Skip to the content.
gantt title Cases in 2022 dateFormat YYYY-MM-DD axisFormat %e %b %Y DIVD-2021-00006 - SmarterMail, 30 Apr 2021 - 13 Jan 2022 (259 days) :2022-01-01, 2022-01-13 DIVD-2021-00014 - Kaseya Unitrends, 2 Jul 2021 -> ? (open) :2022-01-01, 2023-01-01 DIVD-2021-00015 - Telegram OD, 10 Jun 2021 - 10 Oct 2022 (488 days) :2022-01-01, 2022-10-10 DIVD-2021-00021 - Qlik Sense Enterprise domain user enumeration, 18 Aug 2021 - 1 Apr 2022 (227 days) :2022-01-01, 2022-04-01 DIVD-2021-00022 - Exchange ProxyShell and ProxyOracle, 30 Aug 2021 - 10 Oct 2022 (407 days) :2022-01-01, 2022-10-10 DIVD-2021-00023 - Atlassian Confluence OGNL injection (RCE), 22 Sep 2021 - 10 Oct 2022 (384 days) :2022-01-01, 2022-10-10 DIVD-2021-00029 - Smartertrack, 17 Oct 2021 - 10 Oct 2022 (359 days) :2022-01-01, 2022-10-10 DIVD-2021-00033 - Sites with Potential SQL-Injection, 16 Nov 2021 - 9 Feb 2022 (86 days) :2022-01-01, 2022-02-09 DIVD-2021-00036 - VMware vCenter Server arbitrary file read vulnerability, 3 Dec 2021 - 12 Jan 2022 (41 days) :2022-01-01, 2022-01-12 DIVD-2021-00037 - Critical vulnerabilities in ITarian MSP platform and on-premise solution, 1 Dec 2021 - 10 Oct 2022 (314 days) :2022-01-01, 2022-10-10 DIVD-2021-00038 - Apache Log4j2, 9 Dec 2021 - 5 Apr 2022 (118 days) :2022-01-01, 2022-04-05 DIVD-2021-00039 - HP iLO, 31 Dec 2021 - 9 Mar 2022 (69 days) :2022-01-01, 2022-03-09 DIVD-2022-00002 - Grafana, 7 Dec 2021 - 7 Nov 2022 (336 days) :2022-01-01, 2022-11-07 DIVD-2022-00004 - Post-Log4J Open Database C2 and Monero Miner Infections, 13 Jan 2022 - 25 May 2022 (133 days) :2022-01-13, 2022-05-25 DIVD-2022-00005 - Exposed BACnet devices, 29 Jan 2022 -> ? (open) :2022-01-29, 2023-01-01 DIVD-2022-00006 - SAProuter, 7 Feb 2022 - 13 Jul 2022 (157 days) :2022-02-07, 2022-07-13 DIVD-2022-00007 - Subdomain Takeovers, 4 Feb 2022 -> ? (open) :2022-02-04, 2023-01-01 DIVD-2022-00008 - XSS Zeroday in Zimbra, 14 Dec 2021 - 20 Apr 2022 (128 days) :2022-01-01, 2022-04-20 DIVD-2022-00009 - SolarMan backend administrator account/password, 6 Feb 2022 - 2 Jul 2022 (147 days) :2022-02-06, 2022-07-02 DIVD-2022-00010 - Auth bypass in SAP, 8 Feb 2022 - 10 Apr 2022 (62 days) :2022-02-08, 2022-04-10 DIVD-2022-00012 - Global Charity Vulnerabilities, 22 Feb 2022 -> ? (open) :2022-02-22, 2023-01-01 DIVD-2022-00013 - The curious case of the odd update.microsoft.com certificates, 5 Feb 2022 - 23 Oct 2022 (261 days) :2022-02-05, 2022-10-23 DIVD-2022-00014 - GreyNoise's Ukraine only list, 4 Mar 2022 - 15 Aug 2022 (165 days) :2022-03-04, 2022-08-15 DIVD-2022-00015 - Unauthenticated user enumeration on GraphQL API, 4 Mar 2022 - 31 Aug 2022 (181 days) :2022-03-04, 2022-08-31 DIVD-2022-00017 - Global Healthcare Vulnerabilities, 10 Mar 2022 -> ? (open) :2022-03-10, 2023-01-01 DIVD-2022-00019 - Insecure Mendix Applications, 19 Mar 2022 - 7 Nov 2022 (234 days) :2022-03-19, 2022-11-07 DIVD-2022-00020 - Multiple injection vulnerabilities identified within Feathers.js, 23 Feb 2022 -> ? (open) :2022-02-23, 2023-01-01 DIVD-2022-00021 - Ivanti EPM CSA remote code execution, 25 Mar 2022 - 20 Nov 2022 (241 days) :2022-03-25, 2022-11-20 DIVD-2022-00022 - WatchGuard Firebox and XTM appliance ACE vulnerability, 29 Mar 2022 - 31 Oct 2022 (217 days) :2022-03-29, 2022-10-31 DIVD-2022-00024 - Spring Cloud RCE - CVE-2022-22963, 