057)03/19/26[https://web.archive.org/web/20191028184211/https://cdn2.hubspot.net/hubfs/487909/Turning%20(Page)%20Tables_Slides.pdf](https://web.archive.org/web/20191028184211/https://cdn2.hubspot.net/hubfs/487909/Turning%20(Page)%20Tables_Slides.pdf)[HashJack](https://teamwin.in/hashjack-new-attack-technique-tricks-ai-browsers-using-a-simple/)11/26/2503/19/26[baseStriker](https://www.avanan.com/resources/basestriker-vulnerability-office-365)05/08/1803/19/26[https://web.archive.org/web/20180509190134/https://www.avanan.com/resources/basestriker-vulnerability-office-365](https://web.archive.org/web/20180509190134/https://www.avanan.com/resources/basestriker-vulnerability-office-365)[Pastejacking](https://github.com/dxa4481/Pastejacking)05/16/1603/19/26[https://security.love/Pastejacking/](https://security.love/Pastejacking/)[Ghost Calls](https://www.praetorian.com/blog/ghost-calls-abusing-web-conferencing-for-covert-command-control-part-1-of-2/)08/06/2503/19/26[Lies\-In\-The\-Loop / HITL Dialog Forging](https://checkmarx.com/zero-post/bypassing-ai-agent-defenses-with-lies-in-the-loop/)09/15/2503/19/26[https://checkmarx.com/zero-post/turning-ai-safeguards-into-weapons-with-hitl-dialog-forging/](https://checkmarx.com/zero-post/turning-ai-safeguards-into-weapons-with-hitl-dialog-forging/)[Cookie\-Bite](https://www.varonis.com/blog/cookie-bite)05/19/2503/19/26[Simjacker](https://www.enea.com/info/simjacker/)![](https://vulnerability.garden/assets/img/vulns/simjacker.png)10/03/1903/19/26[https://www.virusbulletin.com/conference/vb2019/programme/](https://www.virusbulletin.com/conference/vb2019/programme/)[MouseJack](https://www.mousejack.com/mousejack)![](https://vulnerability.garden/assets/img/vulns/mousejack.png)02/23/1603/19/26[Count\(er\) Strike](https://www.varonis.com/blog/counter-strike-servicenow)07/18/25[CVE\-2025\-3648](https://nvd.nist.gov/vuln/detail/CVE-2025-3648)03/19/26[SSID Stripping](https://aireye.tech/2021/09/13/the-ssid-stripping-vulnerability-when-you-dont-see-what-you-get/)09/13/21[CVE\-2021\-30800](https://nvd.nist.gov/vuln/detail/CVE-2021-30800)03/19/26[FedMUA](https://arxiv.org/pdf/2501.11848)01/21/2503/19/26[DEBA](https://arxiv.org/pdf/2403.13018)03/18/2403/19/26[Win\-DDoS / WinDoS](https://www.safebreach.com/blog/win-dos-epidemic-abusing-rpc-for-dos-and-ddos/)08/10/25[CVE\-2025\-32724](https://nvd.nist.gov/vuln/detail/CVE-2025-32724)[CVE\-2025\-26673](https://nvd.nist.gov/vuln/detail/CVE-2025-26673)[CVE\-2025\-49716](https://nvd.nist.gov/vuln/detail/CVE-2025-49716)[CVE\-2025\-49722](https://nvd.nist.gov/vuln/detail/CVE-2025-49722)03/19/26[NUIT](https://www.usenix.org/conference/usenixsecurity23/presentation/xia)08/10/2303/19/26[AuthQuake](https://www.oasis.security/blog/oasis-security-research-team-discovers-microsoft-azure-mfa-bypass)12/11/2403/19/26[https://pages.oasis.security/rs/106-PZV-596/images/oasis-security-authquake-mfa-bypass.pdf?version=0](https://pages.oasis.security/rs/106-PZV-596/images/oasis-security-authquake-mfa-bypass.pdf?version=0)[OWASSRF](https://www.crowdstrike.com/en-us/blog/owassrf-exploit-analysis-and-recommendations/)![](https://vulnerability.garden/assets/img/vulns/owassrf.png)12/20/22[CVE\-2022\-41080](https://nvd.nist.gov/vuln/detail/CVE-2022-41080)[CVE\-2022\-41082](https://nvd.nist.gov/vuln/detail/CVE-2022-41082)03/19/26[Reprompt](https://www.varonis.com/blog/reprompt)01/26/2603/19/26[Claudy Day](https://www.oasis.security/blog/claude-ai-prompt-injection-data-exfiltration-vulnerability)03/18/2603/19/26[The 9 Lives of Bleichenbacher's CAT](https://eyalro.net/project/cat.html)![](https://vulnerability.garden/assets/img/vulns/bleichenbacherscat.png)11/30/18[CVE\-2018\-12404](https://nvd.nist.gov/vuln/detail/CVE-2018-12404)[CVE\-2018\-19608](https://nvd.nist.gov/vuln/detail/CVE-2018-19608)[CVE\-2018\-16868](https://nvd.nist.gov/vuln/detail/CVE-2018-16868)[CVE\-2018\-16869](https://nvd.nist.gov/vuln/detail/CVE-2018-16869)[CVE\-2018\-16870](https://nvd.nist.gov/vuln/detail/CVE-2018-16870)03/19/26[CCS Injection](http://ccsinjection.lepidum.co.jp/)![](https://vulnerability.garden/assets/img/vulns/ccsinjection.png)06/09/19[CVE\-2014\-0224](https://nvd.nist.gov/vuln/detail/CVE-2014-0224)03/19/26[https://web.archive.org/web/20140610161439/http://ccsinjection.lepidum.co.jp/](https://web.archive.org/web/20140610161439/http://ccsinjection.lepidum.co.jp/)[BadChoice](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup.html#badchoice-stack-based-information-leak-cve-2020-12352)10/13/20[CVE\-2020\-12352](https://nvd.nist.gov/vuln/detail/CVE-2020-12352)03/18/26[BadKarma](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup.html#badkarma-heap-based-type-confusion-cve-2020-12351)10/13/20[CVE\-2020\-12351](https://nvd.nist.gov/vuln/detail/CVE-2020-12351)03/18/26[BadVibes](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup.html#badvibes-heap-based-buffer-overflow-cve-2020-24490)10/13/20[CVE\-2020\-24490](https://nvd.nist.gov/vuln/detail/CVE-2020-24490)03/18/26[StrandHogg](https://promon.io/security-news/the-strandhogg-vulnerability)![](https://vulnerability.garden/assets/img/vulns/strandhogg.png)12/03/1903/18/26[Empty Frames Flood](https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md)08/13/19[CVE\-2019\-9518](https://nvd.nist.gov/vuln/detail/CVE-2019-9518)03/18/26[RISK:STATION](https://www.midnightblue.nl/research/riskstation)![](https://vulnerability.garden/assets/img/vulns/riskstation.png)11/01/24[CVE\-2024\-10443](https://nvd.nist.gov/vuln/detail/CVE-2024-10443)03/18/26[BreakingWAF](https://www.zafran.io/resources/breaking-waf)12/03/2403/18/26[The Return of the WIZard](https://www.qualys.com/2019/06/05/cve-2019-10149/return-wizard-rce-exim.txt)09/06/20[CVE\-2019\-10149](https://nvd.nist.gov/vuln/detail/CVE-2019-10149)03/18/26[https://blog.qualys.com/vulnerabilities-threat-research/2019/06/14/exim-mta-vulnerability-the-return-of-the-wizard-cve-2019-10149](https://blog.qualys.com/vulnerabilities-threat-research/2019/06/14/exim-mta-vulnerability-the-return-of-the-wizard-cve-2019-10149)[Mutagen Astronomy](https://blog.qualys.com/vulnerabilities-threat-research/2026/02/02/mutagen-astronomy-discovery-to-kev)02/02/26[CVE\-2018\-14634](https://nvd.nist.gov/vuln/detail/CVE-2018-14634)03/18/26[Crit\.IX](https://www.armis.com/research/critix/#vulnerabilities)07/13/23[CVE\-2023\-22435](https://nvd.nist.gov/vuln/detail/CVE-2023-22435)03/18/26[IDEsaster](https://maccarita.com/posts/idesaster/)12/06/25[CVE\-2025\-49150](https://nvd.nist.gov/vuln/detail/CVE-2025-49150)[CVE\-2025\-53773](https://nvd.nist.gov/vuln/detail/CVE-2025-53773)[CVE\-2025\-54130](https://nvd.nist.gov/vuln/detail/CVE-2025-54130)03/18/26[ImageRunner](https://www.tenable.com/blog/imagerunner-a-privilege-escalation-vulnerability-impacting-gcp-cloud-run)04/01/2503/18/26[Stack Clash](https://blog.qualys.com/vulnerabilities-threat-research/2017/06/19/the-stack-clash)12/19/22[CVE\-2017\-1000364](https://nvd.nist.gov/vuln/detail/CVE-2017-1000364)03/18/26[Brash](https://github.com/jofpin/brash)10/28/2503/18/26[AVGater](https://bogner.sh/2017/11/avgater-getting-local-admin-by-abusing-the-anti-virus-quarantine/)![](https://vulnerability.garden/assets/img/vulns/avgater.png)11/10/1703/18/26[RoguePilot](https://orca.security/resources/blog/roguepilot-github-copilot-vulnerability/)02/16/2603/18/26[Fusée Gelée](https://www.ktemkin.com/post/fusee_gelee/)06/01/1803/18/26[https://misc.ktemkin.com/fusee_gelee_nvidia.pdf](https://misc.ktemkin.com/fusee_gelee_nvidia.pdf)[CursorJack](https://www.proofpoint.com/us/blog/threat-insight/cursorjack-weaponizing-deeplinks-exploit-cursor-ide)03/17/26[CVE\-2025\-54133](https://nvd.nist.gov/vuln/detail/CVE-2025-54133)[CVE\-2025\-54136](https://nvd.nist.gov/vuln/detail/CVE-2025-54136)03/18/26[chroot to root](https://www.stratascale.com/resource/cve-2025-32463-sudo-chroot-elevation-of-privilege/)06/30/25[CVE\-2025\-32463](https://nvd.nist.gov/vuln/detail/CVE-2025-32463)03/18/26[MadeYouReset](https://www.imperva.com/blog/madeyoureset-turning-http-2-server-against-itself/)08/13/25[CVE\-2025\-8671](https://nvd.nist.gov/vuln/detail/CVE-2025-8671)03/18/26[CitrixBleed 2](https://doublepulsar.com/citrixbleed-2-electric-boogaloo-cve-2025-5777-c7f5e349d206)![](https://vulnerability.garden/assets/img/vulns/citrixbleed2.png)06/24/25[CVE\-2025\-5777](https://nvd.nist.gov/vuln/detail/CVE-2025-5777)03/18/26[https://citrixbleed.com/](https://citrixbleed.com/)[https://web.archive.org/web/20250814180649/https://citrixbleed.com/](https://web.archive.org/web/20250814180649/https://citrixbleed.com/)[Z\-Shave](https://sensepost.com/cms/resources/conferences/2013/bh_zwave/Security%20Evaluation%20of%20Z-Wave_WP.pdf)05/23/18[CVE\-2013\-20003](https://nvd.nist.gov/vuln/detail/CVE-2013-20003)03/18/26[https://www.pentestpartners.com/security-blog/z-shave-exploiting-z-wave-downgrade-attacks/](https://www.pentestpartners.com/security-blog/z-shave-exploiting-z-wave-downgrade-attacks/)[https://web.archive.org/web/20150926031351/https://sensepost.com/cms/resources/conferences/2013/bh_zwave/Security%20Evaluation%20of%20Z-Wave_WP.pdf](https://web.archive.org/web/20150926031351/https://sensepost.com/cms/resources/conferences/2013/bh_zwave/Security%20Evaluation%20of%20Z-Wave_WP.pdf)[Thrangrycat](https://xn--538haa.fm/)![](https://vulnerability.garden/assets/img/vulns/thrangrycat.jpg)11/08/18[CVE\-2019\-1649](https://nvd.nist.gov/vuln/detail/CVE-2019-1649)[CVE\-2019\-1862](https://nvd.nist.gov/vuln/detail/CVE-2019-1862)03/18/26[Certifi\-gate](https://blog.checkpoint.com/research/certifigate/)08/06/1503/18/26[Faxploit](https://research.checkpoint.com/2018/sending-fax-back-to-the-dark-ages/)08/12/18[CVE\-2018\-5924](https://nvd.nist.gov/vuln/detail/CVE-2018-5924)[CVE\-2018\-5925](https://nvd.nist.gov/vuln/detail/CVE-2018-5925)03/18/26[Orpheus' Lyre](https://www.orpheus-lyre.info/)![](https://vulnerability.garden/assets/img/vulns/orpheuslyre.png)07/11/17[CVE\-2017\-8495](https://nvd.nist.gov/vuln/detail/CVE-2017-8495)[CVE\-2017\-11103](https://nvd.nist.gov/vuln/detail/CVE-2017-11103)[CVE\-2017\-10388](https://nvd.nist.gov/vuln/detail/CVE-2017-10388)03/18/26[RediShell](https://www.wiz.io/blog/wiz-research-redis-rce-cve-2025-49844)10/06/25[CVE\-2025\-49844](https://nvd.nist.gov/vuln/detail/CVE-2025-49844)03/18/26[ExplodingCan](https://www.cloudsek.com/threatintelligence/multiple-assets-still-vulnerable-to-archaic-rce-dubbed-explodingcan)03/22/22[CVE\-2017\-7269](https://nvd.nist.gov/vuln/detail/CVE-2017-7269)03/18/26[TPM\-Fail](https://tpm.fail/)![](https://vulnerability.garden/assets/img/vulns/tpmfail.svg)11/13/19[CVE\-2019\-11090](https://nvd.nist.gov/vuln/detail/CVE-2019-11090)[CVE\-2019\-16863](https://nvd.nist.gov/vuln/detail/CVE-2019-16863)03/18/26[NVIDIAScape](https://www.wiz.io/blog/nvidia-ai-vulnerability-cve-2025-23266-nvidiascape)07/17/25[CVE\-2025\-23266\)](https://nvd.nist.gov/vuln/detail/CVE-2025-23266))03/18/26 EternalSynergy 04/14/17[CVE\-2017\-0146](https://nvd.nist.gov/vuln/detail/CVE-2017-0146)[CVE\-2017\-0147](https://nvd.nist.gov/vuln/detail/CVE-2017-0147)03/18/26[https://www.exploit-db.com/exploits/43970](https://www.exploit-db.com/exploits/43970)EternalChampion 04/14/17[CVE\-2017\-0146](https://nvd.nist.gov/vuln/detail/CVE-2017-0146)[CVE\-2017\-0147](https://nvd.nist.gov/vuln/detail/CVE-2017-0147)03/18/26[https://www.microsoft.com/en-us/msrc/blog/2017/06/eternal-champion-exploit-analysis](https://www.microsoft.com/en-us/msrc/blog/2017/06/eternal-champion-exploit-analysis)[Flip Feng Shui](https://www.vusec.net/projects/flip-feng-shui/)08/10/1603/17/26[https://www.usenix.org/conference/usenixsecurity16/technical-sessions](https://www.usenix.org/conference/usenixsecurity16/technical-sessions)[TAA](https://mdsattacks.com/#ridl-ng)![](https://vulnerability.garden/assets/img/vulns/mds.svg)11/12/19[CVE\-2019\-11135](https://nvd.nist.gov/vuln/detail/CVE-2019-11135)03/17/26[https://architecture.fail/](https://architecture.fail/)[VRS](https://mdsattacks.com/#ridl-nng)![](https://vulnerability.garden/assets/img/vulns/mds.svg)10/01/19[CVE\-2020\-0548](https://nvd.nist.gov/vuln/detail/CVE-2020-0548)03/17/26[https://architecture.fail/](https://architecture.fail/)[L1DES](https://mdsattacks.com/#ridl-nng)![](https://vulnerability.garden/assets/img/vulns/mds.svg)10/25/19[CVE\-2020\-0549](https://nvd.nist.gov/vuln/detail/CVE-2020-0549)03/17/26[https://architecture.fail/](https://architecture.fail/)[DupeFS](https://comsec-files.ethz.ch/papers/dupefs_fast22.pdf)02/23/2203/17/26[https://www.usenix.org/system/files/fast22-bacs.pdf](https://www.usenix.org/system/files/fast22-bacs.pdf)[GLitch](https://www.vusec.net/projects/glitch/)05/07/18[CVE\-2018\-10229](https://nvd.nist.gov/vuln/detail/CVE-2018-10229)03/17/26[TagBleed](https://comsec-files.ethz.ch/papers/tagbleed_eurosp20.pdf)09/11/2003/17/26[Phantom](https://comsec.ethz.ch/research/microarch/inception/)07/12/22[CVE\-2022\-23825](https://nvd.nist.gov/vuln/detail/CVE-2022-23825)03/17/26[https://comsec.ethz.ch/wp-content/files/phantom_micro23.pdf](https://comsec.ethz.ch/wp-content/files/phantom_micro23.pdf)[SpyHammer](https://comsec-files.ethz.ch/papers/spyhammer_access24.pdf)06/02/2403/17/26[Drammer](https://www.vusec.net/projects/drammer/)10/03/16[CVE\-2016\-6728](https://nvd.nist.gov/vuln/detail/CVE-2016-6728)03/17/26[RISC\-H](https://comsec.ethz.ch/wp-content/files/risc-h_dramsec24.pdf)06/29/2403/17/26[https://dramsec.ethz.ch/2024.html](https://dramsec.ethz.ch/2024.html)[Posthammer](https://comsec.ethz.ch/research/dram/posthammer/)08/15/2503/17/26[https://www.usenix.org/conference/usenixsecurity25/technical-sessions](https://www.usenix.org/conference/usenixsecurity25/technical-sessions)[CAIN](https://comsec-files.ethz.ch/papers/woot15.pdf)08/12/15[CVE\-2015\-2877](https://nvd.nist.gov/vuln/detail/CVE-2015-2877)03/17/26[https://www.usenix.org/system/files/woot25_full-proceedings.pdf](https://www.usenix.org/system/files/woot25_full-proceedings.pdf)[ECCploit](https://www.vusec.net/projects/eccploit/)11/23/18[CVE\-2018\-18904](https://nvd.nist.gov/vuln/detail/CVE-2018-18904)[CVE\-2018\-18905](https://nvd.nist.gov/vuln/detail/CVE-2018-18905)[CVE\-2018\-18906](https://nvd.nist.gov/vuln/detail/CVE-2018-18906)03/17/26[Throwhammer](https://download.vusec.net/papers/throwhammer_atc18.pdf)07/11/1803/17/26[https://dl.acm.org/doi/10.5555/3277355.3277377](https://dl.acm.org/doi/10.5555/3277355.3277377)[Nethammer](https://arxiv.org/pdf/1805.04956)05/13/1803/17/26[TRRespass](https://www.vusec.net/projects/trrespass/)03/10/20[CVE\-2020\-10255](https://nvd.nist.gov/vuln/detail/CVE-2020-10255)03/17/26[https://github.com/vusec/trrespass](https://github.com/vusec/trrespass)[LnkMeMaybe](https://trustedsec.com/blog/lnkmemaybe-a-review-of-cve-2026-25185)03/12/26[CVE\-2026\-25185](https://nvd.nist.gov/vuln/detail/CVE-2026-25185)03/16/26[RegPwn](https://www.mdsec.co.uk/2026/03/rip-regpwn/)03/13/26[CVE\-2026\-24291](https://nvd.nist.gov/vuln/detail/CVE-2026-24291)03/13/26[pwn requests](https://securitylab.github.com/resources/github-actions-preventing-pwn-requests/)08/03/2103/12/26[CrackArmor](https://cdn2.qualys.com/advisory/2026/03/10/crack-armor.txt)03/12/2603/12/26[PageJack](https://i.blackhat.com/BH-US-24/Presentations/US24-Qian-PageJack-A-Powerful-Exploit-Technique-With-Page-Level-UAF-Thursday.pdf)08/07/24[CVE\-2022\-0995](https://nvd.nist.gov/vuln/detail/CVE-2022-0995)03/11/26[https://phrack.org/issues/71/13#article](https://phrack.org/issues/71/13#article)[https://github.com/Lotuhu/Page-UAF](https://github.com/Lotuhu/Page-UAF)[https://arxiv.org/pdf/2401.17618](https://arxiv.org/pdf/2401.17618)[https://phrack.org/issues/71/13#article](https://phrack.org/issues/71/13#article)[https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html](https://blog.quarkslab.com/pagejack-in-action-cve-2022-0995-exploit.html)[https://infosec.exchange/@linkersec/113014128287220269](https://infosec.exchange/@linkersec/113014128287220269)[PleaseFix](https://zenity.io/company-overview/newsroom/company-news/zenity-labs-discloses-pleasefix-perplexedagent-vulnerability)03/03/2603/10/26[LeakyLooker](https://www.tenable.com/blog/leakylooker-google-cloud-looker-studio-vulnerabilities)03/10/2603/10/26[InstallFix](https://pushsecurity.com/blog/installfix/)03/06/2603/09/26[ContextCrush](https://noma.security/blog/contextcrush-context7-the-mcp-server-vulnerability/)03/05/2603/09/26[ClawJacked](https://www.oasis.security/blog/openclaw-vulnerability)02/26/2603/02/26[AirSnitch](https://www.ndss-symposium.org/ndss-paper/airsnitch-demystifying-and-breaking-client-isolation-in-wi-fi-networks/)02/25/2602/26/26[Forcedleak](https://noma.security/blog/forcedleak-agent-risks-exposed-in-salesforce-agentforce/)![](https://vulnerability.garden/assets/img/vulns/forcedleak.png)09/25/2502/23/26[Metro4Shell](https://www.vulncheck.com/blog/metro4shell_eitw)02/03/26[CVE\-2025\-11953](https://nvd.nist.gov/vuln/detail/CVE-2025-11953)02/04/26[N8Scape](https://www.cyera.com/research/n8scape-pyodide-sandbox-escape-9-9-critical-post-auth-rce-in-n8n-cve-2025-68668)01/13/26[CVE\-2025\-68668](https://nvd.nist.gov/vuln/detail/CVE-2025-68668)02/02/26[GatewayToHeaven](https://omeramiad.com/posts/gatewaytoheaven-gcp-cross-tenant-vulnerability/)01/28/26[CVE\-2025\-13292](https://nvd.nist.gov/vuln/detail/CVE-2025-13292)02/02/26[Cellbreak](https://www.cyera.com/research/cellbreak-grists-pyodide-sandbox-escape-and-the-data-at-risk-blast-radius)01/26/2602/02/26[Holey Beep](https://holeybeep.ninja/)![](https://vulnerability.garden/assets/img/vulns/holeybeep.png)04/03/18[CVE\-2018\-0492](https://nvd.nist.gov/vuln/detail/CVE-2018-0492)01/21/26[ChainLeak](https://www.zafran.io/resources/chainleak-critical-ai-framework-vulnerabilities-expose-data-enable-cloud-takeover)01/20/26[CVE\-2026\-22218](https://nvd.nist.gov/vuln/detail/CVE-2026-22218)[CVE\-2026\-22219](https://nvd.nist.gov/vuln/detail/CVE-2026-22219)01/21/26[StackWarp](https://stackwarpattack.com/)![](https://vulnerability.garden/assets/img/vulns/stackwarpdark.svg)01/17/26[CVE\-2025\-29943](https://nvd.nist.gov/vuln/detail/CVE-2025-29943)01/20/26[CrashFix](https://www.huntress.com/blog/malicious-browser-extention-crashfix-kongtuke)01/16/2601/20/26[BodySnatcher](https://appomni.com/ao-labs/bodysnatcher-agentic-ai-security-vulnerability-in-servicenow/)01/13/26[CVE\-2025\-12420](https://nvd.nist.gov/vuln/detail/CVE-2025-12420)01/20/26[WhisperPair](https://whisperpair.eu/)01/15/26[CVE\-2025\-36911](https://nvd.nist.gov/vuln/detail/CVE-2025-36911)01/15/26[MongoBleed](https://www.varonis.com/blog/mongobleed-cve-2025-14847-memory-leak-vulnerability)12/29/25[CVE\-2025\-14847](https://nvd.nist.gov/vuln/detail/CVE-2025-14847)01/15/26[CodeBreach](https://www.wiz.io/blog/wiz-research-codebreach-vulnerability-aws-codebuild)01/15/2601/15/26[Chronomaly](https://faith2dxy.xyz/2026-01-03/cve_2025_38352_analysis_part_3/)01/02/26[CVE\-2025\-38352](https://nvd.nist.gov/vuln/detail/CVE-2025-38352)01/13/26[PerfektBlue](https://perfektblue.pcacybersecurity.com/)![](https://vulnerability.garden/assets/img/vulns/perfektblue.webp)07/10/25[CVE\-2024\-45431](https://nvd.nist.gov/vuln/detail/CVE-2024-45431)[CVE\-2024\-45432](https://nvd.nist.gov/vuln/detail/CVE-2024-45432)[CVE\-2024\-45433](https://nvd.nist.gov/vuln/detail/CVE-2024-45433)[CVE\-2024\-45434](https://nvd.nist.gov/vuln/detail/CVE-2024-45434)01/06/26[https://pcacybersecurity.com/resources/advisory/perfekt-blue](https://pcacybersecurity.com/resources/advisory/perfekt-blue)[GeminiJack](https://noma.security/blog/geminijack-google-gemini-zero-click-vulnerability/)12/08/2512/18/25[ConsentFix](https://pushsecurity.com/blog/consentfix)12/11/2512/18/25[https://www.bleepingcomputer.com/news/security/consentfix-debrief-insights-from-the-new-oauth-phishing-attack/](https://www.bleepingcomputer.com/news/security/consentfix-debrief-insights-from-the-new-oauth-phishing-attack/)[https://www.bleepingcomputer.com/news/security/consentfix-v3-attacks-target-azure-with-automated-oauth-abuse/](https://www.bleepingcomputer.com/news/security/consentfix-v3-attacks-target-azure-with-automated-oauth-abuse/)[Zombie Workflows](https://www.sonarsource.com/blog/zombie-workflows-a-github-actions-horror-story/)12/09/2512/10/25[PromptPwnd](https://www.aikido.dev/blog/promptpwnd-github-actions-ai-agents)12/04/2512/10/25[React2Shell](https://react2shell.com/)12/03/25[CVE\-2025\-55182](https://nvd.nist.gov/vuln/detail/CVE-2025-55182)[CVE\-2025\-66478](https://nvd.nist.gov/vuln/detail/CVE-2025-66478)12/09/25[Whisper Leak](https://www.microsoft.com/en-us/security/blog/2025/11/07/whisper-leak-a-novel-side-channel-cyberattack-on-remote-language-models/)11/07/2511/12/25[Meow Attack](https://x.com/MayhemDayOne/status/1285303164116389890)07/20/2011/12/25[https://www.levelblue.com/blogs/spiderlabs-blog/the-cats-out-of-the-bag-a-meow-attack-data-corruption-campaign-simulation-via-mad-cat](https://www.levelblue.com/blogs/spiderlabs-blog/the-cats-out-of-the-bag-a-meow-attack-data-corruption-campaign-simulation-via-mad-cat)[Shadow Escape](https://www.operant.ai/art-kubed/shadow-escape)10/29/2510/29/25[TARmageddon](https://edera.dev/stories/tarmageddon)![](https://vulnerability.garden/assets/img/vulns/tarmageddon.png)10/21/25[CVE\-2025\-62518](https://nvd.nist.gov/vuln/detail/CVE-2025-62518)10/28/25[SessionReaper](https://sansec.io/research/sessionreaper)10/22/25[CVE\-2025\-54236](https://nvd.nist.gov/vuln/detail/CVE-2025-54236)10/28/25[RMPocalypse](https://rmpocalypse.github.io/)![](https://vulnerability.garden/assets/img/vulns/rmpocalypse.png)10/13/25[CVE\-2025\-0033](https://nvd.nist.gov/vuln/detail/CVE-2025-0033)10/15/25[https://github.com/rmpocalypse](https://github.com/rmpocalypse)[Pixnapping](https://www.pixnapping.com/)![](https://vulnerability.garden/assets/img/vulns/pixnapping.svg)09/08/25[CVE\-2025\-48561](https://nvd.nist.gov/vuln/detail/CVE-2025-48561)10/15/25[CamoLeak](https://www.legitsecurity.com/blog/camoleak-critical-github-copilot-vulnerability-leaks-private-source-code)10/08/2510/15/25[Mic\-E\-Mouse](https://sites.google.com/view/mic-e-mouse)11/17/2510/07/25[https://cwe.mitre.org/data/definitions/1300.html](https://cwe.mitre.org/data/definitions/1300.html)[https://github.com/AICPS/Mic-E-Mouse](https://github.com/AICPS/Mic-E-Mouse)[ShadowLeak](https://www.radware.com/security/threat-advisories-and-attack-reports/shadowleak/)09/18/2510/01/25[Phoenix](https://comsec.ethz.ch/research/dram/phoenix/)![](https://vulnerability.garden/assets/img/vulns/phoenix.png)09/17/25[CVE\-2025\-6202](https://nvd.nist.gov/vuln/detail/CVE-2025-6202)10/01/25[NICraft](https://cispa.saarland/group/rossow/papers/nicraft-esorics2025.pdf)09/09/2510/01/25[VMScape](https://comsec.ethz.ch/research/microarch/vmscape-exposing-and-exploiting-incomplete-branch-predictor-isolation-in-cloud-environments/)09/11/25[CVE\-2025\-40300](https://nvd.nist.gov/vuln/detail/CVE-2025-40300)09/17/25[SPADE](https://cirriustech.co.uk/blog/announcing-spade/)![](https://vulnerability.garden/assets/img/vulns/spade.png)09/10/2509/17/25[OneFlip](https://www.usenix.org/system/files/usenixsecurity25-li-xiang.pdf)08/15/2509/17/25[ECScape](https://www.sweet.security/blog/ecscape-understanding-iam-privilege-boundaries-in-amazon-ecs)08/06/2509/17/25[AgentFlayer](https://zenity.io/research/agentflayer-vulnerabilities)08/06/2509/17/25[https://25622759.fs1.hubspotusercontent-eu1.net/hubfs/25622759/ZenityLabsAgentFlayerOverview.pdf](https://25622759.fs1.hubspotusercontent-eu1.net/hubfs/25622759/ZenityLabsAgentFlayerOverview.pdf)[Trigon](https://alfiecg.uk/2025/07/16/Trigon.html)06/16/25[CVE\-2023\-32434](https://nvd.nist.gov/vuln/detail/CVE-2023-32434)07/31/25[https://theapplewiki.com/wiki/Trigon](https://theapplewiki.com/wiki/Trigon)ToolShell 