Patch Tuesday — November 2025
2025-11-11 · 896 CVEs
CVEs published or modified the week of 2025-11-11, partitioned by vendor.
Microsoft (107 CVEs)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13032 | Critical | 9.9 | — | 2025-11-11 | Double fetch in sandbox kernel driver in Avast/AVG Antivirus <25.3 on windows allows local attacker to escalate privelages via pool overflow. |
CVE-2025-60724 | Critical | 9.8 | — | 2025-11-11 | Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network. |
CVE-2025-13042 | High | 8.8 | — | 2025-11-12 | Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.166 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CVE-2025-62222 | High | 8.8 | — | 2025-11-11 | Improper neutralization of special elements used in a command ('command injection') in Visual Studio Code CoPilot Chat Extension allows an unauthorized attacker to execute code over a network. |
CVE-2025-62220 | High | 8.8 | — | 2025-11-11 | Heap-based buffer overflow in Windows Subsystem for Linux GUI allows an unauthorized attacker to execute code over a network. |
CVE-2025-59499 | High | 8.8 | — | 2025-11-11 | Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network. |
CVE-2025-12727 | High | 8.8 | — | 2025-11-10 | Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CVE-2025-12725 | High | 8.8 | — | 2025-11-10 | Out of bounds read in WebGPU in Google Chrome on Android prior to 142.0.7444.137 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. |
CVE-2025-12432 | High | 8.8 | — | 2025-11-10 | Race in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CVE-2025-12429 | High | 8.8 | — | 2025-11-10 | Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. |
CVE-2025-12428 | High | 8.8 | — | 2025-11-10 | Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. |
CVE-2025-62211 | High | 8.7 | — | 2025-11-11 | Improper neutralization of input during web page generation ('cross-site scripting') in Dynamics 365 Field Service (online) allows an authorized attacker to perform spoofing over a network. |
CVE-2025-62210 | High | 8.7 | — | 2025-11-11 | Improper neutralization of input during web page generation ('cross-site scripting') in Dynamics 365 Field Service (online) allows an authorized attacker to perform spoofing over a network. |
CVE-2025-30398 | High | 8.1 | — | 2025-11-11 | Missing authorization in Nuance PowerScribe allows an unauthorized attacker to disclose information over a network. |
CVE-2025-62452 | High | 8.0 | — | 2025-11-11 | Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network. |
CVE-2025-62204 | High | 8.0 | — | 2025-11-11 | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. |
CVE-2025-60715 | High | 8.0 | — | 2025-11-11 | Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network. |
CVE-2025-64531 | High | 7.8 | — | 2025-11-11 | Substance3D - Stager versions 3.1.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61835 | High | 7.8 | — | 2025-11-11 | Substance3D - Stager versions 3.1.5 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61834 | High | 7.8 | — | 2025-11-11 | Substance3D - Stager versions 3.1.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61833 | High | 7.8 | — | 2025-11-11 | Substance3D - Stager versions 3.1.5 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. |
CVE-2025-62216 | High | 7.8 | — | 2025-11-11 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. |
CVE-2025-62205 | High | 7.8 | — | 2025-11-11 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. |
CVE-2025-62203 | High | 7.8 | — | 2025-11-11 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
CVE-2025-62201 | High | 7.8 | — | 2025-11-11 | Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
CVE-2025-62200 | High | 7.8 | — | 2025-11-11 | Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
CVE-2025-62199 | High | 7.8 | — | 2025-11-11 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. |
CVE-2025-61831 | High | 7.8 | — | 2025-11-11 | Illustrator versions 28.7.10, 29.8.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61820 | High | 7.8 | — | 2025-11-11 | Illustrator versions 28.7.10, 29.8.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61819 | High | 7.8 | — | 2025-11-11 | Photoshop Desktop versions 26.8.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-60727 | High | 7.8 | — | 2025-11-11 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
CVE-2025-60721 | High | 7.8 | — | 2025-11-11 | Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally. |
CVE-2025-60720 | High | 7.8 | — | 2025-11-11 | Buffer over-read in Windows TDX.sys allows an authorized attacker to elevate privileges locally. |
CVE-2025-60718 | High | 7.8 | — | 2025-11-11 | Untrusted search path in Windows Administrator Protection allows an authorized attacker to elevate privileges locally. |
CVE-2025-60714 | High | 7.8 | — | 2025-11-11 | Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally. |
CVE-2025-60713 | High | 7.8 | — | 2025-11-11 | Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to elevate privileges locally. |
CVE-2025-60710 | High | 7.8 | KEV | 2025-11-11 | Improper link resolution before file access ('link following') in Host Process for Windows Tasks allows an authorized attacker to elevate privileges locally. |
CVE-2025-60709 | High | 7.8 | — | 2025-11-11 | Out-of-bounds read in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. |
CVE-2025-60707 | High | 7.8 | — | 2025-11-11 | Use after free in Multimedia Class Scheduler Service (MMCSS) allows an authorized attacker to elevate privileges locally. |
CVE-2025-60705 | High | 7.8 | — | 2025-11-11 | Improper access control in Windows Client-Side Caching (CSC) Service allows an authorized attacker to elevate privileges locally. |
CVE-2025-60703 | High | 7.8 | — | 2025-11-11 | Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally. |
CVE-2025-59514 | High | 7.8 | — | 2025-11-11 | Improper privilege management in Microsoft Streaming Service allows an authorized attacker to elevate privileges locally. |
CVE-2025-59512 | High | 7.8 | — | 2025-11-11 | Improper access control in Customer Experience Improvement Program (CEIP) allows an authorized attacker to elevate privileges locally. |
CVE-2025-59511 | High | 7.8 | — | 2025-11-11 | External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally. |
CVE-2025-59505 | High | 7.8 | — | 2025-11-11 | Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally. |
CVE-2025-61832 | High | 7.8 | — | 2025-11-11 | InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61824 | High | 7.8 | — | 2025-11-11 | InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61818 | High | 7.8 | — | 2025-11-11 | InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61817 | High | 7.8 | — | 2025-11-11 | InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61816 | High | 7.8 | — | 2025-11-11 | InCopy versions 20.5, 19.5.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61815 | High | 7.8 | — | 2025-11-11 | InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61814 | High | 7.8 | — | 2025-11-11 | InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2024-7017 | High | 7.5 | — | 2025-11-14 | Inappropriate implementation in DevTools in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2025-60704 | High | 7.5 | — | 2025-11-11 | Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network. |
CVE-2025-12726 | High | 7.5 | — | 2025-11-10 | Inappropriate implementation in Views in Google Chrome on Windows prior to 142.0.7444.137 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. |
CVE-2025-12437 | High | 7.5 | — | 2025-11-10 | Use after free in PageInfo in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. |
CVE-2025-12430 | High | 7.5 | — | 2025-11-10 | Object lifecycle issue in Media in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. |
CVE-2025-59504 | High | 7.3 | — | 2025-11-11 | Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code locally. |
CVE-2025-62202 | High | 7.1 | — | 2025-11-11 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. |
CVE-2025-60726 | High | 7.1 | — | 2025-11-11 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. |
CVE-2025-62219 | High | 7.0 | — | 2025-11-11 | Double free in Microsoft Wireless Provisioning System allows an authorized attacker to elevate privileges locally. |
CVE-2025-62218 | High | 7.0 | — | 2025-11-11 | Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Wireless Provisioning System allows an authorized attacker to elevate privileges locally. |
CVE-2025-62217 | High | 7.0 | — | 2025-11-11 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. |
CVE-2025-62215 | High | 7.0 | KEV | 2025-11-11 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Kernel allows an authorized attacker to elevate privileges locally. |
CVE-2025-62213 | High | 7.0 | — | 2025-11-11 | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. |
CVE-2025-60719 | High | 7.0 | — | 2025-11-11 | Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. |
CVE-2025-60717 | High | 7.0 | — | 2025-11-11 | Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privileges locally. |
CVE-2025-60716 | High | 7.0 | — | 2025-11-11 | Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally. |
CVE-2025-59515 | High | 7.0 | — | 2025-11-11 | Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privileges locally. |
CVE-2025-59508 | High | 7.0 | — | 2025-11-11 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally. |
CVE-2025-59507 | High | 7.0 | — | 2025-11-11 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech allows an authorized attacker to elevate privileges locally. |
CVE-2025-59506 | High | 7.0 | — | 2025-11-11 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to elevate privileges locally. |
CVE-2025-12763 | Medium | 6.8 | — | 2025-11-13 | pgAdmin 4 versions up to 9.9 are affected by a command injection vulnerability on Windows systems. |
CVE-2025-62449 | Medium | 6.8 | — | 2025-11-11 | Improper limitation of a pathname to a restricted directory ('path traversal') in Visual Studio Code CoPilot Chat Extension allows an authorized attacker to bypass a security feature locally. |
CVE-2025-62214 | Medium | 6.7 | — | 2025-11-11 | Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an authorized attacker to execute code locally. |
CVE-2025-47179 | Medium | 6.7 | — | 2025-11-11 | Improper access control in Microsoft Configuration Manager allows an authorized attacker to elevate privileges locally. |
CVE-2025-62206 | Medium | 6.5 | — | 2025-11-11 | Exposure of sensitive information to an unauthorized actor in Microsoft Dynamics 365 (on-premises) allows an unauthorized attacker to disclose information over a network. |
CVE-2025-60722 | Medium | 6.5 | — | 2025-11-11 | Improper limitation of a pathname to a restricted directory ('path traversal') in OneDrive for Android allows an authorized attacker to elevate privileges over a network. |
CVE-2025-60708 | Medium | 6.5 | — | 2025-11-11 | Untrusted pointer dereference in Storvsp.sys Driver allows an authorized attacker to deny service locally. |
CVE-2025-33202 | Medium | 6.5 | — | 2025-11-11 | NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where an attacker could cause a stack overflow by sending extra-large payloads. |
CVE-2025-12445 | Medium | 6.5 | — | 2025-11-10 | Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted Chrome Extension. |
CVE-2025-12431 | Medium | 6.5 | — | 2025-11-10 | Inappropriate implementation in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. |
CVE-2025-60723 | Medium | 6.3 | — | 2025-11-11 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows DirectX allows an authorized attacker to deny service over a network. |
CVE-2025-12436 | Medium | 5.9 | — | 2025-11-10 | Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. |
CVE-2025-62209 | Medium | 5.5 | — | 2025-11-11 | Insertion of sensitive information into log file in Windows License Manager allows an authorized attacker to disclose information locally. |
CVE-2025-62208 | Medium | 5.5 | — | 2025-11-11 | Insertion of sensitive information into log file in Windows License Manager allows an authorized attacker to disclose information locally. |
CVE-2025-60706 | Medium | 5.5 | — | 2025-11-11 | Out-of-bounds read in Windows Hyper-V allows an authorized attacker to disclose information locally. |
CVE-2025-59513 | Medium | 5.5 | — | 2025-11-11 | Out-of-bounds read in Windows Bluetooth RFCOM Protocol Driver allows an authorized attacker to disclose information locally. |
CVE-2025-59510 | Medium | 5.5 | — | 2025-11-11 | Improper link resolution before file access ('link following') in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to deny service locally. |
CVE-2025-59509 | Medium | 5.5 | — | 2025-11-11 | Insertion of sensitive information into sent data in Windows Speech allows an authorized attacker to disclose information locally. |
CVE-2025-59240 | Medium | 5.5 | — | 2025-11-11 | Exposure of sensitive information to an unauthorized actor in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. |
CVE-2025-12439 | Medium | 5.5 | — | 2025-11-10 | Inappropriate implementation in App-Bound Encryption in Google Chrome on Windows prior to 142.0.7444.59 allowed a local attacker to obtain potentially sensitive information from process memory via a malicious file. |
CVE-2025-13097 | Medium | 5.4 | — | 2025-11-14 | Inappropriate implementation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2025-12440 | Medium | 5.3 | — | 2025-11-10 | Inappropriate implementation in Autofill in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted… |
CVE-2025-62453 | Medium | 5.0 | — | 2025-11-11 | Improper validation of generative ai output in GitHub Copilot and Visual Studio Code allows an authorized attacker to bypass a security feature locally. |
CVE-2025-9479 | Medium | 4.3 | — | 2025-11-14 | Out of bounds read in V8 in Google Chrome prior to 133.0.6943.141 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CVE-2025-13107 | Medium | 4.3 | — | 2025-11-14 | Inappropriate implementation in Compositing in Google Chrome prior to 140.0.7339.80 allowed a remote attacker to perform UI spoofing via a crafted HTML page. |
CVE-2024-7021 | Medium | 4.3 | — | 2025-11-14 | Inappropriate implementation in Autofill in Google Chrome on Windows prior to 124.0.6367.60 allowed a remote attacker to perform UI spoofing via a crafted HTML page. |
CVE-2024-13178 | Medium | 4.3 | — | 2025-11-14 | Inappropriate implementation in Fullscreen in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. |
CVE-2025-60728 | Medium | 4.3 | — | 2025-11-11 | Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network. |
CVE-2025-12443 | Medium | 4.3 | — | 2025-11-10 | Out of bounds read in WebXR in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. |
CVE-2025-12441 | Medium | 4.3 | — | 2025-11-10 | Out of bounds read in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. |
CVE-2025-12433 | Medium | 4.3 | — | 2025-11-10 | Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. |
CVE-2025-12728 | Medium | 4.2 | — | 2025-11-10 | Inappropriate implementation in Omnibox in Google Chrome on Android prior to 142.0.7444.137 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. |
CVE-2025-12446 | Medium | 4.2 | — | 2025-11-10 | Incorrect security UI in SplitView in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted domain name. |
CVE-2025-12444 | Medium | 4.2 | — | 2025-11-10 | Incorrect security UI in Fullscreen UI in Google Chrome prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. |