31 Mar 2022 -> ? (open) :2022-03-31, 2023-01-01 DIVD-2022-00025 - VMware - CVE-2022-22954, 12 Apr 2022 -> ? (open) :2022-04-12, 2023-01-01 DIVD-2022-00026 - WSO2 Remote Code Executions - CVE-2022-29464, 24 Apr 2022 - 20 Nov 2022 (211 days) :2022-04-24, 2022-11-20 DIVD-2022-00027 - F5 BIG-IP iControl REST API remote code execution, 10 May 2022 - 25 Jun 2022 (47 days) :2022-05-10, 2022-06-25 DIVD-2022-00029 - Remote Code Execution on Sophos Firewall, 10 May 2022 -> ? (open) :2022-05-10, 2023-01-01 DIVD-2022-00030 - Exposed QNAP, 23 May 2022 -> ? (open) :2022-05-23, 2023-01-01 DIVD-2022-00032 - Exchange backdoor, 3 Jun 2022 -> ? (open) :2022-06-03, 2023-01-01 DIVD-2022-00033 - Atlassian Confluence 0-day unauthenticated RCE, 3 Jun 2022 -> ? (open) :2022-06-03, 2023-01-01 DIVD-2022-00038 - Vulnerable Oracle WebLogic Server, 3 Jul 2022 -> ? (open) :2022-07-03, 2023-01-01 DIVD-2022-00042 - Canon print portals facing the internet, 18 Aug 2022 -> ? (open) :2022-08-18, 2023-01-01 DIVD-2022-00045 - Injection vulnerability found within Socket.io, 29 Apr 2022 -> ? (open) :2022-04-29, 2023-01-01 DIVD-2022-00048 - Dossier Energy Transition, 7 Sep 2022 -> ? (open) :2022-09-07, 2023-01-01 DIVD-2022-00051 - H2 Web Console - CVE-2021-42392, CVE-2022-23221, 9 Sep 2022 -> ? (open) :2022-09-09, 2023-01-01 DIVD-2022-00053 - Atlassian Bitbucket Server - CVE-2022-36804, 21 Sep 2022 -> ? (open) :2022-09-21, 2023-01-01 DIVD-2022-00054 - ProxyNotShell - Microsoft Exchange SSRF and RCE, 30 Sep 2022 -> ? (open) :2022-09-30, 2023-01-01 DIVD-2022-00055 - Server Management Interfaces security issues, 8 Oct 2022 -> ? (open) :2022-10-08, 2023-01-01 DIVD-2022-00056 - Critical authentication bypass affecting Fortigate products, 7 Oct 2022 -> ? (open) :2022-10-07, 2023-01-01 DIVD-2022-00060 - Command Injection vulnerability in Bitbucket Server and Data Center, 17 Nov 2022 -> ? (open) :2022-11-17, 2023-01-01
gantt title Cases in 2021 dateFormat YYYY-MM-DD axisFormat %e %b %Y DIVD-2020-00011 - Four critical vulnerabilities in Vembu BDR, 26 Oct 2020 - 11 May 2021 (198 days) :2021-01-01, 2021-05-11 DIVD-2021-00001 - Microsoft on-prem Exchange Servers, 3 Mar 2021 - 15 May 2021 (74 days) :2021-03-03, 2021-05-15 DIVD-2021-00002 - Kaseya VSA, 1 Apr 2021 - 9 Jul 2021 (100 days) :2021-04-01, 2021-07-09 DIVD-2021-00004 - Gelekte phishing gegevens / Leaked phishing credentials, 7 May 2021 - 10 May 2021 (4 days) :2021-05-07, 2021-05-10 DIVD-2021-00005 - Pulse Secure PreAuth RCE, 21 Apr 2021 - 1 Aug 2021 (103 days) :2021-04-21, 2021-08-01 DIVD-2021-00006 - SmarterMail, 30 Apr 2021 - 13 Jan 2022 (259 days) :2021-04-30, 2022-01-01 DIVD-2021-00007 - EA Origin XSS and RCE 1-click, 21 Apr 2021 - 13 Jul 2021 (84 days) :2021-04-21, 2021-07-13 DIVD-2021-00010 - vCenter Server PreAuth RCE, 30 May 2021 - 30 Nov 2021 (185 days) :2021-05-30, 2021-11-30 DIVD-2021-00011 - Kaseya VSA Disclosure, 1 Apr 2021 - 7 Jul 2021 (98 days) :2021-04-01, 2021-07-07 DIVD-2021-00012 - Warehouse Botnet, 20 May 2021 - 4 Jun 2021 (16 days) :2021-05-20, 2021-06-04 DIVD-2021-00014 - Kaseya Unitrends, 2 Jul 2021 -> ? (open) :2021-07-02, 2022-01-01 DIVD-2021-00015 - Telegram OD, 10 Jun 2021 - 10 Oct 2022 (488 days) :2021-06-10, 2022-01-01 DIVD-2021-00017 - SolarWinds N-able N-central agent vulnerabilities, 5 Jul 2021 - 24 Sep 2021 (82 