07/17/25[CVE\-2025\-53770](https://nvd.nist.gov/vuln/detail/CVE-2025-53770)[CVE‑2025‑53771](https://nvd.nist.gov/vuln/detail/CVE%E2%80%912025%E2%80%9153771)07/31/25[https://www.welivesecurity.com/en/eset-research/toolshell-an-all-you-can-eat-buffet-for-threat-actors/](https://www.welivesecurity.com/en/eset-research/toolshell-an-all-you-can-eat-buffet-for-threat-actors/)[https://web.archive.org/web/20250720065053/https://msrc.microsoft.com/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770/](https://web.archive.org/web/20250720065053/https://msrc.microsoft.com/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770/)[https://www.trellix.com/blogs/research/toolshell-unleashed-decoding-the-sharepoint-attack-chain/#:~:text=Exploitation%20timeline,The%20original%20demonstration%20combined:](https://www.trellix.com/blogs/research/toolshell-unleashed-decoding-the-sharepoint-attack-chain/#:~:text=Exploitation%20timeline,The%20original%20demonstration%20combined:)[TapTrap](https://taptrap.click/)![](https://vulnerability.garden/assets/img/vulns/taptrap.png)07/06/25[CVE\-2025\-1939](https://nvd.nist.gov/vuln/detail/CVE-2025-1939)[CVE\-2025\-3067](https://nvd.nist.gov/vuln/detail/CVE-2025-3067)07/09/25[Opossum Attack](https://opossum-attack.com/)![](https://vulnerability.garden/assets/img/vulns/opossum.png)07/08/25[CVE\-2025\-49812](https://nvd.nist.gov/vuln/detail/CVE-2025-49812)07/09/25[LoopyTicket](https://www.guidepointsecurity.com/blog/the-birth-and-death-of-loopyticket/)06/27/25[CVE\-2025\-33073](https://nvd.nist.gov/vuln/detail/CVE-2025-33073)07/09/25[FileFix](https://web.archive.org/web/20250623161755/https://mrd0x.com/filefix-clickfix-alternative/)06/23/2506/24/25[https://web.archive.org/web/20250623161755/https://mrd0x.com/filefix-clickfix-alternative/](https://web.archive.org/web/20250623161755/https://mrd0x.com/filefix-clickfix-alternative/)[The Grafana Ghost](https://www.ox.security/blog/confirmed-critical-the-grafana-ghost-exposes-36-of-public-facing-instances-to-malicious-account-takeover/)06/15/25[CVE\-2025\-4123](https://nvd.nist.gov/vuln/detail/CVE-2025-4123)06/23/25[SmartAttack](https://arxiv.org/html/2506.08866v1)06/10/2506/23/25[https://www.covertchannels.com/](https://www.covertchannels.com/)[Hydroph0bia](https://coderush.me/hydroph0bia-part2/)![](https://vulnerability.garden/assets/img/vulns/hydroph0bia.png)06/12/25[CVE\-2025\-4275](https://nvd.nist.gov/vuln/detail/CVE-2025-4275)06/23/25[GerriScary](https://www.tenable.com/blog/gerriscary-hacking-the-supply-chain-of-popular-google-products-chromiumos-chromium-bazel-dart)06/17/25[CVE\-2025\-1568](https://nvd.nist.gov/vuln/detail/CVE-2025-1568)06/23/25[EchoLeak](https://www.aim.security/lp/aim-labs-echoleak-blogpost)06/11/2506/23/25[https://web.archive.org/web/20250611174716/https://www.aim.security/lp/aim-labs-echoleak-blogpost](https://web.archive.org/web/20250611174716/https://www.aim.security/lp/aim-labs-echoleak-blogpost)[Echo Chamber](https://neuraltrust.ai/blog/echo-chamber-context-poisoning-jailbreak)06/23/2506/23/25[DanaBleed](https://www.zscaler.com/blogs/security-research/danableed-danabot-c2-server-memory-leak-bug)![](https://vulnerability.garden/assets/img/vulns/danableed.png)06/09/2506/23/25[Crowhammer](https://eprint.iacr.org/2025/1042)06/04/2506/23/25[AgentSmith](https://noma.security/blog/how-an-ai-agent-vulnerability-in-langsmith-could-lead-to-stolen-api-keys-and-hijacked-llm-responses/)06/17/2506/23/25[NICKNAME](https://iverify.io/blog/iverify-uncovers-evidence-of-zero-click-mobile-exploitation-in-the-us)06/05/2506/09/25[BadSuccessor](https://www.akamai.com/blog/security-research/abusing-dmsa-for-privilege-escalation-in-active-directory)05/21/25[CVE\-2025\-53779](https://nvd.nist.gov/vuln/detail/CVE-2025-53779)06/09/25[ESXicape](https://doublepulsar.com/use-one-virtual-machine-to-own-them-all-active-exploitation-of-esxicape-0091ccc5bdfc)![](https://vulnerability.garden/assets/img/vulns/esxicape.png)03/05/25[CVE\-2025–22224](https://nvd.nist.gov/vuln/detail/CVE-2025%E2%80%9322224)[CVE\-2025–22225](https://nvd.nist.gov/vuln/detail/CVE-2025%E2%80%9322225)[CVE\-2025–22226](https://nvd.nist.gov/vuln/detail/CVE-2025%E2%80%9322226)05/15/25[https://cyberplace.social/@GossiTheDog/114105463027700916](https://cyberplace.social/@GossiTheDog/114105463027700916)[https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390](https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390)[https://techcrunch.com/2025/03/05/broadcom-urges-vmware-customers-to-patch-emergency-zero-day-bugs-under-active-exploitation/#:~:text=Broadcom%20did%20not%20share%20any,t%20respond%20by%20press%20time.](https://techcrunch.com/2025/03/05/broadcom-urges-vmware-customers-to-patch-emergency-zero-day-bugs-under-active-exploitation/#:~:text=Broadcom%20did%20not%20share%20any,t%20respond%20by%20press%20time.)[Branch Privilege Injection](https://comsec.ethz.ch/research/microarch/branch-privilege-injection/)08/07/25[CVE\-2024\-45332](https://nvd.nist.gov/vuln/detail/CVE-2024-45332)05/14/25[Fontleak](https://adragos.ro/fontleak/)04/16/2505/07/25[ConfusedComposer](https://www.tenable.com/blog/confusedcomposer-a-privilege-escalation-vulnerability-impacting-gcp-composer)04/22/2504/30/25[OuttaTune](https://cirriustech.co.uk/blog/outtatune-vulnerability/)04/28/2504/29/25[Airborne](https://www.oligo.security/blog/airborne)![](https://vulnerability.garden/assets/img/vulns/airborne.png)04/29/25[CVE\-2025\-24252](https://nvd.nist.gov/vuln/detail/CVE-2025-24252)[CVE\-2025\-24132](https://nvd.nist.gov/vuln/detail/CVE-2025-24132)[CVE\-2025\-24271](https://nvd.nist.gov/vuln/detail/CVE-2025-24271)04/29/25[Policy Puppetry Attack](https://www.hiddenlayer.com/research/novel-universal-bypass-for-all-major-llms)04/24/2504/28/25[line jumping](https://blog.trailofbits.com/2025/04/21/jumping-the-line-how-mcp-servers-can-attack-you-before-you-ever-use-them/)04/21/2504/22/25[SUN:DOWN](https://www.forescout.com/research-labs/sun-down-a-dark-side-to-solar-energy-grids/)03/27/25[CVE\-2024\-50684](https://nvd.nist.gov/vuln/detail/CVE-2024-50684)[CVE\-2024\-50698](https://nvd.nist.gov/vuln/detail/CVE-2024-50698)03/28/25[IngressNightmare](https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities)03/24/25[CVE\-2025\-1974](https://nvd.nist.gov/vuln/detail/CVE-2025-1974)[CVE\-2025\-1097](https://nvd.nist.gov/vuln/detail/CVE-2025-1097)[CVE\-2025\-1098](https://nvd.nist.gov/vuln/detail/CVE-2025-1098)[CVE\-2025\-24514](https://nvd.nist.gov/vuln/detail/CVE-2025-24514)03/25/25[Rules File Backdoor](https://www.pillar.security/blog/new-vulnerability-in-github-copilot-and-cursor-how-hackers-can-weaponize-code-agents)03/18/2503/19/25[SAMLStorm](https://workos.com/blog/samlstorm)03/14/25[CVE\-2025\-29775](https://nvd.nist.gov/vuln/detail/CVE-2025-29775)[CVE\-2025\-29774](https://nvd.nist.gov/vuln/detail/CVE-2025-29774)03/17/25[Evilloader](https://cti.monster/blog/2025/03/04/evilloader.html)03/04/25[CVE\-2024\-7014](https://nvd.nist.gov/vuln/detail/CVE-2024-7014)03/06/25[EntrySign](https://bughunters.google.com/blog/zen-and-the-art-of-microcode-hacking)![](https://vulnerability.garden/assets/img/vulns/entrysign.png)09/25/24[CVE\-2024\-56161](https://nvd.nist.gov/vuln/detail/CVE-2024-56161)03/06/25[https://github.com/google/security-research/security/advisories/GHSA-4xq7-4mgh-gp6w](https://github.com/google/security-research/security/advisories/GHSA-4xq7-4mgh-gp6w)[Wallbleed](https://gfw.report/publications/ndss25/en/)02/25/2502/27/25[whoAMI](https://securitylabs.datadoghq.com/articles/whoami-a-cloud-image-name-confusion-attack/)02/12/2502/12/25[SLAP](https://predictors.fail/#slap)![](https://vulnerability.garden/assets/img/vulns/slap.svg)01/28/2501/28/25[https://architecture.fail/](https://architecture.fail/)[Last Challenge Attack](https://eprint.iacr.org/2024/398)03/04/2401/28/25[FLOP](https://predictors.fail/#flop)![](https://vulnerability.garden/assets/img/vulns/flop.svg)01/28/2501/28/25[https://architecture.fail/](https://architecture.fail/)[Clone2Leak](https://flatt.tech/research/posts/clone2leak-your-git-credentials-belong-to-us/)01/26/25[CVE\-2025\-23040](https://nvd.nist.gov/vuln/detail/CVE-2025-23040)[CVE\-2024\-50338](https://nvd.nist.gov/vuln/detail/CVE-2024-50338)[CVE\-2024\-53263](https://nvd.nist.gov/vuln/detail/CVE-2024-53263)[CVE\-2024\-52006](https://nvd.nist.gov/vuln/detail/CVE-2024-52006)[CVE\-2024\-53858](https://nvd.nist.gov/vuln/detail/CVE-2024-53858)01/28/25[Ransacked](https://cellularsecurity.org/ransacked)10/16/24[CVE\-2024\-24445](https://nvd.nist.gov/vuln/detail/CVE-2024-24445)[CVE\-2024\-24450](https://nvd.nist.gov/vuln/detail/CVE-2024-24450)[CVE\-2024\-24447](https://nvd.nist.gov/vuln/detail/CVE-2024-24447)[CVE\-2024\-24451](https://nvd.nist.gov/vuln/detail/CVE-2024-24451)[CVE\-2024\-24444](https://nvd.nist.gov/vuln/detail/CVE-2024-24444)\.\.\.*and 2 more*01/27/25[https://www.sigsac.org/ccs/CCS2024/program/schedule.html](https://www.sigsac.org/ccs/CCS2024/program/schedule.html)[CrashXTS](https://dfir.ru/2025/01/20/cve-2025-21210-aka-crashxts-a-practical-randomization-attack-against-bitlocker/)01/20/25[CVE\-2025\-21210](https://nvd.nist.gov/vuln/detail/CVE-2025-21210)01/21/25[WorstFit](https://blog.orange.tw/posts/2025-01-worstfit-unveiling-hidden-transformers-in-windows-ansi/)01/10/25[CVE\-2024\-4577](https://nvd.nist.gov/vuln/detail/CVE-2024-4577)[CVE\-2024\-49026](https://nvd.nist.gov/vuln/detail/CVE-2024-49026)[CVE\-2024\-45720](https://nvd.nist.gov/vuln/detail/CVE-2024-45720)[CVE\-2024\-8067](https://nvd.nist.gov/vuln/detail/CVE-2024-8067)01/10/25[KernelSnitch](https://lukasmaar.github.io/papers/ndss25-kernelsnitch.pdf)02/24/2501/05/25[https://www.youtube.com/watch?v=qQfraHsHkGw](https://www.youtube.com/watch?v=qQfraHsHkGw)[https://github.com/isec-tugraz/KernelSnitch](https://github.com/isec-tugraz/KernelSnitch)[Bad Likert Judge](https://unit42.paloaltonetworks.com/multi-turn-technique-jailbreaks-llms/)12/31/2401/05/25[SysBumps](https://dl.acm.org/doi/pdf/10.1145/3658644.3690189)10/15/2401/02/25[LDAPNightmare](https://www.safebreach.com/blog/ldapnightmare-safebreach-labs-publishes-first-proof-of-concept-exploit-for-cve-2024-49113/)01/01/25[CVE\-2024\-49113](https://nvd.nist.gov/vuln/detail/CVE-2024-49113)01/02/25[DoubleClickjacking](https://www.evil.blog/2024/12/doubleclickjacking-what.html)12/15/2401/02/25[Timeroasting](https://www.secura.com/blog/timeroasting-attacking-trust-accounts-in-active-directory)03/01/2312/20/24[https://web.archive.org/web/20230315024657/https://www.secura.com/blog/timeroasting-attacking-trust-accounts-in-active-directory](https://web.archive.org/web/20230315024657/https://www.secura.com/blog/timeroasting-attacking-trust-accounts-in-active-directory)[BadRAM](https://badram.eu/)![](https://vulnerability.garden/assets/img/vulns/badram.svg)12/10/24[CVE\-2024\-21944](https://nvd.nist.gov/vuln/detail/CVE-2024-21944)12/11/24[DaMAgeCard](https://swarm.ptsecurity.com/new-dog-old-tricks-damagecard-attack-targets-memory-directly-thru-sd-card-reader/)![](https://vulnerability.garden/assets/img/vulns/damagecard.png)12/05/2412/09/24[https://web.archive.org/web/20241205173059/https://swarm.ptsecurity.com/new-dog-old-tricks-damagecard-attack-targets-memory-directly-thru-sd-card-reader/](https://web.archive.org/web/20241205173059/https://swarm.ptsecurity.com/new-dog-old-tricks-damagecard-attack-targets-memory-directly-thru-sd-card-reader/)[Nearest Neighbor Attack](https://www.volexity.com/blog/2024/11/22/the-nearest-neighbor-attack-how-a-russian-apt-weaponized-nearby-wi-fi-networks-for-covert-access/)11/22/24[CVE\-2022\-38028](https://nvd.nist.gov/vuln/detail/CVE-2022-38028)12/02/24[Flowbreaking](https://www.knostic.ai/blog/flowbreaking-ai-attack)11/26/2412/02/24[badmalloc](https://gergelykalman.com/badmalloc-CVE-2023-32428-a-macos-lpe.html)11/24/24[CVE\-2023\-32428](https://nvd.nist.gov/vuln/detail/CVE-2023-32428)12/02/24[Ghost Tap](https://www.threatfabric.com/blogs/ghost-tap-new-cash-out-tactic-with-nfc-relay)11/20/2411/20/24[ModeLeak](https://unit42.paloaltonetworks.com/privilege-escalation-llm-model-exfil-vertex-ai/)11/12/2411/12/24[CrossBarking](https://guard.io/labs/crossbarking-exploiting-a-0-day-opera-vulnerability-with-a-cross-browser-extension-store-attack)10/30/2411/01/24[Deceptive Delight](https://unit42.paloaltonetworks.com/jailbreak-llms-through-camouflage-distraction/)10/23/2410/28/24[FortiJump](https://doublepulsar.com/burning-zero-days-fortijump-fortimanager-vulnerability-used-by-nation-state-in-espionage-via-msps-c79abec59773)![](https://vulnerability.garden/assets/img/vulns/fortijump.png)10/22/24[CVE\-2024–47575](https://nvd.nist.gov/vuln/detail/CVE-2024%E2%80%9347575)10/24/24[https://labs.watchtowr.com/hop-skip-fortijump-fortijumphigher-cve-2024-23113-cve-2024-47575/](https://labs.watchtowr.com/hop-skip-fortijump-fortijumphigher-cve-2024-23113-cve-2024-47575/)[ConfusedPilot](https://www.symmetry-systems.com/blog/confused-pilot-attack/)10/13/2410/22/24 ClickFix 04/17/2410/21/24[https://www.proofpoint.com/us/blog/threat-insight/around-world-90-days-state-sponsored-actors-try-clickfix](https://www.proofpoint.com/us/blog/threat-insight/around-world-90-days-state-sponsored-actors-try-clickfix)[https://www.microsoft.com/en-us/security/blog/2025/08/21/think-before-you-clickfix-analyzing-the-clickfix-social-engineering-technique/](https://www.microsoft.com/en-us/security/blog/2025/08/21/think-before-you-clickfix-analyzing-the-clickfix-social-engineering-technique/)[https://blog.sekoia.io/clickfix-tactic-the-phantom-meet/](https://blog.sekoia.io/clickfix-tactic-the-phantom-meet/)[Ticket Trick](https://medium.com/intigriti/how-i-hacked-hundreds-of-companies-through-their-helpdesk-b7680ddc2d4c)![](https://vulnerability.garden/assets/img/vulns/tickettrick.png)09/10/1710/18/24[HM Surf](https://www.microsoft.com/en-us/security/blog/2024/10/17/new-macos-vulnerability-hm-surf-could-lead-to-unauthorized-data-access/)10/17/24[CVE\-2024\-44133](https://nvd.nist.gov/vuln/detail/CVE-2024-44133)10/17/24[TDXdown](https://uzl-its.github.io/tdxdown/)![](https://vulnerability.garden/assets/img/vulns/tdxdown.png)10/15/24[CVE\-2024\-27457](https://nvd.nist.gov/vuln/detail/CVE-2024-27457)[CVE\-2024\-1544](https://nvd.nist.gov/vuln/detail/CVE-2024-1544)10/15/24[FluidFaults](https://www.nozominetworks.com/blog/37-vulnerabilities-in-openflow-libfluid-msg-parsing-library)06/08/24[CVE\-2022\-2970](https://nvd.nist.gov/vuln/detail/CVE-2022-2970)[CVE\-2022\-2971](https://nvd.nist.gov/vuln/detail/CVE-2022-2971)[CVE\-2022\-2972](https://nvd.nist.gov/vuln/detail/CVE-2022-2972)[CVE\-2022\-2973](https://nvd.nist.gov/vuln/detail/CVE-2022-2973)[CVE\-2022\-38138](https://nvd.nist.gov/vuln/detail/CVE-2022-38138)10/15/24[https://thehackernews.com/2024/10/researchers-uncover-major-security.html](https://thehackernews.com/2024/10/researchers-uncover-major-security.html)[CounterSEVeillance](https://stefangast.eu/papers/counterseveillance.pdf)10/14/2410/15/24[https://infosec.exchange/@notbobbytables/113306608059803998](https://infosec.exchange/@notbobbytables/113306608059803998)[DRAY:BREAK](https://www.forescout.com/press-releases/14-vulnerabilities-draytek-routers/)10/02/24[CVE\-2023\-47254](https://nvd.nist.gov/vuln/detail/CVE-2023-47254)[CVE\-2023\-31447](https://nvd.nist.gov/vuln/detail/CVE-2023-31447)[CVE\-2022\-32548](https://nvd.nist.gov/vuln/detail/CVE-2022-32548)[CVE\-2021\-43118](https://nvd.nist.gov/vuln/detail/CVE-2021-43118)[CVE\-2021\-42911](https://nvd.nist.gov/vuln/detail/CVE-2021-42911)\.\.\.*and 2 more*10/04/24[Kart"LAN"Pwn](https://github.com/chadhyatt/kartlanpwn)09/30/24[CVE\-2024\-45200](https://nvd.nist.gov/vuln/detail/CVE-2024-45200)10/01/24[Skeleton Cookie](https://blog.amberwolf.com/blog/2024/september/skeleton-cookie-breaking-into-safeguard-with-cve-2024-45488/)09/17/24[CVE\-2024\-45488](https://nvd.nist.gov/vuln/detail/CVE-2024-45488)09/25/24[ExpRace](https://www.usenix.org/conference/usenixsecurity21/presentation/lee-yoochan)08/12/21[CVE\-2019\-1999](https://nvd.nist.gov/vuln/detail/CVE-2019-1999)[CVE\-2019\-2025](https://nvd.nist.gov/vuln/detail/CVE-2019-2025)09/25/24[GAZEploit](https://sites.google.com/view/Gazeploit/)09/12/2409/16/24[Revival Hijack](https://jfrog.com/blog/revival-hijack-pypi-hijack-technique-exploited-22k-packages-at-risk/)09/04/2409/13/24[EUCLEAK](https://ninjalab.io/eucleak/)09/03/24[CVE\-2024\-45678](https://nvd.nist.gov/vuln/detail/CVE-2024-45678)09/13/24[Fake Potato](https://decoder.cloud/2024/08/02/the-fake-potato/)08/02/24[CVE\-2024\-38100](https://nvd.nist.gov/vuln/detail/CVE-2024-38100)08/28/24[ALBeast](https://www.miggo.io/post/albeast-security-advisory-alb-vulnerability)08/20/2408/21/24[WireServing](https://cloud.google.com/blog/topics/threat-intelligence/escalating-privileges-azure-kubernetes-services/)08/19/2408/19/24[copy2pwn](https://www.zerodayinitiative.com/blog/2024/8/14/cve-2024-38213-copy2pwn-exploit-evades-windows-web-protections)08/15/24[CVE\-2024\-38213](https://nvd.nist.gov/vuln/detail/CVE-2024-38213)08/17/24[ArtiPACKED](https://unit42.paloaltonetworks.com/github-repo-artifacts-leak-tokens/)08/13/2408/17/24[Bucket Monopoly](https://www.aquasec.com/blog/bucket-monopoly-breaching-aws-accounts-through-shadow-resources/)08/09/2408/13/24[ASLRn’t](https://blog.zolutal.io/aslrnt/)01/08/2408/12/24[GhostWrite](https://ghostwriteattack.com/)![](https://vulnerability.garden/assets/img/vulns/ghostwrite.svg)08/01/24[CVE\-2024\-44067](https://nvd.nist.gov/vuln/detail/CVE-2024-44067)08/09/24[Sinkclose](https://www.ioactive.com/event/def-con-talk-amd-sinkclose-universal-ring-2-privilege-escalation/)08/09/24[CVE\-2023\-31315](https://nvd.nist.gov/vuln/detail/CVE-2023-31315)08/09/24[https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7014.html](https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7014.html)[https://www.wired.com/story/amd-chip-sinkclose-flaw/](https://www.wired.com/story/amd-chip-sinkclose-flaw/)[MadLicense](https://sites.google.com/site/zhiniangpeng/blogs/MadLicense)08/09/24[CVE\-2024\-38077](https://nvd.nist.gov/vuln/detail/CVE-2024-38077)[CVE\-2024\-38076](https://nvd.nist.gov/vuln/detail/CVE-2024-38076)[CVE\-2024\-38074](https://nvd.nist.gov/vuln/detail/CVE-2024-38074)[CVE\-2024\-38073](https://nvd.nist.gov/vuln/detail/CVE-2024-38073)[CVE\-2024\-38072](https://nvd.nist.gov/vuln/detail/CVE-2024-38072)\.\.\.*and 2 more*08/09/24[0\.0\.0\.0 Day](https://www.oligo.security/blog/0-0-0-0-day-exploiting-localhost-apis-from-the-browser)08/07/2408/09/24[Shadow Resources](https://blackhat.com/us-24/briefings/schedule/#breaching-aws-accounts-through-shadow-resources-39706)08/07/2408/07/24[https://i.blackhat.com/BH-US-24/Presentations/US24-Kadkoda-Breaching-AWS-Accounts-Through-Shadow-Resources-Wednesday.pdf?_gl=1*9cf3b8*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQyMzI5NDIkbzYkZzEkdDE3NzQyMzMxMjUkajYwJGwwJGgw](https://i.blackhat.com/BH-US-24/Presentations/US24-Kadkoda-Breaching-AWS-Accounts-Through-Shadow-Resources-Wednesday.pdf?_gl=1*9cf3b8*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQyMzI5NDIkbzYkZzEkdDE3NzQyMzMxMjUkajYwJGwwJGgw)[https://www.techtarget.com/searchsecurity/news/366602412/Researchers-unveil-AWS-vulnerabilities-shadow-resource-vector](https://www.techtarget.com/searchsecurity/news/366602412/Researchers-unveil-AWS-vulnerabilities-shadow-resource-vector)[SLUBStick](https://www.usenix.org/conference/usenixsecurity24/presentation/maar-slubstick)![](https://vulnerability.garden/assets/img/vulns/slubstick.png)06/17/24[CVE\-2021\-3492](https://nvd.nist.gov/vuln/detail/CVE-2021-3492)[CVE\-2021\-4157](https://nvd.nist.gov/vuln/detail/CVE-2021-4157)[CVE\-2022\-0995](https://nvd.nist.gov/vuln/detail/CVE-2022-0995)[CVE\-2022\-2588](https://nvd.nist.gov/vuln/detail/CVE-2022-2588)[CVE\-2023\-3609](https://nvd.nist.gov/vuln/detail/CVE-2023-3609)08/05/24[https://github.com/isec-tugraz/SLUBStick](https://github.com/isec-tugraz/SLUBStick)[Sitting Duck](https://sittingduck.fail/)![](https://vulnerability.garden/assets/img/vulns/sittingduck.png)07/31/2408/02/24[https://domainsure.com/news/sitting-duck-dns-flaw-is-a-red-herring/](https://domainsure.com/news/sitting-duck-dns-flaw-is-a-red-herring/)[https://web.archive.org/web/20241202201331/https://krebsonsecurity.com/2024/07/dont-let-your-domain-name-become-a-sitting-duck/?nocache=1](https://web.archive.org/web/20241202201331/https://krebsonsecurity.com/2024/07/dont-let-your-domain-name-become-a-sitting-duck/?nocache=1)[https://www.infoblox.com/blog/threat-intelligence/who-knew-domain-hijacking-is-so-easy/](https://www.infoblox.com/blog/threat-intelligence/who-knew-domain-hijacking-is-so-easy/)[Return of Coppersmith's \(ROCA\)](https://crocs.fi.muni.cz/public/papers/rsa_ccs17)10/16/17[CVE\-2017\-15361](https://nvd.nist.gov/vuln/detail/CVE-2017-15361)08/02/24[Fermat Attack](https://fermatattack.secvuln.info/)03/14/22[CVE\-2022\-26320](https://nvd.nist.gov/vuln/detail/CVE-2022-26320)08/02/24[ESXith](https://infosec.exchange/@SwiftOnSecurity/112871061960829494)07/29/24[CVE\-2024\-37085](https://nvd.nist.gov/vuln/detail/CVE-2024-37085)07/29/24[TuDoor](https://tudoor.net/)![](https://vulnerability.garden/assets/img/vulns/tudoor.png)12/02/23[CVE\-2023\-32020](https://nvd.nist.gov/vuln/detail/CVE-2023-32020)[CVE\-2023\-26249](https://nvd.nist.gov/vuln/detail/CVE-2023-26249)[CVE\-2023\-26437](https://nvd.nist.gov/vuln/detail/CVE-2023-26437)[CVE\-2023\-32067](https://nvd.nist.gov/vuln/detail/CVE-2023-32067)[CVE\-2023\-41173](https://nvd.nist.gov/vuln/detail/CVE-2023-41173)07/26/24[Thread Name\-Calling](https://research.checkpoint.com/2024/thread-name-calling-using-thread-name-for-offense/)07/25/2407/26/24[https://web.archive.org/web/20240725111028/https://research.checkpoint.com/2024/thread-name-calling-using-thread-name-for-offense/](https://web.archive.org/web/20240725111028/https://research.checkpoint.com/2024/thread-name-calling-using-thread-name-for-offense/)[PKfail](https://www.binarly.io/blog/pkfail-untrusted-platform-keys-undermine-secure-boot-on-uefi-ecosystem)07/25/24[CVE\-2024\-8105](https://nvd.nist.gov/vuln/detail/CVE-2024-8105)07/26/24[ConfusedFunction](https://www.tenable.com/blog/confusedfunction-a-privilege-escalation-vulnerability-impacting-gcp-cloud-functions)07/24/2407/25/24[EvilVideo](https://www.welivesecurity.com/en/eset-research/cursed-tapes-exploiting-evilvideo-vulnerability-telegram-android/)07/22/2407/22/24[SAPwned](https://www.wiz.io/blog/sapwned-sap-ai-vulnerabilities-ai-security)07/17/2407/18/24[port shadow](https://citizenlab.ca/vulnerabilities-in-vpns-paper-presented-at-the-privacy-enhancing-technologies-symposium-2024/)07/16/24[CVE\-2021\-3773](https://nvd.nist.gov/vuln/detail/CVE-2021-3773)07/18/24[Blast\-RADIUS](https://www.blastradius.fail/)![](https://vulnerability.garden/assets/img/vulns/blastradius.png)02/02/24[CVE\-2024\-3596](https://nvd.nist.gov/vuln/detail/CVE-2024-3596)07/09/24[dubious