CVE-2025-12434 | Medium | 4.2 | — | 2025-11-10 | Race in Storage in Google Chrome on Windows prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. |
Other vendors (789 CVEs across 307 vendors)
Linux · 96 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-40149 | High | 7.8 | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock(). |
CVE-2025-40164 | Medium | 5.5 | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: usbnet: Fix using smp_processor_id() in preemptible code warnings Syzbot reported the following warning: BUG: using smp_processor_id() in preemptible [00000000] code: d… |
CVE-2025-40208 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33… |
CVE-2025-40207 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: media: v4l2-subdev: Fix alloc failure check in v4l2_subdev_call_state_try() v4l2_subdev_call_state_try() macro allocates a subdev state with __v4l2_subdev_state_alloc()… |
CVE-2025-40206 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_objref: validate objref and objrefmap expressions Referencing a synproxy stateful object from OUTPUT hook causes kernel crash due to infinite recursive ca… |
CVE-2025-40205 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid potential out-of-bounds in btrfs_encode_fh() The function btrfs_encode_fh() does not properly account for the three cases it handles. |
CVE-2025-40204 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: sctp: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. |
CVE-2025-40203 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: listmount: don't call path_put() under namespace semaphore Massage listmount() and make sure we don't call path_put() under the namespace semaphore. |
CVE-2025-40202 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ipmi: Rework user message limit handling The limit on the number of user messages had a number of issues, improper counting in some cases and a use after free. |
CVE-2025-40201 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: kernel/sys.c: fix the racy usage of task_lock(tsk->group_leader) in sys_prlimit64() paths The usage of task_lock(tsk->group_leader) in sys_prlimit64()->do_prlimit() path… |
CVE-2025-40200 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: Squashfs: reject negative file sizes in squashfs_read_inode() Syskaller reports a "WARNING in ovl_copy_up_file" in overlayfs. |
CVE-2025-40199 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: page_pool: Fix PP_MAGIC_MASK to avoid crashing on some 32-bit arches Helge reported that the introduction of PP_MAGIC_MASK let to crashes on boot on his 32-bit parisc ma… |
CVE-2025-40198 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ext4: avoid potential buffer over-read in parse_apply_sb_mount_options() Unlike other strings in the ext4 superblock, we rely on tune2fs to make sure s_mount_opts is NUL… |
CVE-2025-40197 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: media: mc: Clear minor number before put device The device minor should not be cleared after the device is released. |
CVE-2025-40196 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quota_release_work There is a kernel panic due to WARN_ONCE when panic_on_warn is set. |
CVE-2025-40195 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: mount: handle NULL values in mnt_ns_release() When calling in listmount() mnt_ns_release() may be passed a NULL pointer. |
CVE-2025-40194 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request() The cpufreq_cpu_put() call in update_qos_request() takes place too early because the latter sub… |
CVE-2025-40193 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in proc_write_simdisk A malicious user could pass an arbitrarily bad value to memdup_user_nul(), potentially causing kernel crash. |
CVE-2025-40192 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: Revert "ipmi: fix msg stack when IPMI is disconnected" This reverts commit c608966f3f9c2dca596967501d00753282b395fc. |
CVE-2025-40191 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix kfd process ref leaking when userptr unmapping kfd_lookup_process_by_pid hold the kfd process reference to ensure it doesn't get destroyed while sending… |
CVE-2025-40190 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ext4: guard against EA inode refcount underflow in xattr update syzkaller found a path where ext4_xattr_inode_update_ref() reads an EA inode refcount that is already <=… |
CVE-2025-40189 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Fix lost EEPROM read timeout error(-ETIMEDOUT) in lan78xx_read_raw_eeprom Syzbot reported read of uninitialized variable BUG with following call stack. |
CVE-2025-40188 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: pwm: berlin: Fix wrong register in suspend/resume The 'enable' register should be BERLIN_PWM_EN rather than BERLIN_PWM_ENABLE, otherwise, the driver accesses wrong addre… |
CVE-2025-40187 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: net/sctp: fix a null dereference in sctp_disposition sctp_sf_do_5_1D_ce() If new_asoc->peer.adaptation_ind=0 and sctp_ulpevent_make_authkey=0 and sctp_ulpevent_make_auth… |
CVE-2025-40186 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request(). |
CVE-2025-40185 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ice: ice_adapter: release xa entry on adapter allocation failure When ice_adapter_new() fails, the reserved XArray entry created by xa_insert() is not released. |
CVE-2025-40184 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix debug checking for np-guests using huge mappings When running with transparent huge pages and CONFIG_NVHE_EL2_DEBUG then the debug checking in assert_hos… |
CVE-2025-40183 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadata_dst leak __bpf_redirect_neigh_v{4,6} Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress gat… |
CVE-2025-40182 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: crypto: skcipher - Fix reqsize handling Commit afddce13ce81d ("crypto: api - Add reqsize to crypto_alg") introduced cra_reqsize field in crypto_alg struct to replace typ… |
CVE-2025-40181 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Force legacy PCI hole to UC when overriding MTRRs for TDX/SNP When running as an SNP or TDX guest under KVM, force the legacy PCI hole, i.e. |
CVE-2025-40180 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop The cleanup loop was starting at the wrong array index, causing out-of-bounds access. |
CVE-2025-40179 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ext4: verify orphan file size is not too big In principle orphan file can be arbitrarily large. |
CVE-2025-40178 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: pid: Add a judgment for ns null in pid_nr_ns __task_pid_nr_ns ns = task_active_pid_ns(current); pid_nr_ns(rcu_dereference(*task_pid_ptr(task, type)), ns)… |
CVE-2025-40177 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix bootlog initialization ordering As soon as we queue MHI buffers to receive the bootlog from the device, we could be receiving data. |
CVE-2025-40176 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: tls: wait for pending async decryptions if tls_strp_msg_hold fails Async decryption calls tls_strp_msg_hold to create a clone of the input skb to hold references to the… |
CVE-2025-40175 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: idpf: cleanup remaining SKBs in PTP flows When the driver requests Tx timestamp value, one of the first steps is to clone SKB using skb_get. |
CVE-2025-40174 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: x86/mm: Fix SMP ordering in switch_mm_irqs_off() Stephen noted that it is possible to not have an smp_mb() between the loaded_mm store and the tlb_gen load in switch_mm(… |
CVE-2025-40173 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: net/ip6_tunnel: Prevent perpetual tunnel growth Similarly to ipv4 tunnel, ipv6 version updates dev->needed_headroom, too. |
CVE-2025-40172 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages() Currently, if find_and_map_user_pages() takes a DMA xfer request from the user with a length field… |
CVE-2025-40171 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: move lsop put work to nvmet_fc_ls_req_op It’s possible for more than one async command to be in flight from __nvmet_fc_send_ls_req. |
CVE-2025-40170 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: net: use dst_dev_rcu() in sk_setup_caps() Use RCU to protect accesses to dst->dev from sk_setup_caps() and sk_dst_gso_max_size(). |
CVE-2025-40169 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: bpf: Reject negative offsets for ALU ops When verifying BPF programs, the check_alu_op() function validates instructions with ALU operations. |
CVE-2025-40168 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match(). |
CVE-2025-40167 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ext4: detect invalid INLINE_DATA + EXTENTS flag combination syzbot reported a BUG_ON in ext4_es_cache_extent() when opening a verity file on a corrupted ext4 filesystem… |
CVE-2025-40166 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Check GuC running state before deregistering exec queue In normal operation, a registered exec queue is disabled and deregistered through the GuC, and freed… |
CVE-2025-40165 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: media: nxp: imx8-isi: m2m: Fix streaming cleanup on release If streamon/streamoff calls are imbalanced, such as when exiting an application with Ctrl+C when streaming, t… |
CVE-2025-40163 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Stop dl_server before CPU goes offline IBM CI tool reported kernel warning[1] when running a CPU removal operation through drmgr[2]. |
CVE-2025-40162 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails devm_kasprintf() may return NULL on memory allocation failure, but the debug message prints cpus->dai_n… |
CVE-2025-40161 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix SGI cleanup on unbind The driver incorrectly determines SGI vs SPI interrupts by checking IRQ number < 16, which fails with dynamic IRQ allocati… |
CVE-2025-40160 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: xen/events: Return -EEXIST for bound VIRQs Change find_virq() to return -EEXIST when a VIRQ is bound to a different CPU than the one passed in. |
CVE-2025-40159 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: xsk: Harden userspace-supplied xdp_desc validation Turned out certain clearly invalid values passed in xdp_desc from userspace can pass xp_{,un}aligned_validate_desc() a… |
CVE-2025-40158 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU in ip6_output() Use RCU in ip6_output() in order to use dst_dev_rcu() to prevent possible UAF. |
CVE-2025-40157 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: EDAC/i10nm: Skip DIMM enumeration on a disabled memory controller When loading the i10nm_edac driver on some Intel Granite Rapids servers, a call trace may appear as fol… |
CVE-2025-40156 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: mtk-cci: Fix potential error pointer dereference in probe() The drv->sram_reg pointer could be set to ERR_PTR(-EPROBE_DEFER) which would lead to a error po… |
CVE-2025-40155 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. |
CVE-2025-40154 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcr_rt5640 driver only shows an error message bu… |
CVE-2025-40153 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: mm: hugetlb: avoid soft lockup when mprotect to large memory area When calling mprotect() to a large hugetlb memory area in our customer's workload (~300GB hugetlb memor… |
CVE-2025-40152 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix bootup splat with separate_gpu_drm modparam The drm_gem_for_each_gpuvm_bo() call from lookup_vma() accesses drm_gem_obj.gpuva.list, which is not initialized… |
CVE-2025-40151 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: No support of struct argument in trampoline programs The current implementation does not support struct argument. |
CVE-2025-40150 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid migrating empty section It reports a bug from device w/ zufs: F2FS-fs (dm-64): Inconsistent segment (173822) type [1, 0] in SSA and SIT F2FS-fs (dm-6… |
CVE-2025-40148 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add NULL pointer checks in dc_stream cursor attribute functions The function dc_stream_set_cursor_attributes() currently dereferences the `stream` point… |
CVE-2025-40147 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: blk-throttle: fix access race during throttle policy activation On repeated cold boots we occasionally hit a NULL pointer crash in blk_should_throtl() when throttling is… |
CVE-2025-40146 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix potential deadlock while nr_requests grown Allocate and free sched_tags while queue is freezed can deadlock[1], this is a long term problem, hence allocate m… |
CVE-2025-40145 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: PCI/pwrctrl: Fix double cleanup on devm_add_action_or_reset() failure When devm_add_action_or_reset() fails, it calls the passed cleanup function. |
CVE-2025-40143 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: bpf: dont report verifier bug for missing bpf_scc_visit on speculative path Syzbot generated a program that triggers a verifier_bug() call in maybe_exit_scc(). |
CVE-2025-40142 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Disable bottom softirqs as part of spin_lock_irq() on PREEMPT_RT snd_pcm_group_lock_irq() acquires a spinlock_t and disables interrupts via spin_lock_irq(). |
CVE-2025-40141 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix possible UAF on iso_conn_free This attempt to fix similar issue to sco_conn_free where if the conn->sk is not set to NULL may lead to UAF on iso_conn… |
CVE-2025-40140 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: net: usb: Remove disruptive netif_wake_queue in rtl8150_set_multicast syzbot reported WARNING in rtl8150_start_xmit/usb_submit_urb. |
CVE-2025-40139 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set(). |
CVE-2025-40138 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid NULL pointer dereference in f2fs_check_quota_consistency() syzbot reported a f2fs bug as below: Oops: gen[ 107.736417][ T5848] Oops: general protect… |
CVE-2025-40137 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to truncate first page in error path of f2fs_truncate() syzbot reports a bug as below: loop0: detected capacity change from 0 to 40427 F2FS-fs (loop0): Wrong… |
CVE-2025-40136 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - request reserved interrupt for virtual function The device interrupt vector 3 is an error interrupt for physical function and a reserved interrupt… |
CVE-2025-40135 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU in ip6_xmit() Use RCU in ip6_xmit() in order to use dst_dev_rcu() to prevent possible UAF. |
CVE-2025-40134 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: dm: fix NULL pointer dereference in __dm_suspend() There is a race condition between dm device suspend and table load that can lead to null pointer dereference. |
CVE-2025-40133 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: mptcp: Use __sk_dst_get() and dst_dev_rcu() in mptcp_active_enable(). |
