A more detailed dashboard
We've added some improvements to the dashboard including showing recent vulnerabilities, our KEV comparison to CISA, and CVEs listed not yet in the NIST NVD. The Vulncheck KEV and unpublished statistics also link to our new..
CVE Browser
Another new set of features is the CVE Browser, you can page through recent CVEs, filter by date or year, browse VulnCheck KEV, and even a view for CVE Numbering authorities with their published CVE Count.
Recent Initial Access artifacts
Mirth Connect RCE (Patch Bypass) was added on Feb, 13 and is found in 1 product.
View more detail on CVE-2023-43208
Mirth Connect RCE was added on Feb, 12 and is found in 1 product.
View more detail on CVE-2023-37679
Cellular LTE Router popen.cgi RCE was added on Feb, 12 and is found in 1 product.
View more detail on CVE-2022-36553
Zyxel SDWAN GRE Configuration Command Injection was added on Feb, 2 and is found in 3 products.
View more detail on CVE-2023-33012
Ivanti Connect Secure SSRF was added on Feb, 1 and is found in 1 product.
View more detail on CVE-2024-21893
6 New Indices
The Open Cloud Vulnerability & Security Issue Database
The Open Cloud Vulnerability & Security Issue Database are official notifications released to address security vulnerabilities and updates in all publicly known cloud vulnerabilities and CSP security issues. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Exodus Intelligence Security Advisories
Exodus Intelligence advisories are official notifications released by Exodus Intelligence to address security vulnerabilities and updates in third party products. These security advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Cert BE Security Advisories
CERT BE security advisories are official notifications released by the Centre for CyberSecurity Belgium to address security vulnerabilities and updates. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
Cert FR Security Alerts
CERT-FR security alerts are official notifications released by the French national and governmental CERT to address security vulnerabilities and updates. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
Zero Day Vulnerability Database
The Zero Day Vulnerability Database is curated by the Cybersecurity Help team and tracks zero day exploits found in the wild.
Cert UA Security Advisories
CERT UA security advisories are official notifications released by the Ukraine CERT to address security vulnerabilities and updates. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
- Initial Access Release notes
- 25 new initial-access advisories
- 3 new indices
- 18 new initial-access advisories
- 7 new indices
- 32 new initial-access advisories
- 6 new indices
- 29 new Initial Access advisories
- 16 New indices
- 4 New Features
- 13 new Initial Access advisories
- 15 New indices
- 13 New indices
- 11 new Initial Access entries
- New Initial Access features
- 3 New indices including Microsoft KB list by CVE
- 5 new Initial Access entries
- Upgraded dashboard, and the VulnCheck KEV Browser
- 6 New indices including OpenCloud Vulnerability & Security Issue Database
- 5 New Initial Access artifacts
- New Features
- 3 New Advisories
- 10 New Indices
- CVE Browser
- 4 new Initial Access advisories
- New query parameters for the ipintel-* IP Intelligence indexes and more
- 33 new indices including Microsoft Security Updates
- Introducing VulnCheck IP Intelligence
- 5 new Initial Access advisories
- 17 new indices
- Recent IA activity including Apache Druid Log4Shell and ownCloud graphapi
- 17 new Indices including LG security, and several Apache projects
- 20 new Indices including mitre-attack-cve, botnets, and ransomware
- 5 new Indices including osv and cbl-mariner
- New Changelog Initial Access Details
- 20 new indices including nokia, blackberry, and iava
- Search for aliases in all indices
- 30 new indices including checkpoint, jetbrains, and bitdefender
- New indices: epss, vulnerability-aliases, and threat-actors
- More Indices: kubernetes, rustsec-advisories, hashicorp, wolfssl, zoom, and salesforce
- New Documentation Portal
- 64 New Indices
- New Index: vulncheck-nvd2 - NIST NVD V2.0 data supplemented with VulnCheck Data
- New Indices: twcert, vde, watchguard, vyaire, and ubiquiti
- New Indices: usom, zimba, zyxel, yokogawa, nodejs, and hkcert
- We have a booth at BlackHat. Come say hi!
- New Indices: schneider-electric, dell, arch, debian, rocky, and wolfi
- Fixes to the github-exploits backup
- New Indexes: vulncheck-nvd, eol and many more
- New Indexes: nist-nvd and many more
- Multi-region support for backups
- Portal Feature: Employee Invitations
- New package managers for PURL queries
- 13 New Indexes
- OPAM, Wolfi and Swift support for PURL queries
- New V3 Exploits Index
- About 25+ more Indices
- We are now a CVE Numbering Authority
- Postman collection support
- New package managers added to our PURL support
- Providing Fixed Version in OS package manager support
- New package types support for PURL: Maven, PHP, Ruby, and Rust
- 5 New Indices: ABB, AlmaLinux, Alpine Linux, AWS and Apple
- New Endpoint: Request vulns related to a PURL
- Snort Rule added to initial-access index
- New Endpoint: Request vulns related to a CPE
- New Index: Debian Security Tracker
- Welcome to the VulnCheck Changelog
- New Indices: CNVD Flaws and CNVD Bulletins