disk](https://wack0.github.io/dubiousdisk/)![](https://vulnerability.garden/assets/img/vulns/dubiousdisk.png)06/01/24[CVE\-2022\-30203](https://nvd.nist.gov/vuln/detail/CVE-2022-30203)[CVE\-2023\-21560](https://nvd.nist.gov/vuln/detail/CVE-2023-21560)[CVE\-2023\-28269](https://nvd.nist.gov/vuln/detail/CVE-2023-28269)[CVE\-2023\-28249](https://nvd.nist.gov/vuln/detail/CVE-2023-28249)07/07/24[Kirin](https://kirin-attack.github.io/)07/01/2407/03/24[Indirector](https://indirector.cpusec.org/)![](https://vulnerability.garden/assets/img/vulns/indirector.png)03/12/2407/02/24[regreSSHion](https://blog.qualys.com/vulnerabilities-threat-research/2024/07/01/regresshion-remote-unauthenticated-code-execution-vulnerability-in-openssh-server)![](https://vulnerability.garden/assets/img/vulns/regresshion.png)07/01/24[CVE\-2024\-6387](https://nvd.nist.gov/vuln/detail/CVE-2024-6387)07/01/24[https://github.com/zgzhang/cve-2024-6387-poc](https://github.com/zgzhang/cve-2024-6387-poc)[Skeleton Key](https://www.microsoft.com/en-us/security/blog/2024/06/26/mitigating-skeleton-key-a-new-type-of-generative-ai-jailbreak-technique/)06/26/2406/26/24[UEFIcanhazbufferoverflow](https://eclypsium.com/blog/ueficanhazbufferoverflow-widespread-impact-from-vulnerability-in-popular-pc-and-server-firmware/)![](https://vulnerability.garden/assets/img/vulns/ueficanhazbufferoverflow.png)06/20/24[CVE\-2024\-0762](https://nvd.nist.gov/vuln/detail/CVE-2024-0762)06/25/24[SnailLoad](https://www.snailload.com/)![](https://vulnerability.garden/assets/img/vulns/snailload.png)05/27/24[CVE\-2024\-33920](https://nvd.nist.gov/vuln/detail/CVE-2024-33920)06/24/24[Probllama](https://www.wiz.io/blog/probllama-ollama-vulnerability-cve-2024-37032)06/24/24[CVE\-2024\-37032](https://nvd.nist.gov/vuln/detail/CVE-2024-37032)06/24/24[GrimResource](https://www.elastic.co/security-labs/grimresource)06/21/2406/24/24[CosmicSting](https://sansec.io/research/cosmicsting)06/18/24[CVE\-2024\-34102](https://nvd.nist.gov/vuln/detail/CVE-2024-34102)[CVE\-2024\-2961](https://nvd.nist.gov/vuln/detail/CVE-2024-2961)06/24/24[Sleepy Pickle](https://blog.trailofbits.com/2024/06/11/exploiting-ml-models-with-pickle-file-attacks-part-1/)06/11/2406/11/24[https://blog.trailofbits.com/2024/06/11/exploiting-ml-models-with-pickle-file-attacks-part-2/](https://blog.trailofbits.com/2024/06/11/exploiting-ml-models-with-pickle-file-attacks-part-2/)[PrinterBug / SpoolSample](https://www.slideshare.net/slideshow/derbycon-the-unintended-risks-of-trusting-active-directory/118363679#5)10/05/18[CVE\-2019\-0683](https://nvd.nist.gov/vuln/detail/CVE-2019-0683)06/04/24[https://github.com/leechristensen/SpoolSample](https://github.com/leechristensen/SpoolSample)[https://blog.0patch.com/2022/06/micropatching-printerbugspoolsample.html](https://blog.0patch.com/2022/06/micropatching-printerbugspoolsample.html)[ShadowCoerce](https://x.com/topotam77/status/1475701014204461056)12/28/21[CVE\-2022\-30154](https://nvd.nist.gov/vuln/detail/CVE-2022-30154)06/04/24[https://x.com/topotam77/status/1475701014204461056](https://x.com/topotam77/status/1475701014204461056)[https://github.com/ShutdownRepo/ShadowCoerce](https://github.com/ShutdownRepo/ShadowCoerce)[https://www.thehacker.recipes/ad/movement/mitm-and-coerced-authentications/ms-fsrvp](https://www.thehacker.recipes/ad/movement/mitm-and-coerced-authentications/ms-fsrvp)[DFSCoerce](https://github.com/Wh04m1001/DFSCoerce)06/18/2206/04/24[https://blog.0patch.com/2022/07/micropatching-dfscoerce-forced.html](https://blog.0patch.com/2022/07/micropatching-dfscoerce-forced.html)[Linguistic Lumberjack](https://www.tenable.com/blog/linguistic-lumberjack-attacking-cloud-services-via-logging-endpoints-fluent-bit-cve-2024-4323)05/20/24[CVE\-2024\-4323](https://nvd.nist.gov/vuln/detail/CVE-2024-4323)05/20/24[SSID Confusion Attack](https://www.top10vpn.com/research/wifi-vulnerability-ssid/)05/14/24[CVE\-2023\-52424](https://nvd.nist.gov/vuln/detail/CVE-2023-52424)05/14/24[Pathfinder](https://dl.acm.org/doi/10.1145/3620666.3651382)04/27/2405/08/24[https://dl.acm.org/doi/epdf/10.1145/3620666.3651382](https://dl.acm.org/doi/epdf/10.1145/3620666.3651382)[TunnelVision](https://www.tunnelvisionbug.com/)![](https://vulnerability.garden/assets/img/vulns/tunnelvision.png)05/06/24[CVE\-2024\-3661](https://nvd.nist.gov/vuln/detail/CVE-2024-3661)05/06/24[PPPwn](https://github.com/TheOfficialFloW/PPPwn)08/23/06[CVE\-2006\-4304](https://nvd.nist.gov/vuln/detail/CVE-2006-4304)05/03/24[Dirty stream](https://www.microsoft.com/en-us/security/blog/2024/05/01/dirty-stream-attack-discovering-and-mitigating-a-common-vulnerability-pattern-in-android-apps/)05/01/2405/03/24[HookChain](https://arxiv.org/abs/2404.16856)03/22/2404/29/24[https://github.com/helviojunior/hookchain/](https://github.com/helviojunior/hookchain/)[https://arxiv.org/pdf/2404.16856](https://arxiv.org/pdf/2404.16856)[MagicDot](https://www.safebreach.com/blog/magicdot-a-hackers-magic-show-of-disappearing-dots-and-spaces/)04/18/24[CVE\-2023\-36396](https://nvd.nist.gov/vuln/detail/CVE-2023-36396)[CVE\-2023\-32054](https://nvd.nist.gov/vuln/detail/CVE-2023-32054)[CVE\-2023\-42757](https://nvd.nist.gov/vuln/detail/CVE-2023-42757)04/21/24[ShadowRay](https://www.oligo.security/blog/shadowray-attack-ai-workloads-actively-exploited-in-the-wild)03/26/24[CVE\-2023\-48022](https://nvd.nist.gov/vuln/detail/CVE-2023-48022)04/17/24[LeakyCLI](https://orca.security/resources/blog/leakycli-aws-google-cloud-command-line-tools-can-expose-sensitive-credentials-build-logs/)04/16/24[CVE\-2023\-36052](https://nvd.nist.gov/vuln/detail/CVE-2023-36052)04/16/24[Cipherleaks](https://cipherleaks.com/)![](https://vulnerability.garden/assets/img/vulns/cipherleaks.png)08/11/21[CVE\-2020\-12966](https://nvd.nist.gov/vuln/detail/CVE-2020-12966)04/16/24[https://www.usenix.org/conference/usenixsecurity21/technical-sessions](https://www.usenix.org/conference/usenixsecurity21/technical-sessions)[DEMONS](https://www.usenix.org/system/files/usenixsecurity23-gierlings.pdf)08/11/23[CVE\-2020\-6557](https://nvd.nist.gov/vuln/detail/CVE-2020-6557)04/14/24[https://www.usenix.org/conference/usenixsecurity23/technical-sessions](https://www.usenix.org/conference/usenixsecurity23/technical-sessions)[Native BHI](https://www.vusec.net/projects/native-bhi/)04/09/24[CVE\-2024\-2201](https://nvd.nist.gov/vuln/detail/CVE-2024-2201)04/09/24[Kobold Letters](https://lutrasecurity.com/en/articles/kobold-letters/)![](https://vulnerability.garden/assets/img/vulns/koboldletters.png)03/31/2404/09/24[BatBadBut](https://flatt.tech/research/posts/batbadbut-you-cant-securely-execute-commands-on-windows/)04/09/2404/09/24[WeSee](https://ahoi-attacks.github.io/wesee/)![](https://vulnerability.garden/assets/img/vulns/wesee.svg)04/04/24[CVE\-2024\-25742](https://nvd.nist.gov/vuln/detail/CVE-2024-25742)04/07/24[https://ahoi-attacks.github.io/](https://ahoi-attacks.github.io/)[Sigy](https://ahoi-attacks.github.io/sigy/)![](https://vulnerability.garden/assets/img/vulns/sigy.svg)04/04/24[CVE\-2024\-25371](https://nvd.nist.gov/vuln/detail/CVE-2024-25371)[CVE\-2024\-29971](https://nvd.nist.gov/vuln/detail/CVE-2024-29971)[CVE\-2024\-29970](https://nvd.nist.gov/vuln/detail/CVE-2024-29970)04/07/24[https://ahoi-attacks.github.io/](https://ahoi-attacks.github.io/)[Heckler](https://ahoi-attacks.github.io/heckler/)![](https://vulnerability.garden/assets/img/vulns/heckler.svg)04/04/24[CVE\-2024\-25744](https://nvd.nist.gov/vuln/detail/CVE-2024-25744)[CVE\-2024\-25743](https://nvd.nist.gov/vuln/detail/CVE-2024-25743)04/07/24[https://ahoi-attacks.github.io/](https://ahoi-attacks.github.io/)[Crescendo](https://crescendo-the-multiturn-jailbreak.github.io/)04/04/2404/05/24[CONTINUATION Flood](https://nowotarski.info/http2-continuation-flood-technical-details/)04/03/24[CVE\-2024\-2653](https://nvd.nist.gov/vuln/detail/CVE-2024-2653)[CVE\-2024\-27316](https://nvd.nist.gov/vuln/detail/CVE-2024-27316)[CVE\-2024\-24549](https://nvd.nist.gov/vuln/detail/CVE-2024-24549)[CVE\-2024\-3302](https://nvd.nist.gov/vuln/detail/CVE-2024-3302)04/04/24[xzorcist](https://floss.social/@jwf/112181835287436354)03/29/24[CVE\-2024\-3094](https://nvd.nist.gov/vuln/detail/CVE-2024-3094)03/31/24[https://www.wiz.io/blog/cve-2024-3094-critical-rce-vulnerability-found-in-xz-utils](https://www.wiz.io/blog/cve-2024-3094-critical-rce-vulnerability-found-in-xz-utils)[Wall\-Escape](https://people.rit.edu/sjf5462/6831711781/wall_2_27_2024.txt)03/10/24[CVE\-2024\-28085](https://nvd.nist.gov/vuln/detail/CVE-2024-28085)03/27/24[https://github.com/skyler-ferrante/CVE-2024-28085](https://github.com/skyler-ferrante/CVE-2024-28085)[ZenHammer](https://comsec.ethz.ch/research/dram/zenhammer/)03/25/2403/25/24[Unsaflok](https://unsaflok.com/)![](https://vulnerability.garden/assets/img/vulns/unsaflok.png)03/20/2403/21/24[GoFetch](https://gofetch.fail/)![](https://vulnerability.garden/assets/img/vulns/gofetch.svg)03/21/2403/21/24[https://architecture.fail/](https://architecture.fail/)[FlowFixation](https://www.tenable.com/blog/flowfixation-aws-apache-airflow-service-takeover-vulnerability-and-why-neglecting-guardrails)03/21/2403/21/24[Loop DoS](https://cispa.de/en/loop-dos)![](https://vulnerability.garden/assets/img/vulns/loopdos.png)03/19/2403/20/24[MacDirtyCow](https://project-zero.issues.chromium.org/issues/42451497)03/16/23[CVE\-2022\-46689](https://nvd.nist.gov/vuln/detail/CVE-2022-46689)03/18/24[https://web.archive.org/web/20230503015918/https://theideviceblog.com/macdirtycow-exploit-explained/](https://web.archive.org/web/20230503015918/https://theideviceblog.com/macdirtycow-exploit-explained/)[https://support.apple.com/en-us/102808](https://support.apple.com/en-us/102808)[GhostRace](https://www.vusec.net/projects/ghostrace/)03/12/24[CVE\-2024\-2193](https://nvd.nist.gov/vuln/detail/CVE-2024-2193)[CVE\-2024\-26602](https://nvd.nist.gov/vuln/detail/CVE-2024-26602)03/13/24[ArtPrompt](https://arxiv.org/pdf/2402.11753)06/07/2403/04/24[Silver SAML](https://www.semperis.com/blog/meet-silver-saml/)02/29/2403/01/24[Shim Shady](https://info.eclypsium.com/shim-shady-bootloader-vulnerability-story)![](https://vulnerability.garden/assets/img/vulns/shimshady.jpg)02/27/24[CVE\-2023\-40547](https://nvd.nist.gov/vuln/detail/CVE-2023-40547)02/28/24[Zip Slip](https://security.snyk.io/research/zip-slip-vulnerability)![](https://vulnerability.garden/assets/img/vulns/zipslip.webp)06/05/18[CVE\-2018\-8008](https://nvd.nist.gov/vuln/detail/CVE-2018-8008)02/27/24[SlashAndGrab](https://www.huntress.com/blog/slashandgrab-screen-connect-post-exploitation-in-the-wild-cve-2024-1709-cve-2024-1708)02/23/24[CVE\-2024\-1709](https://nvd.nist.gov/vuln/detail/CVE-2024-1709)[CVE\-2024\-1708](https://nvd.nist.gov/vuln/detail/CVE-2024-1708)02/23/24[VoltSchemer](https://arxiv.org/pdf/2402.11423)02/18/2402/20/24[Llama Drama](https://checkmarx.com/blog/llama-drama-critical-vulnerability-cve-2024-34359-threatening-your-software-supply-chain/)05/16/24[CVE\-2024\-34359](https://nvd.nist.gov/vuln/detail/CVE-2024-34359)02/20/24[PrintListener](https://www.ndss-symposium.org/wp-content/uploads/2024-618-paper.pdf)02/08/2402/19/24[EM Eye](https://www.ndss-symposium.org/wp-content/uploads/ndss2024_f552_paper-1.pdf)02/08/2402/18/24[https://web.archive.org/web/20240208220232/https://www.ndss-symposium.org/wp-content/uploads/ndss2024_f552_paper-1.pdf](https://web.archive.org/web/20240208220232/https://www.ndss-symposium.org/wp-content/uploads/ndss2024_f552_paper-1.pdf)[MMS Fingerprint](https://www.enea.com/insights/dusting-off-old-fingerprints-nso-groups-unknown-mms-hack/)02/15/2402/17/24[sPACE Attack](https://ctrlalt.medium.com/space-attack-spoofing-eids-password-authenticated-connection-establishment-11561e5657b1)![](https://vulnerability.garden/assets/img/vulns/spaceattack.png)02/15/24[CVE\-2024–23674](https://nvd.nist.gov/vuln/detail/CVE-2024%E2%80%9323674)02/16/24[https://www.dropbox.com/scl/fi/2powlii0dnmr7p7v5ijhc/2024_German_eID_02_Spoofing_PACE_final.pdf?rlkey=nx0ffmmbq3hffgxsuqwf0f45z&e=1&dl=0](https://www.dropbox.com/scl/fi/2powlii0dnmr7p7v5ijhc/2024_German_eID_02_Spoofing_PACE_final.pdf?rlkey=nx0ffmmbq3hffgxsuqwf0f45z&e=1&dl=0)[MonikerLink](https://research.checkpoint.com/2024/the-risks-of-the-monikerlink-bug-in-microsoft-outlook-and-the-big-picture/)02/14/24[CVE\-2024\-21413](https://nvd.nist.gov/vuln/detail/CVE-2024-21413)02/14/24[https://web.archive.org/web/20240214172809/https://research.checkpoint.com/2024/the-risks-of-the-monikerlink-bug-in-microsoft-outlook-and-the-big-picture/](https://web.archive.org/web/20240214172809/https://research.checkpoint.com/2024/the-risks-of-the-monikerlink-bug-in-microsoft-outlook-and-the-big-picture/)[KeyTrap](https://www.presseportal.de/pm/173495/5713546)02/12/24[CVE\-2023\-50387](https://nvd.nist.gov/vuln/detail/CVE-2023-50387)02/12/24[https://www.presseportal.de/pm/173495/5713546](https://www.presseportal.de/pm/173495/5713546)[https://kb.isc.org/docs/cve-2023-50387](https://kb.isc.org/docs/cve-2023-50387)[https://github.com/knqyf263/CVE-2023-50387](https://github.com/knqyf263/CVE-2023-50387)[https://www.darkreading.com/cloud-security/keytrap-dns-bug-threatens-widespread-internet-outages](https://www.darkreading.com/cloud-security/keytrap-dns-bug-threatens-widespread-internet-outages)[EventLogCrasher](https://github.com/floesen/EventLogCrasher)01/23/2402/10/24[https://x.com/floesen_/status/1749809453367779758?s=20](https://x.com/floesen_/status/1749809453367779758?s=20)[https://blog.0patch.com/2024/01/the-eventlogcrasher-0day-for-remotely.html](https://blog.0patch.com/2024/01/the-eventlogcrasher-0day-for-remotely.html)[Leaky Vessels](https://labs.snyk.io/resources/leaky-vessels-docker-runc-container-breakout-vulnerabilities/)![](https://vulnerability.garden/assets/img/vulns/leakyvessels.png)01/31/24[CVE\-2024\-21626](https://nvd.nist.gov/vuln/detail/CVE-2024-21626)[CVE\-2024\-23651](https://nvd.nist.gov/vuln/detail/CVE-2024-23651)[CVE\-2024\-23653](https://nvd.nist.gov/vuln/detail/CVE-2024-23653)[CVE\-2024\-23652](https://nvd.nist.gov/vuln/detail/CVE-2024-23652)02/07/24[RTP bleed](https://www.rtpbleed.com/)![](https://vulnerability.garden/assets/img/vulns/rtpbleed.png)05/12/1701/25/24[Sys:All](https://orca.security/resources/blog/sys-all-google-kubernetes-engine-risk-example/)01/24/2401/24/24[MavenGate](https://blog.oversecured.com/Introducing-MavenGate-a-supply-chain-attack-method-for-Java-and-Android-applications/)01/17/2401/23/24[MyFlaw](https://guard.io/labs/myflaw-cross-platform-0-day-rce-vulnerability-discovered-in-operas-browsers)01/21/2401/21/24 Winshock 11/11/14[CVE\-2014\-6321](https://nvd.nist.gov/vuln/detail/CVE-2014-6321)01/18/24[https://www.securitysift.com/exploiting-ms14-066-cve-2014-6321-aka-winshock/](https://www.securitysift.com/exploiting-ms14-066-cve-2014-6321-aka-winshock/)[https://support.microsoft.com/en-gb/topic/ms14-066-vulnerability-in-schannel-could-allow-remote-code-execution-november-11-2014-4740940a-5fe0-8d9b-88b5-2e2ca5999537](https://support.microsoft.com/en-gb/topic/ms14-066-vulnerability-in-schannel-could-allow-remote-code-execution-november-11-2014-4740940a-5fe0-8d9b-88b5-2e2ca5999537)[SMTP Smuggling](https://smtpsmuggling.com/)![](https://vulnerability.garden/assets/img/vulns/smtpsmuggling.png)01/07/24[CVE\-2023\-51764](https://nvd.nist.gov/vuln/detail/CVE-2023-51764)[CVE\-2023\-51765](https://nvd.nist.gov/vuln/detail/CVE-2023-51765)[CVE\-2023\-51766](https://nvd.nist.gov/vuln/detail/CVE-2023-51766)01/18/24[Sleep Attack](https://trmm.net/Sleep_attack/)11/10/20[CVE\-2020\-8705](https://nvd.nist.gov/vuln/detail/CVE-2020-8705)01/18/24[ConnectAround](https://www.volexity.com/blog/2024/01/10/active-exploitation-of-two-zero-day-vulnerabilities-in-ivanti-connect-secure-vpn/)![](https://vulnerability.garden/assets/img/vulns/connectaround.png)01/10/24[CVE\-2023\-46805](https://nvd.nist.gov/vuln/detail/CVE-2023-46805)[CVE\-2024\-21887](https://nvd.nist.gov/vuln/detail/CVE-2024-21887)01/18/24[https://cyberplace.social/@GossiTheDog/111732557100241084](https://cyberplace.social/@GossiTheDog/111732557100241084)[PixieFAIL](https://blog.quarkslab.com/pixiefail-nine-vulnerabilities-in-tianocores-edk-ii-ipv6-network-stack.html)01/16/24[CVE\-2023\-45229](https://nvd.nist.gov/vuln/detail/CVE-2023-45229)[CVE\-2023\-45237](https://nvd.nist.gov/vuln/detail/CVE-2023-45237)01/16/24[LeftoverLocals](https://blog.trailofbits.com/2024/01/16/leftoverlocals-listening-to-llm-responses-through-leaked-gpu-local-memory/)![](https://vulnerability.garden/assets/img/vulns/leftoverlocals.png)01/16/24[CVE\-2023\-4969](https://nvd.nist.gov/vuln/detail/CVE-2023-4969)01/16/24[TSSHOCK](https://verichains.io/tsshock/)03/28/23[CVE\-2022–47930](https://nvd.nist.gov/vuln/detail/CVE-2022%E2%80%9347930)[CVE\-2022–47931](https://nvd.nist.gov/vuln/detail/CVE-2022%E2%80%9347931)[CVE\-2023–26556](https://nvd.nist.gov/vuln/detail/CVE-2023%E2%80%9326556)[CVE\-2023–26557](https://nvd.nist.gov/vuln/detail/CVE-2023%E2%80%9326557)01/15/24[https://medium.com/@iofinnet/security-disclosure-for-ecdsa-and-eddsa-threshold-signature-schemes-4e969af7155b](https://medium.com/@iofinnet/security-disclosure-for-ecdsa-and-eddsa-threshold-signature-schemes-4e969af7155b)[KyberSlash](https://kyberslash.cr.yp.to/)12/19/2301/10/24[Sockstress](https://defuse.ca/sockstress.htm)12/23/08[CVE\-2008\-4304](https://nvd.nist.gov/vuln/detail/CVE-2008-4304)01/06/24[Triangulation](https://securelist.com/operation-triangulation-the-last-hardware-mystery/111669/)12/27/23[CVE\-2023\-41990](https://nvd.nist.gov/vuln/detail/CVE-2023-41990)[CVE\-2023\-32434](https://nvd.nist.gov/vuln/detail/CVE-2023-32434)[CVE\-2023\-38606](https://nvd.nist.gov/vuln/detail/CVE-2023-38606)12/28/23[https://web.archive.org/web/20231227150808/https://securelist.com/operation-triangulation-the-last-hardware-mystery/111669/](https://web.archive.org/web/20231227150808/https://securelist.com/operation-triangulation-the-last-hardware-mystery/111669/)[RetSpill](https://kylebot.net/papers/retspill.pdf)11/26/23[CVE\-2010\-2959](https://nvd.nist.gov/vuln/detail/CVE-2010-2959)[CVE\-2016\-0728](https://nvd.nist.gov/vuln/detail/CVE-2016-0728)[CVE\-2017\-2636](https://nvd.nist.gov/vuln/detail/CVE-2017-2636)[CVE\-2018\-6555](https://nvd.nist.gov/vuln/detail/CVE-2018-6555)[CVE\-2021\-3490](https://nvd.nist.gov/vuln/detail/CVE-2021-3490)\.\.\.*and 1 more*12/23/23[https://github.com/sefcom/RetSpill](https://github.com/sefcom/RetSpill)[Terrapin](https://terrapin-attack.com/)![](https://vulnerability.garden/assets/img/vulns/terrapin.png)12/18/23[CVE\-2023\-48795](https://nvd.nist.gov/vuln/detail/CVE-2023-48795)[CVE\-2023\-46445](https://nvd.nist.gov/vuln/detail/CVE-2023-46445)[CVE\-2023\-46446](https://nvd.nist.gov/vuln/detail/CVE-2023-46446)[CVE\-2024\-41909](https://nvd.nist.gov/vuln/detail/CVE-2024-41909)12/18/23[QuadAttacK](https://thomaspaniagua.github.io/quadattack_web/)12/11/2312/14/23[Sierra:21](https://www.forescout.com/research-labs/sierra21/)12/06/23[CVE\-2023\-40458](https://nvd.nist.gov/vuln/detail/CVE-2023-40458)[CVE\-2023\-38313](https://nvd.nist.gov/vuln/detail/CVE-2023-38313)12/07/23[5Ghoul](https://asset-group.github.io/disclosures/5ghoul/)![](https://vulnerability.garden/assets/img/vulns/5ghoul.png)12/07/23[CVE\-2023\-33042](https://nvd.nist.gov/vuln/detail/CVE-2023-33042)[CVE\-2023\-32842](https://nvd.nist.gov/vuln/detail/CVE-2023-32842)[CVE\-2024\-20003](https://nvd.nist.gov/vuln/detail/CVE-2024-20003)12/07/23[AutoSpill](https://blackhat.com/eu-23/briefings/schedule/#autospill-zero-effort-credential-stealing-from-mobile-password-managers-34420)12/06/2312/06/23[https://i.blackhat.com/EU-23/Presentations/EU-23-Gangwal-AutoSpill-Zero-Effort-Credential-Stealing.pdf?_gl=1*529yvn*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxODUzOTMkbzUkZzEkdDE3NzQxODY0MDQkajM4JGwwJGgw](https://i.blackhat.com/EU-23/Presentations/EU-23-Gangwal-AutoSpill-Zero-Effort-Credential-Stealing.pdf?_gl=1*529yvn*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxODUzOTMkbzUkZzEkdDE3NzQxODY0MDQkajM4JGwwJGgw)[SLAM](https://www.vusec.net/projects/slam/)12/05/23[CVE\-2020\-12965](https://nvd.nist.gov/vuln/detail/CVE-2020-12965)12/05/23[LogoFAIL](https://www.binarly.io/blog/the-far-reaching-consequences-of-logofail)![](https://vulnerability.garden/assets/img/vulns/logofail.png)11/29/23[CVE\-2023−40238](https://nvd.nist.gov/vuln/detail/CVE-2023%E2%88%9240238)[CVE\-2023−5058](https://nvd.nist.gov/vuln/detail/CVE-2023%E2%88%925058)[CVE\-2023−39539](https://nvd.nist.gov/vuln/detail/CVE-2023%E2%88%9239539)[CVE\-2023−39538](https://nvd.nist.gov/vuln/detail/CVE-2023%E2%88%9239538)11/30/23[https://i.blackhat.com/EU-23/Presentations/EU-23-Pagani-LogoFAIL-Security-Implications-of-Image_REV2.pdf?_gl=1*8mwot6*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxODUzOTMkbzUkZzAkdDE3NzQxODUzOTMkajYwJGwwJGgw](https://i.blackhat.com/EU-23/Presentations/EU-23-Pagani-LogoFAIL-Security-Implications-of-Image_REV2.pdf?