CVE-2025-40132 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: sof_sdw: Prevent jump to NULL add_sidecar callback In create_sdw_dailink() check that sof_end->codec_info->add_sidecar is not NULL before calling it. |
CVE-2025-40131 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix peer lookup in ath12k_dp_mon_rx_deliver_msdu() In ath12k_dp_mon_rx_deliver_msdu(), peer lookup fails because rxcb->peer_id is not updated with a valid… |
CVE-2025-40130 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix data race in CPU latency PM QoS request handling The cpu_latency_qos_add/remove/update_request interfaces lack internal synchronization by design, r… |
CVE-2025-40129 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix null pointer dereference on zero-length checksum In xdr_stream_decode_opaque_auth(), zero-length checksum.len causes checksum.data to be set to NULL. |
CVE-2025-40127 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: hwrng: ks-sa - fix division by zero in ks_sa_rng_init Fix division by zero in ks_sa_rng_init caused by missing clock pointer initialization. |
CVE-2025-40126 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copy_{from_to}_user for UltraSPARC The referenced commit introduced exception handlers on user-space memory references in copy… |
CVE-2025-40125 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: blk-mq: check kobject state_in_sysfs before deleting in blk_mq_unregister_hctx In __blk_mq_update_nr_hw_queues() the return value of blk_mq_sysfs_register_hctxs() is not… |
CVE-2025-40124 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copy_{from_to}_user for UltraSPARC III Anthony Yznaga tracked down that a BUG_ON in ext4 code with large folios enabled result… |
CVE-2025-40123 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: bpf: Enforce expected_attach_type for tailcall compatibility Yinhao et al. |
CVE-2025-40122 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: Fix IA32_PMC_x_CFG_B MSRs access error When running perf_fuzzer on PTL, sometimes the below "unchecked MSR access error" is seen when accessing IA32_PMC… |
CVE-2025-40121 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: bytcr_rt5651: Fix invalid quirk input mapping When an invalid value is passed via quirk option, currently bytcr_rt5640 driver just ignores and leaves as is… |
CVE-2025-40120 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: net: usb: asix: hold PM usage ref to avoid PM/MDIO + RTNL deadlock Prevent USB runtime PM (autosuspend) for AX88772* in bind. |
CVE-2025-40119 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential null deref in ext4_mb_init() In ext4_mb_init(), ext4_mb_avg_fragment_size_destroy() may be called when sbi->s_mb_avg_fragment_size remains uninitiali… |
CVE-2025-40118 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 ("scsi: pm80xx: Set phy_attached to zero when device is gone") UBSAN reports: UBSAN… |
CVE-2025-40117 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Fix array underflow in pci_endpoint_test_ioctl() Commit eefb83790a0d ("misc: pci_endpoint_test: Add doorbell test case") added NO_BAR (-1) to th… |
CVE-2025-40116 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: usb: host: max3421-hcd: Fix error pointer dereference in probe cleanup The kthread_run() function returns error pointers so the max3421_hcd->spi_thread pointer can be ei… |
CVE-2025-40115 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() During mpt3sas_transport_port_remove(), messages were logged with dev_printk() against &mpt3sas_por… |
CVE-2025-40113 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcom: pas: Shutdown lite ADSP DTB on X1E The ADSP firmware on X1E has separate firmware binaries for the main firmware and the DTB. |
CVE-2025-40112 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copy_{from_to}_user for Niagara The referenced commit introduced exception handlers on user-space memory references in copy_fr… |
CVE-2025-40111 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix Use-after-free in validation Nodes stored in the validation duplicates hashtable come from an arena allocator that is cleared at the end of vmw_execbuf_p… |
CVE-2025-40110 | — | — | — | 2025-11-12 | In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix a null-ptr access in the cursor snooper Check that the resource which is converted to a surface exists before trying to use the cursor snooper on it. |
N/a · 96 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-56385 | Critical | 9.8 | — | 2025-11-12 | A SQL injection vulnerability exists in the login functionality of WellSky Harmony version 4.1.0.2.83 within the 'xmHarmony.asp' endpoint. |
CVE-2025-63666 | Critical | 9.8 | — | 2025-11-12 | Tenda AC15 v15.03.05.18_multi) issues an authentication cookie that exposes the account password hash to the client and uses a short, low-entropy suffix as the session identifier. |
CVE-2025-63289 | Critical | 9.1 | — | 2025-11-12 | Sogexia Android App Compile Affected SDK v35, Max SDK 32 and fixed in v36, was discovered to contain hardcoded encryption keys in the encryption_helper.dart file |
CVE-2025-57310 | High | 8.8 | — | 2025-11-12 | A Cross-Site Request Forgery (CSRF) vulnerability in Salmen2/Simple-Faucet-Script v1.07 via crafted POST request to admin.php?p=ads&c=1 allowing attackers to execute arbitrary code. |
CVE-2025-63835 | High | 8.8 | — | 2025-11-10 | A stack-based buffer overflow vulnerability was discovered in Tenda AC18 v15.03.05.05_multi. |
CVE-2025-63712 | High | 8.8 | — | 2025-11-10 | Cross-Site Request Forgery (CSRF) in SourceCodester Product Expiry Management System. |
CVE-2025-63680 | High | 8.6 | — | 2025-11-14 | Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw (CWE-22) that, in combination with Windows ShellExecuteW fallback extension resolution, leads to arbitrary code execution when a user clicks a crafted… |
CVE-2025-12613 | High | 8.6 | — | 2025-11-10 | Versions of the package cloudinary before 2.7.0 are vulnerable to Arbitrary Argument Injection due to improper parsing of parameter values containing an ampersand. |
CVE-2025-35971 | High | 8.2 | — | 2025-11-11 | Out-of-bounds write for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.160 within Ring 2: Device Drivers may allow a denial of service. |
CVE-2025-32091 | High | 8.2 | — | 2025-11-11 | Incorrect default permissions in some firmware for the Intel(R) Arc(TM) B-series GPUs within Ring 1: Device Drivers may allow an escalation of privilege. |
CVE-2025-30255 | High | 8.2 | — | 2025-11-11 | Out-of-bounds write for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.160 within Ring 2: Device Drivers may allow a denial of service. |
CVE-2025-30185 | High | 7.9 | — | 2025-11-11 | Active debug code for some Intel UEFI reference platforms within Ring 0: Kernel may allow a denial of service and escalation of privilege. |
CVE-2025-13131 | High | 7.8 | — | 2025-11-13 | A vulnerability was found in Sonarr 4.0.15.2940. |
CVE-2025-13130 | High | 7.8 | — | 2025-11-13 | A vulnerability has been found in Radarr 5.28.0.10274. |
CVE-2025-20010 | High | 7.8 | — | 2025-11-11 | Use of unmaintained third party components for some Intel(R) Processor Identification Utility before version 8.0.43 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2024-57695 | High | 7.7 | — | 2025-11-11 | An issue in Agnitum Outpost Security Suite 7.5.3 (3942.608.1810) and 7.6 (3984.693.1842) allows a local attacker to execute arbitrary code via the lock function. |
CVE-2025-63891 | High | 7.5 | — | 2025-11-14 | Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents (including schema and credential hashes) via an unauthentica… |
CVE-2025-63149 | High | 7.5 | — | 2025-11-10 | Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the urls parameter of the get_parentControl_list_Info function. |
CVE-2025-63288 | High | 7.5 | — | 2025-11-10 | In Open5GS 2.7.6, AMF crashes when receiving an abnormal NGSetupRequest message, resulting in denial of service. |
CVE-2025-63457 | High | 7.5 | — | 2025-11-10 | Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the wanMTU parameter in the sub_4F55C function. |
CVE-2025-63456 | High | 7.5 | — | 2025-11-10 | Tenda AX-1803 v1.0.0.1 was discovered to contain a stack overflow via the time parameter in the SetSysTimeCfg function. |
CVE-2025-63455 | High | 7.5 | — | 2025-11-10 | Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow via the shareSpeed parameter in the fromSetWifiGusetBasic function. |
CVE-2025-63147 | High | 7.5 | — | 2025-11-10 | Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the deviceId parameter of the saveParentControlInfo function. |
CVE-2025-63154 | High | 7.5 | — | 2025-11-10 | TOTOLink A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow in the addEffect parameter of the urldecode function. |
CVE-2025-63153 | High | 7.5 | — | 2025-11-10 | TOTOLink A7000R V9.1.0u.6115_B20201022 was discovered to contain a stack overflow in the ssid parameter of the urldecode function. |
CVE-2025-63152 | High | 7.5 | — | 2025-11-10 | Tenda AX3 V16.03.12.10_CN was discovered to contain a stack overflow in the wpapsk_crypto parameter of the wlSetExternParameter function. |
CVE-2025-35967 | High | 7.4 | — | 2025-11-11 | Out-of-bounds read for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.160 within Ring 2: Device Drivers may allow a denial of service. |
CVE-2025-35963 | High | 7.4 | — | 2025-11-11 | Insufficient control flow management for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.160 within Ring 2: Device Drivers may allow a denial of service. |
CVE-2025-33029 | High | 7.4 | — | 2025-11-11 | Out-of-bounds write for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.160 within Ring 2: Device Drivers may allow a denial of service. |
CVE-2025-63497 | High | 7.1 | — | 2025-11-10 | The patient prescription viewing functionality in his_doc_view_single_patient.php of rickxy Hospital Management System version 1.0 contains an SQL injection vulnerability. |
CVE-2025-35972 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for the Intel MPI Library before version 2021.16 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-32449 | Medium | 6.7 | — | 2025-11-11 | Unquoted search path for some PRI Driver software before version 03.03.1002 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-32038 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for some FPGA Support Package for the Intel oneAPI DPC++C++ Compiler software before version 2025.0.1 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-32001 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for the Intel(R) Processor Identification Utility before version 8.0.43 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-31940 | Medium | 6.7 | — | 2025-11-11 | Incorrect default permissions for some Intel(R) Thread Director Visualizer software before version 1.1.1 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-31931 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for the Instrumentation and Tracing Technology API (ITT API) software before version 3.25.4 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-31647 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for some Intel(R) Graphics Software before version 25.22.1502.2 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-31645 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for some System Event Log Viewer Utility software for all versions within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-30518 | Medium | 6.7 | — | 2025-11-11 | Incorrect default permissions for some Intel(R) PresentMon before version 2.3.1 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-30506 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for some Intel Driver and Support Assistant before version 25.2 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-30182 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for some Intel(R) Distribution for Python software installers before version 2025.2.0 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-27711 | Medium | 6.7 | — | 2025-11-11 | Incorrect default permissions for some Intel(R) One Boot Flash Update (Intel(R) OFU) software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-27246 | Medium | 6.7 | — | 2025-11-11 | Incorrect default permissions for the Intel(R) Processor Identification Utility before version 8.0.43 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-25059 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for some Intel(R) One Boot Flash Update (Intel(R) OFU) software before version 14.1.31 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-24918 | Medium | 6.7 | — | 2025-11-11 | Improper link resolution before file access ('link following') for some Intel(R) Server Configuration Utility software and Intel(R) Server Firmware Update Utility software before version 16.0.12. |
CVE-2025-24842 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for the Intel(R) System Support Utility before version 4.1.0 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-24491 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for some Intel(R) Killer(TM) Performance Suite software before version killer 4.0 40.25.509.1465 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-24327 | Medium | 6.7 | — | 2025-11-11 | Insecure inherited permissions for some Intel(R) Rapid Storage Technology Application before version 20.0.1021 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-22391 | Medium | 6.7 | — | 2025-11-11 | Improper access control for some SigTest before version 6.1.10 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-20065 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for some Display Virtualization for Windows OS software before version 1797 within Ring 2: Device Drivers may allow an escalation of privilege. |
CVE-2024-55016 | Medium | 6.5 | — | 2025-11-14 | PHPGurukul Student Record Management System 3.20 is vulnerable to SQL Injection via the id and password parameters in login.php. |
CVE-2024-44640 | Medium | 6.5 | — | 2025-11-14 | PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the course-short, course-full, and cdate parameters in add-course.php. |
CVE-2024-44639 | Medium | 6.5 | — | 2025-11-14 | PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the sub1, sub2, sub3, sub4, and course-short parameters in add-subject.php. |
CVE-2024-44636 | Medium | 6.5 | — | 2025-11-14 | PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the adminname and aemailid parameters in /admin-profile.php. |
CVE-2024-44633 | Medium | 6.5 | — | 2025-11-14 | PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the currentpassword parameter in change-password.php. |
CVE-2024-44632 | Medium | 6.5 | — | 2025-11-14 | PHPGurukul Student Record System 3.20 is vulnerable to SQL Injection via the id and emailid parameters in password-recovery.php. |
CVE-2024-44630 | Medium | 6.5 | — | 2025-11-14 | Multiple parameters in register.php in PHPGurukul Student Record System 3.20 are vulnerable to SQL injection. |
CVE-2025-60702 | Medium | 6.5 | — | 2025-11-13 | A command injection vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c.4592_B20191022_ALL within the `system.so` binary. |
CVE-2025-60699 | Medium | 6.5 | — | 2025-11-13 | A buffer overflow vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c.4592_B20191022_ALL within the `global.so` binary. |