days) :2021-07-05, 2021-09-24 DIVD-2021-00021 - Qlik Sense Enterprise domain user enumeration, 18 Aug 2021 - 1 Apr 2022 (227 days) :2021-08-18, 2022-01-01 DIVD-2021-00022 - Exchange ProxyShell and ProxyOracle, 30 Aug 2021 - 10 Oct 2022 (407 days) :2021-08-30, 2022-01-01 DIVD-2021-00023 - Atlassian Confluence OGNL injection (RCE), 22 Sep 2021 - 10 Oct 2022 (384 days) :2021-09-22, 2022-01-01 DIVD-2021-00026 - Omigod Microsoft Open Management Interface RCE, 15 Sep 2021 - 24 Nov 2021 (71 days) :2021-09-15, 2021-11-24 DIVD-2021-00027 - Apache HTTP 2.4.49 Path Traversal and File Disclosure, 5 Oct 2021 - 1 Dec 2021 (58 days) :2021-10-05, 2021-12-01 DIVD-2021-00029 - Smartertrack, 17 Oct 2021 - 10 Oct 2022 (359 days) :2021-10-17, 2022-01-01 DIVD-2021-00030 - GitLab Unauthenticated RCE Flaw, 1 Nov 2021 - 29 Dec 2021 (59 days) :2021-11-01, 2021-12-29 DIVD-2021-00033 - Sites with Potential SQL-Injection, 16 Nov 2021 - 9 Feb 2022 (86 days) :2021-11-16, 2022-01-01 DIVD-2021-00036 - VMware vCenter Server arbitrary file read vulnerability, 3 Dec 2021 - 12 Jan 2022 (41 days) :2021-12-03, 2022-01-01 DIVD-2021-00037 - Critical vulnerabilities in ITarian MSP platform and on-premise solution, 1 Dec 2021 - 10 Oct 2022 (314 days) :2021-12-01, 2022-01-01 DIVD-2021-00038 - Apache Log4j2, 9 Dec 2021 - 5 Apr 2022 (118 days) :2021-12-09, 2022-01-01 DIVD-2021-00039 - HP iLO, 31 Dec 2021 - 9 Mar 2022 (69 days) :2021-12-31, 2022-01-01 DIVD-2022-00002 - Grafana, 7 Dec 2021 - 7 Nov 2022 (336 days) :2021-12-07, 2022-01-01 DIVD-2022-00008 - XSS Zeroday in Zimbra, 14 Dec 2021 - 20 Apr 2022 (128 days) :2021-12-14, 2022-01-01
gantt title Cases in 2020 dateFormat YYYY-MM-DD axisFormat %e %b %Y DIVD-2020-00001 - Citrix ADC, 13 Jan 2020 - 9 Mar 2020 (57 days) :2020-01-13, 2020-03-09 DIVD-2020-00002 - Wildcard certificaten Citrix ADC, 9 Jan 2020 - 22 Jan 2020 (14 days) :2020-01-09, 2020-01-22 DIVD-2020-00003 - Microsoft RDP Gateway vulnerable for Bluegate RCE, 27 Jan 2020 - 9 Mar 2020 (43 days) :2020-01-27, 2020-03-09 DIVD-2020-00004 - List of Mirai botnet victims published with credentials, 20 Jan 2020 - 7 Feb 2020 (19 days) :2020-01-20, 2020-02-07 DIVD-2020-00005 - Apache Tomcat AJP File Read/Inclusion Vulnerability, 22 Feb 2020 - 3 Dec 2020 (286 days) :2020-02-22, 2020-12-03 DIVD-2020-00006 - SMBv3 Server Compression Transform Header Memory Corruption, 10 Mar 2020 - 3 Dec 2020 (269 days) :2020-03-10, 2020-12-03 DIVD-2020-00007 - Citrix ShareFile, 26 May 2020 - 23 Jun 2020 (29 days) :2020-05-26, 2020-06-23 DIVD-2020-00008 - 313 000 Wordpress sites scanned, 10 Nov 2020 - 30 Nov 2020 (21 days) :2020-11-10, 2020-11-30 DIVD-2020-00009 - Pulse Secure VPN enterprise Leak, 5 Aug 2020 - 3 Dec 2020 (121 days) :2020-08-05, 2020-12-03 DIVD-2020-00010 - wpDiscuz plugin Remote Code Excution, 4 Aug 2020 - 3 Dec 2020 (122 days) :2020-08-04, 2020-12-03 DIVD-2020-00011 - Four critical vulnerabilities in Vembu BDR, 26 Oct 2020 - 11 May 2021 (198 days) :2020-10-26, 2021-01-01 DIVD-2020-00012 - 49 000 vulnerable Fortinet VPN devices, 22 Nov 2020 - 3 Dec 2020 (12 days) :2020-11-22, 2020-12-03 DIVD-2020-00013 - Gelekte phishing wachtwoorden / Leaked phishing credentials, 20 Dec 2020 - 31 Dec 2020 (12 days) :2020-12-20, 2020-12-31 DIVD-2020-00014 - SolarWinds Orion, 28 Dec 2020 - 30 Dec 2020 (3 days) :2020-12-28, 2020-12-30