_gl=1*8mwot6*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxODUzOTMkbzUkZzAkdDE3NzQxODUzOTMkajYwJGwwJGgw)[baton drop](https://github.com/Wack0/CVE-2022-21894)08/09/22[CVE\-2022\-21894](https://nvd.nist.gov/vuln/detail/CVE-2022-21894)[CVE\-2023\-24932](https://nvd.nist.gov/vuln/detail/CVE-2023-24932)11/30/23[BLUFFS](https://francozappa.github.io/post/2023/bluffs-ccs23/)11/27/23[CVE\-2023\-24023](https://nvd.nist.gov/vuln/detail/CVE-2023-24023)11/29/23[DeleFriend](https://www.hunters.security/en/blog/delefriend-a-newly-discovered-design-flaw-in-domain-wide-delegation-could-leave-google-workspace-vulnerable-for-takeover)11/28/2311/28/23[pool\-party](https://brave.com/privacy-updates/13-pool-party-side-channels/)12/15/2111/24/23[sqlol](https://gergelykalman.com/sqlol-CVE-2023-32422-a-macos-tcc-bypass.html)11/15/23[CVE\-2023\-32422](https://nvd.nist.gov/vuln/detail/CVE-2023-32422)11/16/23[Reptar](https://lock.cmpxchg8b.com/reptar.html)11/14/2311/14/23[Randstorm](https://www.randstorm.com/)![](https://vulnerability.garden/assets/img/vulns/randstorm.png)11/14/2311/14/23[https://www.unciphered.com/disclosure-of-vulnerable-bitcoin-wallet-library-2/](https://www.unciphered.com/disclosure-of-vulnerable-bitcoin-wallet-library-2/)[https://web.archive.org/web/20231118205229/https://www.unciphered.com/randstorm](https://web.archive.org/web/20231118205229/https://www.unciphered.com/randstorm)[https://web.archive.org/web/20231114173241/https://www.unciphered.com/blog/randstorm-you-cant-patch-a-house-of-cards](https://web.archive.org/web/20231114173241/https://www.unciphered.com/blog/randstorm-you-cant-patch-a-house-of-cards)[lateralus](https://gergelykalman.com/lateralus-CVE-2023-32407-a-macos-tcc-bypass.html)11/14/23[CVE\-2023\-32407](https://nvd.nist.gov/vuln/detail/CVE-2023-32407)11/14/23[CacheWarp](https://cachewarpattack.com/)![](https://vulnerability.garden/assets/img/vulns/cachewarp.svg)11/14/23[CVE\-2023\-20592](https://nvd.nist.gov/vuln/detail/CVE-2023-20592)11/14/23[batsignal](https://gergelykalman.com/no-CVE-batsignal-a-macos-lpe.html)10/30/23[CVE\-2022\-26704](https://nvd.nist.gov/vuln/detail/CVE-2022-26704)11/06/23[Light Commands](https://lightcommands.com/)![](https://vulnerability.garden/assets/img/vulns/lightcommands.png)08/14/2010/26/23[https://www.usenix.org/conference/usenixsecurity20/technical-sessions](https://www.usenix.org/conference/usenixsecurity20/technical-sessions)[https://architecture.fail/](https://architecture.fail/)[iLeakage](https://ileakage.com/)![](https://vulnerability.garden/assets/img/vulns/ileakage.svg)10/25/2310/25/23[https://architecture.fail/](https://architecture.fail/)[Citrix Bleed](https://www.assetnote.io/resources/research/citrix-bleed-leaking-session-tokens-with-cve-2023-4966)![](https://vulnerability.garden/assets/img/vulns/citrixbleed.svg)10/24/23[CVE\-2023\-4966](https://nvd.nist.gov/vuln/detail/CVE-2023-4966)10/24/23[https://www.cisa.gov/guidance-addressing-citrix-netscaler-adc-and-gateway-vulnerability-cve-2023-4966-citrix-bleed](https://www.cisa.gov/guidance-addressing-citrix-netscaler-adc-and-gateway-vulnerability-cve-2023-4966-citrix-bleed)[single\-packet attack](https://portswigger.net/research/smashing-the-state-machine#single-packet-attack)10/18/2310/18/23[https://portswigger.net/research/the-single-packet-attack-making-remote-race-conditions-local](https://portswigger.net/research/the-single-packet-attack-making-remote-race-conditions-local)[ShadowBunny](https://sec1.dk/mde.html)![](https://vulnerability.garden/assets/img/vulns/shadowbunny.jpeg)07/26/2310/16/23[https://web.archive.org/web/20230726161919/https://sec1.dk/mde.html](https://web.archive.org/web/20230726161919/https://sec1.dk/mde.html)[Ticketbleed](https://filippo.io/Ticketbleed/)![](https://vulnerability.garden/assets/img/vulns/ticketbleed.png)10/26/16[CVE\-2016\-9244](https://nvd.nist.gov/vuln/detail/CVE-2016-9244)10/11/23[Rapid Reset](https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/)![](https://vulnerability.garden/assets/img/vulns/rapidreset.png)10/10/23[CVE\-2023\-44487](https://nvd.nist.gov/vuln/detail/CVE-2023-44487)10/10/23[https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack](https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack)[https://www.wired.com/story/http-2-rapid-reset-flaw/](https://www.wired.com/story/http-2-rapid-reset-flaw/)[ShellTorch](https://www.oligo.security/blog/shelltorch-torchserve-ssrf-vulnerability-cve-2023-43654)![](https://vulnerability.garden/assets/img/vulns/shelltorch.png)10/03/23[CVE\-2023\-43654](https://nvd.nist.gov/vuln/detail/CVE-2023-43654)[CVE\-2022\-1471](https://nvd.nist.gov/vuln/detail/CVE-2022-1471)10/06/23[Marvin](https://people.redhat.com/~hkario/marvin/)![](https://vulnerability.garden/assets/img/vulns/marvin.png)05/16/23[CVE\-2022\-4304](https://nvd.nist.gov/vuln/detail/CVE-2022-4304)[CVE\-2023\-6240](https://nvd.nist.gov/vuln/detail/CVE-2023-6240)10/06/23[Looney Tunables](https://blog.qualys.com/vulnerabilities-threat-research/2023/10/03/cve-2023-4911-looney-tunables-local-privilege-escalation-in-the-glibcs-ld-so)![](https://vulnerability.garden/assets/img/vulns/looneytunables.png)10/03/23[CVE\-2023\-4911](https://nvd.nist.gov/vuln/detail/CVE-2023-4911)10/06/23[DirtyNIB](https://blog.xpnsec.com/dirtynib/)10/04/23[CVE\-2022\-48505](https://nvd.nist.gov/vuln/detail/CVE-2022-48505)10/06/23[Voracle](https://i.blackhat.com/us-18/Wed-August-8/us-18-Nafeez-Compression-Oracle-Attacks-On-Vpn-Networks.pdf)08/08/1809/26/23[GPU\.zip](https://www.hertzbleed.com/gpu.zip/)![](https://vulnerability.garden/assets/img/vulns/gpuzip.png)09/26/2309/26/23[ThemeBleed](https://exploits.forsale/themebleed/)09/13/23[CVE\-2023\-38146](https://nvd.nist.gov/vuln/detail/CVE-2023-38146)09/15/23[BLASTPASS](https://citizenlab.ca/blastpass-nso-group-iphone-zero-click-zero-day-exploit-captured-in-the-wild/)09/07/23[CVE\-2023\-41064](https://nvd.nist.gov/vuln/detail/CVE-2023-41064)[CVE\-2023\-41061](https://nvd.nist.gov/vuln/detail/CVE-2023-41061)09/09/23[MaginotDNS](https://maginotdns.net/)![](https://vulnerability.garden/assets/img/vulns/maginotdns.png)08/10/23[CVE\-2021\-25220](https://nvd.nist.gov/vuln/detail/CVE-2021-25220)[CVE\-2021\-43105](https://nvd.nist.gov/vuln/detail/CVE-2021-43105)[CVE\-2022\-32983](https://nvd.nist.gov/vuln/detail/CVE-2022-32983)08/16/23[CodeChism](https://infosec.exchange/@reverseics/110871926306809217)08/03/23[CVE\-2022\-4046](https://nvd.nist.gov/vuln/detail/CVE-2022-4046)[CVE\-2023\-28355](https://nvd.nist.gov/vuln/detail/CVE-2023-28355)08/11/23[https://api-de.codesys.com/fileadmin/user_upload/CODESYS_Group/Ecosystem/Up-to-Date/Security/Security-Advisories/Advisory2023-04_CDS-82457.pdf](https://api-de.codesys.com/fileadmin/user_upload/CODESYS_Group/Ecosystem/Up-to-Date/Security/Security-Advisories/Advisory2023-04_CDS-82457.pdf)[Milk Sad](https://milksad.info/disclosure.html)![](https://vulnerability.garden/assets/img/vulns/milksad.png)08/08/23[CVE\-2023\-31290](https://nvd.nist.gov/vuln/detail/CVE-2023-31290)[CVE\-2023\-39910](https://nvd.nist.gov/vuln/detail/CVE-2023-39910)08/09/23[TunnelCrack](https://tunnelcrack.mathyvanhoef.com/)![](https://vulnerability.garden/assets/img/vulns/tunnelcrack.png)08/08/23[CVE\-2023\-36672](https://nvd.nist.gov/vuln/detail/CVE-2023-36672)[CVE\-2023\-35838](https://nvd.nist.gov/vuln/detail/CVE-2023-35838)[CVE\-2023\-36673](https://nvd.nist.gov/vuln/detail/CVE-2023-36673)[CVE\-2023\-36671](https://nvd.nist.gov/vuln/detail/CVE-2023-36671)08/08/23[Inception](https://comsec.ethz.ch/research/microarch/inception/)08/11/23[CVE\-2023\-20569](https://nvd.nist.gov/vuln/detail/CVE-2023-20569)08/08/23[https://www.usenix.org/conference/usenixsecurity23/technical-sessions](https://www.usenix.org/conference/usenixsecurity23/technical-sessions)[Downfall](https://downfall.page/)![](https://vulnerability.garden/assets/img/vulns/downfall.png)08/08/23[CVE\-2022\-40982](https://nvd.nist.gov/vuln/detail/CVE-2022-40982)08/08/23[PhishForce](https://guard.io/labs/phishforce-vulnerability-uncovered-in-salesforces-email-services-exploited-for-phishing)08/02/2308/02/23[Collide\+Power](https://collidepower.com/)![](https://vulnerability.garden/assets/img/vulns/collidepower.svg)08/01/23[CVE\-2023\-20583](https://nvd.nist.gov/vuln/detail/CVE-2023-20583)08/01/23[BleedingPipe](https://blog.mmpa.info/posts/bleeding-pipe/)07/29/2308/01/23[GameOver\(lay\)](https://www.wiz.io/blog/ubuntu-overlayfs-vulnerability)![](https://vulnerability.garden/assets/img/vulns/gameoverlay.png)07/27/23[CVE\-2023\-2640](https://nvd.nist.gov/vuln/detail/CVE-2023-2640)[CVE\-2023\-32629](https://nvd.nist.gov/vuln/detail/CVE-2023-32629)07/31/23[Zenbleed](https://lock.cmpxchg8b.com/zenbleed.html)07/24/23[CVE\-2023\-20593](https://nvd.nist.gov/vuln/detail/CVE-2023-20593)07/24/23[TETRA:BURST](https://www.midnightblue.nl/research/tetraburst)![](https://vulnerability.garden/assets/img/vulns/tetraburst.png)07/24/23[CVE\-2022\-24401](https://nvd.nist.gov/vuln/detail/CVE-2022-24401)[CVE\-2022\-24402](https://nvd.nist.gov/vuln/detail/CVE-2022-24402)[CVE\-2022\-24404](https://nvd.nist.gov/vuln/detail/CVE-2022-24404)[CVE\-2022\-24403](https://nvd.nist.gov/vuln/detail/CVE-2022-24403)[CVE\-2022\-24400](https://nvd.nist.gov/vuln/detail/CVE-2022-24400)07/24/23[Bad\.Build](https://orca.security/resources/blog/bad-build-google-cloud-build-potential-supply-chain-attack-vulnerability/)07/18/2307/24/23[Follina 2](https://blogs.blackberry.com/en/2023/07/romcom-targets-ukraine-nato-membership-talks-at-nato-summit)07/12/23[CVE\-2023\-36884](https://nvd.nist.gov/vuln/detail/CVE-2023-36884)07/12/23[https://web.archive.org/web/20230709132025/https://blogs.blackberry.com/en/2023/07/romcom-targets-ukraine-nato-membership-talks-at-nato-summit](https://web.archive.org/web/20230709132025/https://blogs.blackberry.com/en/2023/07/romcom-targets-ukraine-nato-membership-talks-at-nato-summit)[https://infosec.exchange/@CyberValken/110702205875205043](https://infosec.exchange/@CyberValken/110702205875205043)[Dirty Pagetable](https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html)07/10/23[CVE\-2023\-21400](https://nvd.nist.gov/vuln/detail/CVE-2023-21400)[CVE\-2020\-29661](https://nvd.nist.gov/vuln/detail/CVE-2020-29661)07/10/23[https://web.archive.org/web/20230710081700/https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html](https://web.archive.org/web/20230710081700/https://yanglingxi1993.github.io/dirty_pagetable/dirty_pagetable.html)[Bad Binder](https://projectzero.google/2019/11/bad-binder-android-in-wild-exploit.html)11/21/19[CVE\-2019\-2215](https://nvd.nist.gov/vuln/detail/CVE-2019-2215)07/10/23[Tootroot](https://cyberplace.social/@GossiTheDog/110667416012211236)07/06/23[CVE\-2023\-36460](https://nvd.nist.gov/vuln/detail/CVE-2023-36460)07/06/23[https://arstechnica.com/security/2023/07/mastodon-fixes-critical-tootroot-vulnerability-allowing-node-hijacking/](https://arstechnica.com/security/2023/07/mastodon-fixes-critical-tootroot-vulnerability-allowing-node-hijacking/)[StackRot](https://www.openwall.com/lists/oss-security/2023/07/05/1)07/05/23[CVE\-2023\-3269](https://nvd.nist.gov/vuln/detail/CVE-2023-3269)07/05/23[https://github.com/lrh2000/StackRot](https://github.com/lrh2000/StackRot)[BlueTrust](https://www.tarlogic.com/blog/bluetrust-bluetooth-vulnerability/)![](https://vulnerability.garden/assets/img/vulns/bluetrust.png)06/23/2306/29/23[https://www.tarlogic.com/blog/bluetrust-bluetooth-vulnerability-technical-details/](https://www.tarlogic.com/blog/bluetrust-bluetooth-vulnerability-technical-details/)[RowPress](https://people.inf.ethz.ch/omutlu/pub/RowPress_isca23.pdf)06/19/2306/26/23[https://www.iscaconf.org/isca2023/program/](https://www.iscaconf.org/isca2023/program/)[https://people.inf.ethz.ch/omutlu/pub/RowPress_isca23-lightning-talk.pdf](https://people.inf.ethz.ch/omutlu/pub/RowPress_isca23-lightning-talk.pdf)[https://www.youtube.com/watch?v=R3VKbbbWMnY](https://www.youtube.com/watch?v=R3VKbbbWMnY)[nOAuth](https://www.descope.com/blog/post/noauth)06/20/2306/21/23[Xortigate](https://blog.lexfo.fr/xortigate-cve-2023-27997.html)06/13/23[CVE\-2023\-27997](https://nvd.nist.gov/vuln/detail/CVE-2023-27997)06/13/23[https://web.archive.org/web/20230613153821/https://blog.lexfo.fr/xortigate-cve-2023-27997.html](https://web.archive.org/web/20230613153821/https://blog.lexfo.fr/xortigate-cve-2023-27997.html)[ZipJar](https://badoption.eu/blog/2023/06/01/zipjar.html)06/01/2306/03/23[Migraine](https://www.microsoft.com/en-us/security/blog/2023/05/30/new-macos-vulnerability-migraine-could-bypass-system-integrity-protection/)05/30/23[CVE\-2023\-32369](https://nvd.nist.gov/vuln/detail/CVE-2023-32369)05/30/23[Epochalypse](https://blackhat.com/docs/us-17/thursday/us-17-Hypponen-The-Epocholypse-2038-Whats-In-Store-For-The-Next-20-Years.pdf)05/04/1805/30/23[https://www.youtube.com/watch?v=abJ3VoZMeBk](https://www.youtube.com/watch?v=abJ3VoZMeBk)[BrutePrint](https://arxiv.org/abs/2305.10791)05/18/2305/23/23[FriendlyName](https://sternumiot.com/iot-blog/mini-smart-plug-v2-vulnerability-buffer-overflow/)05/16/23[CVE\-2023\-27217](https://nvd.nist.gov/vuln/detail/CVE-2023-27217)05/16/23[PPLFault \+ GodFault](https://i.blackhat.com/Asia-23/AS-23-Landau-PPLdump-Is-Dead-Long-Live-PPLdump.pdf)05/11/23[CVE\-2017\-11830](https://nvd.nist.gov/vuln/detail/CVE-2017-11830)05/14/23[https://github.com/gabriellandau/PPLFault#pplfault](https://github.com/gabriellandau/PPLFault#pplfault)[https://www.elastic.co/security-labs/immutable-illusion](https://www.elastic.co/security-labs/immutable-illusion)[Super FabriXss](https://orca.security/resources/blog/super-fabrixss-azure-vulnerability/)03/30/23[CVE\-2023\-23383](https://nvd.nist.gov/vuln/detail/CVE-2023-23383)04/28/23[BrokenSesame](https://www.wiz.io/blog/brokensesame-accidental-write-permissions-to-private-registry-allowed-potential-r)04/19/2304/28/23[GhostToken](https://astrix.security/learn/blog/ghosttoken-exploiting-gcp-application-infrastructure-to-create-invisible-unremovable-trojan-app-on-google-accounts/)![](https://vulnerability.garden/assets/img/vulns/ghosttoken.png)04/20/2304/26/23[QueueJumper](https://research.checkpoint.com/2023/queuejumper-critical-unauthorized-rce-vulnerability-in-msmq-service/)04/11/23[CVE\-2023\-21554](https://nvd.nist.gov/vuln/detail/CVE-2023-21554)04/19/23[https://web.archive.org/web/20230513194159/https://research.checkpoint.com/2023/queuejumper-critical-unauthorized-rce-vulnerability-in-msmq-service/](https://web.archive.org/web/20230513194159/https://research.checkpoint.com/2023/queuejumper-critical-unauthorized-rce-vulnerability-in-msmq-service/)[PWNYOURHOME](https://citizenlab.ca/research/nso-groups-pegasus-spyware-returns-in-2022/)04/18/2304/19/23[LATENTIMAGE](https://citizenlab.ca/research/nso-groups-pegasus-spyware-returns-in-2022/)04/18/2304/19/23[FINDMYPWN](https://citizenlab.ca/research/nso-groups-pegasus-spyware-returns-in-2022/)04/18/2304/19/23[Dirty Vanity](https://www.deepinstinct.com/blog/dirty-vanity-a-new-approach-to-code-injection-edr-bypass)12/08/2204/13/23[https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-Nissan-DirtyVanity.pdf?_gl=1*cxo03m*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxMjM5NzQkbzMkZzAkdDE3NzQxMjM5NzQkajYwJGwwJGgw](https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-Nissan-DirtyVanity.pdf?_gl=1*cxo03m*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxMjM5NzQkbzMkZzAkdDE3NzQxMjM5NzQkajYwJGwwJGgw)[https://blackhat.com/eu-22/briefings/schedule/#dirty-vanity-a-new-approach-to-code-injection--edr-bypass-28417](https://blackhat.com/eu-22/briefings/schedule/#dirty-vanity-a-new-approach-to-code-injection--edr-bypass-28417)[WarpAttack](https://nebelwelt.net/files/23Oakland3.pdf)04/08/2304/10/23[https://github.com/HexHive/WarpAttack](https://github.com/HexHive/WarpAttack)[Shadow Ban](https://github.com/twitter/the-algorithm/issues/1386)04/02/23[CVE\-2023\-29218](https://nvd.nist.gov/vuln/detail/CVE-2023-29218)04/10/23[https://www.bitdefender.com/en-us/blog/hotforsecurity/twitter-shadow-ban-flaw-receives-official-cve-number](https://www.bitdefender.com/en-us/blog/hotforsecurity/twitter-shadow-ban-flaw-receives-official-cve-number)[Headroll](https://www.canva.dev/blog/engineering/discovering-headroll-cve-2023-0704-in-chromium/)04/05/23[CVE\-2023–0704](https://nvd.nist.gov/vuln/detail/CVE-2023%E2%80%930704)04/06/23[BingBang](https://www.wiz.io/blog/azure-active-directory-bing-misconfiguration)03/29/2303/30/23[wInd3x](https://q3k.org/wInd3x.html)12/30/2103/21/23[Red pills attack](https://zengo.com/zengo-uncovers-security-vulnerabilities-in-popular-web3-transaction-simulation-solutions-the-red-pill-attack/)03/20/2303/21/23[aCropalypse](https://acropalypse.info/)![](https://vulnerability.garden/assets/img/vulns/acropalypse.png)03/17/23[CVE\-2023\-21036](https://nvd.nist.gov/vuln/detail/CVE-2023-21036)[CVE\-2023\-28303](https://nvd.nist.gov/vuln/detail/CVE-2023-28303)03/18/23[https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html](https://www.da.vidbuchanan.co.uk/blog/exploiting-acropalypse.html)[https://x.com/ItsSimonTime/status/1636857478263750656/photo/1](https://x.com/ItsSimonTime/status/1636857478263750656/photo/1)[Bad Appointment](https://www.rnbo.gov.ua/files/%D0%9D%D0%9A%D0%A6%D0%9A/2023/APT28%20cyberattacks%20using%20the%20CVE-2023-23397%20vulnerability%20-%20report.pdf)03/14/23[CVE\-2023\-23397](https://nvd.nist.gov/vuln/detail/CVE-2023-23397)03/15/23[https://www.mdsec.co.uk/2023/03/exploiting-cve-2023-23397-microsoft-outlook-elevation-of-privilege-vulnerability/](https://www.mdsec.co.uk/2023/03/exploiting-cve-2023-23397-microsoft-outlook-elevation-of-privilege-vulnerability/)[https://www.microsoft.com/en-us/msrc/blog/2023/03/microsoft-mitigates-outlook-elevation-of-privilege-vulnerability](https://www.microsoft.com/en-us/msrc/blog/2023/03/microsoft-mitigates-outlook-elevation-of-privilege-vulnerability)[https://cardinalops.com/blog/detecting-microsoft-outlook-vulnerability-cve-2023-23397-splunk-ibm-qradar/#:~:text=Summary,opened%20a%20specially%2Dcrafted%20email.](https://cardinalops.com/blog/detecting-microsoft-outlook-vulnerability-cve-2023-23397-splunk-ibm-qradar/#:~:text=Summary,opened%20a%20specially%2Dcrafted%20email.)[https://web.archive.org/web/20230427220636/https://www.rnbo.gov.ua/files/%D0%9D%D0%9A%D0%A6%D0%9A/2023/APT28%20cyberattacks%20using%20the%20CVE-2023-23397%20vulnerability%20-%20report.pdf](https://web.archive.org/web/20230427220636/https://www.rnbo.gov.ua/files/%D0%9D%D0%9A%D0%A6%D0%9A/2023/APT28%20cyberattacks%20using%20the%20CVE-2023-23397%20vulnerability%20-%20report.pdf)[PwnAgent](https://mahaloz.re/2023/02/25/pwnagent-netgear.html)03/08/23[CVE\-2023\-24749](https://nvd.nist.gov/vuln/detail/CVE-2023-24749)03/08/23[CorePlague](https://www.aquasec.com/blog/jenkins-server-vulnerabilities/)03/08/23[CVE\-2023\-27898](https://nvd.nist.gov/vuln/detail/CVE-2023-27898)[CVE\-2023\-27905](https://nvd.nist.gov/vuln/detail/CVE-2023-27905)03/08/23[Polynonce](https://kudelskisecurity.com/research/polynonce-a-tale-of-a-novel-ecdsa-attack-and-bitcoin-tears)03/06/2303/06/23[https://x.com/KudelskiSec/status/1632729541901799424](https://x.com/KudelskiSec/status/1632729541901799424)[NVLeak](https://www.usenix.org/conference/usenixsecurity23/presentation/wang-zixuan)08/11/2303/05/23[angrypolarbearbug](https://github.com/SandboxEscaper/randomrepo/blob/master/angrypolarbearbug.rar)03/12/19[CVE\-2019\-0863](https://nvd.nist.gov/vuln/detail/CVE-2019-0863)03/02/23[https://blog.0patch.com/2019/01/one-two-three-micropatches-for-three.html?m=1](https://blog.0patch.com/2019/01/one-two-three-micropatches-for-three.html?m=1)[bitpixie](https://web.archive.org/web/20230501000759/https://haqueers.com/@Rairii/109817927668949732)02/06/23[CVE\-2023\-21563](https://nvd.nist.gov/vuln/detail/CVE-2023-21563)02/06/23[SH1MMER](https://sh1mmer.me/)01/13/2301/30/23[vScalation](https://pentera.io/blog/vscalation-cve-2021-22015-local-privilege-escalation-in-vmware-vcenter-pentera-labs/)09/30/21[CVE\-2021\-22015](https://nvd.nist.gov/vuln/detail/CVE-2021-22015)01/28/23[VoltPillager](https://zt-chen.github.io/voltpillager/)![](https://vulnerability.garden/assets/img/vulns/voltpillager.png)08/11/2101/28/23[https://www.usenix.org/conference/usenixsecurity21/technical-sessions](https://www.usenix.org/conference/usenixsecurity21/technical-sessions)[VoltJockey](http://voltjockey.com/)![](https://vulnerability.garden/assets/img/vulns/voltjockey.png)11/11/19[CVE\-2019\-11157](https://nvd.nist.gov/vuln/detail/CVE-2019-11157)01/28/23[https://web.archive.org/web/20200513095238/http://voltjockey.com/](https://web.archive.org/web/20200513095238/http://voltjockey.com/)[PMFault](https://arxiv.org/pdf/2301.05538)01/13/23[CVE\-2022\-43309](https://nvd.nist.gov/vuln/detail/CVE-2022-43309)01/28/23[EvilESP](https://securityintelligence.com/posts/dissecting-exploiting-tcp-ip-rce-vulnerability-evilesp/)01/20/23[CVE\-2022\-34718](https://nvd.nist.gov/vuln/detail/CVE-2022-34718)01/28/23[https://web.archive.org/web/20230120180825/https://securityintelligence.com/posts/dissecting-exploiting-tcp-ip-rce-vulnerability-evilesp/](https://web.archive.org/web/20230120180825/https://securityintelligence.com/posts/dissecting-exploiting-tcp-ip-rce-vulnerability-evilesp/)[https://web.archive.org/web/20221023195034/https://twitter.com/chompie1337/status/1583666434668101637](https://web.archive.org/web/20221023195034/https://twitter.com/chompie1337/status/1583666434668101637)[https://medium.com/numen-cyber-labs/analysis-and-summary-of-tcp-ip-protocol-remote-code-execution-vulnerability-cve-2022-34718-8fcc28538acf](https://medium.com/numen-cyber-labs/analysis-and-summary-of-tcp-ip-protocol-remote-code-execution-vulnerability-cve-2022-34718-8fcc28538acf)[CLKscrew](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-tang.pdf)08/18/1701/28/23[https://blackhat.com/docs/eu-17/materials/eu-17-Tang-Clkscrew-Exposing-The-Perils-Of-Security-Oblivious-Energy-Management.pdf](https://blackhat.com/docs/eu-17/materials/eu-17-Tang-Clkscrew-Exposing-The-Perils-Of-Security-Oblivious-Energy-Management.pdf)[SYLKin](https://www.avanan.com/blog/sylkin-attack-bypassing-microsoft-365-security-risking-users)06/25/2001/19/23[https://web.archive.org/web/20200720010405/https://www.avanan.com/blog/sylkin-attack-bypassing-microsoft-365-security-risking-users](https://web.archive.org/web/20200720010405/https://www.avanan.com/blog/sylkin-attack-bypassing-microsoft-365-security-risking-users)[SiteCloak](https://www.avanan.com/blog/sitecloak-page-obfuscation)![](https://vulnerability.garden/assets/img/vulns/sitecloak.png)07/22/2001/19/23[https://web.archive.org/web/20201020085052/https://www.avanan.com/blog/sitecloak-page-obfuscation](https://web.archive.org/web/20201020085052/https://www.avanan.com/blog/sitecloak-page-obfuscation)[MarkDownTime](https://www.legitsecurity.com/blog/dos-via-software-supply-chain-innumerable-projects-exposed-to-a-markdown-library-vulnerability)01/18/23[CVE\-2022\-2931](https://nvd.nist.gov/vuln/detail/CVE-2022-2931)[CVE\-2022\-39209](https://nvd.nist.gov/vuln/detail/CVE-2022-39209)01/19/23[EmojiDeploy](https://www.tenable.com/blog/Emoji-Deploy-Smile-Your-Azure-web-service-just-got-Rced)01/19/2301/19/23[Blank Image](https://www.avanan.com/blog/the-blank-image-attack)![](https://vulnerability.garden/assets/img/vulns/blankimage.png)01/19/2301/19/23[https://web.archive.org/web/20230119172030/https://www.avanan.com/blog/the-blank-image-attack](https://web.archive.org/web/20230119172030/https://www.avanan.com/blog/the-blank-image-attack)[LocalPotato](https://www.localpotato.com/)![](https://vulnerability.garden/assets/img/vulns/blamepotato.jpg)01/10/23[CVE\-2023\-21746](https://nvd.nist.gov/vuln/detail/CVE-2023-21746)01/11/23[https://decoder.cloud/2023/02/13/localpotato-when-swapping-the-context-leads-you-to-system/](https://decoder.cloud/2023/02/13/localpotato-when-swapping-the-context-leads-you-to-system/)[https://infosec.exchange/@decoder_it/109666505075878921](https://infosec.exchange/@decoder_it/109666505075878921)[ENLBufferPwn](https://github.com/PabloMK7/ENLBufferPwn)![](https://vulnerability.garden/assets/img/vulns/enlbufferpwn.png)12/22/22[CVE\-2022\-47949](https://nvd.nist.gov/vuln/detail/CVE-2022-47949)12/31/22[ACSESSED](https://www.mnemonic.io/resources/blog/acsessed-cross-tenant-network-bypass-in-azure-cognitive-search/)12/22/2212/22/22[Blindside](https://cymulate.com/blog/blindside-a-new-technique-for-edr-evasion-with-hardware-breakpoints/)12/19/2212/20/22[EntryBleed](https://www.willsroot.io/2022/12/entrybleed.html)12/16/22[CVE\-2022\-4543](https://nvd.nist.gov/vuln/detail/CVE-2022-4543)12/19/22[Achilles \(MacOS\)](https://www.microsoft.com/en-us/security/blog/2022/12/19/gatekeepers-achilles-heel-unearthing-a-macos-vulnerability/)12/19/22[CVE\-2022\-42821](https://nvd.nist.gov/vuln/detail/CVE-2022-42821)12/19/22[COVID\-bit](https://arxiv.org/pdf/2212.03520)12/07/2212/10/22[https://www.covertchannels.com/](https://www.covertchannels.com/)[CertPotato](https://sensepost.com/blog/2022/certpotato-using-adcs-to-privesc-from-virtual-and-network-service-accounts-to-local-system/)11/04/2212/03/22[Hell’s Keychain](https://www.wiz.io/blog/hells-keychain-supply-chain-attack-in-ibm-cloud-databases-for-postgresql)12/01/2212/02/22[SyncJacking](https://www.semperis.com/blog/syncjacking-azure-ad-account-takeover/)11/18/2211/27/22[PCspooF](https://www.computer.org/csdl/proceedings-article/sp/2023/933600a572/1OXGZUghEnm)11/15/2211/16/22[https://news.umich.edu/cyber-vulnerability-in-networks-used-by-spacecraft-aircraft-and-energy-generation-systems/](https://news.umich.edu/cyber-vulnerability-in-networks-used-by-spacecraft-aircraft-and-energy-generation-systems/)[ZippyReads](https://x.com/wdormann/status/1590044005395357697)10/17/22[CVE\-2022\-41091](https://nvd.nist.gov/vuln/detail/CVE-2022-41091)11/13/22[https://blog.0patch.com/2022/10/free-micropatches-for-bypassing-mark-of.html](https://blog.0patch.com/2022/10/free-micropatches-for-bypassing-mark-of.html)[Leeloo Multipath](https://blog.qualys.com/vulnerabilities-threat-research/2022/10/25/leeloo-multipath-authorization-bypass-and-symlink-attack-in-multipathd-cve-2022-41974-and-cve-2022-41973)12/21/22[CVE\-2022\-41974](https://nvd.nist.gov/vuln/detail/CVE-2022-41974)[CVE\-2022\-41973](https://nvd.nist.gov/vuln/detail/CVE-2022-41973)11/13/22[D\(HE\)at](https://dheatattack.com/)10/13/22[CVE\-2002\-20001](https://nvd.nist.gov/vuln/detail/CVE-2002-20001)11/13/22[https://web.archive.org/web/20221013062856/https://dheatattack.com/](https://web.archive.org/web/20221013062856/https://dheatattack.com/)[SiriSpy](https://rambo.codes/posts/2022-10-25-sirispy-ios-bug-allowed-apps-to-eavesdrop)10/26/22[CVE\-2022\-32946](https://nvd.nist.gov/vuln/detail/CVE-2022-32946)10/27/22[OverLog](https://www.varonis.com/blog/the-logging-dead-two-windows-event-log-vulnerabilities)10/25/22[CVE\-2022\-37981](https://nvd.nist.gov/vuln/detail/CVE-2022-37981)10/25/22[LogCrusher](https://www.varonis.com/blog/the-logging-dead-two-windows-event-log-vulnerabilities)10/25/2210/25/22[FabriXss](https://orca.security/resources/blog/fabrixss-vulnerability-azure-fabric-explorer/)10/19/22[CVE\-2022\-35829](https://nvd.nist.gov/vuln/detail/CVE-2022-35829)10/25/22[LCDPwn](https://blackhat.com/eu-22/briefings/schedule/#lcdpwn-breaking-enterprise-things-with-layer--discovery-protocol-vulnerabilities-again-29066)![](https://vulnerability.garden/assets/img/vulns/lcdpwn.png)12/08/22[CVE\-2022\-20846](https://nvd.nist.gov/vuln/detail/CVE-2022-20846)[CVE\-2021\-1521](https://nvd.nist.gov/vuln/detail/CVE-2021-1521)[CVE\-2022\-20766](https://nvd.nist.gov/vuln/detail/CVE-2022-20766)10/20/22[https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-Chen-LCDPwn-Breaking-Enterprise.pdf?