CVE-2025-60688 | Medium | 6.5 | — | 2025-11-13 | A stack buffer overflow vulnerability exists in the ToToLink LR1200GB (V9.1.0u.6619_B20230130) and NR1800X (V9.1.0u.6681_B20230703) Router firmware within the cstecgi.cgi binary (setDefResponse function). |
CVE-2025-60687 | Medium | 6.5 | — | 2025-11-13 | An unauthenticated command injection vulnerability exists in the ToToLink LR1200GB Router firmware V9.1.0u.6619_B20230130 within the cstecgi.cgi binary (sub_41EC68 function). |
CVE-2025-60684 | Medium | 6.5 | — | 2025-11-13 | A stack buffer overflow vulnerability exists in the ToToLink LR1200GB (V9.1.0u.6619_B20230130) and NR1800X (V9.1.0u.6681_B20230703) Router firmware within the cstecgi.cgi binary (sub_42F32C function). |
CVE-2025-60683 | Medium | 6.5 | — | 2025-11-13 | A command injection vulnerability exists in the ToToLink A720R Router firmware V4.1.5cu.614_B20230630 within the sysconf binary, specifically in the sub_40BFA4 function that handles network interface reinitialization from '/var/system/linu… |
CVE-2025-60682 | Medium | 6.5 | — | 2025-11-13 | A command injection vulnerability exists in the ToToLink A720R Router firmware V4.1.5cu.614_B20230630 within the cloudupdate_check binary, specifically in the sub_402414 function that handles cloud update parameters. |
CVE-2025-60645 | Medium | 6.5 | — | 2025-11-12 | A Cross-Site Request Forgery (CSRF) in xxl-api v1.3.0 allows attackers to arbitrarily add users to the management module via a crafted GET request. |
CVE-2025-26402 | Medium | 6.5 | — | 2025-11-11 | Protection mechanism failure for some Intel(R) NPU Drivers within Ring 3: User Applications may allow a denial of service. |
CVE-2025-63397 | Medium | 6.5 | — | 2025-11-10 | Improper input validation in OneFlow v0.9.0 allows attackers to cause a segmentation fault via adding a Python sequence to the native code during broadcasting/type conversion. |
CVE-2025-56503 | Medium | 6.5 | — | 2025-11-10 | An issue in Sublime HQ Pty Ltd Sublime Text 4 4200 allows authenticated attackers with low-level privileges to escalate privileges to Administrator via replacing the uninstall file with a crafted binary in the installation folder. |
CVE-2025-63710 | Medium | 6.5 | — | 2025-11-10 | The send_message.php endpoint in SourceCodester Simple Public Chat Room 1.0 is vulnerable to Cross-Site Request Forgery (CSRF). |
CVE-2025-35968 | Medium | 6.4 | — | 2025-11-11 | Protection mechanism failure in the UEFI firmware for the Slim Bootloader within firmware may allow an escalation of privilege. |
CVE-2025-13171 | Medium | 6.3 | — | 2025-11-14 | A vulnerability was identified in ZZCMS 2023. |
CVE-2025-63725 | Medium | 6.1 | — | 2025-11-14 | Reflected Cross-Site Scripting (XSS) vulnerability in SVX Portal 2.7A via the id parameter to Recivers.php. |
CVE-2024-44635 | Medium | 6.1 | — | 2025-11-14 | PHPGurukul Student Record System 3.20 is vulnerable to Cross Site Scripting (XSS) via adminname and aemailid parameters in /admin-profile.php. |
CVE-2025-60646 | Medium | 6.1 | — | 2025-11-12 | A stored cross-site scripting (XSS) in the Business Line Management module of Xxl-api v1.3.0 attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter. |
CVE-2025-52331 | Medium | 6.1 | — | 2025-11-12 | Cross-site scripting (XSS) vulnerability in the generate report functionality in Rarlab WinRAR 7.11, allows attackers to disclose user information such as the computer username, generated report directory, and IP address. |
CVE-2025-31146 | Medium | 6.1 | — | 2025-11-11 | Time-of-check time-of-use race condition for some Intel Ethernet Adapter Complete Driver Pack software before version 1.5.1.0 within Ring 3: User Applications may allow a denial of service. |
CVE-2025-63724 | Medium | 6.0 | — | 2025-11-14 | SQL injection (SQL-i) vulnerability in SVX Portal 2.7A via crafted POST request to admin/update_setings.php. |
CVE-2025-12818 | Medium | 5.9 | — | 2025-11-13 | Integer wraparound in multiple PostgreSQL libpq client library functions allows an application input provider or network peer to cause libpq to undersize an allocation and write out-of-bounds by hundreds of megabytes. |
CVE-2025-26405 | Medium | 5.9 | — | 2025-11-11 | Improper control of dynamically-managed code resources for some Intel(R) NPU Drivers within Ring 3: User Applications may allow a denial of service. |
CVE-2025-27712 | Medium | 5.7 | — | 2025-11-11 | Improper neutralization for some Intel(R) Neural Compressor software before version v3.4 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-24512 | Medium | 5.6 | — | 2025-11-11 | Improper input validation for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.160 within Ring 2: Device Drivers may allow a denial of service. |
CVE-2025-63745 | Medium | 5.5 | — | 2025-11-14 | A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the info() function of bin_ne.c. |
CVE-2025-27249 | Medium | 5.5 | — | 2025-11-11 | Uncontrolled resource consumption for some Gaudi software before version 1.21.0 within Ring 3: User Applications may allow a denial of service. |
CVE-2025-63645 | Medium | 5.4 | — | 2025-11-12 | A stored cross-site scripting (XSS) vulnerability exists in pH7Software pH7-Social-Dating-CMS 17.9.1 in the application's message system. |
CVE-2025-63834 | Medium | 5.4 | — | 2025-11-10 | A stored cross-site scripting (XSS) vulnerability was discovered in Tenda AC18 v15.03.05.05_multi. |
CVE-2025-60686 | Medium | 5.1 | — | 2025-11-13 | A local stack-based buffer overflow vulnerability exists in the infostat.cgi and cstecgi.cgi binaries of ToToLink routers (A720R V4.1.5cu.614_B20230630, LR1200GB V9.1.0u.6619_B20230130, and NR1800X V9.1.0u.6681_B20230703). |
CVE-2025-60685 | Medium | 5.1 | — | 2025-11-13 | A stack buffer overflow exists in the ToToLink A720R Router firmware V4.1.5cu.614_B20230630 within the sysconf binary (sub_401EE0 function). |
CVE-2025-24516 | Medium | 4.5 | — | 2025-11-11 | Improper access control for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. |
CVE-2025-27725 | Medium | 4.4 | — | 2025-11-11 | Time-of-check time-of-use race condition for some ACAT before version 3.13 within Ring 3: User Applications may allow a denial of service. |
CVE-2025-20056 | Medium | 4.4 | — | 2025-11-11 | Improper input validation for some Intel VTune Profiler before version 2025.1 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-63744 | Medium | 4.3 | — | 2025-11-14 | A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the load() function of bin_dyldcache.c. |
CVE-2025-20622 | Low | 3.8 | — | 2025-11-11 | Sensitive information uncleared in resource before release for reuse for some Intel(R) NPU Drivers for Windows before version 32.0.100.4023 within Ring 3: User Applications may allow an information disclosure. |
CVE-2025-31948 | Low | 3.3 | — | 2025-11-11 | Improper input validation for some Intel(R) oneAPI Math Kernel Library before version 2025.2 within Ring 3: User Applications may allow a denial of service. |
CVE-2025-25216 | Low | 3.3 | — | 2025-11-11 | Improper input validation in some firmware for some Intel(R) Graphics Drivers and Intel LTS kernels within Ring 1: Device Drivers may allow a denial of service. |
CVE-2025-12817 | Low | 3.1 | — | 2025-11-13 | Missing authorization in PostgreSQL CREATE STATISTICS command allows a table owner to achieve denial of service against other CREATE STATISTICS users by creating in any schema. |
CVE-2025-32037 | Low | 2.0 | — | 2025-11-11 | Improper access control for some Intel(R) PresentMon before version 2.3.1 within Ring 3: User Applications may allow a denial of service. |
Intel · 21 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-33000 | High | 8.8 | — | 2025-11-11 | Improper input validation for some Intel QuickAssist Technology before version 2.6.0 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-24838 | High | 8.8 | — | 2025-11-11 | Improper privilege management for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-24299 | High | 8.8 | — | 2025-11-11 | Improper input validation for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-27713 | High | 7.8 | — | 2025-11-11 | Out-of-bounds write for some Intel(R) QAT Windows software before version 2.6.0. |
CVE-2025-20614 | Medium | 6.7 | — | 2025-11-11 | External control of file name or path for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-20050 | Medium | 6.7 | — | 2025-11-11 | Uncontrolled search path for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-32732 | Medium | 6.6 | — | 2025-11-11 | Buffer overflow for some Intel(R) QAT Windows software before version 2.6.0. |
CVE-2025-32446 | Medium | 6.5 | — | 2025-11-11 | Untrusted pointer dereference for some Intel QuickAssist Technology software before version 2.6.0 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-27710 | Medium | 6.5 | — | 2025-11-11 | Untrusted pointer dereference for some Intel(R) QAT Windows software before version 2.6.0. |
CVE-2025-24863 | Medium | 6.5 | — | 2025-11-11 | Improper privilege management for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. |
CVE-2025-24834 | Medium | 6.5 | — | 2025-11-11 | Protection mechanism failure for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. |
CVE-2025-24519 | Medium | 6.5 | — | 2025-11-11 | Buffer overflow for some Intel(R) QAT Windows software before version 2.6.0. |
CVE-2025-24848 | Medium | 6.3 | — | 2025-11-11 | Protection mechanism failure for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-31937 | Medium | 5.6 | — | 2025-11-11 | Out-of-bounds read for some Intel(R) QAT Windows software before version 2.6.0. |
CVE-2025-26694 | Medium | 5.5 | — | 2025-11-11 | Null pointer dereference for some Intel(R) QAT Windows software before version 2.6.0. |
CVE-2025-24847 | Medium | 4.5 | — | 2025-11-11 | Improper input validation for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. |
CVE-2025-30509 | Low | 3.8 | — | 2025-11-11 | Improper input validation for some Intel QuickAssist Technology software before version 2.6.0 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-32088 | Low | 3.3 | — | 2025-11-11 | Improper conditions check for some Intel(R) QAT Windows software before version 2.6.0. |
CVE-2025-24314 | Low | 2.2 | — | 2025-11-11 | Improper access control for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an information disclosure. |
CVE-2025-24862 | Low | 2.0 | — | 2025-11-11 | Unrestricted upload of file with dangerous type for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-24307 | Low | 2.0 | — | 2025-11-11 | Improper privilege management for some Intel(R) CIP software before version WIN_DCA_2.4.0.11001 within Ring 3: User Applications may allow an escalation of privilege. |
Mozilla · 16 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13026 | Critical | 9.8 | — | 2025-11-11 | Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. |
CVE-2025-13024 | Critical | 9.8 | — | 2025-11-11 | JIT miscompilation in the JavaScript Engine: JIT component. |
CVE-2025-13023 | Critical | 9.8 | — | 2025-11-11 | Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. |
CVE-2025-13022 | Critical | 9.8 | — | 2025-11-11 | Incorrect boundary conditions in the Graphics: WebGPU component. |
CVE-2025-13021 | Critical | 9.8 | — | 2025-11-11 | Incorrect boundary conditions in the Graphics: WebGPU component. |
CVE-2025-13020 | High | 8.8 | — | 2025-11-11 | Use-after-free in the WebRTC: Audio/Video component. |
CVE-2025-13014 | High | 8.8 | — | 2025-11-11 | Use-after-free in the Audio/Video component. |
CVE-2025-13027 | High | 8.1 | — | 2025-11-11 | Memory safety bugs present in Firefox 144 and Thunderbird 144. |
CVE-2025-13019 | High | 8.1 | — | 2025-11-11 | Same-origin policy bypass in the DOM: Workers component. |
CVE-2025-13018 | High | 8.1 | — | 2025-11-11 | Mitigation bypass in the DOM: Security component. |
CVE-2025-13017 | High | 8.1 | — | 2025-11-11 | Same-origin policy bypass in the DOM: Notifications component. |
CVE-2025-13025 | High | 7.5 | — | 2025-11-11 | Incorrect boundary conditions in the Graphics: WebGPU component. |
CVE-2025-13016 | High | 7.5 | — | 2025-11-11 | Incorrect boundary conditions in the JavaScript: WebAssembly component. |
CVE-2025-13012 | High | 7.5 | — | 2025-11-11 | Race condition in the Graphics component. |
CVE-2025-13013 | Medium | 6.1 | — | 2025-11-11 | Mitigation bypass in the DOM: Core & HTML component. |
CVE-2025-13015 | Low | 3.4 | — | 2025-11-11 | Spoofing issue in Firefox. |
Adobe · 15 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-61839 | High | 7.8 | — | 2025-11-11 | Format Plugins versions 1.1.1 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. |
CVE-2025-61838 | High | 7.8 | — | 2025-11-11 | Format Plugins versions 1.1.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61837 | High | 7.8 | — | 2025-11-11 | Format Plugins versions 1.1.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61836 | High | 7.8 | — | 2025-11-11 | Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61829 | High | 7.8 | — | 2025-11-11 | Illustrator on iPad versions 3.0.9 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61828 | High | 7.8 | — | 2025-11-11 | Illustrator on iPad versions 3.0.9 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61827 | High | 7.8 | — | 2025-11-11 | Illustrator on iPad versions 3.0.9 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61826 | High | 7.8 | — | 2025-11-11 | Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2025-61830 | High | 7.1 | — | 2025-11-11 | Adobe Pass versions 3.7.3 and earlier are affected by an Incorrect Authorization vulnerability. |
CVE-2025-61845 | Medium | 5.5 | — | 2025-11-11 | Format Plugins versions 1.1.1 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. |
CVE-2025-61844 | Medium | 5.5 | — | 2025-11-11 | Format Plugins versions 1.1.1 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. |
CVE-2025-61843 | Medium | 5.5 | — | 2025-11-11 | Format Plugins versions 1.1.1 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. |
CVE-2025-61842 | Medium | 5.5 | — | 2025-11-11 | Format Plugins versions 1.1.1 and earlier are affected by a Use After Free vulnerability that could lead to memory exposure. |
CVE-2025-61841 | Medium | 5.5 | — | 2025-11-11 | Format Plugins versions 1.1.1 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. |
CVE-2025-61840 | Medium | 5.5 | — | 2025-11-11 | Format Plugins versions 1.1.1 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. |
Sap_se · 14 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-42890 | Critical | 10.0 | — | 2025-11-11 | SQL Anywhere Monitor (Non-GUI) baked credentials into the code,exposing the resources or functionality to unintended users and providing attackers with the possibility of arbitrary code execution.This could cause high impact on confidentia… |
CVE-2025-42887 | Critical | 9.9 | — | 2025-11-11 | Due to missing input sanitation, SAP Solution Manager allows an authenticated attacker to insert malicious code when calling a remote-enabled function module. |
CVE-2025-42940 | High | 7.5 | — | 2025-11-11 | SAP CommonCryptoLib does not perform necessary boundary checks during pre-authentication parsing of manipulated ASN.1 data over the network. |
CVE-2025-42895 | Medium | 6.9 | — | 2025-11-11 | Due to insufficient validation of connection property values, the SAP HANA JDBC Client allows a high-privilege locally authenticated user to supply crafted parameters that lead to unauthorized code loading, resulting in low impact on confi… |
