7.8 CVE-2020-6574
Insufficient policy enforcement in installer in Google Chrome on OS X prior to 85.0.4183.102 allowed...

2023-01-31 21:14:00

6.1 CVE-2019-7000
A Cross-Site Scripting (XSS) vulnerability in the Web UI of Avaya Aura Conferencing may allow code execution...

2023-01-31 21:05:00

7.5 CVE-2019-6542
ENTTEC Datagate MK2, Storm 24, Pixelator all firmware versions prior to (70044,70050,70060)_update_05032019-482...

2023-01-31 21:04:00

7.5 CVE-2019-6545
AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch...

2023-01-31 21:04:00

7.8 CVE-2019-6564
GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious...

2023-01-31 21:04:00

9.1 CVE-2019-6958
A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions...

2023-01-31 21:04:00

8.8 CVE-2020-7991
Adive Framework 2.0.8 has admin/config CSRF to change the Administrator password.

2023-01-31 21:04:00

9.8 CVE-2019-17361
In SaltStack Salt through 2019.2.0, the salt-api NET API with the ssh client enabled is vulnerable to...

2023-01-31 21:03:00

9.1 CVE-2019-6533
Registers used to store Modbus values can be read and written from the web interface without authentication...

2023-01-31 21:03:00

7.8 CVE-2019-6534
The uncontrolled search path element vulnerability in Gemalto Sentinel UltraPro Client Library ux32w.dll...

2023-01-31 21:03:00

7.5 CVE-2019-6535
Mitsubishi Electric Q03/04/06/13/26UDVCPU: serial number 20081 and prior, Q04/06/13/26UDPVCPU: serial...

2023-01-31 21:03:00

9.8 CVE-2019-6527
PR100088 Modbus gateway versions prior to Release R02 (or Software Version 1.1.13166) may allow an attacker...

2023-01-31 21:00:00

What is the Sherlock® KB project?

First of all KB for "Knowledge Base". The company ProHacktive is making its database of known vulnerabilities to date available for free. This database combines Nist's CVE database (https://nvd.nist.gov/), the CWE database (https://cwe.mitre.org/) and the CAPEC database (https://capec.mitre.org/).

For what purpose?

ProHacktive's promise is the democratization of the Cybersecurity Audit. For this, it seemed relevant to us to offer our "Knowledge Base" in different languages. Associated with this multilingual database, a clear and concise interface allows you to consult all the CVE ("Common Vulnerabilities and Exposures") present on your network. The Sherlock® service database is updated every hour from the various sources enriching our Sherlock® KB and immediately tested on the devices concerned by the new vulnerability.

Search for vulnerabilities

We also offer a simple search module in the description of each CVE. For the more curious, an advanced search allows you to point precisely to an application, an OS or a hardware. This advanced search is based on the mechanics used in our solution Sherlock®: the permanent Cybersecurity audit accessible financially and technically to all.


We will add new languages regularly. A monitoring module will be implemented: you will be able to monitor an application, an OS or a hardware to be alerted of new vulnerabilities concerning it. Subscribe to our mailing list to be alerted when this feature is released (available on search results).