_gl=1*34gjg7*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxMjM5NzQkbzMkZzEkdDE3NzQxMjU1NjMkajYwJGwwJGgw](https://i.blackhat.com/EU-22/Thursday-Briefings/EU-22-Chen-LCDPwn-Breaking-Enterprise.pdf?_gl=1*34gjg7*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxMjM5NzQkbzMkZzEkdDE3NzQxMjU1NjMkajYwJGwwJGgw)[ProxyRelay](https://blog.orange.tw/posts/2022-10-proxyrelay-a-new-attack-surface-on-ms-exchange-part-4/)10/19/22[CVE\-2021\-33768](https://nvd.nist.gov/vuln/detail/CVE-2021-33768)[CVE\-2022\-21979](https://nvd.nist.gov/vuln/detail/CVE-2022-21979)[CVE\-2021\-26414](https://nvd.nist.gov/vuln/detail/CVE-2021-26414)[CVE\-2022\-24477](https://nvd.nist.gov/vuln/detail/CVE-2022-24477)10/19/22[Text4Shell / Act4Shell](https://x.com/pwntester/status/1582112787811434496?lang=fr)10/13/22[CVE\-2022\-42889](https://nvd.nist.gov/vuln/detail/CVE-2022-42889)10/17/22[https://github.com/808ale/CVE-2022-42889-Text4Shell-POC](https://github.com/808ale/CVE-2022-42889-Text4Shell-POC)[https://securitylab.github.com/advisories/GHSL-2022-018_Apache_Commons_Text/](https://securitylab.github.com/advisories/GHSL-2022-018_Apache_Commons_Text/)[SandBreak](https://www.oxeye.io/blog/vm2-sandbreak-vulnerability-cve-2022-36067)10/10/22[CVE\-2022\-36067](https://nvd.nist.gov/vuln/detail/CVE-2022-36067)10/17/22[https://web.archive.org/web/20221011113811/https://www.oxeye.io/blog/vm2-sandbreak-vulnerability-cve-2022-36067](https://web.archive.org/web/20221011113811/https://www.oxeye.io/blog/vm2-sandbreak-vulnerability-cve-2022-36067)[ProxyNotShell](https://gteltsc.vn/blog/warning-new-attack-campaign-utilized-a-new-0day-rce-vulnerability-on-microsoft-exchange-server-12715.html)![](https://vulnerability.garden/assets/img/vulns/proxynotshell.png)10/04/22[CVE\-2022\-41040](https://nvd.nist.gov/vuln/detail/CVE-2022-41040)[CVE\-2022\-41082](https://nvd.nist.gov/vuln/detail/CVE-2022-41082)10/02/22[https://doublepulsar.com/proxynotshell-the-story-of-the-claimed-zero-day-in-microsoft-exchange-5c63d963a9e9](https://doublepulsar.com/proxynotshell-the-story-of-the-claimed-zero-day-in-microsoft-exchange-5c63d963a9e9)[https://thehackernews.com/2022/10/proxynotshell-new-proxy-hell.html](https://thehackernews.com/2022/10/proxynotshell-new-proxy-hell.html)[https://github.com/testanull/ProxyNotShell-PoC](https://github.com/testanull/ProxyNotShell-PoC)[https://rw.md/2022/11/09/ProxyNotRelay.html](https://rw.md/2022/11/09/ProxyNotRelay.html)[Boomerang](https://sites.cs.ucsb.edu/~chris/research/doc/ndss17_boomerang.pdf)06/15/16[CVE\-2016\-5349](https://nvd.nist.gov/vuln/detail/CVE-2016-5349)[CVE\-2016\-8762](https://nvd.nist.gov/vuln/detail/CVE-2016-8762)[CVE\-2016\-8763](https://nvd.nist.gov/vuln/detail/CVE-2016-8763)[CVE\-2016\-8764](https://nvd.nist.gov/vuln/detail/CVE-2016-8764)09/26/22[https://github.com/ucsb-seclab/boomerang?tab=readme-ov-file](https://github.com/ucsb-seclab/boomerang?tab=readme-ov-file)[Crowbleed](https://gynvael.coldwind.pl/?id=752)![](https://vulnerability.garden/assets/img/vulns/crowbleed.png)09/23/22[CVE\-2022\-38668](https://nvd.nist.gov/vuln/detail/CVE-2022-38668)09/25/22[Spell\-Jacking](https://www.otto-js.com/news/article/chrome-and-edge-enhanced-spellcheck-features-expose-pii-even-your-passwords)09/16/2209/20/22[https://web.archive.org/web/20220916182739/https://www.otto-js.com/news/article/chrome-and-edge-enhanced-spellcheck-features-expose-pii-even-your-passwords](https://web.archive.org/web/20220916182739/https://www.otto-js.com/news/article/chrome-and-edge-enhanced-spellcheck-features-expose-pii-even-your-passwords)[AttachMe](https://www.wiz.io/blog/attachme-oracle-cloud-vulnerability-allows-unauthorized-cross-tenant-volume-access)09/20/2209/20/22[GIFShell](https://medium.com/@bobbyrsec/gifshell-covert-attack-chain-and-c2-utilizing-microsoft-teams-gifs-1618c4e64ed7)08/24/2209/09/22[Windows Dirty Pipe](https://whereisk0shl.top/post/break-me-out-of-sandbox-in-old-pipe-cve-2022-22715-windows-dirty-pipe)08/23/22[CVE\-2022\-22715](https://nvd.nist.gov/vuln/detail/CVE-2022-22715)08/23/22[ETHERLED](https://arxiv.org/pdf/2208.09975)08/21/2208/23/22[https://www.covertchannels.com/](https://www.covertchannels.com/)[DirtyCred](https://zplin.me/papers/DirtyCred.pdf)08/22/22[CVE\-2022\-0847](https://nvd.nist.gov/vuln/detail/CVE-2022-0847)08/22/22[https://zplin.me/papers/DirtyCred_CCS_slides.pdf](https://zplin.me/papers/DirtyCred_CCS_slides.pdf)[https://zplin.me/](https://zplin.me/)[https://github.com/Markakd/DirtyCred?tab=readme-ov-file](https://github.com/Markakd/DirtyCred?tab=readme-ov-file)[SQUIP](https://stefangast.eu/papers/squip.pdf)08/09/22[CVE\-2021\-46778](https://nvd.nist.gov/vuln/detail/CVE-2021-46778)08/16/22[ÆPIC Leak](https://aepicleak.com/)![](https://vulnerability.garden/assets/img/vulns/aepicleak.svg)08/12/22[CVE\-2022\-21233](https://nvd.nist.gov/vuln/detail/CVE-2022-21233)08/16/22[https://www.usenix.org/conference/usenixsecurity22/technical-sessions](https://www.usenix.org/conference/usenixsecurity22/technical-sessions)[https://github.com/isec-tugraz/AEPIC](https://github.com/isec-tugraz/AEPIC)[Evil PLC](https://claroty.com/team82/research/evil-plc-attack-using-a-controller-as-predator-rather-than-prey)08/13/22[CVE\-2022\-26507](https://nvd.nist.gov/vuln/detail/CVE-2022-26507)[CVE\-2021\-44477](https://nvd.nist.gov/vuln/detail/CVE-2021-44477)[CVE\-2018\-16202](https://nvd.nist.gov/vuln/detail/CVE-2018-16202)[CVE\-2021\-27475](https://nvd.nist.gov/vuln/detail/CVE-2021-27475)[CVE\-2021\-27471](https://nvd.nist.gov/vuln/detail/CVE-2021-27471)\.\.\.*and 1 more*08/15/22[https://web-assets.claroty.com/resource-downloads/team82-evil-plc-attack-research-paper-1661285586.pdf](https://web-assets.claroty.com/resource-downloads/team82-evil-plc-attack-research-paper-1661285586.pdf)[Settings Flood](https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md)08/13/19[CVE\-2019\-9515](https://nvd.nist.gov/vuln/detail/CVE-2019-9515)08/12/22[Resource Loop](https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md)08/13/19[CVE\-2019\-9513](https://nvd.nist.gov/vuln/detail/CVE-2019-9513)08/12/22[Reset Flood](https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md)08/13/19[CVE\-2019\-9514](https://nvd.nist.gov/vuln/detail/CVE-2019-9514)08/12/22[Ping Flood](https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md)08/13/19[CVE\-2019\-9512](https://nvd.nist.gov/vuln/detail/CVE-2019-9512)08/12/22[Data Dribble](https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md)08/13/19[CVE\-2019\-9511](https://nvd.nist.gov/vuln/detail/CVE-2019-9511)08/12/22[Zombie POODLE](https://www.tripwire.com/state-of-security/zombie-poodle-goldendoodle)02/04/19[CVE\-2019\-6485](https://nvd.nist.gov/vuln/detail/CVE-2019-6485)08/11/22[https://github.com/tls-attacker/TLS-Padding-Oracles](https://github.com/tls-attacker/TLS-Padding-Oracles)[https://i.blackhat.com/asia-19/Fri-March-29/bh-asia-Young-Zombie-Poodle-Goldendoodle-and-How-TLSv13-Can-Save-Us-All.pdf](https://i.blackhat.com/asia-19/Fri-March-29/bh-asia-Young-Zombie-Poodle-Goldendoodle-and-How-TLSv13-Can-Save-Us-All.pdf)[WebExec](https://webexec.org/)11/08/18[CVE\-2018\-15442](https://nvd.nist.gov/vuln/detail/CVE-2018-15442)08/11/22[https://web.archive.org/web/20181128090038/https://webexec.org/](https://web.archive.org/web/20181128090038/https://webexec.org/)[GOLDENDOODLE](https://www.tripwire.com/state-of-security/zombie-poodle-goldendoodle)02/04/19[CVE\-2019\-6593](https://nvd.nist.gov/vuln/detail/CVE-2019-6593)08/11/22[https://github.com/tls-attacker/TLS-Padding-Oracles](https://github.com/tls-attacker/TLS-Padding-Oracles)[https://i.blackhat.com/asia-19/Fri-March-29/bh-asia-Young-Zombie-Poodle-Goldendoodle-and-How-TLSv13-Can-Save-Us-All.pdf](https://i.blackhat.com/asia-19/Fri-March-29/bh-asia-Young-Zombie-Poodle-Goldendoodle-and-How-TLSv13-Can-Save-Us-All.pdf)[Paracosme](https://www.linkedin.com/posts/activity-6960990367269752832-oUrK)08/22/22[CVE\-2022\-33318](https://nvd.nist.gov/vuln/detail/CVE-2022-33318)08/04/22[https://doar-e.github.io/blog/2023/05/05/competing-in-pwn2own-ics-2022-miami-exploiting-a-zero-click-remote-memory-corruption-in-iconics-genesis64/](https://doar-e.github.io/blog/2023/05/05/competing-in-pwn2own-ics-2022-miami-exploiting-a-zero-click-remote-memory-corruption-in-iconics-genesis64/)[https://github.com/0vercl0k/paracosme](https://github.com/0vercl0k/paracosme)[ParseThru](https://www.oxeye.io/blog/golang-parameter-smuggling-attack)07/28/2208/02/22[https://web.archive.org/web/20220801185226/https://www.oxeye.io/blog/golang-parameter-smuggling-attack](https://web.archive.org/web/20220801185226/https://www.oxeye.io/blog/golang-parameter-smuggling-attack)[PassBleed](https://www.authomize.com/blog/okta-customers-risk-password-theft-impersonation-attacks/)07/19/2207/20/22[https://web.archive.org/web/20220719130515/https://www.authomize.com/blog/okta-customers-risk-password-theft-impersonation-attacks/](https://web.archive.org/web/20220719130515/https://www.authomize.com/blog/okta-customers-risk-password-theft-impersonation-attacks/)[https://www.youtube.com/watch?v=-pyc0XHwYS8](https://www.youtube.com/watch?v=-pyc0XHwYS8)[SATAn](https://arxiv.org/abs/2207.07413)07/15/2207/18/22[https://www.covertchannels.com/](https://www.covertchannels.com/)[FirmwareBleed](https://www.binarly.io/blog/firmwarebleed-the-industry-fails-to-adopt-return-stack-buffer-mitigations-in-smm)07/18/2207/18/22[Retbleed](https://comsec.ethz.ch/research/microarch/retbleed/)08/12/22[CVE\-2022\-29900](https://nvd.nist.gov/vuln/detail/CVE-2022-29900)[CVE\-2022\-29901](https://nvd.nist.gov/vuln/detail/CVE-2022-29901)07/13/22[https://www.usenix.org/conference/usenixsecurity22/technical-sessions](https://www.usenix.org/conference/usenixsecurity22/technical-sessions)[Rolling\-PWN](https://rollingpwn.github.io/rolling-pwn/)![](https://vulnerability.garden/assets/img/vulns/rollingpwn.png)07/07/22[CVE\-2021\-46145](https://nvd.nist.gov/vuln/detail/CVE-2021-46145)07/12/22[FabricScape](https://unit42.paloaltonetworks.com/fabricscape-cve-2022-30137/)06/28/22[CVE\-2022\-30137](https://nvd.nist.gov/vuln/detail/CVE-2022-30137)06/29/22[The Miracle Exploit](https://peterjson.medium.com/miracle-one-vulnerability-to-rule-them-all-c3aed9edeea2)06/23/22[CVE\-2021–35587](https://nvd.nist.gov/vuln/detail/CVE-2021%E2%80%9335587)06/23/22[https://testbnull.medium.com/oracle-access-manager-pre-auth-rce-cve-2021-35587-analysis-1302a4542316](https://testbnull.medium.com/oracle-access-manager-pre-auth-rce-cve-2021-35587-analysis-1302a4542316)[OT:ICEFALL](https://www.forescout.com/research-labs/ot-icefall/)06/21/22[CVE\-2022\-29952](https://nvd.nist.gov/vuln/detail/CVE-2022-29952)[CVE\-2022\-31206](https://nvd.nist.gov/vuln/detail/CVE-2022-31206)06/21/22[Demonic](https://www.halborn.com/disclosures/demonic-vulnerability)06/15/22[CVE\-2022\-32969](https://nvd.nist.gov/vuln/detail/CVE-2022-32969)06/20/22[Hertzbleed](https://www.hertzbleed.com/)![](https://vulnerability.garden/assets/img/vulns/hertzbleed.png)06/14/22[CVE\-2022\-23823](https://nvd.nist.gov/vuln/detail/CVE-2022-23823)[CVE\-2022\-24436](https://nvd.nist.gov/vuln/detail/CVE-2022-24436)[CVE\-2022\-35888](https://nvd.nist.gov/vuln/detail/CVE-2022-35888)06/15/22[Screams of Power](https://gynvael.coldwind.pl/?id=748)06/13/22[CVE\-2022\-33174](https://nvd.nist.gov/vuln/detail/CVE-2022-33174)[CVE\-2022\-33175](https://nvd.nist.gov/vuln/detail/CVE-2022-33175)06/13/22[PACMAN](https://pacmanattack.com/)![](https://vulnerability.garden/assets/img/vulns/pacman.png)06/09/2206/10/22[DogWalk](https://irsl.medium.com/the-trouble-with-microsofts-troubleshooters-6e32fc80b8bd)06/02/22[CVE\-2022–34713](https://nvd.nist.gov/vuln/detail/CVE-2022%E2%80%9334713)[CVE\-2022–2622](https://nvd.nist.gov/vuln/detail/CVE-2022%E2%80%932622)06/08/22[https://blog.0patch.com/2022/06/microsoft-diagnostic-tools-dogwalk.html](https://blog.0patch.com/2022/06/microsoft-diagnostic-tools-dogwalk.html)[https://x.com/j00sean/status/1532416426702786560](https://x.com/j00sean/status/1532416426702786560)[https://thehackernews.com/2022/06/researchers-warn-of-unpatched-dogwalk.html](https://thehackernews.com/2022/06/researchers-warn-of-unpatched-dogwalk.html)[Follina](https://x.com/nao_sec/status/1530196847679401984)05/27/22[CVE\-2022\-30190](https://nvd.nist.gov/vuln/detail/CVE-2022-30190)05/30/22[https://owasp.org/www-community/vulnerabilities/follina](https://owasp.org/www-community/vulnerabilities/follina)[https://blog.qualys.com/product-tech/2022/06/14/detect-the-follina-msdt-vulnerability-cve-2022-30190-with-qualys-multi-vector-edr-context-xdr](https://blog.qualys.com/product-tech/2022/06/14/detect-the-follina-msdt-vulnerability-cve-2022-30190-with-qualys-multi-vector-edr-context-xdr)[https://www.microsoft.com/en-us/msrc/blog/2022/05/guidance-for-cve-2022-30190-microsoft-support-diagnostic-tool-vulnerability](https://www.microsoft.com/en-us/msrc/blog/2022/05/guidance-for-cve-2022-30190-microsoft-support-diagnostic-tool-vulnerability)[GhostTouch](https://www.usenix.org/conference/usenixsecurity22/presentation/wang-kai)![](https://vulnerability.garden/assets/img/vulns/ghosttouch.png)08/11/2205/27/22[pantsdown](https://www.flamingspork.com/blog/2019/01/23/cve-2019-6260:-gaining-control-of-bmc-from-the-host-processor/)01/23/19[CVE\-2019\-6260](https://nvd.nist.gov/vuln/detail/CVE-2019-6260)05/26/22[XMPP Stanza Smuggling](https://project-zero.issues.chromium.org/issues/42451378)02/04/22[CVE\-2022\-22784](https://nvd.nist.gov/vuln/detail/CVE-2022-22784)[CVE\-2022\-25235](https://nvd.nist.gov/vuln/detail/CVE-2022-25235)[CVE\-2022\-25236](https://nvd.nist.gov/vuln/detail/CVE-2022-25236)[CVE\-2022\-22785](https://nvd.nist.gov/vuln/detail/CVE-2022-22785)[CVE\-2022\-22786](https://nvd.nist.gov/vuln/detail/CVE-2022-22786)\.\.\.*and 1 more*05/25/22[https://www.wiz.io/vulnerability-database/cve/cve-2022-22784](https://www.wiz.io/vulnerability-database/cve/cve-2022-22784)[ISaPWN](https://ics-cert.kaspersky.com/publications/reports/2022/05/23/isapwn-research-on-the-security-of-isagraf-runtime/)05/23/22[CVE\-2020\-25176](https://nvd.nist.gov/vuln/detail/CVE-2020-25176)[CVE\-2020\-25180](https://nvd.nist.gov/vuln/detail/CVE-2020-25180)[CVE\-2020\-25182](https://nvd.nist.gov/vuln/detail/CVE-2020-25182)05/23/22[CrateDepression](https://www.sentinelone.com/labs/cratedepression-rust-supply-chain-attack-infects-cloud-ci-pipelines-with-go-malware/)05/19/2205/20/22[Doller\-ticket](https://www.catalyst.net.nz/blog/stay-curious-lessons-doller-ticket-security-issue)05/11/22[CVE\-2021\-42282](https://nvd.nist.gov/vuln/detail/CVE-2021-42282)[CVE\-2021\-42278](https://nvd.nist.gov/vuln/detail/CVE-2021-42278)[CVE\-2021\-42291](https://nvd.nist.gov/vuln/detail/CVE-2021-42291)05/16/22[https://web.archive.org/web/20220521092212/https://www.catalyst.net.nz/blog/stay-curious-lessons-doller-ticket-security-issue](https://web.archive.org/web/20220521092212/https://www.catalyst.net.nz/blog/stay-curious-lessons-doller-ticket-security-issue)[https://web.archive.org/web/20220522162009/https://www.cert.govt.nz/it-specialists/advisories/critical-vulnerability-in-windows-kerberos-protocol/](https://web.archive.org/web/20220522162009/https://www.cert.govt.nz/it-specialists/advisories/critical-vulnerability-in-windows-kerberos-protocol/)[Certifried](https://research.ifcr.dk/certifried-active-directory-domain-privilege-escalation-cve-2022-26923-9e098fe298f4)![](https://vulnerability.garden/assets/img/vulns/certifried.webp)05/10/22[CVE\-2022–26923](https://nvd.nist.gov/vuln/detail/CVE-2022%E2%80%9326923)05/11/22[SynLapse](https://orca.security/resources/blog/azure-synapse-analytics-security-advisory/)05/09/22[CVE\-2022\-29972](https://nvd.nist.gov/vuln/detail/CVE-2022-29972)05/10/22[https://orca.security/resources/blog/synlapse-critical-azure-synapse-analytics-service-vulnerability/](https://orca.security/resources/blog/synlapse-critical-azure-synapse-analytics-service-vulnerability/)[TLStorm 2](https://www.armis.com/blog/tlstorm-2-nanossl-tls-library-misuse-leads-to-vulnerabilities-in-common-switches/)![](https://vulnerability.garden/assets/img/vulns/tlstorm2.png)05/03/22[CVE\-2022\-23677](https://nvd.nist.gov/vuln/detail/CVE-2022-23677)[CVE\-2022\-23676](https://nvd.nist.gov/vuln/detail/CVE-2022-23676)[CVE\-2022\-29860](https://nvd.nist.gov/vuln/detail/CVE-2022-29860)[CVE\-2022\-29861](https://nvd.nist.gov/vuln/detail/CVE-2022-29861)05/03/22[https://media.armis.com/PDFs/wp-armis-tlstorm-en.pdf](https://media.armis.com/PDFs/wp-armis-tlstorm-en.pdf)[Augury](https://www.prefetchers.info/)04/29/2205/01/22[ExtraReplica](https://www.wiz.io/blog/wiz-research-discovers-extrareplica-cross-account-database-vulnerability-in-azure-postgresql)04/29/2204/28/22[Package Planting](https://www.aquasec.com/blog/npm-package-planting/)04/26/2204/27/22[Nimbuspwn](https://www.microsoft.com/en-us/security/blog/2022/04/26/microsoft-finds-new-elevation-of-privilege-linux-vulnerability-nimbuspwn/)04/26/22[CVE\-2022\-29799](https://nvd.nist.gov/vuln/detail/CVE-2022-29799)[CVE\-2022\-29800](https://nvd.nist.gov/vuln/detail/CVE-2022-29800)04/27/22[ExplosION](https://blackhat.com/asia-22/briefings/schedule/#explosion-the-hidden-mines-in-the-android-ion-driver-25848)![](https://vulnerability.garden/assets/img/vulns/explosion.png)05/13/22[CVE\-2021\-0929](https://nvd.nist.gov/vuln/detail/CVE-2021-0929)[CVE\-2021\-39714](https://nvd.nist.gov/vuln/detail/CVE-2021-39714)[CVE\-2022\-20110](https://nvd.nist.gov/vuln/detail/CVE-2022-20110)04/24/22[https://i.blackhat.com/Asia-22/Friday-Materials/AS-22-Wu-ExplosION-The-Hidden-Mines.pdf?_gl=1*1cy01ek*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxMDEwNjYkbzIkZzAkdDE3NzQxMDEwNjYkajYwJGwwJGgw](https://i.blackhat.com/Asia-22/Friday-Materials/AS-22-Wu-ExplosION-The-Hidden-Mines.pdf?_gl=1*1cy01ek*_gcl_au*MTgwMTAyNzY0LjE3NzQwNjI5NDY.*_ga*Njk0MDg3MTk4LjE3NzQwNjI5NDY.*_ga_K4JK67TFYV*czE3NzQxMDEwNjYkbzIkZzAkdDE3NzQxMDEwNjYkajYwJGwwJGgw)[ZipperDown](https://zipperdown.org/)![](https://vulnerability.garden/assets/img/vulns/zipperdown.png)05/16/1804/22/22[https://weibo.com/ttarticle/p/show?id=2309404240316772294076](https://weibo.com/ttarticle/p/show?id=2309404240316772294076)[https://web.archive.org/web/20180516120106/https://zipperdown.org/](https://web.archive.org/web/20180516120106/https://zipperdown.org/)[StrandHogg 2\.0](https://promon.io/resources/downloads/strandhogg-2-0-new-serious-android-vulnerability)![](https://vulnerability.garden/assets/img/vulns/strandhogg2.png)05/04/20[CVE\-2020\-0096](https://nvd.nist.gov/vuln/detail/CVE-2020-0096)04/22/22[Psychic Signatures](https://neilmadden.blog/2022/04/19/psychic-signatures-in-java/)04/19/22[CVE\-2022\-21449](https://nvd.nist.gov/vuln/detail/CVE-2022-21449)04/21/22[ALHACK](https://blog.checkpoint.com/security/largest-mobile-chipset-manufacturers-used-vulnerable-audio-decoder-2-3-of-android-users-privacy-around-the-world-were-at-risk/)04/21/22[CVE\-2021\-0674](https://nvd.nist.gov/vuln/detail/CVE-2021-0674)[CVE\-2021\-0675](https://nvd.nist.gov/vuln/detail/CVE-2021-0675)[CVE\-2021\-30351](https://nvd.nist.gov/vuln/detail/CVE-2021-30351)04/21/22[JekyllBot:5](https://www.cynerio.com/jekyllbot-5-command-center)![](https://vulnerability.garden/assets/img/vulns/jekyllbot5.png)04/12/22[CVE\-2022\-1066](https://nvd.nist.gov/vuln/detail/CVE-2022-1066)[CVE\-2022\-26423](https://nvd.nist.gov/vuln/detail/CVE-2022-26423)[CVE\-2022\-1070](https://nvd.nist.gov/vuln/detail/CVE-2022-1070)[CVE\-2022\-27494](https://nvd.nist.gov/vuln/detail/CVE-2022-27494)[CVE\-2022\-1059](https://nvd.nist.gov/vuln/detail/CVE-2022-1059)04/13/22[https://web.archive.org/web/20220412121426/https://www.cynerio.com/jekyllbot-5-command-center](https://web.archive.org/web/20220412121426/https://www.cynerio.com/jekyllbot-5-command-center)[Frozen Heart](https://blog.trailofbits.com/2022/04/13/part-1-coordinated-disclosure-of-vulnerabilities-affecting-girault-bulletproofs-and-plonk/)04/13/22[CVE\-2022\-29566](https://nvd.nist.gov/vuln/detail/CVE-2022-29566)04/13/22[https://eprint.iacr.org/2017/1066](https://eprint.iacr.org/2017/1066)[NotGitBleed](https://www.notgitbleed.com/)![](https://vulnerability.garden/assets/img/vulns/notgitbleed.svg)04/11/2204/12/22[Brokenwire](https://www.brokenwire.fail/)![](https://vulnerability.garden/assets/img/vulns/brokenwire.svg)02/07/22[CVE\-2022\-0878](https://nvd.nist.gov/vuln/detail/CVE-2022-0878)04/04/22 Spring4Shell 03/30/22[CVE\-2022\-22965](https://nvd.nist.gov/vuln/detail/CVE-2022-22965)03/30/22[https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement](https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement)[https://www.hackthebox.com/blog/spring4shell-explained-cve-2022-22965](https://www.hackthebox.com/blog/spring4shell-explained-cve-2022-22965)[https://www.rapid7.com/blog/post/2022/03/30/spring4shell-zero-day-vulnerability-in-spring-framework/](https://www.rapid7.com/blog/post/2022/03/30/spring4shell-zero-day-vulnerability-in-spring-framework/)[https://www.cyberkendra.com/2022/03/spring4shell-details-and-exploit-code.html](https://www.cyberkendra.com/2022/03/spring4shell-details-and-exploit-code.html)[Trivial Authentication](https://docs.ssh-mitm.at/user_guide/trivialauth.html)06/19/21[CVE\-2021\-36367](https://nvd.nist.gov/vuln/detail/CVE-2021-36367)[CVE\-2021\-36368](https://nvd.nist.gov/vuln/detail/CVE-2021-36368)[CVE\-2021\-36369](https://nvd.nist.gov/vuln/detail/CVE-2021-36369)03/22/22[https://github.com/manfred-kaiser/manfred-kaiser](https://github.com/manfred-kaiser/manfred-kaiser)[https://bugzilla.mindrot.org/show_bug.cgi?id=3316](https://bugzilla.mindrot.org/show_bug.cgi?id=3316)[Tor's