CVE-2025-42884 | Medium | 6.5 | — | 2025-11-11 | SAP NetWeaver Enterprise Portal allows an unauthenticated attacker to inject JNDI environment properties or pass a URL used during JNDI lookup operations, enabling access to an unintended JNDI provider.�This could further lead to disclosur… |
CVE-2025-42924 | Medium | 6.1 | — | 2025-11-11 | SAP S/4HANA landscape SAP E-Recruiting BSP allows an unauthenticated attacker to craft malicious links, when clicked the victim could be redirected to the page controlled by the attacker. |
CVE-2025-42885 | Medium | 5.8 | — | 2025-11-11 | Due to missing authentication, SAP HANA 2.0 (hdbrss) allows an unauthenticated attacker to call a remote-enabled function that will enable them to view information. |
CVE-2025-42888 | Medium | 5.5 | — | 2025-11-11 | SAP GUI for Windows may allow a highly privileged user on the affected client PC to locally access sensitive information stored in process memory during runtime.This vulnerability has a high impact on confidentiality, with no impact on int… |
CVE-2025-42889 | Medium | 5.4 | — | 2025-11-11 | SAP Starter Solution allows an authenticated attacker to execute crafted database queries, thereby exposing the back-end database. |
CVE-2025-42919 | Medium | 5.3 | — | 2025-11-11 | Due to an Information Disclosure vulnerability in SAP NetWeaver Application Server Java, internal metadata files could be accessed via manipulated URLs. |
CVE-2025-42897 | Medium | 5.3 | — | 2025-11-11 | Due to information disclosure vulnerability in anonymous API provided by SAP Business One (SLD), an attacker with normal user access could gain access to unauthorized information. |
CVE-2025-42899 | Medium | 4.3 | — | 2025-11-11 | SAP S4CORE (Manage journal entries) does not perform necessary authorization checks for an authenticated user resulting in escalation of privileges. |
CVE-2025-42882 | Medium | 4.3 | — | 2025-11-11 | Due to a missing authorization check in SAP NetWeaver Application Server for ABAP, an authenticated attacker with basic privileges could execute a specific function module in ABAP to retrieve restricted technical information from the syste… |
CVE-2025-42883 | Low | 2.7 | — | 2025-11-11 | Migration Workbench (DX Workbench) in SAP NetWeaver Application Server for ABAP fails to trigger a malware scan when an attacker with administrative privileges uploads files to the application server. |
Siemens · 12 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-32011 | High | 8.8 | — | 2025-11-11 | A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). |
CVE-2025-40827 | High | 7.8 | — | 2025-11-11 | A vulnerability has been identified in Siemens Software Center (All versions < V3.5), Solid Edge SE2025 (All versions < V225.0 Update 10). |
CVE-2025-40763 | High | 7.8 | — | 2025-11-11 | A vulnerability has been identified in Altair Grid Engine (All versions < V2026.0.0). |
CVE-2024-32010 | High | 7.8 | — | 2025-11-11 | A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). |
CVE-2024-32009 | High | 7.8 | — | 2025-11-11 | A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). |
CVE-2024-32008 | High | 7.8 | — | 2025-11-11 | A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). |
CVE-2025-40816 | High | 7.6 | — | 2025-11-11 | A vulnerability has been identified in LOGO! |
CVE-2025-40744 | High | 7.5 | — | 2025-11-11 | A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 11). |
CVE-2025-40815 | High | 7.2 | — | 2025-11-11 | A vulnerability has been identified in LOGO! |
CVE-2025-40817 | Medium | 6.5 | — | 2025-11-11 | A vulnerability has been identified in LOGO! |
CVE-2025-40760 | Medium | 5.5 | — | 2025-11-11 | A vulnerability has been identified in Altair Grid Engine (All versions < V2026.0.0). |
CVE-2024-32014 | Medium | 4.7 | — | 2025-11-11 | A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP12 Update 2). |
Dell · 11 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-46608 | Critical | 9.1 | — | 2025-11-12 | Dell Data Lakehouse, versions prior to 1.6.0.0, contain(s) an Improper Access Control vulnerability. |
CVE-2025-46428 | High | 8.8 | — | 2025-11-12 | Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. |
CVE-2025-46427 | High | 8.8 | — | 2025-11-12 | Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. |
CVE-2025-46369 | High | 7.8 | — | 2025-11-13 | Dell Alienware Command Center 6.x (AWCC), versions prior to 6.10.15.0, contains an Insecure Temporary File vulnerability. |
CVE-2025-46367 | High | 7.8 | — | 2025-11-13 | Dell Alienware Command Center 6.x (AWCC), versions prior to 6.10.15.0, contain a Detection of Error Condition Without Action vulnerability. |
CVE-2025-46430 | High | 7.3 | — | 2025-11-10 | Dell Display and Peripheral Manager, versions prior to 2.1.2.12, contains an Execution with Unnecessary Privileges vulnerability in the Installer. |
CVE-2024-48829 | Medium | 6.7 | — | 2025-11-12 | Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Control of Generation of Code ('Code Injection') vulnerability. |
CVE-2025-46368 | Medium | 6.6 | — | 2025-11-13 | Dell Alienware Command Center 6.x (AWCC), versions prior to 6.10.15.0, contains an Insecure Temporary File vulnerability. |
CVE-2025-46362 | Medium | 6.6 | — | 2025-11-13 | Dell Alienware Command Center 6.x (AWCC), versions prior to 6.10.15.0, contain an Improper Access Control vulnerability. |
CVE-2025-43723 | Medium | 5.9 | — | 2025-11-10 | Dell PowerScale OneFS, versions prior to 9.10.1.3 and versions 9.11.0.0 through 9.12.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. |
CVE-2025-46370 | Low | 3.3 | — | 2025-11-13 | Dell Alienware Command Center 6.x (AWCC), versions prior to 6.10.15.0, contain a Process Control vulnerability. |
Desktopalert · 11 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-54339 | Critical | 10.0 | — | 2025-11-14 | An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 exploitable remotely for Escalation of Privileges. |
CVE-2025-54343 | Critical | 9.6 | — | 2025-11-14 | An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 exploitable remotely for Escalation of Privileges. |
CVE-2025-54346 | High | 7.6 | — | 2025-11-14 | A Reflected Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive information. |
CVE-2025-54345 | High | 7.5 | — | 2025-11-14 | An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. |
CVE-2025-54348 | Medium | 6.5 | — | 2025-11-14 | A Stored Cross Site Scripting (XSS) vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows an attacker to hijack user’s browser, capturing sensitive information. |
CVE-2025-54562 | Medium | 4.3 | — | 2025-11-14 | A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows Technical Information to be Disclosed through stack trace. |
CVE-2025-54561 | Medium | 4.3 | — | 2025-11-14 | An Incorrect Access Control vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote access to content despite lack of the correct permission through a Broken Authorizatio… |
CVE-2025-54340 | Medium | 4.1 | — | 2025-11-14 | A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. |
CVE-2025-54560 | Low | 3.8 | — | 2025-11-14 | A Server-side Request Forgery vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows Probing of internal infrastructure. |
CVE-2025-54559 | Low | 3.7 | — | 2025-11-14 | An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2 which allows remote Path Traversal for loading arbitrary external content. |
CVE-2025-54342 | Low | 3.3 | — | 2025-11-14 | A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. |
Dlink · 11 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-60679 | High | 8.8 | — | 2025-11-13 | A stack buffer overflow vulnerability exists in the D-Link DIR-816A2 router firmware DIR-816A2_FWv1.10CNB05_R1B011D88210.img in the upload.cgi module, which handles firmware version information. |
CVE-2025-60698 | High | 7.3 | — | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. |
CVE-2025-60697 | High | 7.3 | — | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. |
CVE-2025-60674 | Medium | 6.8 | — | 2025-11-13 | A stack buffer overflow vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin in the rc binary's USB storage handling module. |
CVE-2025-60676 | Medium | 6.5 | — | 2025-11-13 | An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. |
CVE-2025-60673 | Medium | 6.5 | — | 2025-11-13 | An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. |
CVE-2025-60672 | Medium | 6.5 | — | 2025-11-13 | An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware FW101B04.bin. |
CVE-2025-60701 | Medium | 6.5 | — | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. |
CVE-2025-60700 | Medium | 6.5 | — | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `librcm.so` binaries. |
CVE-2025-60675 | Medium | 5.4 | — | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0.2B05_20181207.bin in the timelycheck and sysconf binaries, which process the /tmp/new_qos.rule configuration file. |
CVE-2025-60671 | Medium | 5.4 | — | 2025-11-13 | A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0.2B05_20181207.bin in the timelycheck and sysconf binaries, which process the /var/system/linux_vlan_reinit file. |
Apache · 9 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64403 | High | 8.1 | — | 2025-11-12 | Apache OpenOffice Calc spreadsheet can contain links to other files, in the form of "external data sources". |
CVE-2025-64405 | High | 7.5 | — | 2025-11-12 | Apache OpenOffice documents can contain links. |
CVE-2025-64404 | High | 7.5 | — | 2025-11-12 | Apache OpenOffice documents can contain links to other files. |
CVE-2025-64401 | High | 7.5 | — | 2025-11-12 | Apache OpenOffice documents can contain links. |
CVE-2025-59118 | High | 7.3 | — | 2025-11-12 | Unrestricted Upload of File with Dangerous Type vulnerability in Apache OFBiz. |
CVE-2025-61623 | Medium | 6.5 | — | 2025-11-12 | Reflected cross-site scripting vulnerability in Apache OFBiz. |
CVE-2025-64402 | Medium | 6.5 | — | 2025-11-12 | Apache OpenOffice documents can contain links. |
CVE-2025-64407 | Medium | 5.3 | — | 2025-11-12 | Apache OpenOffice documents can contain links. |
CVE-2025-64406 | Medium | 4.3 | — | 2025-11-12 | An out-of-bounds Write vulnerability in Apache OpenOffice could allow an attacker to craft a document that would crash the program, or otherwise corrupt other memory areas. |
Zoom · 9 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-62484 | High | 8.1 | — | 2025-11-13 | Inefficient regular expression complexity in certain Zoom Workplace Clients before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access. |
CVE-2025-64741 | High | 8.1 | — | 2025-11-13 | Improper authorization handling in Zoom Workplace for Android before version 6.5.10 may allow an unauthenticated user to conduct an escalation of privilege via network access. |
CVE-2025-64740 | High | 7.5 | — | 2025-11-13 | Improper verification of cryptographic signature in the installer for Zoom Workplace VDI Client for Windows may allow an authenticated user to conduct an escalation of privilege via local access. |
CVE-2025-30662 | Medium | 6.6 | — | 2025-11-13 | Symlink following in the installer for the Zoom Workplace VDI Plugin macOS Universal installer before version 6.3.14, 6.4.14, and 6.5.10 in their respective tracks may allow an authenticated user to conduct a disclosure of information via… |
CVE-2025-62483 | Medium | 5.3 | — | 2025-11-13 | Improper removal of sensitive information in certain Zoom Clients before version 6.5.10 may allow an unauthenticated user to conduct a disclosure of information via network access. |
CVE-2025-64738 | Medium | 5.0 | — | 2025-11-13 | External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access. |
CVE-2025-30669 | Medium | 4.8 | — | 2025-11-13 | Improper certificate validation in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via adjacent access. |
CVE-2025-64739 | Medium | 4.3 | — | 2025-11-13 | External control of file name or path in certain Zoom Clients may allow an unauthenticated user to conduct a disclosure of information via network access. |
CVE-2025-62482 | Medium | 4.3 | — | 2025-11-13 | Cross-site scripting in Zoom Workplace for Windows before version 6.5.10 may allow an unauthenticated user to impact integrity via network access. |
Combodo · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-48065 | High | 8.8 | — | 2025-11-10 | Combodo iTop is a web based IT service management tool. |
CVE-2025-47932 | High | 8.8 | — | 2025-11-10 | Combodo iTop is a web based IT service management tool. |
CVE-2025-47773 | High | 8.8 | — | 2025-11-10 | Combodo iTop is a web based IT service management tool. |
CVE-2025-49145 | High | 8.7 | — | 2025-11-10 | Combodo iTop is a web based IT service management tool. |
CVE-2025-48055 | High | 8.5 | — | 2025-11-10 | Combodo iTop is a web based IT service management tool. |
CVE-2025-47286 | High | 7.2 | — | 2025-11-10 | Combodo iTop is a web based IT service management tool. |
CVE-2025-64167 | High | 7.1 | — | 2025-11-10 | Combodo iTop is a web based IT service management tool. |
CVE-2025-48878 | Medium | 4.3 | — | 2025-11-10 | Combodo iTop is a web based IT service management tool. |
Ibm · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-36250 | Critical | 10.0 | — | 2025-11-13 | IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service (nimesis) could allow a remote attacker to execute arbitrary commands due to improper process controls. |
CVE-2025-36251 | Critical | 9.6 | — | 2025-11-13 | IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 nimsh service SSL/TLS implementations could allow a remote attacker to execute arbitrary commands due to improper process controls. |
CVE-2025-36096 | Critical | 9.0 | — | 2025-11-13 | IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques. |
CVE-2025-36236 | High | 8.2 | — | 2025-11-13 | IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service (nimesis) could allow a remote attacker to traverse directories on the system. |
CVE-2025-33119 | Medium | 6.5 | — | 2025-11-12 | IBM QRadar SIEM 7.5 through 7.5.0 UP14 stores user credentials in configuration files in source control which can be read by an authenticated user. |
CVE-2025-36223 | Medium | 5.4 | — | 2025-11-12 | IBM OpenPages 9.0 and 9.1 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. |
CVE-2025-33150 | Medium | 5.3 | — | 2025-11-10 | IBM Cognos Analytics Certified Containers 12.1.0 could disclose package parameter information due to the presence of hidden pages. |
CVE-2025-27368 | Medium | 4.3 | — | 2025-11-12 | IBM OpenPages 9.0 and 9.1 is vulnerable to information disclosure of sensitive information due to a weaker than expected security for certain REST end points used by the user interface of OpenPages. |
Jetbrains · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64456 | High | 8.4 | — | 2025-11-10 | In JetBrains ReSharper before 2025.2.4 missing signature verification in DPA Collector allows local privilege escalation |
CVE-2025-64685 | High | 8.1 | — | 2025-11-10 | In JetBrains YouTrack before 2025.3.104432 missing TLS certificate validation enabled data disclosure |
CVE-2025-64683 | Medium | 5.3 | — | 2025-11-10 | In JetBrains Hub before 2025.3.104432 information disclosure was possible via the Users API |
CVE-2025-64684 | Medium | 4.3 | — | 2025-11-10 | In JetBrains YouTrack before 2025.3.104432 information disclosure was possible via the feedback form |
