Conti est un acteur de la menace suivi par FactualRisk. Cette page recense les 61 vulnérabilités associées à son activité, triées par priorité de remédiation.
| CVE | Produit | CVSS | Prio | KEV |
| CVE-2024-1212 | Progress Kemp LoadMaster | 10.0 | P0 | KEV |
| CVE-2023-46604 | Apache ActiveMQ | 10.0 | P0 | KEV |
| CVE-2026-48027 | Nx Nx Console | 9.8 | P0 | KEV |
| CVE-2026-8398 | Daemon Daemon Tools Lite | 9.8 | P0 | KEV |
| CVE-2026-48172 | LiteSpeed cPanel Plugin | 9.8 | P0 | KEV |
| CVE-2026-9082 | Drupal Core | 9.8 | P0 | KEV |
| CVE-2008-4250 | Microsoft Windows | 9.8 | P0 | KEV |
| CVE-2026-42208 | BerriAI LiteLLM | 9.8 | P0 | KEV |
| CVE-2026-0300 | Palo Alto Networks PAN-OS | 9.8 | P0 | KEV |
| CVE-2024-21413 | Microsoft Office Outlook | 9.8 | P0 | KEV |
| CVE-2023-29357 | Microsoft SharePoint Server | 9.8 | P0 | KEV |
| CVE-2023-42793 | JetBrains TeamCity | 9.8 | P0 | KEV |
| CVE-2026-45247 | Mirasvit Mirasvit Full Page Cache Warmer | 9.8 | P0 | KEV |
| CVE-2026-45321 | TanStack TanStack | 9.6 | P0 | KEV |
| CVE-2026-50751 | Check Point Security Gateway | 9.3 | P0 | KEV |
| CVE-2026-0257 | Palo Alto Networks PAN-OS | 9.1 | P0 | KEV |
| CVE-2024-21887 | Ivanti Connect Secure and Policy Secure | 9.1 | P0 | KEV |
| CVE-2025-34291 | Langflow Langflow | 8.8 | P0 | KEV |
| CVE-2009-1537 | Microsoft DirectX | 8.8 | P0 | KEV |
| CVE-2009-3459 | Adobe Acrobat and Reader | 8.8 | P0 | KEV |
| CVE-2010-0249 | Microsoft Internet Explorer | 8.8 | P0 | KEV |
| CVE-2010-0806 | Microsoft Internet Explorer | 8.8 | P0 | KEV |
| CVE-2026-42271 | BerriAI LiteLLM | 8.8 | P0 | KEV |
| CVE-2026-11645 | Google Chromium V8 | 8.8 | P0 | KEV |
| CVE-2024-20353 | Cisco Adaptive Security Appliance (ASA) an | 8.6 | P0 | KEV |
| CVE-2025-48595 | Android Framework | 8.4 | P0 | KEV |
| CVE-2026-49229 | npm @actual-app/sync-server | 8.3 | P0 | |
| CVE-2023-46805 | Ivanti Connect Secure and Policy Secure | 8.2 | P0 | KEV |
| CVE-2026-42897 | Microsoft Microsoft | 8.1 | P0 | KEV |
| CVE-2024-21412 | Microsoft Windows | 8.1 | P0 | KEV |
| CVE-2026-41091 | Microsoft Defender | 7.8 | P0 | KEV |
| CVE-2023-38831 | RARLAB WinRAR | 7.8 | P0 | KEV |
| CVE-2022-0492 | Linux Kernel | 7.8 | P0 | KEV |
| CVE-2026-20245 | Cisco Catalyst SD-WAN Manager | 7.8 | P0 | KEV |
| CVE-2024-21182 | Oracle WebLogic Server | 7.5 | P0 | KEV |
| CVE-2023-44487 | IETF HTTP/2 | 7.5 | P0 | KEV |
| CVE-2023-27532 | Veeam Backup & Replication | 7.5 | P0 | KEV |
| CVE-2026-28318 | SolarWinds Serv-U | 7.5 | P0 | KEV |
| CVE-2026-47736 | rubygems puma | 7.5 | P0 | |
| CVE-2026-44316 | go github.com/free5gc/pcf | 7.5 | P0 | |
| CVE-2026-12151 | npm undici | 7.5 | P0 | |
| CVE-2026-44937 | go github.com/rancher/fleet | 7.5 | P0 | |
| CVE-2026-6973 | Ivanti Endpoint Manager Mobile (EPMM) | 7.2 | P0 | KEV |
| CVE-2026-49284 | composer simplesamlphp/simplesamlphp | 7.1 | P0 | |
| CVE-2026-35341 | rust uu_mkfifo | 7.1 | P0 | |
| CVE-2026-54321 | go github.com/daytonaio/daytona | 7.0 | P0 | |
| CVE-2020-1472 | Microsoft Netlogon | 0.0 | P0 | KEV |
| CVE-2026-7473 | Arista Extensible Operating System | 5.8 | P1 | KEV |
| CVE-2026-45498 | Microsoft Defender | 4.0 | P1 | KEV |
| CVE-2026-46362 | composer phpmyfaq/phpmyfaq | 6.5 | P2 | |
| CVE-2026-8922 | maven org.keycloak:keycloak-services | 5.4 | P2 | |
| CVE-2026-9798 | maven org.keycloak:keycloak-services | 4.3 | P2 | |
| CVE-2024-40766 | SonicWall SonicOS | 9.8 | P3 | KEV |
| CVE-2022-38028 | Microsoft Windows | 7.8 | P3 | KEV |
| CVE-2026-34926 | Trend Micro Apex One | 6.7 | P3 | KEV |
| CVE-2024-38213 | Microsoft Windows | 6.5 | P3 | KEV |
| CVE-2024-20399 | Cisco NX-OS | 6.0 | P3 | KEV |
| CVE-2024-20359 | Cisco Adaptive Security Appliance (ASA) an | 6.0 | P3 | KEV |
| CVE-2026-39892 | pip cryptography | 0.0 | P3 | |
| CVE-2026-47241 | rubygems net-imap | 0.0 | P3 | |
| CVE-2026-49754 | erlang mint | 0.0 | P3 |
La donnée est gratuite. Pour un avis sur l'impact réel sur votre parc et un plan de remédiation, on en parle.
Nous contacter →