Hammer](https://kb.mazebolt.com/knowledgebase/tors-hammer-attack/)01/01/1103/21/22[SLOTH](http://www.mitls.org/pages/attacks/SLOTH)08/07/15[CVE\-2015\-7575](https://nvd.nist.gov/vuln/detail/CVE-2015-7575)03/21/22[https://web.archive.org/web/20160320223950/http://www.mitls.org/pages/attacks/SLOTH](https://web.archive.org/web/20160320223950/http://www.mitls.org/pages/attacks/SLOTH)[SHAmbles](https://sha-mbles.github.io/)![](https://vulnerability.garden/assets/img/vulns/shambles.png)11/25/19[CVE\-2019\-14855](https://nvd.nist.gov/vuln/detail/CVE-2019-14855)03/21/22[FREAK](https://www.mitls.org/pages/attacks/SMACK#freak)![](https://vulnerability.garden/assets/img/vulns/smacktls.png)01/08/15[CVE\-2015\-0204](https://nvd.nist.gov/vuln/detail/CVE-2015-0204)[CVE\-2015\-1067](https://nvd.nist.gov/vuln/detail/CVE-2015-1067)[CVE\-2015\-2235](https://nvd.nist.gov/vuln/detail/CVE-2015-2235)[CVE\-2015\-1637](https://nvd.nist.gov/vuln/detail/CVE-2015-1637)03/21/22[https://web.archive.org/web/20150304014811/https://www.smacktls.com#freak/](https://web.archive.org/web/20150304014811/https://www.smacktls.com#freak/)[https://web.archive.org/web/20250819000105/https://mitls.org/pages/attacks/SMACK#freak](https://web.archive.org/web/20250819000105/https://mitls.org/pages/attacks/SMACK#freak)[https://freakattack.com/](https://freakattack.com/)[CRIME / TIME](https://media.blackhat.com/eu-13/briefings/Beery/bh-eu-13-a-perfect-crime-beery-wp.pdf)09/21/12[CVE\-2012\-4929](https://nvd.nist.gov/vuln/detail/CVE-2012-4929)03/21/22[https://blog.qualys.com/product-tech/2012/09/14/crime-information-leakage-attack-against-ssltls](https://blog.qualys.com/product-tech/2012/09/14/crime-information-leakage-attack-against-ssltls)[Cookie Cutter](http://www.mitls.org/pages/attacks/VHC)07/10/13[CVE\-2013\-2853](https://nvd.nist.gov/vuln/detail/CVE-2013-2853)03/21/22[https://web.archive.org/web/20160327050116/http://www.mitls.org/pages/attacks/VHC#cookie%20cutter](https://web.archive.org/web/20160327050116/http://www.mitls.org/pages/attacks/VHC#cookie%20cutter)[CLOUDBURST](https://blackhat.com/presentations/bh-usa-09/KORTCHINSKY/BHUSA09-Kortchinsky-Cloudburst-PAPER.pdf)06/02/0903/21/22[Browser In The Browser \(BITB\)](https://mrd0x.com/browser-in-the-browser-phishing-attack/)03/15/2203/21/22[https://web.archive.org/web/20220315183438/https://mrd0x.com/browser-in-the-browser-phishing-attack/](https://web.archive.org/web/20220315183438/https://mrd0x.com/browser-in-the-browser-phishing-attack/)[BREACH](https://breachattack.com/)![](https://vulnerability.garden/assets/img/vulns/breach.png)07/12/1303/21/22[https://breachattack.com/resources/BREACH%20-%20SSL,%20gone%20in%2030%20seconds.pdf](https://breachattack.com/resources/BREACH%20-%20SSL,%20gone%20in%2030%20seconds.pdf)[https://github.com/nealharris/BREACH](https://github.com/nealharris/BREACH)[Bleichenbacher Million Message Attack](https://archiv.infsec.ethz.ch/education/fs08/secsem/bleichenbacher98.pdf)08/01/9803/21/22[Alert](https://www.mitls.org/pages/attacks/Alert)02/08/1203/21/22[https://web.archive.org/web/20160326235313/http://www.mitls.org/pages/attacks/Alert](https://web.archive.org/web/20160326235313/http://www.mitls.org/pages/attacks/Alert)[3SHAKE](https://www.mitls.org/pages/attacks/3SHAKE)![](https://vulnerability.garden/assets/img/vulns/3shake.png)05/19/14[CVE\-2013\-6628](https://nvd.nist.gov/vuln/detail/CVE-2013-6628)03/21/22[https://web.archive.org/web/20160326204759/http://www.mitls.org/pages/attacks/3SHAKE](https://web.archive.org/web/20160326204759/http://www.mitls.org/pages/attacks/3SHAKE)[SHAttered](http://shattered.io/)![](https://vulnerability.garden/assets/img/vulns/shattered.png)01/17/1703/18/22[https://web.archive.org/web/20170223132244/http://shattered.io/](https://web.archive.org/web/20170223132244/http://shattered.io/)[SpecROP](https://www.usenix.org/conference/raid2020/presentation/bhattacharyya)10/14/2003/17/22[https://www.usenix.org/conference/raid2020/proceedings](https://www.usenix.org/conference/raid2020/proceedings)[cr8escape](https://www.crowdstrike.com/en-us/blog/cr8escape-new-vulnerability-discovered-in-cri-o-container-engine-cve-2022-0811/)03/15/22[CVE\-2022\-0811](https://nvd.nist.gov/vuln/detail/CVE-2022-0811)03/16/22[powerdir](https://www.microsoft.com/en-us/security/blog/2022/01/10/new-macos-vulnerability-powerdir-could-lead-to-unauthorized-user-data-access/)01/10/22[CVE\-2021\-30970](https://nvd.nist.gov/vuln/detail/CVE-2021-30970)03/16/22[Branch History Injection](https://www.vusec.net/projects/bhi-spectre-bhb/)03/08/22[CVE\-2022\-0001](https://nvd.nist.gov/vuln/detail/CVE-2022-0001)[CVE\-2022\-0002](https://nvd.nist.gov/vuln/detail/CVE-2022-0002)[CVE\-2022\-23960](https://nvd.nist.gov/vuln/detail/CVE-2022-23960)03/10/22[TP240PhoneHome](https://www.akamai.com/blog/security/phone-home-ddos-attack-vector)03/08/22[CVE\-2022\-26143](https://nvd.nist.gov/vuln/detail/CVE-2022-26143)03/09/22[TLStorm](https://www.armis.com/research/tlstorm/)![](https://vulnerability.garden/assets/img/vulns/tlstorm.png)03/08/22[CVE\-2022\-0715](https://nvd.nist.gov/vuln/detail/CVE-2022-0715)[CVE\-2022\-22805](https://nvd.nist.gov/vuln/detail/CVE-2022-22805)[CVE\-2022\-22806](https://nvd.nist.gov/vuln/detail/CVE-2022-22806)03/09/22[AutoWarp](https://orca.security/resources/blog/autowarp-microsoft-azure-automation-service-vulnerability/)03/07/2203/08/22[Access:7](https://www.forescout.com/research-labs/access7/)02/01/22[CVE\-2022\-25247](https://nvd.nist.gov/vuln/detail/CVE-2022-25247)[CVE\-2022\-25246](https://nvd.nist.gov/vuln/detail/CVE-2022-25246)[CVE\-2022\-25251](https://nvd.nist.gov/vuln/detail/CVE-2022-25251)[CVE\-2022\-25249](https://nvd.nist.gov/vuln/detail/CVE-2022-25249)[CVE\-2022\-25250](https://nvd.nist.gov/vuln/detail/CVE-2022-25250)\.\.\.*and 2 more*03/08/22[Dirty Pipe](https://dirtypipe.cm4all.com/)03/07/22[CVE\-2022\-0847](https://nvd.nist.gov/vuln/detail/CVE-2022-0847)03/07/22[RevEAL](https://research.ece.ncsu.edu/aaysu/wp-content/uploads/DATE_2022_camera_ready_file.pdf)12/31/2103/03/22[https://web.archive.org/web/20211231035537/https://research.ece.ncsu.edu/aaysu/wp-content/uploads/DATE_2022_camera_ready_file.pdf](https://web.archive.org/web/20211231035537/https://research.ece.ncsu.edu/aaysu/wp-content/uploads/DATE_2022_camera_ready_file.pdf)[unholy PAC](https://blackhat.com/docs/us-16/materials/us-16-Kotler-Crippling-HTTPS-With-Unholy-PAC.pdf)07/22/1603/01/22[https://github.com/SafeBreach-Labs/pacdoor](https://github.com/SafeBreach-Labs/pacdoor)[Lucky Thirteen](https://www.isg.rhul.ac.uk/tls/TLStiming.pdf)02/27/13[CVE\-2013\-0169](https://nvd.nist.gov/vuln/detail/CVE-2013-0169)03/01/22[Golden GMSA](https://www.semperis.com/blog/golden-gmsa-attack/)03/02/2203/01/22[CREAM](https://tonyarcieri.com/cream-the-scary-ssl-attack-youve-probably-never-heard-of)11/11/1403/01/22[https://cr.yp.to/antiforgery/cachetiming-20050414.pdf](https://cr.yp.to/antiforgery/cachetiming-20050414.pdf)[Cloudbleed](https://project-zero.issues.chromium.org/issues/42450151)![](https://vulnerability.garden/assets/img/vulns/cloudbleed.png)02/19/1703/01/22[https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/](https://blog.cloudflare.com/incident-report-on-memory-leak-caused-by-cloudflare-parser-bug/)[https://blog.cloudflare.com/quantifying-the-impact-of-cloudbleed/](https://blog.cloudflare.com/quantifying-the-impact-of-cloudbleed/)BERserk 09/25/14[CVE\-2014\-1568](https://nvd.nist.gov/vuln/detail/CVE-2014-1568)03/01/22[https://www.mozilla.org/en-US/security/advisories/mfsa2014-73/](https://www.mozilla.org/en-US/security/advisories/mfsa2014-73/)[MachSwap](https://sparkes.zone/blog/ios/2019/04/30/machswap-ios-12-kernel-exploit.html)04/30/1902/28/22[BrokenPrint](https://research.nccgroup.com/2022/02/28/brokenprint-a-netgear-stack-overflow/)02/28/2202/28/22[https://web.archive.org/web/20220228140308/https://research.nccgroup.com/2022/02/28/brokenprint-a-netgear-stack-overflow/](https://web.archive.org/web/20220228140308/https://research.nccgroup.com/2022/02/28/brokenprint-a-netgear-stack-overflow/)[Talkative Marmot](https://sutcliffe.it/posts/my_first_vuln/)02/21/22[CVE\-2021\-28500](https://nvd.nist.gov/vuln/detail/CVE-2021-28500)02/21/22[ice phishing](https://www.microsoft.com/en-us/security/blog/2022/02/16/ice-phishing-on-the-blockchain/)02/16/2202/18/22[Unbridled Optimism](https://www.saurik.com/optimism.html)02/02/2202/15/22[GitBleed](https://wwws.nightwatchcybersecurity.com/2022/02/11/gitbleed/)![](https://vulnerability.garden/assets/img/vulns/gitbleed.png)02/11/22[CVE\-2022\-24975](https://nvd.nist.gov/vuln/detail/CVE-2022-24975)02/11/22[SpoolFool](https://research.ifcr.dk/spoolfool-windows-print-spooler-privilege-escalation-cve-2022-22718-bf7752b68d81)02/08/22[CVE\-2022\-21999](https://nvd.nist.gov/vuln/detail/CVE-2022-21999)02/08/22[PwnKit](https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034)![](https://vulnerability.garden/assets/img/vulns/pwnkit.webp)01/25/22[CVE\-2021\-4034](https://nvd.nist.gov/vuln/detail/CVE-2021-4034)01/25/22[https://github.com/ly4k/PwnKit](https://github.com/ly4k/PwnKit)[Superglue](https://orca.security/resources/blog/aws-glue-vulnerability/)01/13/2201/14/22[NoReboot](https://blog.zecops.com/research/persistence-without-persistence-meet-the-ultimate-persistence-bug-noreboot/)01/04/2201/05/22[https://web.archive.org/web/20220104235516/https://blog.zecops.com/research/persistence-without-persistence-meet-the-ultimate-persistence-bug-noreboot/](https://web.archive.org/web/20220104235516/https://blog.zecops.com/research/persistence-without-persistence-meet-the-ultimate-persistence-bug-noreboot/)[Y2K22](https://www.reddit.com/r/sysadmin/comments/rt91z6/comment/hqrnefz/)12/31/2101/01/22[https://techcommunity.microsoft.com/blog/exchange/email-stuck-in-exchange-on-premises-transport-queues/3049447](https://techcommunity.microsoft.com/blog/exchange/email-stuck-in-exchange-on-premises-transport-queues/3049447)[https://techcommunity.microsoft.com/blog/exchange/december-2021-exchange-server-cumulative-updates-postponed/3036090/replies/3049189#M31885](https://techcommunity.microsoft.com/blog/exchange/december-2021-exchange-server-cumulative-updates-postponed/3036090/replies/3049189#M31885)[doorLock](https://trevorspiniolas.com/doorlock/doorlock.html)![](https://vulnerability.garden/assets/img/vulns/doorlock.png)01/01/2201/01/22[https://web.archive.org/web/20220101080331/https://trevorspiniolas.com/doorlock/doorlock.html](https://web.archive.org/web/20220101080331/https://trevorspiniolas.com/doorlock/doorlock.html)[https://web.archive.org/web/20220101080413/https://trevorspiniolas.com/doorlock/report.pdf](https://web.archive.org/web/20220101080413/https://trevorspiniolas.com/doorlock/report.pdf)[https://web.archive.org/web/20220101205925/https://github.com/trevorspiniolas/homekitdos](https://web.archive.org/web/20220101205925/https://github.com/trevorspiniolas/homekitdos)[NotLegit](https://www.wiz.io/blog/azure-app-service-source-code-leak)12/21/2112/27/21[Spectra](https://i.blackhat.com/USA-20/Thursday/us-20-Classen-Spectra-Breaking-Separation-Between-Wireless-Chips.pdf)![](https://vulnerability.garden/assets/img/vulns/spectra.png)12/10/21[CVE\-2019\-15063](https://nvd.nist.gov/vuln/detail/CVE-2019-15063)[CVE\-2020\-10370](https://nvd.nist.gov/vuln/detail/CVE-2020-10370)[CVE\-2020\-10369](https://nvd.nist.gov/vuln/detail/CVE-2020-10369)12/16/21[https://arxiv.org/pdf/2112.05719](https://arxiv.org/pdf/2112.05719)[Log4Shell](https://twitter.com/P0rZ9/status/1468949890571337731)12/09/21[CVE\-2021\-44228](https://nvd.nist.gov/vuln/detail/CVE-2021-44228)12/10/21[https://web.archive.org/web/20211209230040/https://twitter.com/P0rZ9/status/1468949890571337731](https://web.archive.org/web/20211209230040/https://twitter.com/P0rZ9/status/1468949890571337731)[https://github.com/tangxiaofeng7/CVE-2021-44228-Apache-Log4j-Rce?tab=readme-ov-file](https://github.com/tangxiaofeng7/CVE-2021-44228-Apache-Log4j-Rce?tab=readme-ov-file)[https://en.wikipedia.org/wiki/Log4Shell](https://en.wikipedia.org/wiki/Log4Shell)[https://www.cnblogs.com/yyhuni/p/8u191_jndi_inject.html](https://www.cnblogs.com/yyhuni/p/8u191_jndi_inject.html)[XS\-Leaks](https://xsleaks.dev/)07/20/2012/03/21[BigSig](https://project-zero.issues.chromium.org/issues/42451359)10/24/21[CVE\-2021\-43527](https://nvd.nist.gov/vuln/detail/CVE-2021-43527)12/02/21[Printing Shellz](https://labs.f-secure.com/publications/printing-shellz)11/30/21[CVE\-2021\-39237](https://nvd.nist.gov/vuln/detail/CVE-2021-39237)[CVE\-2021\-39238](https://nvd.nist.gov/vuln/detail/CVE-2021-39238)11/30/21[https://web.archive.org/web/20211130143636/https://labs.f-secure.com/publications/printing-shellz](https://web.archive.org/web/20211130143636/https://labs.f-secure.com/publications/printing-shellz)[https://web.archive.org/web/20211130203831/https://blog.f-secure.com/hp-printer-vulnerabilities/](https://web.archive.org/web/20211130203831/https://blog.f-secure.com/hp-printer-vulnerabilities/)[CredManifest](https://www.netspi.com/blog/technical-blog/cloud-penetration-testing/azure-cloud-vulnerability-credmanifest/)11/17/21[CVE\-2021\-42306](https://nvd.nist.gov/vuln/detail/CVE-2021-42306)11/18/21[NUCLEUS:13](https://www.forescout.com/research-labs/nucleus-13/)10/12/21[CVE\-2021\-31344](https://nvd.nist.gov/vuln/detail/CVE-2021-31344)[CVE\-2021\-31886](https://nvd.nist.gov/vuln/detail/CVE-2021-31886)11/09/21[https://www.forescout.com/research-labs/project-memoria/](https://www.forescout.com/research-labs/project-memoria/)[Blue Klotski](https://movaxbx.ru/2021/11/04/blue-klotski-cve-2021-3573-and-the-story-for-fixing/)04/11/21[CVE\-2021\-3573](https://nvd.nist.gov/vuln/detail/CVE-2021-3573)11/04/21[https://web.archive.org/web/20211201040639/https://movaxbx.ru/2021/11/04/blue-klotski-cve-2021-3573-and-the-story-for-fixing/?noamp=available](https://web.archive.org/web/20211201040639/https://movaxbx.ru/2021/11/04/blue-klotski-cve-2021-3573-and-the-story-for-fixing/?noamp=available)[Trojan Source](https://trojansource.codes/)![](https://vulnerability.garden/assets/img/vulns/trojansource.png)10/18/21[CVE\-2021\-42574](https://nvd.nist.gov/vuln/detail/CVE-2021-42574)[CVE\-2021\-42694](https://nvd.nist.gov/vuln/detail/CVE-2021-42694)11/01/21[Shrootless](https://www.microsoft.com/en-us/security/blog/2021/10/28/microsoft-finds-new-macos-vulnerability-shrootless-that-could-bypass-system-integrity-protection/)10/28/21[CVE\-2021\-30892](https://nvd.nist.gov/vuln/detail/CVE-2021-30892)10/28/21[Gummy Browsers](https://arxiv.org/pdf/2110.10129)10/19/2110/25/21[CallbackHell](https://www.kaspersky.com/blog/mysterysnail-cve-2021-40449/42448/)10/12/21[CVE\-2021\-40449](https://nvd.nist.gov/vuln/detail/CVE-2021-40449)10/25/21[https://github.com/ly4k/CallbackHell?tab=readme-ov-file](https://github.com/ly4k/CallbackHell?tab=readme-ov-file)[SmashEx](https://jasonyu1996.github.io/SmashEx/)![](https://vulnerability.garden/assets/img/vulns/smashex.png)11/16/21[CVE\-2021\-33767](https://nvd.nist.gov/vuln/detail/CVE-2021-33767)[CVE\-2021\-0186](https://nvd.nist.gov/vuln/detail/CVE-2021-0186)10/20/21[LANTENNA](https://arxiv.org/pdf/2110.00104)09/30/2110/14/21[https://www.covertchannels.com/](https://www.covertchannels.com/)[OMIGOD](https://www.wiz.io/blog/omigod-critical-vulnerabilities-in-omi-azure)09/14/21[CVE\-2021\-38647](https://nvd.nist.gov/vuln/detail/CVE-2021-38647)[CVE\-2021\-38648](https://nvd.nist.gov/vuln/detail/CVE-2021-38648)[CVE\-2021\-38645](https://nvd.nist.gov/vuln/detail/CVE-2021-38645)[CVE\-2021\-38649](https://nvd.nist.gov/vuln/detail/CVE-2021-38649)09/13/21[FORCEDENTRY](https://citizenlab.ca/research/forcedentry-nso-group-imessage-zero-click-exploit-captured-in-the-wild/)09/13/21[CVE\-2021\-30860](https://nvd.nist.gov/vuln/detail/CVE-2021-30860)09/13/21[Spook\.js](https://www.spookjs.com/)![](https://vulnerability.garden/assets/img/vulns/spookjs.svg)09/08/2109/13/21[https://architecture.fail/](https://architecture.fail/)[Azurescape](https://unit42.paloaltonetworks.com/azure-container-instances/)09/09/21[CVE\-2018\-1002102](https://nvd.nist.gov/vuln/detail/CVE-2018-1002102)[CVE\-2019\-5736](https://nvd.nist.gov/vuln/detail/CVE-2019-5736)09/09/21[Seventh Inferno](https://gynvael.coldwind.pl/?id=742)![](https://vulnerability.garden/assets/img/vulns/seventhinferno.jpg)09/06/21[CVE\-2021\-41314](https://nvd.nist.gov/vuln/detail/CVE-2021-41314)09/06/21[Draconian Fear](https://gynvael.coldwind.pl/?id=741)![](https://vulnerability.garden/assets/img/vulns/draconianfear.jpg)09/06/21[CVE\-2021\-40867](https://nvd.nist.gov/vuln/detail/CVE-2021-40867)09/06/21[Demon's Cries](https://gynvael.coldwind.pl/?id=740)![](https://vulnerability.garden/assets/img/vulns/demonscries.jpg)09/06/21[CVE\-2021\-40866](https://nvd.nist.gov/vuln/detail/CVE-2021-40866)09/06/21[SweynTooth](https://asset-group.github.io/disclosures/sweyntooth/)![](https://vulnerability.garden/assets/img/vulns/sweyntooth.jpg)02/11/20[CVE\-2019\-16336](https://nvd.nist.gov/vuln/detail/CVE-2019-16336)[CVE\-2020\-13595](https://nvd.nist.gov/vuln/detail/CVE-2020-13595)09/03/21[BrakTooth](https://asset-group.github.io/disclosures/braktooth/)![](https://vulnerability.garden/assets/img/vulns/braktooth.png)11/01/21[CVE\-2021\-28135](https://nvd.nist.gov/vuln/detail/CVE-2021-28135)[CVE\-2022\-20021](https://nvd.nist.gov/vuln/detail/CVE-2022-20021)09/03/21[SPARROW](https://arxiv.org/abs/2108.12161)08/27/2109/01/21[https://www.youtube.com/watch?v=oaLIo9HwW-g](https://www.youtube.com/watch?v=oaLIo9HwW-g)[CVD\-2021\-0045](https://www.gsma.com/solutions-and-impact/technologies/security/gsma-mobile-security-research-acknowledgements/)[ProxyToken](https://www.zerodayinitiative.com/blog/2021/8/30/proxytoken-an-authentication-bypass-in-microsoft-exchange-server)08/30/21[CVE\-2021\-33766](https://nvd.nist.gov/vuln/detail/CVE-2021-33766)08/30/21[ChaosDB](https://chaosdb.wiz.io/)![](https://vulnerability.garden/assets/img/vulns/chaosdb.svg)08/26/2108/26/21[Devil's Ivy](http://blog.senr.io/devilsivy.html)07/18/17[CVE\-2017\-9765](https://nvd.nist.gov/vuln/detail/CVE-2017-9765)08/16/21[https://blog.senr.io/blog/devils-ivy-flaw-in-widely-used-third-party-code-impacts-millions](https://blog.senr.io/blog/devils-ivy-flaw-in-widely-used-third-party-code-impacts-millions)[https://web.archive.org/web/20170719030116/http://blog.senr.io/devilsivy.html](https://web.archive.org/web/20170719030116/http://blog.senr.io/devilsivy.html)[Glowworm Attack](https://www.nassiben.com/glowworm-attack)![](https://vulnerability.garden/assets/img/vulns/glowworm.png)08/13/2108/13/21[SegmentSmack](https://www.spinics.net/lists/netdev/msg514742.html)08/06/18[CVE\-2018\-5390](https://nvd.nist.gov/vuln/detail/CVE-2018-5390)08/09/21[https://www.kb.cert.org/vuls/id/962459](https://www.kb.cert.org/vuls/id/962459)FragmentSmack 09/06/18[CVE\-2018\-5391](https://nvd.nist.gov/vuln/detail/CVE-2018-5391)08/09/21[https://www.kb.cert.org/vuls/id/641765](https://www.kb.cert.org/vuls/id/641765)[ProxyShell](https://blog.orange.tw/posts/2021-08-proxyshell-a-new-attack-surface-on-ms-exchange-part-3/)08/18/21[CVE\-2021\-34473](https://nvd.nist.gov/vuln/detail/CVE-2021-34473)[CVE\-2021\-34523](https://nvd.nist.gov/vuln/detail/CVE-2021-34523)[CVE\-2021\-31207](https://nvd.nist.gov/vuln/detail/CVE-2021-31207)08/06/21[https://www.zerodayinitiative.com/blog/2021/8/17/from-pwn2own-2021-a-new-attack-surface-on-microsoft-exchange-proxyshell](https://www.zerodayinitiative.com/blog/2021/8/17/from-pwn2own-2021-a-new-attack-surface-on-microsoft-exchange-proxyshell)[ProxyOracle](https://blog.orange.tw/posts/2021-08-proxyoracle-a-new-attack-surface-on-ms-exchange-part-2/)08/07/21[CVE\-2021\-31195](https://nvd.nist.gov/vuln/detail/CVE-2021-31195)[CVE\-2021\-31196](https://nvd.nist.gov/vuln/detail/CVE-2021-31196)08/06/21[Hotcobalt](https://www.sentinelone.com/labs/hotcobalt-new-cobalt-strike-dos-vulnerability-that-lets-you-halt-operations/)08/04/21[CVE\-2021\-36798](https://nvd.nist.gov/vuln/detail/CVE-2021-36798)08/05/21[INFRA:HALT](https://www.forescout.com/research-labs/infra-halt/)08/04/21[CVE\-2020\-25928](https://nvd.nist.gov/vuln/detail/CVE-2020-25928)[CVE\-2021\-31226](https://nvd.nist.gov/vuln/detail/CVE-2021-31226)08/04/21[https://www.forescout.com/research-labs/project-memoria/](https://www.forescout.com/research-labs/project-memoria/)[PwnedPiper](https://www.armis.com/research/pwnedpiper)![](https://vulnerability.garden/assets/img/vulns/pwnedpiper.png)08/02/21[CVE\-2021\-37160](https://nvd.nist.gov/vuln/detail/CVE-2021-37160)08/02/21[PetitPotam](https://github.com/topotam/PetitPotam?tab=readme-ov-file)07/18/21[CVE\-2022\-26925](https://nvd.nist.gov/vuln/detail/CVE-2022-26925)07/26/21[https://x.com/raphajohnsec/status/1524088436809940995](https://x.com/raphajohnsec/status/1524088436809940995)[Sequoia](https://blog.qualys.com/vulnerabilities-threat-research/2021/07/20/sequoia-a-local-privilege-escalation-vulnerability-in-linuxs-filesystem-layer-cve-2021-33909)![](https://vulnerability.garden/assets/img/vulns/sequoia.webp)07/20/21[CVE\-2021\-33909](https://nvd.nist.gov/vuln/detail/CVE-2021-33909)07/21/21 HiveNightmare / SeriousSAM 07/20/21[CVE\-2021\-36934](https://nvd.nist.gov/vuln/detail/CVE-2021-36934)07/21/21[https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-36934](https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-36934)[https://github.com/GossiTheDog/HiveNightmare](https://github.com/GossiTheDog/HiveNightmare)[https://x.com/jonasLyk/status/1417205166172950531](https://x.com/jonasLyk/status/1417205166172950531)[WiFIDemon](https://blog.zecops.com/research/meet-wifidemon-ios-wifi-rce-0-day-vulnerability-and-a-zero-click-vulnerability-that-was-silently-patched/)07/17/2107/18/21[https://web.archive.org/web/20210717140020/https://blog.zecops.com/research/meet-wifidemon-ios-wifi-rce-0-day-vulnerability-and-a-zero-click-vulnerability-that-was-silently-patched/](https://web.archive.org/web/20210717140020/https://blog.zecops.com/research/meet-wifidemon-ios-wifi-rce-0-day-vulnerability-and-a-zero-click-vulnerability-that-was-silently-patched/)[ModiPwn](https://www.armis.com/research/modipwn/)11/13/20[CVE\-2021\-22779](https://nvd.nist.gov/vuln/detail/CVE-2021-22779)07/13/21[RECON](https://onapsis.com/recon-sap-cyber-security-vulnerability)07/14/20[CVE\-2020\-6287](https://nvd.nist.gov/vuln/detail/CVE-2020-6287)07/11/21[https://web.archive.org/web/20200714150126/https://onapsis.com/recon-sap-cyber-security-vulnerability](https://web.archive.org/web/20200714150126/https://onapsis.com/recon-sap-cyber-security-vulnerability)[V0LTpwn](https://github.com/zkenjar/v0ltpwn)12/15/19[CVE\-2019\-11157](https://nvd.nist.gov/vuln/detail/CVE-2019-11157)06/28/21[https://www.usenix.org/system/files/sec20fall_kenjar_prepub.pdf](https://www.usenix.org/system/files/sec20fall_kenjar_prepub.pdf)[Thunderstrike](https://trmm.net/Thunderstrike/)![](https://vulnerability.garden/assets/img/vulns/thunderstrike.png)01/30/15[CVE\-2014\-4498](https://nvd.nist.gov/vuln/detail/CVE-2014-4498)06/28/21[Thunderstrike 2](https://trmm.net/Thunderstrike_2/)05/14/15[CVE\-2015\-3692](https://nvd.nist.gov/vuln/detail/CVE-2015-3692)06/28/21[SENTER