CVE-2025-64457 | Medium | 4.2 | — | 2025-11-10 | In JetBrains ReSharper, Rider and dotTrace before 2025.2.5 local privilege escalation was possible via race condition |
CVE-2025-64773 | Low | 2.7 | — | 2025-11-11 | In JetBrains YouTrack before 2025.3.104432 a race condition allowed bypass of helpdesk Agent limit |
CVE-2025-64682 | Low | 2.7 | — | 2025-11-10 | In JetBrains Hub before 2025.3.104432 a race condition allowed bypass of the Agent-user limit |
CVE-2025-64681 | Low | 2.7 | — | 2025-11-10 | In JetBrains Hub before 2025.3.104992 a race condition allowed bypass of the user limit via invitations |
Linksys · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-60691 | High | 8.8 | — | 2025-11-13 | A stack-based buffer overflow exists in the httpd binary of Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). |
CVE-2025-60690 | High | 8.8 | — | 2025-11-13 | A stack-based buffer overflow exists in the get_merge_ipaddr function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). |
CVE-2025-60696 | High | 8.4 | — | 2025-11-13 | A stack-based buffer overflow vulnerability exists in the makeRequest.cgi binary of Linksys RE7000 routers (Firmware FW_v2.0.15_211230_1012). |
CVE-2025-60692 | High | 8.4 | — | 2025-11-13 | A stack-based buffer overflow vulnerability exists in the libshared.so library of Cisco Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). |
CVE-2025-60694 | High | 7.5 | — | 2025-11-13 | A stack-based buffer overflow exists in the validate_static_route function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). |
CVE-2025-60693 | Medium | 6.5 | — | 2025-11-13 | A stack-based buffer overflow exists in the get_merge_mac function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). |
CVE-2025-60695 | Medium | 5.9 | — | 2025-11-13 | A stack-based buffer overflow vulnerability exists in the mtk_dut binary of Linksys E7350 routers (Firmware 1.1.00.032). |
CVE-2025-60689 | Medium | 5.4 | — | 2025-11-13 | An unauthenticated command injection vulnerability exists in the Start_EPI function of the httpd binary on Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). |
Axis · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-5718 | Medium | 6.8 | — | 2025-11-11 | The ACAP Application framework could allow privilege escalation through a symlink attack. |
CVE-2025-8108 | Medium | 6.7 | — | 2025-11-11 | An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. |
CVE-2025-6779 | Medium | 6.7 | — | 2025-11-11 | An ACAP configuration file has improper permissions, which could allow command injection and potentially lead to privilege escalation. |
CVE-2025-6298 | Medium | 6.7 | — | 2025-11-11 | ACAP applications can gain elevated privileges due to improper input validation, potentially leading to privilege escalation. |
CVE-2025-4645 | Medium | 6.7 | — | 2025-11-11 | An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. |
CVE-2025-5452 | Medium | 6.6 | — | 2025-11-11 | A malicious ACAP application can gain access to admin-level service account credentials used by legitimate ACAP applications, leading to potential privilege escalation of the malicious ACAP application. |
CVE-2025-5454 | Medium | 6.4 | — | 2025-11-11 | An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escalation. |
Mattermost · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-55070 | Medium | 6.5 | — | 2025-11-14 | Mattermost versions <11 fail to enforce multi-factor authentication on WebSocket connections which allows unauthenticated users to access sensitive information via WebSocket events |
CVE-2025-59480 | Medium | 6.1 | — | 2025-11-13 | Mattermost Mobile Apps versions <=2.32.0 fail to verify that SSO redirect tokens originate from the trusted server, which allows a malicious Mattermost instance or on-path attacker to obtain user session credentials via crafted token-in-UR… |
CVE-2025-55073 | Medium | 5.4 | — | 2025-11-14 | Mattermost versions 10.11.x <= 10.11.3, 10.5.x <= 10.5.11, 10.12.x <= 10.12.0 fail to validate the relationship between the post being updated and the MSTeams plugin OAuth flow which allows an attacker to edit arbitrary posts via a crafted… |
CVE-2025-11794 | Medium | 4.9 | — | 2025-11-14 | Mattermost versions 10.11.x <= 10.11.3, 10.5.x <= 10.5.11, 10.12.x <= 10.12.0 fail to sanitize user data which allows system administrators to access password hashes and MFA secrets via the POST /api/v4/users/{user_id}/email/verify/member… |
CVE-2025-11776 | Medium | 4.3 | — | 2025-11-14 | Mattermost versions <11 fail to properly restrict access to archived channel search API which allows guest users to discover archived public channels via the `/api/v4/teams/{team_id}/channels/search_archived` endpoint |
CVE-2025-41436 | Low | 3.1 | — | 2025-11-14 | Mattermost versions <11.0 fail to properly enforce the "Allow users to view archived channels" setting which allows regular users to access archived channel content and files via the "Open in Channel" functionality from followed threads |
CVE-2025-11777 | Low | 3.1 | — | 2025-11-13 | Mattermost versions 10.11.x <= 10.11.3, 10.5.x <= 10.5.11 fail to properly validate team membership permissions in the Add Channel Member API which allows users from one team to access user metadata and channel membership information from… |
Zohocorp · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-8324 | Critical | 9.8 | — | 2025-11-11 | Zohocorp ManageEngine Analytics Plus versions 6170 and below are vulnerable to Unauthenticated SQL Injection due to the improper filter configuration. |
CVE-2025-9223 | High | 8.8 | — | 2025-11-11 | Zohocorp ManageEngine Applications Manager versions 178100 and below are vulnerable to authenticated command injection vulnerability due to the improper configuration in the execute program action feature. |
CVE-2025-7633 | High | 7.3 | — | 2025-11-11 | Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Custom report. |
CVE-2025-7632 | High | 7.3 | — | 2025-11-11 | Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Public Folders report. |
CVE-2025-7430 | High | 7.3 | — | 2025-11-11 | Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Folder Message Count and Size report. |
CVE-2025-7429 | High | 7.3 | — | 2025-11-11 | Zohocorp ManageEngine Exchange Reporter Plus versions 5723 and below are vulnerable to the Stored XSS Vulnerability in the Mails Deleted or Moved report. |
CVE-2025-9227 | Medium | 6.5 | — | 2025-11-11 | Zohocorp ManageEngine OpManager versions 128609 and below are vulnerable to Stored XSS Vulnerability in the SNMP trap processor. |
Bdtask · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13185 | Medium | 4.7 | — | 2025-11-14 | A security flaw has been discovered in Bdtask/CodeCanyon News365 up to 7.0.3. |
CVE-2025-13179 | Medium | 4.3 | — | 2025-11-14 | A vulnerability has been found in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System up to 20250320. |
CVE-2025-13177 | Medium | 4.3 | — | 2025-11-14 | A vulnerability was detected in Bdtask/CodeCanyon SalesERP up to 20250728. |
CVE-2025-13180 | Low | 3.5 | — | 2025-11-14 | A vulnerability was found in Bdtask/CodeCanyon Wholesale Inventory Control and Inventory Management System up to 20250320. |
CVE-2025-13178 | Low | 3.5 | — | 2025-11-14 | A flaw has been found in Bdtask/CodeCanyon SalesERP up to 20250728. |
CVE-2025-13186 | Low | 2.4 | — | 2025-11-14 | A weakness has been identified in Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution up to 4.0. |
Fairsketch · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-41106 | Medium | 5.4 | — | 2025-11-11 | HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'first_name' in '/clients/save_con… |
CVE-2025-41105 | Medium | 5.4 | — | 2025-11-11 | HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'title' in '/tickets/save'. |
CVE-2025-41104 | Medium | 5.4 | — | 2025-11-11 | HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'custom_field_1' in '/estimate_req… |
CVE-2025-41103 | Medium | 5.4 | — | 2025-11-11 | HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'reply_message' in '/messages/repl… |
CVE-2025-41102 | Medium | 5.4 | — | 2025-11-11 | HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'title' in '/events/save'. |
CVE-2025-41101 | Medium | 5.4 | — | 2025-11-11 | HTML injection vulnerability found in Fairsketch's RISE CRM Framework v3.8.1, which consist of an HTML code injection due to lack of proper validation of user inputs by sending a POST request in parameter 'title' in'/projects/save'. |
Google · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12438 | High | 8.8 | — | 2025-11-10 | Use after free in Ozone in Google Chrome on Linux and ChromeOS prior to 142.0.7444.59 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. |
CVE-2025-12435 | Medium | 5.4 | — | 2025-11-10 | Incorrect security UI in Omnibox in Google Chrome on Android prior to 142.0.7444.59 allowed a remote attacker to perform UI spoofing via a crafted HTML page. |
CVE-2025-13102 | Medium | 4.3 | — | 2025-11-14 | Inappropriate implementation in WebApp Installs in Google Chrome on Android prior to 134.0.6998.35 allowed a remote attacker to perform UI spoofing via a crafted HTML page. |
CVE-2024-11919 | Medium | 4.3 | — | 2025-11-14 | Inappropriate implementation in Intents in Google Chrome on Android prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page. |
CVE-2025-12729 | Medium | 4.2 | — | 2025-11-10 | Inappropriate implementation in Omnibox in Google Chrome on Android prior to 142.0.7444.137 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. |
CVE-2025-12447 | Medium | 4.2 | — | 2025-11-10 | Incorrect security UI in Omnibox in Google Chrome on Android prior to 142.0.7444.59 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. |
Janobe · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12939 | Medium | 6.3 | — | 2025-11-10 | A security flaw has been discovered in SourceCodester Interview Management System up to 1.0. |
CVE-2025-12933 | Medium | 6.3 | — | 2025-11-10 | A vulnerability was identified in SourceCodester Baby Care System 1.0. |
CVE-2025-12931 | Medium | 6.3 | — | 2025-11-10 | A vulnerability was found in SourceCodester Food Ordering System 1.0. |
CVE-2025-12930 | Medium | 6.3 | — | 2025-11-10 | A vulnerability has been found in SourceCodester Food Ordering System 1.0. |
CVE-2025-12926 | Medium | 6.3 | — | 2025-11-10 | A weakness has been identified in SourceCodester Farm Management System 1.0. |
CVE-2025-12932 | Medium | 4.7 | — | 2025-11-10 | A vulnerability was determined in SourceCodester Baby Care System 1.0. |
Rockwell Automation · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11918 | High | 7.3 | — | 2025-11-14 | Rockwell Automation Arena® suffers from a stack-based buffer overflow vulnerability. |
CVE-2025-11862 | — | — | — | 2025-11-11 | A security issue was discovered within Verve Asset Manager allowing unauthorized read-only users to read, update, and delete users via the API. |
CVE-2025-11697 | — | — | — | 2025-11-11 | A local code execution security issue exists within Studio 5000® Simulation Interface™ via the API. |
CVE-2025-11696 | — | — | — | 2025-11-11 | A local server-side request forgery (SSRF) security issue exists within Studio 5000® Simulation Interface™ via the API. |
CVE-2025-11085 | — | — | — | 2025-11-11 | A security issue exists within DataMosaix™ Private Cloud allowing for Persistent XSS. |
CVE-2025-11084 | — | — | — | 2025-11-11 | A security issue exists within DataMosaix™ Private Cloud, allowing attackers to bypass MFA during setup and obtain a valid login-token cookie without knowing the users password. |
Apple · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-43515 | High | 8.8 | — | 2025-11-13 | The issue was addressed by refusing external connections by default. |
CVE-2024-9126 | High | 7.5 | — | 2025-11-14 | Use after free in Internals in Google Chrome on iOS prior to 127.0.6533.88 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a series of curated UI gestures. |
CVE-2024-13983 | Medium | 6.3 | — | 2025-11-14 | Inappropriate implementation in Lens in Google Chrome on iOS prior to 136.0.7103.59 allowed a remote attacker to perform UI spoofing via a crafted QR code. |
CVE-2024-11920 | Medium | 4.3 | — | 2025-11-14 | Inappropriate implementation in Dawn in Google Chrome on Mac prior to 130.0.6723.92 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. |
CVE-2025-43205 | Medium | 4.0 | — | 2025-11-12 | An out-of-bounds access issue was addressed with improved bounds checking. |
Axis Communications Ab · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-10714 | High | 8.4 | — | 2025-11-11 | AXIS Optimizer was vulnerable to an unquoted search path vulnerability, which could potentially lead to privilege escalation within Microsoft Windows operating system. |
CVE-2025-9055 | Medium | 6.4 | — | 2025-11-11 | The VAPIX Edge storage API that allowed a privilege escalation, enabling a VAPIX administrator-privileged user to gain Linux Root privileges. |
CVE-2025-6571 | Medium | 6.0 | — | 2025-11-11 | A 3rd-party component exposed its password in process arguments, allowing for low-privileged users to access it. |
CVE-2025-9524 | Medium | 4.3 | — | 2025-11-11 | The VAPIX API port.cgi did not have sufficient input validation, which may result in process crashes and impact usability. |
CVE-2025-8998 | Low | 3.1 | — | 2025-11-11 | It was possible to upload files with a specific name to a temporary directory, which may result in process crashes and impact usability. |
Cisco · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-20341 | High | 8.8 | — | 2025-11-13 | A vulnerability in Cisco Catalyst Center Virtual Appliance could allow an authenticated, remote attacker to elevate privileges to Administrator on an affected system. This vulnerability is due to insufficient validation of user-supplied… |
CVE-2025-20349 | Medium | 6.3 | — | 2025-11-13 | A vulnerability in the REST API of Cisco Catalyst Center could allow an authenticated, remote attacker to execute arbitrary commands in a restricted container as the root user. This vulnerability is due to insufficient validation of use… |
CVE-2025-20353 | Medium | 6.1 | — | 2025-11-13 | A vulnerability in the web-based management interface of Cisco Catalyst Center could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device. This vu… |
CVE-2025-20355 | Medium | 4.7 | — | 2025-11-13 | A vulnerability in the web-based management interface of Cisco Catalyst Center Virtual Appliance could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability is due to improper input val… |
CVE-2025-20346 | Medium | 4.3 | — | 2025-11-13 | A vulnerability in Cisco Catalyst Center could allow an authenticated, remote attacker to execute operations that should require Administrator privileges. |
Code-projects · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13170 | High | 7.3 | — | 2025-11-14 | A vulnerability was detected in code-projects Simple Online Hotel Reservation System 1.0. |
CVE-2025-13169 | High | 7.3 | — | 2025-11-14 | A security vulnerability has been detected in code-projects Simple Online Hotel Reservation System 1.0. |
CVE-2025-12928 | High | 7.3 | — | 2025-11-10 | A vulnerability was detected in code-projects Online Job Search Engine 1.0. |
CVE-2025-13076 | Medium | 4.7 | — | 2025-11-12 | A flaw has been found in code-projects Responsive Hotel Site 1.0. |
