Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

state:in-the-wild — CVE vulnerabilities tagged 396

396 CVE security advisories tagged "state:in-the-wild" with AI Chinese analysis, CVSS, references and POCs.

The tag "state:in-the-wild" signifies that a disclosed vulnerability has been actively exploited by attackers in real-world environments, rather than remaining theoretical or limited to controlled laboratory testing. This classification is critical because it indicates an immediate and tangible threat to public infrastructure, demanding urgent mitigation strategies from administrators and developers. Typically, these vulnerabilities involve remote code execution, authentication bypasses, or critical logic flaws that allow adversaries to compromise systems without physical access. The presence of this tag implies that exploit code is likely circulating in the wild, increasing the risk of widespread data breaches, service disruptions, or lateral movement within networks. Consequently, organizations must prioritize patching these specific CVEs to prevent active intrusion, as the window between disclosure and exploitation has effectively closed, leaving systems exposed to sophisticated threat actors seeking immediate gain.

CVE IDTitleCVSSSeverityPublished
CVE-2021-44515 ZOHO ManageEngine Desktop Central MSP 授权问题漏洞 — n/a 9.8 -2021-12-12
CVE-2021-42258 BEQ BillQuick Web Suite SQL注入漏洞 — n/a 9.8 -2021-10-22
CVE-2021-30807 Apple iPadOS 缓冲区错误漏洞 — macOS 7.8 -2021-10-19
CVE-2021-41773 Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49 — Apache HTTP ServerCWE-22 9.1 -2021-10-05
CVE-2021-41083 CSRF Vulnerability in dada-mail 11.15.1 and below — dada-mailCWE-352 8.0 High2021-09-20
CVE-2021-39205 DOM-based XSS/Content Spoofing via Prototype Pollution — jitsi-meetCWE-79 6.8 Medium2021-09-15
CVE-2021-39212 Issue when Configuring the ImageMagick Security Policy — ImageMagickCWE-668 4.4 Medium2021-09-13
CVE-2021-30657 Apple macOS 安全特征问题漏洞 — macOS 5.5 -2021-09-08
CVE-2021-30661 Apple WebKitGTK+ 资源管理错误漏洞 — iOS and iPadOS 8.8 -2021-09-08
CVE-2021-30713 Apple macOS Big Sur 输入验证错误漏洞 — macOS 6.6 -2021-09-08
CVE-2021-30666 Apple iOS 缓冲区错误漏洞 — iOS 8.8 -2021-09-08
CVE-2021-30665 Apple tvOS 缓冲区错误漏洞 — macOS 8.8 -2021-09-08
CVE-2021-30762 Apple iOS 资源管理错误漏洞 — iOS 8.8 -2021-09-08
CVE-2021-30761 Apple iOS 缓冲区错误漏洞 — iOS 8.8 -2021-09-08
CVE-2021-38154 Canon 多款产品信息泄露漏洞 — n/a 9.1 -2021-08-29
CVE-2021-31010 多款Apple产品代码问题漏洞 — macOS 7.5 -2021-08-24
CVE-2021-30883 Apple 多款产品缓冲区错误漏洞 — iOS and iPadOS 7.8 -2021-08-24
CVE-2021-30869 多款 Apple 产品安全漏洞 — iOS and iPadOS 7.8 -2021-08-24
CVE-2021-30860 Apple macOS Big Sur输入验证错误漏洞 — macOS 7.8 -2021-08-24
CVE-2021-30858 Apple macOS Big Sur 资源管理错误漏洞 — macOS 8.8 -2021-08-24
CVE-2021-30116 Unauthenticated credential leak and business logic flaw in Kaseya VSA <= v9.5.6 — n/a 10.0 Critical2021-07-09
CVE-2021-35941 Western Digital WD My Book Live 访问控制错误漏洞 — n/a 9.1 -2021-06-29
CVE-2021-22893 Pulse Secure Pulse Connect Secure 资源管理错误漏洞 — Pulse Connect SecureCWE-287 10.0 -2021-04-23
CVE-2021-24175 The Plus Addons for Elementor Page Builder < 4.1.7 - Authentication Bypass — The Plus Addons for Elementor Page BuilderCWE-287 9.8 -2021-04-05
CVE-2021-1879 Apple iOS WebKit 跨站脚本漏洞 — iOS and iPadOS 6.1 -2021-04-02
CVE-2021-1871 Apple iOS 安全漏洞 — iOS and iPadOS 9.8 -2021-04-02
CVE-2021-1870 苹果 Apple iOS 安全漏洞 — iOS and iPadOS 9.8 -2021-04-02
CVE-2021-1782 Apple Kernel 竞争条件问题漏洞 — iOS and iPadOS 7.0 -2021-04-02
CVE-2021-3122 NCR Command Center Agent 操作系统命令注入漏洞 — n/a 9.8 -2021-02-07
CVE-2021-3006 Seal Finance Farm 安全漏洞 — n/a 7.5 -2021-01-03

Vulnerabilities classified as state:in-the-wild represent 396 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.