Sandman](https://archive.conference.hitb.org/hitbsecconf2014kul/wp-content/uploads/2014/08/HITB2014KUL-SENTER-Sandman.pdf)06/06/1606/28/21[https://infocondb.org/con/summercon/summercon-2014/senter-sandman-using-intel-txt-to-attack-bioses](https://infocondb.org/con/summercon/summercon-2014/senter-sandman-using-intel-txt-to-attack-bioses)[Evil Maid](https://sepiocyber.com/blog/evil-maid-attack/)01/21/0906/28/21[https://securityaffairs.com/117139/hacking/evil-maid-attack-vacuum-hack.html](https://securityaffairs.com/117139/hacking/evil-maid-attack-vacuum-hack.html)[https://theinvisiblethings.blogspot.com/2009/01/why-do-i-miss-microsoft-bitlocker.html](https://theinvisiblethings.blogspot.com/2009/01/why-do-i-miss-microsoft-bitlocker.html)[CopyCat](https://arxiv.org/abs/2002.08437)06/26/20[CVEs 2019\-1996](https://nvd.nist.gov/vuln/detail/CVEs%202019-1996)[CVE\-2020\-7960](https://nvd.nist.gov/vuln/detail/CVE-2020-7960)06/28/21[Broadpwn](https://blog.exodusintel.com/2017/07/26/broadpwn/)07/26/17[CVE\-2017\-0561](https://nvd.nist.gov/vuln/detail/CVE-2017-0561)[CVE\-2017\-9417](https://nvd.nist.gov/vuln/detail/CVE-2017-9417)06/28/21[https://blackhat.com/docs/us-17/thursday/us-17-Artenstein-Broadpwn-Remotely-Compromising-Android-And-iOS-Via-A-Bug-In-Broadcoms-Wifi-Chipsets-wp.pdf](https://blackhat.com/docs/us-17/thursday/us-17-Artenstein-Broadpwn-Remotely-Compromising-Android-And-iOS-Via-A-Bug-In-Broadcoms-Wifi-Chipsets-wp.pdf)[BranchScope](https://www.cs.ucr.edu/~nael/pubs/asplos18.pdf)03/24/1806/28/21[Process Ghosting](https://www.elastic.co/blog/process-ghosting-a-new-executable-image-tampering-attack)06/15/2106/16/21[Mistune](https://codecolor.ist/mistune/)![](https://vulnerability.garden/assets/img/vulns/mistune.png)11/11/20[CVE\-2021\-1748](https://nvd.nist.gov/vuln/detail/CVE-2021-1748)[CVE\-2021\-1864](https://nvd.nist.gov/vuln/detail/CVE-2021-1864)06/15/21[SuperFish](https://support.lenovo.com/us/en/product_security/ps500035-superfish-vulnerability)02/20/15[CVE\-2015\-2077](https://nvd.nist.gov/vuln/detail/CVE-2015-2077)06/11/21[Straight\-Line Speculation \(SLS\)](https://developer.arm.com/-/media/Arm%20Developer%20Community/PDF/Security%20Update%2008%20June%202020/Straight-line_Speculation-v1.0.pdf?revision=d7a69e60-1bb0-4dc0-b929-3685021e782a)06/12/20[CVE\-2020\-13844](https://nvd.nist.gov/vuln/detail/CVE-2020-13844)06/11/21[https://web.archive.org/web/20200608180850/https://developer.arm.com/-/media/Arm%20Developer%20Community/PDF/Security%20Update%2008%20June%202020/Straight-line_Speculation-v1.0.pdf?revision=d7a69e60-1bb0-4dc0-b929-3685021e782a](https://web.archive.org/web/20200608180850/https://developer.arm.com/-/media/Arm%20Developer%20Community/PDF/Security%20Update%2008%20June%202020/Straight-line_Speculation-v1.0.pdf?revision=d7a69e60-1bb0-4dc0-b929-3685021e782a)[https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html](https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html)[FaxHell](https://windows-internals.com/faxing-your-way-to-system/)04/30/2006/11/21[EtherLeak](https://ofirarkin.wordpress.com/wp-content/uploads/2008/11/atstake_etherleak_report.pdf)01/17/03[CVE\-2003\-0001](https://nvd.nist.gov/vuln/detail/CVE-2003-0001)06/10/21[ALPACA](https://alpaca-attack.com/)![](https://vulnerability.garden/assets/img/vulns/alpaca.png)06/09/21[CVE\-2021\-31971](https://nvd.nist.gov/vuln/detail/CVE-2021-31971)06/10/21[KOFFEE](https://sowhat.iit.cnr.it/pdf/IIT-20-2020.pdf)11/16/2006/06/21[https://web.archive.org/web/20201116163643/https://sowhat.iit.cnr.it/pdf/IIT-20-2020.pdf](https://web.archive.org/web/20201116163643/https://sowhat.iit.cnr.it/pdf/IIT-20-2020.pdf)[failStrike](https://x.com/shreyapohekar/status/1397969799305592832)05/27/21[CVE\-2021\-24348](https://nvd.nist.gov/vuln/detail/CVE-2021-24348)05/27/21[https://codevigilant.com/disclosure/2021/wp-plugin-side-menu/](https://codevigilant.com/disclosure/2021/wp-plugin-side-menu/)[M1RACLES](https://m1racles.com/)![](https://vulnerability.garden/assets/img/vulns/m1racles.png)05/25/21[CVE\-2021\-30747](https://nvd.nist.gov/vuln/detail/CVE-2021-30747)05/26/21[Half\-Double](https://security.googleblog.com/2021/05/introducing-half-double-new-hammering.html)05/25/2105/26/21[FragAttacks](https://www.fragattacks.com/)![](https://vulnerability.garden/assets/img/vulns/fragattacks.png)05/11/21[CVE\-2020\-24586](https://nvd.nist.gov/vuln/detail/CVE-2020-24586)[CVE\-2020\-24587](https://nvd.nist.gov/vuln/detail/CVE-2020-24587)[CVE\-2020\-24588](https://nvd.nist.gov/vuln/detail/CVE-2020-24588)05/12/21[tsuNAME](https://tsuname.io/)![](https://vulnerability.garden/assets/img/vulns/tsuname.jpg)05/06/2105/09/21[https://web.archive.org/web/20210307022306/https://tsuname.io/](https://web.archive.org/web/20210307022306/https://tsuname.io/)[MouseTrap](https://axelp.io/MouseTrap)05/05/21[CVE\-2021\-27569](https://nvd.nist.gov/vuln/detail/CVE-2021-27569)[CVE\-2021\-27570](https://nvd.nist.gov/vuln/detail/CVE-2021-27570)[CVE\-2021\-27571](https://nvd.nist.gov/vuln/detail/CVE-2021-27571)[CVE\-2021\-27572](https://nvd.nist.gov/vuln/detail/CVE-2021-27572)[CVE\-2021\-27573](https://nvd.nist.gov/vuln/detail/CVE-2021-27573)\.\.\.*and 1 more*05/09/21[21Nails](https://blog.qualys.com/vulnerabilities-threat-research/2021/05/04/21nails-multiple-vulnerabilities-in-exim-mail-server)![](https://vulnerability.garden/assets/img/vulns/21nails.png)05/04/21[CVE\-2020\-28017](https://nvd.nist.gov/vuln/detail/CVE-2020-28017)05/05/21[BadAlloc](https://www.microsoft.com/en-us/msrc/blog/2021/04/badalloc-memory-allocation-vulnerabilities-could-affect-wide-range-of-iot-and-ot-devices-in-industrial-medical-and-enterprise-networks)04/29/21[CVE\-2021\-3420](https://nvd.nist.gov/vuln/detail/CVE-2021-3420)[CVE\-2021\-22156](https://nvd.nist.gov/vuln/detail/CVE-2021-22156)04/30/21[Rotten Potato](https://foxglovesecurity.com/2016/09/26/rotten-potato-privilege-escalation-from-service-accounts-to-system/)09/26/16[CVE\-2016\-3225](https://nvd.nist.gov/vuln/detail/CVE-2016-3225)04/29/21[packet of the death](https://doar-e.github.io/blog/2021/04/15/reverse-engineering-tcpipsys-mechanics-of-a-packet-of-the-death-cve-2021-24086/)04/15/21[CVE\-2021\-24086](https://nvd.nist.gov/vuln/detail/CVE-2021-24086)04/15/21[SMASH](https://www.vusec.net/projects/smash/)03/16/2104/14/21[https://github.com/vusec/smash](https://github.com/vusec/smash)[https://comsec.ethz.ch/research/dram/smash/](https://comsec.ethz.ch/research/dram/smash/)[Airstrike Attack](https://shenaniganslabs.io/2021/04/13/Airstrike.html)04/13/21[CVE\-2021\-28316](https://nvd.nist.gov/vuln/detail/CVE-2021-28316)04/14/21[NAME:WRECK](https://www.forescout.com/research-labs/namewreck/)04/13/21[CVE\-2020\-7461](https://nvd.nist.gov/vuln/detail/CVE-2020-7461)[CVE\-2016\-20009](https://nvd.nist.gov/vuln/detail/CVE-2016-20009)[CVE\-2020\-15795](https://nvd.nist.gov/vuln/detail/CVE-2020-15795)[CVE\-2020\-27009](https://nvd.nist.gov/vuln/detail/CVE-2020-27009)[CVE\-2021\-25677](https://nvd.nist.gov/vuln/detail/CVE-2021-25677)04/13/21[https://www.forescout.com/research-labs/project-memoria/](https://www.forescout.com/research-labs/project-memoria/)[ELECTRIC CHROME](https://leethax0.rs/2021/04/ElectricChrome/)04/12/21[CVE\-2020\-6418](https://nvd.nist.gov/vuln/detail/CVE-2020-6418)04/13/21[https://web.archive.org/web/20210421025301/https://leethax0.rs/2021/04/ElectricChrome/](https://web.archive.org/web/20210421025301/https://leethax0.rs/2021/04/ElectricChrome/)[https://tfp0labs.com/blog/electric-chrome-cve-2020-6418-on-tesla-model-3](https://tfp0labs.com/blog/electric-chrome-cve-2020-6418-on-tesla-model-3)[AMNESIA:33](https://www.forescout.com/research-labs/amnesia33/)12/15/20[CVE\-2020\-24336](https://nvd.nist.gov/vuln/detail/CVE-2020-24336)[CVE\-2020\-24338](https://nvd.nist.gov/vuln/detail/CVE-2020-24338)[CVE\-2020\-25111](https://nvd.nist.gov/vuln/detail/CVE-2020-25111)04/13/21[https://www.forescout.com/research-labs/project-memoria/](https://www.forescout.com/research-labs/project-memoria/)[SMoTherSpectre](https://nebelwelt.net/blog/20190306-SMoTherSpectre.html)![](https://vulnerability.garden/assets/img/vulns/smotherspectre.png)03/06/1904/11/21[https://arxiv.org/abs/1903.01843](https://arxiv.org/abs/1903.01843)[SKIP\-TLS](https://www.smacktls.com/#skip)![](https://vulnerability.garden/assets/img/vulns/smacktls.png)01/21/15[CVE\-2014\-6593](https://nvd.nist.gov/vuln/detail/CVE-2014-6593)[CVE\-2015\-0205](https://nvd.nist.gov/vuln/detail/CVE-2015-0205)03/21/21[https://web.archive.org/web/20150304014811/https://www.smacktls.com#skip/](https://web.archive.org/web/20150304014811/https://www.smacktls.com#skip/)[https://web.archive.org/web/20250819000105/https://mitls.org/pages/attacks/SMACK#skip](https://web.archive.org/web/20250819000105/https://mitls.org/pages/attacks/SMACK#skip)[ProxyLogon](https://proxylogon.com/)![](https://vulnerability.garden/assets/img/vulns/proxylogon.png)03/12/21[CVE\-2021\-26855](https://nvd.nist.gov/vuln/detail/CVE-2021-26855)[CVE\-2021\-27065](https://nvd.nist.gov/vuln/detail/CVE-2021-27065)03/12/21[https://blog.orange.tw/posts/2021-08-proxylogon-a-new-attack-surface-on-ms-exchange-part-1/](https://blog.orange.tw/posts/2021-08-proxylogon-a-new-attack-surface-on-ms-exchange-part-1/)[Shadow Attacks](https://www.ndss-symposium.org/wp-content/uploads/ndss2021_1B-4_24117_paper.pdf)02/23/21[CVE\-2020\-9592](https://nvd.nist.gov/vuln/detail/CVE-2020-9592)[CVE\-2020\-9596](https://nvd.nist.gov/vuln/detail/CVE-2020-9596)02/23/21[https://www.ndss-symposium.org/ndss-program/ndss-2021/](https://www.ndss-symposium.org/ndss-program/ndss-2021/)[NUMBER:JACK](https://www.forescout.com/blog/numberjack-forescout-research-labs-finds-nine-isn-generation-vulnerabilities-affecting-tcpip-stacks/)02/12/21[CVE\-2020\-27213](https://nvd.nist.gov/vuln/detail/CVE-2020-27213)[CVE\-2020\-27630](https://nvd.nist.gov/vuln/detail/CVE-2020-27630)02/12/21[https://www.forescout.com/research-labs/project-memoria/](https://www.forescout.com/research-labs/project-memoria/)[PrintNightmare](https://learn.microsoft.com/en-us/answers/questions/830233/patch-to-fix-printnightmare-vulnerability)06/29/21[CVE\-2021\-1675](https://nvd.nist.gov/vuln/detail/CVE-2021-1675)[CVE\-2021\-34527](https://nvd.nist.gov/vuln/detail/CVE-2021-34527)01/29/21[https://www.theregister.com/2021/06/30/windows_print_spool_vuln_rce/](https://www.theregister.com/2021/06/30/windows_print_spool_vuln_rce/)[https://github.com/blackorbird/PrintNightmare](https://github.com/blackorbird/PrintNightmare)[https://github.com/cube0x0/CVE-2021-1675](https://github.com/cube0x0/CVE-2021-1675)[Baron Samedit \\ pwnEDIT](https://blog.qualys.com/vulnerabilities-threat-research/2021/01/26/cve-2021-3156-heap-based-buffer-overflow-in-sudo-baron-samedit)01/26/21[CVE\-2021\-3156](https://nvd.nist.gov/vuln/detail/CVE-2021-3156)01/27/21[KindleDrip](https://medium.com/@baronyogev/kindledrip-from-your-kindles-email-address-to-using-your-credit-card-bb93dbfb2a08)![](https://vulnerability.garden/assets/img/vulns/kindledrip.webp)01/21/2101/22/21[ShazLocate\!](https://www.ash-king.co.uk/blog/Shazlocate-abusing-CVE-2019-8791-CVE-2019-8792)01/17/21[CVE\-2019\-8791](https://nvd.nist.gov/vuln/detail/CVE-2019-8791)[CVE\-2019\-8792](https://nvd.nist.gov/vuln/detail/CVE-2019-8792)01/20/21[DNSpooq](https://www.jsof-tech.com/disclosures/dnspooq/)![](https://vulnerability.garden/assets/img/vulns/dnspooq.png)01/19/21[CVE\-2020\-25686](https://nvd.nist.gov/vuln/detail/CVE-2020-25686)[CVE\-2020\-25684](https://nvd.nist.gov/vuln/detail/CVE-2020-25684)[CVE\-2020\-25685](https://nvd.nist.gov/vuln/detail/CVE-2020-25685)[CVE\-2020\-25687](https://nvd.nist.gov/vuln/detail/CVE-2020-25687)[CVE\-2020\-25683](https://nvd.nist.gov/vuln/detail/CVE-2020-25683)\.\.\.*and 2 more*01/19/21[https://web.archive.org/web/20210119133618/https://www.jsof-tech.com/disclosures/dnspooq/](https://web.archive.org/web/20210119133618/https://www.jsof-tech.com/disclosures/dnspooq/)[Cable Haunt](https://cablehaunt.com/)![](https://vulnerability.garden/assets/img/vulns/cablehaunt.png)01/07/20[CVE\-2019\-19494](https://nvd.nist.gov/vuln/detail/CVE-2019-19494)[CVE\-2019\-19495](https://nvd.nist.gov/vuln/detail/CVE-2019-19495)01/14/21[Kerberos Bronze Bit Attack](https://www.netspi.com/blog/technical-blog/network-pentesting/cve-2020-17049-kerberos-bronze-bit-overview/)12/08/20[CVE\-2020\-17049](https://nvd.nist.gov/vuln/detail/CVE-2020-17049)12/10/20[Raccoon](https://raccoon-attack.com/)![](https://vulnerability.garden/assets/img/vulns/raccoon.png)09/09/20[CVE\-2020\-5929](https://nvd.nist.gov/vuln/detail/CVE-2020-5929)[CVE\-2020\-1968](https://nvd.nist.gov/vuln/detail/CVE-2020-1968)[CVE\-2020\-12413](https://nvd.nist.gov/vuln/detail/CVE-2020-12413)11/19/20[SAD DNS](https://www.saddns.net/)![](https://vulnerability.garden/assets/img/vulns/saddns.png)10/15/20[CVE\-2020\-25705](https://nvd.nist.gov/vuln/detail/CVE-2020-25705)[CVE\-2025\-24934](https://nvd.nist.gov/vuln/detail/CVE-2025-24934)[CVE\-2025\-24935](https://nvd.nist.gov/vuln/detail/CVE-2025-24935)[CVE\-2024\-47678](https://nvd.nist.gov/vuln/detail/CVE-2024-47678)[CVE\-2021\-20322](https://nvd.nist.gov/vuln/detail/CVE-2021-20322)11/12/20[Platypus](https://platypusattack.com/)![](https://vulnerability.garden/assets/img/vulns/platypus.svg)11/10/20[CVE\-2020\-8694](https://nvd.nist.gov/vuln/detail/CVE-2020-8694)[CVE\-2020\-8695](https://nvd.nist.gov/vuln/detail/CVE-2020-8695)11/11/20[LVI](https://lviattack.eu/)![](https://vulnerability.garden/assets/img/vulns/lvi.png)03/10/20[CVE\-2020\-0551](https://nvd.nist.gov/vuln/detail/CVE-2020-0551)11/08/20[https://architecture.fail/](https://architecture.fail/)[Gateway2Hell](https://cymptom.com/gateway2hell-multiple-privilege-escalation-vulnerabilities-in-citrix-gateway-plug-in/2020/10/)10/20/20[CVE\-2020\-8257](https://nvd.nist.gov/vuln/detail/CVE-2020-8257)[CVE\-2020\-8258](https://nvd.nist.gov/vuln/detail/CVE-2020-8258)10/21/20[https://web.archive.org/web/20201031062817/https://cymptom.com/gateway2hell-multiple-privilege-escalation-vulnerabilities-in-citrix-gateway-plug-in/2020/10/](https://web.archive.org/web/20201031062817/https://cymptom.com/gateway2hell-multiple-privilege-escalation-vulnerabilities-in-citrix-gateway-plug-in/2020/10/)[ContainerDrip](https://darkbit.io/blog/cve-2020-15157-containerdrip)10/15/20[CVE\-2020\-15157](https://nvd.nist.gov/vuln/detail/CVE-2020-15157)10/20/20[https://web.archive.org/web/20201028224310/https://darkbit.io/blog/cve-2020-15157-containerdrip](https://web.archive.org/web/20201028224310/https://darkbit.io/blog/cve-2020-15157-containerdrip)[DOS2RCE](https://blog.br0vvnn.io/pages/blogpost.aspx?id=1&ln=0)10/13/2010/14/20[https://blog.br0vvnn.io/pages/blogpost.aspx?id=1&ln=0](https://blog.br0vvnn.io/pages/blogpost.aspx?id=1&ln=0)[Plug'nPwn](https://blog.t8012.dev/plug-n-pwn/)10/12/2010/14/20[https://web.archive.org/web/20201012213116/https://blog.t8012.dev/plug-n-pwn/](https://web.archive.org/web/20201012213116/https://blog.t8012.dev/plug-n-pwn/)[Ping of Death 2020](https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16899)10/13/20[CVE\-2020\-16899](https://nvd.nist.gov/vuln/detail/CVE-2020-16899)10/14/20[BleedingTooth](https://google.github.io/security-research/pocs/linux/bleedingtooth/writeup.html)10/13/20[CVE\-2020\-24490](https://nvd.nist.gov/vuln/detail/CVE-2020-24490)[CVE\-2020\-12352](https://nvd.nist.gov/vuln/detail/CVE-2020-12352)[CVE\-2020\-12351](https://nvd.nist.gov/vuln/detail/CVE-2020-12351)10/14/20[bits please\!](https://x.com/jonasLyk/status/1316104870987010048)10/13/20[CVE\-2020\-16938](https://nvd.nist.gov/vuln/detail/CVE-2020-16938)10/14/20[Bad Neighbor \(Ping of Death Redux\)](https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16898)10/13/20[CVE\-2020\-16898](https://nvd.nist.gov/vuln/detail/CVE-2020-16898)10/14/20[https://web.archive.org/web/20201109043644/https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16898](https://web.archive.org/web/20201109043644/https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16898)[Kraken](https://blog.malwarebytes.com/malwarebytes-news/2020/10/kraken-attack-abuses-wer-service/)10/06/2010/12/20[https://web.archive.org/web/20201007012740/https://blog.malwarebytes.com/malwarebytes-news/2020/10/kraken-attack-abuses-wer-service/](https://web.archive.org/web/20201007012740/https://blog.malwarebytes.com/malwarebytes-news/2020/10/kraken-attack-abuses-wer-service/)[BLURtooth](https://hexhive.epfl.ch/BLURtooth/)09/30/20[CVE\-2020\-15802](https://nvd.nist.gov/vuln/detail/CVE-2020-15802)09/30/20[zerologon](https://cybersecurity.bureauveritas.com/blog/zero-logon)09/11/20[CVE\-2020\-1472](https://nvd.nist.gov/vuln/detail/CVE-2020-1472)09/18/20[GlueBall](https://blog.virustotal.com/2019/01/distribution-of-malicious-jar-appended.html)01/15/19[CVE\-2020–1464](https://nvd.nist.gov/vuln/detail/CVE-2020%E2%80%931464)08/17/20[https://medium.com/@TalBeerySec/glueball-the-story-of-cve-2020-1464-50091a1f98bd](https://medium.com/@TalBeerySec/glueball-the-story-of-cve-2020-1464-50091a1f98bd)[ReVoLTE](https://revolte-attack.net/)![](https://vulnerability.garden/assets/img/vulns/revolte.png)08/12/2008/13/20[https://montsecure.com/research/revolte-attack/](https://montsecure.com/research/revolte-attack/)[https://www.usenix.org/conference/usenixsecurity20/technical-sessions](https://www.usenix.org/conference/usenixsecurity20/technical-sessions)[PrintDemon](https://windows-internals.com/printdemon-cve-2020-1048/)05/12/20[CVE\-2020\-1048](https://nvd.nist.gov/vuln/detail/CVE-2020-1048)08/11/20[EtherOops](https://www.armis.com/research/etheroops/)![](https://vulnerability.garden/assets/img/vulns/etheroops.png)08/05/2008/07/20[https://media.armis.com/pdfs/wp-armis-etheroops-en.pdf](https://media.armis.com/pdfs/wp-armis-etheroops-en.pdf)[CDPwn](https://www.armis.com/research/cdpwn/)![](https://vulnerability.garden/assets/img/vulns/cdpwn.png)02/05/20[CVE\-2020\-3119](https://nvd.nist.gov/vuln/detail/CVE-2020-3119)[CVE\-2020\-3118](https://nvd.nist.gov/vuln/detail/CVE-2020-3118)[CVE\-2020\-3111](https://nvd.nist.gov/vuln/detail/CVE-2020-3111)[CVE\-2020\-3110](https://nvd.nist.gov/vuln/detail/CVE-2020-3110)[CVE\-2020\-3120](https://nvd.nist.gov/vuln/detail/CVE-2020-3120)08/07/20[Achilles](https://blog.checkpoint.com/security/achilles-small-chip-big-peril/)08/06/20[CVE\-2020\-11201](https://nvd.nist.gov/vuln/detail/CVE-2020-11201)[CVE\-2020\-11202](https://nvd.nist.gov/vuln/detail/CVE-2020-11202)[CVE\-2020\-11206](https://nvd.nist.gov/vuln/detail/CVE-2020-11206)[CVE\-2020\-11207](https://nvd.nist.gov/vuln/detail/CVE-2020-11207)[CVE\-2020\-11208](https://nvd.nist.gov/vuln/detail/CVE-2020-11208)\.\.\.*and 1 more*08/07/20[https://web.archive.org/web/20230617032619/https://blog.checkpoint.com/security/achilles-small-chip-big-peril/](https://web.archive.org/web/20230617032619/https://blog.checkpoint.com/security/achilles-small-chip-big-peril/)[Unauthd](https://objective-see.org/blog/blog_0x4D.html)08/01/20[CVE\-2020–9854](https://nvd.nist.gov/vuln/detail/CVE-2020%E2%80%939854)08/03/20[BootHole](https://eclypsium.com/research/theres-a-hole-in-the-boot/)![](https://vulnerability.garden/assets/img/vulns/boothole.png)07/29/20[CVE\-2020\-10713](https://nvd.nist.gov/vuln/detail/CVE-2020-10713)[CVE\-2020\-7205](https://nvd.nist.gov/vuln/detail/CVE-2020-7205)07/29/20[EDUCATEDSCHOLAR](https://yadi.sk/d/NJqzpqo_3GxZA4)04/14/17[CVE\-2009\-2532](https://nvd.nist.gov/vuln/detail/CVE-2009-2532)[CVE\-2009\-3103](https://nvd.nist.gov/vuln/detail/CVE-2009-3103)07/28/20[https://www.nopsec.com/blog/the-shadow-brokers-leaked-equation-groups-hacking-tools-a-lab-demo-analysis/](https://www.nopsec.com/blog/the-shadow-brokers-leaked-equation-groups-hacking-tools-a-lab-demo-analysis/)[https://github.com/x0rz/EQGRP_Lost_in_Translation](https://github.com/x0rz/EQGRP_Lost_in_Translation)[https://steemit.com/shadowbrokers/@theshadowbrokers/lost-in-translation](https://steemit.com/shadowbrokers/@theshadowbrokers/lost-in-translation)[https://github.com/fuzzbunch/fuzzbunch?utm_source=nopsec](https://github.com/fuzzbunch/fuzzbunch?utm_source=nopsec)[https://github.com/misterch0c/shadowbroker](https://github.com/misterch0c/shadowbroker)[https://zerosum0x0.blogspot.com/2017/04/doublepulsar-initial-smb-backdoor-ring.html](https://zerosum0x0.blogspot.com/2017/04/doublepulsar-initial-smb-backdoor-ring.html)[https://learn.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-050](https://learn.