CVE-2025-13075 | Medium | 4.7 | — | 2025-11-12 | A vulnerability was detected in code-projects Responsive Hotel Site 1.0. |
Lenovo · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12048 | High | 7.5 | — | 2025-11-12 | An arbitrary file upload vulnerability was reported in the Lenovo Scanner Pro client during an internal security assessment that could allow remote code execution or unauthorized control of the affected system. |
CVE-2025-10495 | High | 7.5 | — | 2025-11-12 | A potential vulnerability was reported in the Lenovo PC Manager, Lenovo App Store, Lenovo Browser, and Lenovo Legion Zone client applications that, under certain conditions, could allow an attacker on the same logical network to execute ar… |
CVE-2025-8485 | High | 7.3 | — | 2025-11-12 | An improper permissions vulnerability was reported in Lenovo App Store that could allow a local authenticated user to execute code with elevated privileges during installation of an application. |
CVE-2025-8421 | Medium | 6.6 | — | 2025-11-12 | An improper default permission vulnerability was reported in Lenovo Dock Manager that, under certain conditions during installation, could allow an authenticated local user to redirect log files with elevated privileges. |
CVE-2025-12047 | Medium | 5.3 | — | 2025-11-12 | A vulnerability was reported in the Lenovo Scanner pro application during an internal security assessment that, under certain circumstances, could allow an attacker on the same logical network to disclose sensitive user files from the appl… |
Macrozheng · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13118 | Medium | 6.3 | — | 2025-11-13 | A vulnerability was detected in macrozheng mall-swarm up to 1.0.3. |
CVE-2025-13114 | Medium | 6.3 | — | 2025-11-13 | A vulnerability was identified in macrozheng mall-swarm up to 1.0.3. |
CVE-2025-13117 | Medium | 5.4 | — | 2025-11-13 | A security vulnerability has been detected in macrozheng mall-swarm and mall up to 1.0.3. |
CVE-2025-13116 | Medium | 5.4 | — | 2025-11-13 | A weakness has been identified in macrozheng mall-swarm and mall up to 1.0.3. |
CVE-2025-13115 | Medium | 4.3 | — | 2025-11-13 | A security flaw has been discovered in macrozheng mall-swarm and mall up to 1.0.3. |
Nvidia · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-33186 | High | 8.8 | — | 2025-11-11 | NVIDIA AIStore contains a vulnerability in AuthN. |
CVE-2025-33178 | High | 7.8 | — | 2025-11-11 | NVIDIA NeMo Framework for all platforms contains a vulnerability in the bert services component where malicious data created by an attacker may cause a code injection. |
CVE-2025-23361 | High | 7.8 | — | 2025-11-11 | NVIDIA NeMo Framework for all platforms contains a vulnerability in a script, where malicious input created by an attacker may cause improper control of code generation. |
CVE-2025-23357 | High | 7.8 | — | 2025-11-11 | NVIDIA Megatron-LM for all platforms contains a vulnerability in a script, where malicious data created by an attacker may cause a code injection issue. |
CVE-2025-33185 | Medium | 5.3 | — | 2025-11-11 | NVIDIA AIStore contains a vulnerability in AuthN where an unauthenticated user may cause information disclosure. A successful exploit of this vulnerability may lead to information disclosure. |
Unknown · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11307 | High | 8.8 | — | 2025-11-11 | The WP Go Maps (formerly WP Google Maps) WordPress plugin before 9.0.48 does not sanitize user input provided via an AJAX action, allowing unauthenticated users to store XSS payloads which are later retrieved from another AJAX call and out… |
CVE-2025-11855 | High | 7.5 | — | 2025-11-11 | The age-restriction WordPress plugin through 3.0.2 does not have authorisation in the age_restrictionRemoteSupportRequest function, allowing any authenticated users, such as subscriber to create an admin user with a hardcoded username and… |
CVE-2025-10686 | High | 7.2 | — | 2025-11-14 | The Creta Testimonial Showcase WordPress plugin before 1.2.4 is vulnerable to Local File Inclusion. |
CVE-2025-11560 | High | 7.1 | — | 2025-11-12 | The Team Members Showcase WordPress plugin before 3.5.0 does not sanitize and escape a parameter before outputting it back in the page, leading to reflected cross-site scripting, which could be used against high-privilege users such as adm… |
CVE-2025-11237 | Medium | 5.3 | — | 2025-11-11 | The Make Email Customizer for WooCommerce WordPress plugin through 1.0.6 lacks proper authorization checks and option validation in its AJAX actions, allowing any authenticated user, such as a Subscriber, to update arbitrary WordPress opti… |
Aenrich · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12871 | Critical | 9.8 | — | 2025-11-12 | The a+HRD developed by aEnrich has an Authentication Abuse vulnerability, allowing unauthenticated remote attackers to craft administrator access tokens and use them to access the system with elevated privileges. |
CVE-2025-12870 | Critical | 9.8 | — | 2025-11-12 | The a+HRD developed by aEnrich has an Authentication Abuse vulnerability, allowing unauthenticated remote attackers to send crafted packets to obtain administrator access tokens and use them to access the system with elevated privileges. |
CVE-2025-12872 | Medium | 5.4 | — | 2025-11-12 | The a+HRD and a+HCM developed by aEnrich has a Stored Cross-Site Scripting vulnerability, allowing authenticated remote attackers to upload files containing malicious JavaScript code, which will execute on the client side when a user is tr… |
CVE-2025-12869 | Medium | 4.8 | — | 2025-11-12 | The a+HRD developed by aEnrich has a Stored Cross-Site Scripting vulnerability, allowing remote attackers with administrator privileges to inject persistent JavaScript codes that are executed in users' browsers upon page load. |
Directus · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64748 | Medium | 6.5 | — | 2025-11-13 | Directus is a real-time API and App dashboard for managing SQL database content. |
CVE-2025-64747 | Medium | 5.5 | — | 2025-11-13 | Directus is a real-time API and App dashboard for managing SQL database content. |
CVE-2025-64746 | Medium | 4.6 | — | 2025-11-13 | Directus is a real-time API and App dashboard for managing SQL database content. |
CVE-2025-64749 | Medium | 4.3 | — | 2025-11-13 | Directus is a real-time API and App dashboard for managing SQL database content. |
Google Cloud · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12405 | — | — | — | 2025-11-10 | An improper privilege management vulnerability was found in Looker Studio. It impacted all JDBC-based connectors. |
CVE-2025-12409 | — | — | — | 2025-11-10 | A SQL injection vulnerability was discovered in Looker Studio that allowed for data exfiltration from BigQuery data sources. |
CVE-2025-12397 | — | — | — | 2025-11-10 | A SQL injection vulnerability was found in Looker Studio. |
CVE-2025-12155 | — | — | — | 2025-11-10 | A Command Injection vulnerability, resulting from improper file path sanitization (Directory Traversal) in Looker allows an attacker with Developer permission to execute arbitrary shell commands when a user is deleted on the host system. |
N-able · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11367 | Critical | 9.8 | — | 2025-11-12 | The N-central Software Probe < 2025.4 is vulnerable to Remote Code Execution via deserialization |
CVE-2025-11366 | Critical | 9.8 | — | 2025-11-12 | N-central < 2025.4 is vulnerable to authentication bypass via path traversal |
CVE-2025-11700 | High | 7.5 | — | 2025-11-12 | N-central versions < 2025.4 are vulnerable to multiple XML External Entities injection leading to information disclosure |
CVE-2025-9316 | — | — | — | 2025-11-12 | N-central < 2025.4 can generate sessionIDs for unauthenticated users This issue affects N-central: before 2025.4. |
Netgear · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12944 | High | 8.8 | — | 2025-11-11 | Improper input validation in NETGEAR DGN2200v4 (N300 Wireless ADSL2+ Modem Router) allows attackers with direct network access to the device to potentially execute code on the device. |
CVE-2025-12943 | High | 7.5 | — | 2025-11-11 | Improper certificate validation in firmware update logic in NETGEAR RAX30 (Nighthawk AX5 5-Stream AX2400 WiFi 6 Router) and RAXE300 (Nighthawk AXE7800 Tri-Band WiFi 6E Router) allows attackers with the ability to intercept and tamper traff… |
CVE-2025-12942 | High | 7.5 | — | 2025-11-11 | Improper Input Validation vulnerability in NETGEAR R6260 and NETGEAR R6850 allows unauthenticated attackers connected to LAN with ability to perform MiTM attacks and control over DNS Server to perform command execution.This issue affects R… |
CVE-2025-12940 | Medium | 5.5 | — | 2025-11-11 | Login credentials are inadvertently recorded in logs if a Syslog Server is configured in NETGEAR WAX610 and WAX610Y (AX1800 Dual Band PoE Multi-Gig Insight Managed WiFi 6 Access Points). |
Palo Alto Networks · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-4618 | — | — | — | 2025-11-14 | A sensitive information disclosure vulnerability in Palo Alto Networks Prisma® Browser allows a locally authenticated non-admin user to retrieve sensitive data from Prisma Browser. |
CVE-2025-4617 | — | — | — | 2025-11-14 | An insufficient policy enforcement vulnerability in Palo Alto Networks Prisma® Browser on Windows allows a locally authenticated non-admin user to bypass the screenshot control feature of the browser. |
CVE-2025-4616 | — | — | — | 2025-11-14 | An insufficient validation of an untrusted input vulnerability in Palo Alto Networks Prisma® Browser allows a locally authenticated non-admin user to revert the browser’s security controls. |
CVE-2025-4619 | — | — | — | 2025-11-13 | A denial-of-service (DoS) vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to reboot a firewall by sending a specially crafted packet through the dataplane. |
Sap · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-42894 | Medium | 6.8 | — | 2025-11-11 | Due to a Path Traversal vulnerability in SAP Business Connector, an attacker authenticated as an administrator with adjacent access could read, write, overwrite, and delete arbitrary files on the host system. |
CVE-2025-42892 | Medium | 6.8 | — | 2025-11-11 | Due to an OS Command Injection vulnerability in SAP Business Connector, an authenticated attacker with administrative access and adjacent network access could upload specially crafted content to the server. |
CVE-2025-42893 | Medium | 6.1 | — | 2025-11-11 | Due to an Open Redirect vulnerability in SAP Business Connector, an unauthenticated attacker could craft a malicious URL that, if accessed by a victim, redirects them to an attacker-controlled site displayed within an embedded frame. |
CVE-2025-42886 | Medium | 6.1 | — | 2025-11-11 | Due to a Reflected Cross-Site Scripting (XSS) vulnerability in SAP Business Connector, an unauthenticated attacker could generate a malicious link and make it publicly accessible. |
Academysoftwarefoundation · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64182 | High | 7.8 | — | 2025-11-10 | OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. |
CVE-2025-64183 | High | 7.5 | — | 2025-11-10 | OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. |
CVE-2025-64181 | High | 7.5 | — | 2025-11-10 | OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. |
Ays-pro · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12891 | Medium | 5.3 | — | 2025-11-13 | The Survey Maker plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'ays_survey_show_results' AJAX endpoint in all versions up to, and including, 5.1.9.4. |
CVE-2025-12892 | Medium | 5.3 | — | 2025-11-13 | The Survey Maker plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the deactivate_plugin_option() function in all versions up to, and including, 5.1.9.4. |
CVE-2025-12620 | Medium | 4.9 | — | 2025-11-13 | The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to generic SQL Injection via the ‘filterbyauthor’ parameter in all versions up to, and including, 6.0.7 due to insufficient escaping on the user… |
Centralsquare · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64281 | Critical | 9.8 | — | 2025-11-12 | An Authentication Bypass issue in CentralSquare Community Development 19.5.7 allows attackers to access the admin panel without admin credentials. |
CVE-2025-64280 | Critical | 9.8 | — | 2025-11-12 | A SQL Injection Vulnerability in CentralSquare Community Development 19.5.7 allows attackers to inject SQL via the permit_no field. |
CVE-2025-59491 | Medium | 6.1 | — | 2025-11-12 | Cross Site Scripting vulnerability in CentralSquare Community Development 19.5.7 via form fields. |
Keyfactor · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-47222 | Medium | 6.5 | — | 2025-11-13 | A class name enumeration was found in Keyfactor SignServer versions prior to 7.3.2. |
CVE-2025-47221 | Medium | 5.3 | — | 2025-11-13 | An arbitrary file write was found in Keyfactor SignServer versions prior to 7.3.2. |
CVE-2025-47220 | Medium | 5.3 | — | 2025-11-13 | A local file enumeration was found in Keyfactor SignServer versions prior to 7.3.2 .The property VISIBLE_SIGNATURE_CUSTOM_IMAGE_PATH, which exists in the PDFSigner and the PAdESSigner, can be set to any path without any restrictions by an… |
Oretnom23 · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13060 | High | 7.3 | — | 2025-11-12 | A security vulnerability has been detected in SourceCodester Survey Application System 1.0. |
CVE-2025-12929 | High | 7.3 | — | 2025-11-10 | A flaw has been found in SourceCodester Survey Application System 1.0. |
CVE-2025-13059 | Medium | 6.3 | — | 2025-11-12 | A weakness has been identified in SourceCodester Alumni Management System 1.0. |
Pgadmin · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12762 | Critical | 9.1 | — | 2025-11-13 | pgAdmin versions up to 9.9 are affected by a Remote Code Execution (RCE) vulnerability that occurs when running in server mode and performing restores from PLAIN-format dump files. |
CVE-2025-12765 | High | 7.5 | — | 2025-11-13 | pgAdmin <= 9.9 is affected by a vulnerability in the LDAP authentication mechanism allows bypassing TLS certificate verification. |
CVE-2025-12764 | High | 7.5 | — | 2025-11-13 | pgAdmin <= 9.9 is affected by an LDAP injection vulnerability in the LDAP authentication flow that allows an attacker to inject special LDAP characters in the username, causing the DC/LDAP server and the client to process an unusual amoun… |
Schneider Electric · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11567 | — | — | — | 2025-11-12 | CWE-276: Incorrect Default Permissions vulnerability exists that could cause elevated system access when the target installation folder is not properly secured. |
CVE-2025-11566 | — | — | — | 2025-11-12 | CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that would allow an attacker on the local network to gain access to the user account by performing an arbitrary number of authentication attempts with… |
CVE-2025-11565 | — | — | — | 2025-11-12 | CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause elevated system access when a Web Admin user on the local network tampers with the POST /REST/UpdateJRE request pa… |
1panel-dev · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64511 | High | 7.4 | — | 2025-11-13 | MaxKB is an open-source AI assistant for enterprise. |