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-050)[BadPower](https://xlab.tencent.com/cn/2020/07/16/badpower/)07/16/2007/21/20[https://web.archive.org/web/20200717113827/https://xlab.tencent.com/cn/2020/07/16/badpower/](https://web.archive.org/web/20200717113827/https://xlab.tencent.com/cn/2020/07/16/badpower/)[SIGRed](https://research.checkpoint.com/2020/resolving-your-way-into-domain-admin-exploiting-a-17-year-old-bug-in-windows-dns-servers/)![](https://vulnerability.garden/assets/img/vulns/sigred.png)07/14/20[CVE\-2020\-1350](https://nvd.nist.gov/vuln/detail/CVE-2020-1350)07/14/20[Kr00k](https://www.eset.com/afr/kr00k/)![](https://vulnerability.garden/assets/img/vulns/kr00k.png)02/26/20[CVE\-2019\-15126](https://nvd.nist.gov/vuln/detail/CVE-2019-15126)07/10/20[ZombieVPN](https://www.0xsha.io/posts/zombievpn-breaking-that-internet-security)![](https://vulnerability.garden/assets/img/vulns/zombievpn.png)05/21/20[CVE\-2020\-12828](https://nvd.nist.gov/vuln/detail/CVE-2020-12828)07/01/20[https://web.archive.org/web/20200724221431/https://www.0xsha.io/posts/zombievpn-breaking-that-internet-security](https://web.archive.org/web/20200724221431/https://www.0xsha.io/posts/zombievpn-breaking-that-internet-security)[BlueFrag](https://insinuator.net/2020/02/critical-bluetooth-vulnerability-in-android-cve-2020-0022/)02/06/20[CVE\-2020\-0022](https://nvd.nist.gov/vuln/detail/CVE-2020-0022)06/18/20[RIPPLE20](https://www.jsof-tech.com/ripple20/)![](https://vulnerability.garden/assets/img/vulns/ripple20.png)06/02/20[CVE\-2020\-11896](https://nvd.nist.gov/vuln/detail/CVE-2020-11896)[CVE\-2020\-11897](https://nvd.nist.gov/vuln/detail/CVE-2020-11897)[CVE\-2020\-11898](https://nvd.nist.gov/vuln/detail/CVE-2020-11898)06/16/20[https://www.forescout.com/research-labs/project-memoria/](https://www.forescout.com/research-labs/project-memoria/)[https://web.archive.org/web/20200702203704/https://www.jsof-tech.com/ripple20/](https://web.archive.org/web/20200702203704/https://www.jsof-tech.com/ripple20/)[PAYDAY](https://onapsis.com/blog/oracle-payday-vulnerabilities/)11/19/19[CVE\-2019\-2633](https://nvd.nist.gov/vuln/detail/CVE-2019-2633)[CVE\-2019\-2638](https://nvd.nist.gov/vuln/detail/CVE-2019-2638)06/16/20[BigDebIT](https://www.onapsis.com/oracle-bigdebit-vulnerabilities)06/16/20[CVE\-2020\-2586](https://nvd.nist.gov/vuln/detail/CVE-2020-2586)[CVE\-2020\-2587](https://nvd.nist.gov/vuln/detail/CVE-2020-2587)06/16/20[https://web.archive.org/web/20200716171138/https://www.onapsis.com/oracle-bigdebit-vulnerabilities](https://web.archive.org/web/20200716171138/https://www.onapsis.com/oracle-bigdebit-vulnerabilities)[EvilPrinter](https://x.com/R3dF09/status/1271485928989528064)06/12/20[CVE\-2020\-1300](https://nvd.nist.gov/vuln/detail/CVE-2020-1300)06/15/20[SMBLost](https://airbus-cyber-security.com/diving-into-the-smblost-vulnerability-cve-2020-1301/)09/06/20[CVE\-2020\-1301](https://nvd.nist.gov/vuln/detail/CVE-2020-1301)06/10/20[https://web.archive.org/web/20200610032629/https://airbus-cyber-security.com/diving-into-the-smblost-vulnerability-cve-2020-1301/](https://web.archive.org/web/20200610032629/https://airbus-cyber-security.com/diving-into-the-smblost-vulnerability-cve-2020-1301/)[SMBleed](https://blog.zecops.com/vulnerabilities/smbleedingghost-writeup-chaining-smbleed-cve-2020-1206-with-smbghost/)![](https://vulnerability.garden/assets/img/vulns/smbleed.png)06/09/20[CVE\-2020\-1206](https://nvd.nist.gov/vuln/detail/CVE-2020-1206)06/10/20[https://web.archive.org/web/20200701171311/https://blog.zecops.com/vulnerabilities/smbleedingghost-writeup-chaining-smbleed-cve-2020-1206-with-smbghost/](https://web.archive.org/web/20200701171311/https://blog.zecops.com/vulnerabilities/smbleedingghost-writeup-chaining-smbleed-cve-2020-1206-with-smbghost/)[SGAxe](https://sgaxe.com/)![](https://vulnerability.garden/assets/img/vulns/sgaxe.svg)01/27/2006/10/20[RIDL](https://mdsattacks.com/#ridl-ng)![](https://vulnerability.garden/assets/img/vulns/mds.svg)05/14/19[CVE\-2018\-12127](https://nvd.nist.gov/vuln/detail/CVE-2018-12127)[CVE\-2018\-12130](https://nvd.nist.gov/vuln/detail/CVE-2018-12130)[CVE\-2019\-11091](https://nvd.nist.gov/vuln/detail/CVE-2019-11091)06/10/20[https://architecture.fail/](https://architecture.fail/)[Fallout](https://mdsattacks.com/)![](https://vulnerability.garden/assets/img/vulns/mds.svg)11/13/19[CVE\-2018\-12126](https://nvd.nist.gov/vuln/detail/CVE-2018-12126)06/10/20[CrossTalk](https://www.vusec.net/projects/crosstalk/)![](https://vulnerability.garden/assets/img/vulns/mds.svg)05/14/19[CVE\-2020\-0543](https://nvd.nist.gov/vuln/detail/CVE-2020-0543)06/10/20[https://architecture.fail/](https://architecture.fail/)[CallStranger](https://callstranger.com/)08/06/20[CVE\-2020\-12695](https://nvd.nist.gov/vuln/detail/CVE-2020-12695)06/08/20[https://web.archive.org/web/20200608171645/https://callstranger.com/](https://web.archive.org/web/20200608171645/https://callstranger.com/)[SMBGhost / CoronaBlue / SMBleedingGhost / EternalDarkness](https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0796)03/10/20[CVE\-2020\-0796](https://nvd.nist.gov/vuln/detail/CVE-2020-0796)06/03/20[https://github.com/chompie1337/SMBGhost_RCE_PoC](https://github.com/chompie1337/SMBGhost_RCE_PoC)[BIAS](https://francozappa.github.io/about-bias/)05/18/20[CVE\-2020\-10135](https://nvd.nist.gov/vuln/detail/CVE-2020-10135)05/27/20[Thunderspy](https://thunderspy.io/)![](https://vulnerability.garden/assets/img/vulns/thunderspy.png)05/11/2005/12/20[Ghostcat](https://www.chaitin.cn/en/ghostcat)![](https://vulnerability.garden/assets/img/vulns/ghostcat.png)02/20/20[CVE\-2020\-1938](https://nvd.nist.gov/vuln/detail/CVE-2020-1938)03/03/20[https://web.archive.org/web/20200228144516/https://www.chaitin.cn/en/ghostcat](https://web.archive.org/web/20200228144516/https://www.chaitin.cn/en/ghostcat)[CacheOut](https://cacheoutattack.com/)![](https://vulnerability.garden/assets/img/vulns/cacheout.svg)06/09/20[CVE\-2020\-0549](https://nvd.nist.gov/vuln/detail/CVE-2020-0549)01/28/20[https://architecture.fail/](https://architecture.fail/)[BlueGate](https://github.com/ly4k/BlueGate)01/23/20[CVE\-2020\-0609](https://nvd.nist.gov/vuln/detail/CVE-2020-0609)[CVE\-2020\-0610](https://nvd.nist.gov/vuln/detail/CVE-2020-0610)01/27/20[CurveBall / Chain of Fools](https://msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0601)01/14/20[CVE\-2020\-0601](https://nvd.nist.gov/vuln/detail/CVE-2020-0601)01/17/20[https://blog.lessonslearned.org/chain-of-fools/](https://blog.lessonslearned.org/chain-of-fools/)[https://www.trendmicro.com/en_us/research/20/b/an-in-depth-technical-analysis-of-curveball-cve-2020-0601.html](https://www.trendmicro.com/en_us/research/20/b/an-in-depth-technical-analysis-of-curveball-cve-2020-0601.html)[Shitrix](https://badpackets.net/over-25000-citrix-netscaler-endpoints-vulnerable-to-cve-2019-19781/)01/12/20[CVE\-2019\-19781](https://nvd.nist.gov/vuln/detail/CVE-2019-19781)01/14/20[https://web.archive.org/web/20200112064000/https://badpackets.net/over-25000-citrix-netscaler-endpoints-vulnerable-to-cve-2019-19781/](https://web.archive.org/web/20200112064000/https://badpackets.net/over-25000-citrix-netscaler-endpoints-vulnerable-to-cve-2019-19781/)[https://www.zdnet.com/article/proof-of-concept-code-published-for-citrix-bug-as-attacks-intensify/](https://www.zdnet.com/article/proof-of-concept-code-published-for-citrix-bug-as-attacks-intensify/)[Magellan](https://blade.tencent.com/magellan/index_en.html)12/14/18[CVE\-2018\-20346](https://nvd.nist.gov/vuln/detail/CVE-2018-20346)01/02/20[https://web.archive.org/web/20181214221644/https://blade.tencent.com/magellan/index_en.html](https://web.archive.org/web/20181214221644/https://blade.tencent.com/magellan/index_en.html)[Magellan 2\.0](https://blade.tencent.com/en/advisories/sqlite_v2/)12/11/19[CVE\-2019\-13734](https://nvd.nist.gov/vuln/detail/CVE-2019-13734)[CVE\-2019\-13750](https://nvd.nist.gov/vuln/detail/CVE-2019-13750)[CVE\-2019\-13751](https://nvd.nist.gov/vuln/detail/CVE-2019-13751)[CVE\-2019\-13752](https://nvd.nist.gov/vuln/detail/CVE-2019-13752)[CVE\-2019\-13753](https://nvd.nist.gov/vuln/detail/CVE-2019-13753)01/02/20[https://web.archive.org/web/20200408103320/https://blade.tencent.com/en/advisories/sqlite_v2/](https://web.archive.org/web/20200408103320/https://blade.tencent.com/en/advisories/sqlite_v2/)[AirDoS](https://kishan.org/airdos/)12/10/1912/16/19[Plundervolt](https://plundervolt.com/)![](https://vulnerability.garden/assets/img/vulns/plundervolt.svg)06/07/19[CVE\-2019\-11157](https://nvd.nist.gov/vuln/detail/CVE-2019-11157)12/10/19[Ghost Potato](https://shenaniganslabs.io/2019/11/12/Ghost-Potato.html)11/12/19[CVE\-2019\-1384](https://nvd.nist.gov/vuln/detail/CVE-2019-1384)11/15/19[alloc8](https://github.com/axi0mX/alloc8)04/09/1710/21/19[Qu1ckR00t](https://project-zero.issues.chromium.org/issues/42451036)09/26/19[CVE\-2019\-2215](https://nvd.nist.gov/vuln/detail/CVE-2019-2215)10/18/19[https://hernan.de/blog/tailoring-cve-2019-2215-to-achieve-root/](https://hernan.de/blog/tailoring-cve-2019-2215-to-achieve-root/)[TLBleed](https://www.vusec.net/projects/tlbleed/)07/09/1809/13/19[PortSmash](https://seclists.org/oss-sec/2018/q4/123)11/02/18[CVE\-2018\-5407](https://nvd.nist.gov/vuln/detail/CVE-2018-5407)09/13/19[https://github.com/bbbrumley/portsmash](https://github.com/bbbrumley/portsmash)[NetSpectre](https://misc0110.net/web/files/netspectre.pdf)07/27/1809/13/19[NetCAT](https://www.vusec.net/projects/netcat/)06/23/19[CVE\-2019\-11184](https://nvd.nist.gov/vuln/detail/CVE-2019-11184)09/13/19[https://comsec-files.ethz.ch/papers/netcat_sp20.pdf](https://comsec-files.ethz.ch/papers/netcat_sp20.pdf)[Foreshadow](https://foreshadowattack.eu/)![](https://vulnerability.garden/assets/img/vulns/foreshadow.svg)01/23/18[CVE\-2018\-3615](https://nvd.nist.gov/vuln/detail/CVE-2018-3615)09/13/19[https://architecture.fail/](https://architecture.fail/)[Foreshadow\-NG / L1TF](https://foreshadowattack.eu/)![](https://vulnerability.garden/assets/img/vulns/foreshadow.svg)01/23/18[CVE\-2018\-3620](https://nvd.nist.gov/vuln/detail/CVE-2018-3620)[CVE\-2018\-3646](https://nvd.nist.gov/vuln/detail/CVE-2018-3646)09/13/19[https://openreview.net/forum?id=4tDNvQe2G0](https://openreview.net/forum?id=4tDNvQe2G0)[https://program.why2025.org/why2025/talk/DG7VSX/](https://program.why2025.org/why2025/talk/DG7VSX/)[SockPuppet](https://project-zero.issues.chromium.org/issues/42450885#comment14)03/19/19[CVE\-2019\-8605](https://nvd.nist.gov/vuln/detail/CVE-2019-8605)08/22/19[https://gist.github.com/ur0/a9b2d8088479a70665f729c4e9bf8720](https://gist.github.com/ur0/a9b2d8088479a70665f729c4e9bf8720)[KNOB](https://knobattack.com/)08/14/19[CVE\-2019\-9506](https://nvd.nist.gov/vuln/detail/CVE-2019-9506)08/14/19[SWAPGS](https://www.bitdefender.com/business/swapgs-attack.html)08/06/19[CVE\-2019\-1125](https://nvd.nist.gov/vuln/detail/CVE-2019-1125)08/13/19[https://web.archive.org/web/20190807045906/https://www.bitdefender.com/business/swapgs-attack.html](https://web.archive.org/web/20190807045906/https://www.bitdefender.com/business/swapgs-attack.html)[Dragonblood](https://wpa3.mathyvanhoef.com/)![](https://vulnerability.garden/assets/img/vulns/dragonblood.png)08/15/19[CVE\-2019\-13377](https://nvd.nist.gov/vuln/detail/CVE-2019-13377)[CVE\-2019\-13456](https://nvd.nist.gov/vuln/detail/CVE-2019-13456)08/13/19[DejaBlue](https://www.microsoft.com/en-us/msrc/blog/2019/08/patch-new-wormable-vulnerabilities-in-remote-desktop-services-cve-2019-1181-1182)08/13/19[CVE\-2019\-1181](https://nvd.nist.gov/vuln/detail/CVE-2019-1181)[CVE\-2019\-1182](https://nvd.nist.gov/vuln/detail/CVE-2019-1182)08/13/19[https://malwaretech.com/2019/08/dejablue-analyzing-a-rdp-heap-overflow.html](https://malwaretech.com/2019/08/dejablue-analyzing-a-rdp-heap-overflow.html)[URGENT/11](https://www.armis.com/research/urgent-11/)08/09/19[CVE\-2019\-12255](https://nvd.nist.gov/vuln/detail/CVE-2019-12255)[CVE\-2019\-12258](https://nvd.nist.gov/vuln/detail/CVE-2019-12258)07/31/19[BLEEDINGBIT](https://www.armis.com/research/bleedingbit/)![](https://vulnerability.garden/assets/img/vulns/bleedingbit.png)12/06/18[CVE\-2018\-7080](https://nvd.nist.gov/vuln/detail/CVE-2018-7080)[CVE\-2018\-16986](https://nvd.nist.gov/vuln/detail/CVE-2018-16986)07/08/19[ZombieLoad](https://zombieloadattack.com/)![](https://vulnerability.garden/assets/img/vulns/zombieload.svg)05/16/19[CVE\-2018\-12130](https://nvd.nist.gov/vuln/detail/CVE-2018-12130)[CVE\-2019\-11135](https://nvd.nist.gov/vuln/detail/CVE-2019-11135)06/22/19[SACK Panic](https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-001.md)06/17/19[CVE\-2019\-11477](https://nvd.nist.gov/vuln/detail/CVE-2019-11477)06/18/19[RAMBleed](https://rambleed.com/)![](https://vulnerability.garden/assets/img/vulns/rambleed.svg)05/19/20[CVE\-2019\-0174](https://nvd.nist.gov/vuln/detail/CVE-2019-0174)06/12/19[https://www.ieee-security.org/TC/SP2020/program.html](https://www.ieee-security.org/TC/SP2020/program.html)[https://architecture.fail/](https://architecture.fail/)[Drop the MIC](https://i.blackhat.com/USA-19/Wednesday/us-19-Simakov-Finding-A-Needle-In-An-Encrypted-Haystack-Leveraging-Cryptographic-Abilities-To-Detect-The-Most-Prevalent-Attacks-On-Active-Directory.pdf)08/07/19[CVE\-2019\-1040](https://nvd.nist.gov/vuln/detail/CVE-2019-1040)06/12/19[https://blackhat.com/us-19/briefings/schedule/index.html#finding-a-needle-in-an-encrypted-haystack-leveraging-cryptographic-abilities-to-detect-the-most-prevalent-attacks-on-active-directory-15486](https://blackhat.com/us-19/briefings/schedule/index.html#finding-a-needle-in-an-encrypted-haystack-leveraging-cryptographic-abilities-to-detect-the-most-prevalent-attacks-on-active-directory-15486)[Drop the MIC 2](https://i.blackhat.com/USA-19/Wednesday/us-19-Simakov-Finding-A-Needle-In-An-Encrypted-Haystack-Leveraging-Cryptographic-Abilities-To-Detect-The-Most-Prevalent-Attacks-On-Active-Directory.pdf)08/07/19[CVE\-2019\-1166](https://nvd.nist.gov/vuln/detail/CVE-2019-1166)06/12/19[https://blackhat.com/us-19/briefings/schedule/index.html#finding-a-needle-in-an-encrypted-haystack-leveraging-cryptographic-abilities-to-detect-the-most-prevalent-attacks-on-active-directory-15486](https://blackhat.com/us-19/briefings/schedule/index.html#finding-a-needle-in-an-encrypted-haystack-leveraging-cryptographic-abilities-to-detect-the-most-prevalent-attacks-on-active-directory-15486)[DynoRoot](https://dynoroot.ninja/)![](https://vulnerability.garden/assets/img/vulns/dynoroot.svg)05/17/18[CVE\-2018\-1111](https://nvd.nist.gov/vuln/detail/CVE-2018-1111)06/04/19[https://soundcloud.com/odaymarketing/dynoroot](https://soundcloud.com/odaymarketing/dynoroot)[VENOM](https://venom.crowdstrike.com/)![](https://vulnerability.garden/assets/img/vulns/venom.png)05/15/15[CVE\-2015\-3456](https://nvd.nist.gov/vuln/detail/CVE-2015-3456)05/31/19[https://www.crowdstrike.com/en-us/blog/venom-vulnerability-details/](https://www.crowdstrike.com/en-us/blog/venom-vulnerability-details/)[https://web.archive.org/web/20150513104122/https://venom.crowdstrike.com/](https://web.archive.org/web/20150513104122/https://venom.crowdstrike.com/)[Sweet32](https://sweet32.info/)![](https://vulnerability.garden/assets/img/vulns/sweet32.svg)10/25/16[CVE\-2016\-2183](https://nvd.nist.gov/vuln/detail/CVE-2016-2183)[CVE\-2016\-6329](https://nvd.nist.gov/vuln/detail/CVE-2016-6329)05/31/19[Stagefright](https://projectzero.google//2015/09/stagefrightened.html)![](https://vulnerability.garden/assets/img/vulns/stagefright.png)08/05/15[CVE\-2015\-1538](https://nvd.nist.gov/vuln/detail/CVE-2015-1538)05/31/19[http://blog.zimperium.com/experts-found-a-unicorn-in-the-heart-of-android/](http://blog.zimperium.com/experts-found-a-unicorn-in-the-heart-of-android/)[https://blackhat.com/docs/us-15/materials/us-15-Drake-Stagefright-Scary-Code-In-The-Heart-Of-Android.pdf](https://blackhat.com/docs/us-15/materials/us-15-Drake-Stagefright-Scary-Code-In-The-Heart-Of-Android.pdf)[https://blog.isosceles.com/the-legacy-of-stagefright/](https://blog.isosceles.com/the-legacy-of-stagefright/)[Spectre](https://meltdownattack.com/)![](https://vulnerability.garden/assets/img/vulns/spectre.svg)01/03/18[CVE\-2017\-5715](https://nvd.nist.gov/vuln/detail/CVE-2017-5715)[CVE\-2017\-5753](https://nvd.nist.gov/vuln/detail/CVE-2017-5753)05/31/19[https://architecture.fail/](https://architecture.fail/)[Shellshock \(Bashdoor\)](https://lists.gnu.org/archive/html/bug-bash/2014-09/msg00081.html)![](https://vulnerability.garden/assets/img/vulns/shellshock.png)09/24/14[CVE\-2014\-6271](https://nvd.nist.gov/vuln/detail/CVE-2014-6271)05/31/19[https://seclists.org/oss-sec/2014/q4/92](https://seclists.org/oss-sec/2014/q4/92)[https://en.wikipedia.org/wiki/Shellshock_(software_bug)](https://en.wikipedia.org/wiki/Shellshock_(software_bug))[SandWorm](http://www.isightpartners.com/2014/10/cve-2014-4114/)![](https://vulnerability.garden/assets/img/vulns/sandworm.jpg)10/14/14[CVE\-2014\-4114](https://nvd.nist.gov/vuln/detail/CVE-2014-4114)05/31/19[https://web.archive.org/web/20141014083644/http://www.isightpartners.com/2014/10/cve-2014-4114/](https://web.archive.org/web/20141014083644/http://www.isightpartners.com/2014/10/cve-2014-4114/)[https://learn.microsoft.com/en-us/security-updates/SecurityBulletins/2014/ms14-060?redirectedfrom=MSDN](https://learn.microsoft.com/en-us/security-updates/SecurityBulletins/2014/ms14-060?redirectedfrom=MSDN)[SambaCry / EternalRed](https://www.samba.org/samba/security/CVE-2017-7494.html)05/24/17[CVE\-2017\-7494](https://nvd.nist.gov/vuln/detail/CVE-2017-7494)05/31/19[https://github.com/betab0t/cve-2017-7494](https://github.com/betab0t/cve-2017-7494)Rowhammer 03/10/15[CVE\-2015\-3693](https://nvd.nist.gov/vuln/detail/CVE-2015-3693)05/31/19[https://users.ece.cmu.edu/~yoonguk/papers/kim-isca14.pdf](https://users.ece.cmu.edu/~yoonguk/papers/kim-isca14.pdf)[ROBOT](https://robotattack.org/)![](https://vulnerability.garden/assets/img/vulns/robot.svg)12/12/17[CVE\-2017\-6168](https://nvd.nist.gov/vuln/detail/CVE-2017-6168)[CVE\-2017\-1000385](https://nvd.nist.gov/vuln/detail/CVE-2017-1000385)[CVE\-2017\-17427](https://nvd.nist.gov/vuln/detail/CVE-2017-17427)[CVE\-2017\-13098](https://nvd.nist.gov/vuln/detail/CVE-2017-13098)[CVE\-2017\-13099](https://nvd.nist.gov/vuln/detail/CVE-2017-13099)\.\.\.*and 4 more*05/31/19[POODLE](https://openssl-library.org/files/ssl-poodle.pdf)09/20/14[CVE\-2014\-8730](https://nvd.nist.gov/vuln/detail/CVE-2014-8730)[CVE\-2014\-3566](https://nvd.nist.gov/vuln/detail/CVE-2014-3566)05/31/19[Pizza Thief](https://web.archive.org/web/20000303212433/http:/www.infowar.com/iwftp/iw_sec/iw_sec_01.txt)02/01/99[CVE\-1999\-0351](https://nvd.nist.gov/vuln/detail/CVE-1999-0351)05/31/19[OptionsBleed](https://blog.fuzzing-project.org/60-Optionsbleed-HTTP-OPTIONS-method-can-leak-Apaches-server-memory.html)09/18/17[CVE\-2017\-9798](https://nvd.nist.gov/vuln/detail/CVE-2017-9798)05/31/19[Meltdown](https://meltdownattack.com/)![](https://vulnerability.garden/assets/img/vulns/meltdown.svg)01/03/18[CVE\-2017\-5754](https://nvd.nist.gov/vuln/detail/CVE-2017-5754)05/31/19[https://architecture.fail/](https://architecture.fail/)[Logjam](https://www.mitls.org/pages/attacks/Logjam)![](https://vulnerability.garden/assets/img/vulns/logjam.png)05/20/15[CVE\-2015\-4000](https://nvd.nist.gov/vuln/detail/CVE-2015-4000)05/31/19[https://web.archive.org/web/20160326204804/https://www.mitls.org/pages/attacks/Logjam](https://web.archive.org/web/20160326204804/https://www.mitls.org/pages/attacks/Logjam)[KRACK](https://www.krackattacks.com/)![](https://vulnerability.garden/assets/img/vulns/krack.png)05/19/17[CVE\-2017\-13077](https://nvd.nist.gov/vuln/detail/CVE-2017-13077)05/31/19[ImageTragick](https://imagetragick.com/)![](https://vulnerability.garden/assets/img/vulns/imagetragick.png)05/03/16[CVE\-2016–3714](https://nvd.nist.gov/vuln/detail/CVE-2016%E2%80%933714)05/31/19[HEIST](https://blackhat.com/docs/us-16/materials/us-16-VanGoethem-HEIST-HTTP-Encrypted-Information-Can-Be-Stolen-Through-TCP-Windows-wp.pdf)09/06/16[CVE\-2016\-7152](https://nvd.nist.gov/vuln/detail/CVE-2016-7152)05/31/19[Heartbleed](https://heartbleed.com/)![](https://vulnerability.garden/assets/img/vulns/heartbleed.png)04/07/14[CVE\-2014\-0160](https://nvd.nist.gov/vuln/detail/CVE-2014-0160)05/31/19[goto fail;](https://gotofail.com/)02/22/14[CVE\-2014\-1266](https://nvd.nist.gov/vuln/detail/CVE-2014-1266)05/31/19[https://www.imperialviolet.org/2014/02/22/applebug.html](https://www.imperialviolet.org/2014/02/22/applebug.html)[https://music.apple.com/us/album/goto-fail/926558924?i=926558945](https://music.apple.com/us/album/goto-fail/926558924?i=926558945)[GHOST](https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txt)![](https://vulnerability.garden/assets/img/vulns/ghost.png)01/28/15[CVE\-2015\-0235](https://nvd.nist.gov/vuln/detail/CVE-2015-0235)05/31/19[https://web.archive.org/web/20150128060032/https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txt](https://web.archive.org/web/20150128060032/https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txt)[https://blog.qualys.com/vulnerabilities-threat-research/2015/01/27/the-ghost-vulnerability](https://blog.qualys.com/vulnerabilities-threat-research/2015/01/27/the-ghost-vulnerability)[EternalRomance](https://yadi.sk/d/NJqzpqo_3GxZA4)04/14/17[CVE\-2017\-0145](https://nvd.nist.gov/vuln/detail/CVE-2017-0145)05/31/19[https://www.nopsec.com/blog/the-shadow-brokers-leaked-equation-groups-hacking-tools-a-lab-demo-analysis/](https://www.nopsec.com/blog/the-shadow-brokers-leaked-equation-groups-hacking-tools-a-lab-demo-analysis/)[https://github.com/x0rz/EQGRP_Lost_in_Translation](https://github.com/x0rz/EQGRP_Lost_in_Translation)[https://steemit.com/shadowbrokers/@theshadowbrokers/lost-in-translation](https://steemit.com/shadowbrokers/@theshadowbrokers/lost-in-translation)[https://github.com/fuzzbunch/fuzzbunch?utm_source=nopsec](https://github.com/fuzzbunch/fuzzbunch?utm_source=nopsec)[https://github.com/misterch0c/shadowbroker](https://github.com/misterch0c/shadowbroker)[https://zerosum0x0.blogspot.com/2017/04/doublepulsar-initial-smb-backdoor-ring.html](https://zerosum0x0.blogspot.com/2017/04/doublepulsar-initial-smb-backdoor-ring.html)[https://learn.microsoft.com/en-us/security-updates/securitybulletins/2017/ms17-010](https://learn.microsoft.com/en-us/security-updates/securitybulletins/2017/ms17-010)EternalBlue 04/14/17[CVE\-2017\-0143](https://nvd.nist.gov/vuln/detail/CVE-2017-0143)[CVE\-2017\-0144](https://nvd.nist.gov/vuln/detail/CVE-2017-0144)05/31/19[https://learn.microsoft.com/en-us/security-updates/securitybulletins/2017/ms17-010](https://learn.microsoft.com/en-us/security-updates/securitybulletins/2017/ms17-010)[https://zerosum0x0.blogspot.com/2017/04/doublepulsar-initial-smb-backdoor-ring.html](https://zerosum0x0.blogspot.com/2017/04/doublepulsar-initial-smb-backdoor-ring.html)[https://en.wikipedia.org/wiki/EternalBlue](https://en.wikipedia.org/wiki/EternalBlue)[EFAIL](https://efail.de/)![](https://vulnerability.garden/assets/img/vulns/efail.svg)10/25/17[CVE\-2017\-17688](https://nvd.nist.gov/vuln/detail/CVE-2017-17688)[CVE\-2017\-17689](https://nvd.nist.gov/vuln/detail/CVE-2017-17689)05/31/19[DUHK](https://duhkattack.com/)![](https://vulnerability.garden/assets/img/vulns/duhk.png)10/23/17[CVE\-2016\-8492](https://nvd.nist.gov/vuln/detail/CVE-2016-8492)05/31/19[Drupalgeddon](https://www.drupal.org/project/drupalgeddon)10/15/14[CVE\-2014\-3704](https://nvd.nist.gov/vuln/detail/CVE-2014-3704)05/31/19[Drupalgeddon 2](https://www.drupal.org/sa-core-2018-002)03/28/18[CVE\-2018\-7600](https://nvd.nist.gov/vuln/detail/CVE-2018-7600)05/31/19[DROWN](https://drownattack.com/)![](https://vulnerability.garden/assets/img/vulns/drown.svg)03/01/16[CVE\-2016\-0800](https://nvd.nist.gov/vuln/detail/CVE-2016-0800)05/31/19[Dirty COW](https://dirtycow.ninja/)![](https://vulnerability.garden/assets/img/vulns/dirtycow.png)10/20/16[CVE\-2016\-5195](https://nvd.nist.gov/vuln/detail/CVE-2016-5195)05/31/19[BlueKeep](https://www.microsoft.com/en-us/msrc/blog/2019/05/prevent-a-worm-by-updating-remote-desktop-services-cve-2019-0708)05/14/19[CVE\-2019\-0708](https://nvd.nist.gov/vuln/detail/CVE-2019-0708)05/31/19[https://x.com/GossiTheDog/status/1128431661266415616](https://x.com/GossiTheDog/status/1128431661266415616)[BlueBorne](https://www.armis.com/blueborne)![](https://vulnerability.garden/assets/img/vulns/blueborne.png)11/14/17[CVE\-2017\-14315](https://nvd.nist.gov/vuln/detail/CVE-2017-14315)05/31/19[https://www.armis.com/research/blueborne/](https://www.armis.com/research/blueborne/)[BEAST](https://openssl-library.org/files/tls-cbc.txt)09/06/11[CVE\-2011\-3389](https://nvd.nist.gov/vuln/detail/CVE-2011-3389)05/31/19[https://bug665814.bmoattachments.org/attachment.cgi?id=540839](https://bug665814.bmoattachments.org/attachment.cgi?id=540839)[BarMitzvah](https://blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness.pdf)03/31/15[CVE\-2015\-2808](https://nvd.nist.gov/vuln/detail/CVE-2015-2808)05/31/19[https://blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf](https://blackhat.com/docs/asia-15/materials/asia-15-Mantin-Bar-Mitzvah-Attack-Breaking-SSL-With-13-Year-Old-RC4-Weakness-wp.pdf)[BadUSB](https://blackhat.com/us-14/video/badusb-on-accessories-that-turn-evil.html)10/15/14[CVE\-2014\-4115](https://nvd.nist.gov/vuln/detail/CVE-2014-4115)05/31/19[Badlock](http://badlock.org/)![](https://vulnerability.garden/assets/img/vulns/badlock.png)04/12/16[CVE\-2016\-2118](https://nvd.nist.gov/vuln/detail/CVE-2016-2118)05/31/19[https://web.archive.org/web/20160322161740/http://badlock.org/](https://web.archive.org/web/20160322161740/http://badlock.org/)[https://web.archive.org/web/20160414123832/https://sadlock.org/](https://web.archive.org/web/20160414123832/https://sadlock.org/)

Similar Articles

Patch Tuesday, April 2026 Edition

Krebs on Security

Microsoft's April 2026 Patch Tuesday fixes a record 167 vulnerabilities, including an actively exploited SharePoint zero-day and a publicly disclosed Windows Defender bug (BlueHammer), while Google Chrome and Adobe Reader also addressed zero-days.