CVE-2025-64703 | Medium | 6.3 | — | 2025-11-13 | MaxKB is an open-source AI assistant for enterprise. |
Airpig2011 · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63929 | High | 7.5 | — | 2025-11-12 | A null pointer dereference vulnerability exists in airpig2011 IEC104 thru Commit be6d841 (2019-07-08). |
CVE-2025-63927 | Medium | 4.0 | — | 2025-11-12 | A heap-use-after-free vulnerability exists in airpig2011 IEC104 thru Commit be6d841 (2019-07-08). |
Astro · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64525 | Medium | 6.5 | — | 2025-11-13 | Astro is a web framework. |
CVE-2025-64745 | Low | 2.7 | — | 2025-11-13 | Astro is a web framework. |
Autodesk · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11797 | High | 7.8 | — | 2025-11-12 | A maliciously crafted DWG file, when parsed through Autodesk 3ds Max, can force a Use-After-Free vulnerability. |
CVE-2025-11795 | High | 7.8 | — | 2025-11-12 | A maliciously crafted JPG file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. |
Baptistearno · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64709 | Critical | 9.6 | — | 2025-11-13 | Typebot is an open-source chatbot builder. |
CVE-2025-64706 | Medium | 5.0 | — | 2025-11-13 | Typebot is an open-source chatbot builder. |
Booster · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64380 | Medium | 6.5 | — | 2025-11-13 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Stored XSS.This issue affects Booster for WooCommerce: from n/a through <= 7… |
CVE-2025-64379 | Medium | 4.3 | — | 2025-11-13 | Missing Authorization vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booster for WooCommerce: from n/a through <= 7.4.0. |
Bugsink · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64509 | High | 7.5 | — | 2025-11-10 | Bugsink is a self-hosted error tracking tool. |
CVE-2025-64508 | High | 7.5 | — | 2025-11-10 | Bugsink is a self-hosted error tracking tool. |
Codepeople · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64369 | Medium | 6.5 | — | 2025-11-13 | Missing Authorization vulnerability in codepeople Contact Form Email contact-form-to-email allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Contact Form Email: from n/a through <= 1.3.58. |
CVE-2025-64261 | Medium | 5.4 | — | 2025-11-13 | Missing Authorization vulnerability in codepeople Appointment Booking Calendar appointment-booking-calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Appointment Booking Calendar: from n/a t… |
Edetw · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12865 | High | 8.8 | — | 2025-11-10 | U-Office Force developed by e-Excellence has a SQL Injection vulnerability, allowing authenticated remote attacker to inject arbitrary SQL commands to read, modify, and delete database contents. |
CVE-2025-12864 | High | 8.8 | — | 2025-11-10 | U-Office Force developed by e-Excellence has a SQL Injection vulnerability, allowing authenticated remote attacker to inject arbitrary SQL commands to read, modify, and delete database contents. |
Enalean · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64482 | Medium | 4.6 | — | 2025-11-12 | Tuleap is an Open Source Suite to improve management of software developments and collaboration. |
CVE-2025-64117 | Medium | 4.6 | — | 2025-11-12 | Tuleap is an Open Source Suite to improve management of software developments and collaboration. |
Fiberhome · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63353 | Critical | 9.8 | — | 2025-11-12 | A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows the device's factory default Wi-Fi password (WPA/WPA2 pre-shared key) to be predicted from the SSID. |
CVE-2021-4464 | — | — | — | 2025-11-12 | FiberHome AN5506-04-FA firmware versions up to and including RP2631 and HG6245D prior to RP2602 contain a stack-based buffer overflow, as the HTTP service ('webs') fails to enforce maximum lengths for Cookie header values. |
Frappe · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64707 | Medium | 5.4 | — | 2025-11-12 | Frappe Learning is a learning system that helps users structure their content. |
CVE-2025-64705 | Medium | 4.3 | — | 2025-11-12 | Frappe Learning is a learning system that helps users structure their content. |
Getgrist · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64752 | Medium | 6.8 | — | 2025-11-13 | grist-core is a spreadsheet hosting server. |
CVE-2025-64753 | Medium | 5.3 | — | 2025-11-13 | grist-core is a spreadsheet hosting server. |
Github · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11892 | Critical | 9.6 | — | 2025-11-10 | An improper neutralization of input vulnerability was identified in GitHub Enterprise Server that allows DOM-based cross-site scripting via Issues search label filter that could lead to privilege escalation and unauthorized workflow trigge… |
CVE-2025-11578 | High | 7.2 | — | 2025-11-10 | A privilege escalation vulnerability was identified in GitHub Enterprise Server that allowed an authenticated Enterprise admin to gain root SSH access to the appliance by exploiting a symlink escape in pre-receive hook environments. |
Gnu · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-62689 | High | 7.5 | — | 2025-11-10 | NULL pointer dereference vulnerability exists in GNU libmicrohttpd v1.0.2 and earlier. |
CVE-2025-59777 | High | 7.5 | — | 2025-11-10 | NULL pointer dereference vulnerability exists in GNU libmicrohttpd v1.0.2 and earlier. |
Grafana Labs · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-41116 | — | — | — | 2025-11-11 | When using the Grafana Databricks Datasource Plugin, if Oauth passthrough is enabled on the datasource, and multiple users are using the same datasource at the same time on a single Grafana instance, it could result in the wrong user id… |
CVE-2025-3717 | — | — | — | 2025-11-11 | When using the Grafana Snowflake Datasource Plugin, if Oauth passthrough is enabled on the datasource, and multiple users are using the same datasource at the same time on a single Grafana instance, it could result in the wrong user ide… |
H3blog · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13182 | Low | 3.5 | — | 2025-11-14 | A vulnerability was identified in pojoin h3blog 1.0. |
CVE-2025-13181 | Low | 3.5 | — | 2025-11-14 | A vulnerability was determined in pojoin h3blog 1.0. |
Hp · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12785 | High | 7.5 | — | 2025-11-13 | Certain HP LaserJet Pro printers may be vulnerable to information disclosure leading to credential exposure by altering the scan/send destination address and/or modifying the LDAP Server. |
CVE-2025-12784 | Medium | 4.9 | — | 2025-11-13 | Certain HP LaserJet Pro printers may be vulnerable to information disclosure leading to credential exposure by altering the scan/send destination address and/or modifying the LDAP Server. |
Hundred Plus · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12866 | Critical | 9.8 | — | 2025-11-10 | EIP Plus developed by Hundred Plus has a Weak Password Recovery Mechanism vulnerability, allowing unauthenticated remote attacker to predict or brute-force the 'forgot password' link, thereby successfully resetting any user's password. |
CVE-2025-12867 | High | 7.2 | — | 2025-11-10 | EIP Plus developed by Hundred Plus has an Arbitrary File Uplaod vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server. |
Iq Service International · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13161 | High | 7.5 | — | 2025-11-14 | IQ-Support developed by IQ Service International has an Arbitrary File Read vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files. |
CVE-2025-13160 | Medium | 5.3 | — | 2025-11-14 | IQ-Support developed by IQ Service International has a Exposure of Sensitive Information vulnerability, allowing unauthenticated remote attackers to access specific APIs to obtain sensitive information from the internal network. |
Latchset · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-59088 | High | 8.6 | — | 2025-11-12 | If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. |
CVE-2025-59089 | Medium | 5.9 | — | 2025-11-12 | If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. |
Odude · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11988 | Medium | 5.3 | — | 2025-11-11 | The Crypto plugin for WordPress is vulnerable to unauthorized manipulation of data in all versions up to, and including, 2.22. |
CVE-2025-11986 | Medium | 5.3 | — | 2025-11-11 | The Crypto plugin for WordPress is vulnerable to Information exposure in all versions up to, and including, 2.22. |
Openclinica · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12922 | Medium | 6.3 | — | 2025-11-10 | A vulnerability was found in OpenClinica Community Edition up to 3.12.2/3.13. |
CVE-2025-12921 | Medium | 4.3 | — | 2025-11-10 | A vulnerability has been found in OpenClinica Community Edition up to 3.12.2/3.13. |
Openprinting · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64503 | Medium | 4.0 | — | 2025-11-12 | cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. |
CVE-2025-57812 | Low | 3.7 | — | 2025-11-12 | CUPS is a standards-based, open-source printing system, and `libcupsfilters` contains the code of the filters of the former `cups-filters` package as library functions to be used for the data format conversion tasks needed in Printer Appli… |
Opensolution · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-9982 | High | 7.5 | — | 2025-11-14 | A vulnerability exists in QuickCMS version 6.8 where sensitive admin credentials are hardcoded in a configuration file and stored in plaintext. |
CVE-2025-10018 | Medium | 4.8 | — | 2025-11-14 | QuickCMS is vulnerable to multiple Stored XSS in language editor functionality (languages). |
Privatebin · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64714 | Medium | 5.8 | — | 2025-11-13 | PrivateBin is an online pastebin where the server has zero knowledge of pasted data. |
CVE-2025-64711 | Low | 3.9 | — | 2025-11-13 | PrivateBin is an online pastebin where the server has zero knowledge of pasted data. |
Red Hat · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-2843 | High | 8.8 | — | 2025-11-12 | A flaw was found in the Observability Operator. |
CVE-2025-12748 | Medium | 5.5 | — | 2025-11-11 | A flaw was discovered in libvirt in the XML file processing. |
Rymcu · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12925 | High | 7.3 | — | 2025-11-10 | A security flaw has been discovered in rymcu forest up to de53ce79db9faa2efc4e79ce1077a302c42a1224. |
CVE-2025-12924 | Medium | 4.3 | — | 2025-11-10 | A vulnerability was identified in rymcu forest up to de53ce79db9faa2efc4e79ce1077a302c42a1224. |
Shelfplanner · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11894 | Medium | 5.3 | — | 2025-11-11 | The Shelf Planner plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several REST API endpoints in all versions up to, and including, 2.8.1. |
CVE-2025-11891 | Medium | 5.3 | — | 2025-11-11 | The Shelf Planner plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.8.1 through publicly exposed log files. |
Splunk · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-20379 | Low | 3.5 | — | 2025-11-12 | In Splunk Enterprise versions below 10.0.1, 9.4.5, 9.3.7, and 9.2.9 and Splunk Cloud Platform versions below 9.3.2411.116, 9.3.2408.124, 10.0.2503.5 and 10.1.2507.1, a low-privileged user that does not hold the “admin“ or “power“ Splunk ro… |
CVE-2025-20378 | Low | 3.1 | — | 2025-11-12 | In Splunk Enterprise versions below 10.0.1, 9.4.5, 9.3.7, 9.2.9, and Splunk Cloud Platform versions below 10.0.2503.5, 9.3.2411.111, and 9.3.2408.121, an unauthenticated attacker could craft a malicious URL using the `return_to` parameter… |
Tg8 · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-4471 | — | — | — | 2025-11-14 | TG8 Firewall exposes a directory such as /data/ over HTTP without authentication. |
CVE-2021-4470 | — | — | — | 2025-11-14 | TG8 Firewall contains a pre-authentication remote code execution vulnerability in the runphpcmd.php endpoint. |
Themefic · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12788 | Medium | 5.3 | — | 2025-11-11 | The Hydra Booking — Appointment Scheduling & Booking Calendar plugin for WordPress is vulnerable to missing payment verification to unauthenticated payment bypass in all versions up to, and including, 1.1.27. |
CVE-2025-12787 | Medium | 5.3 | — | 2025-11-11 | The Hydra Booking — Appointment Scheduling & Booking Calendar plugin for WordPress is vulnerable to unauthorized booking cancellation in all versions up to, and including, 1.1.27. |
Trifectatechfoundation · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64517 | Medium | 4.4 | — | 2025-11-12 | sudo-rs is a memory safe implementation of sudo and su written in Rust. |
CVE-2025-64170 | Low | 3.8 | — | 2025-11-12 | sudo-rs is a memory safe implementation of sudo and su written in Rust. |
Webtoffee · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64382 | Medium | 4.3 | — | 2025-11-13 | Missing Authorization vulnerability in WebToffee Order Export & Order Import for WooCommerce order-import-export-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Order Export & Orde… |
CVE-2025-12113 | Medium | 4.3 | — | 2025-11-12 | The Alt Text Generator AI – Auto Generate & Bulk Update Alt Texts For Images plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the atgai_delete_api_key() function in all versions up to, an… |
Wpdevelop · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64381 | Medium | 6.5 | — | 2025-11-13 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevelop Booking Calendar booking allows Stored XSS.This issue affects Booking Calendar: from n/a through <= 10.14.7. |
CVE-2025-64275 | Medium | 6.5 | — | 2025-11-13 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpdevelop Booking Manager booking-manager allows Stored XSS.This issue affects Booking Manager: from n/a through <= 2.1.17. |
1000mz · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12923 | Low | 2.7 | — | 2025-11-10 | A vulnerability was determined in liweiyi ChestnutCMS up to 1.5.8. |
Acowebs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12087 | Medium | 4.3 | — | 2025-11-12 | The Wishlist and Save for later for Woocommerce plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.1.22 via the 'awwlm_remove_added_wishlist_page' AJAX action due to missing valid… |
Advantech · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63701 | Medium | 6.8 | — | 2025-11-14 | A heap corruption vulnerability exists in the Advantech TP-3250 printer driver's DrvUI_x64_ADVANTECH.dll (v0.3.9200.20789) when DocumentPropertiesW() is called with a valid dmDriverExtra value but an undersized output buffer. |
Alagaai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-55810 | Medium | 6.8 | — | 2025-11-13 | A vulnerability was found in Alaga Home Security WiFi Camera 3K (model S-CW2503C-H) with hardware version V03 and firmware version 1.4.2, which allows physical attackers to execute commands as root via script file with a specific name on a… |
Algosec · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12382 | High | 8.8 | — | 2025-11-12 | Improper Limitation of a Pathname 'Path Traversal') vulnerability in Algosec Firewall Analyzer on Linux, 64 bit allows an authenticated user to upload files to a restricted directory leading to code injection. |
Alteryx · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63291 | Medium | 5.4 | — | 2025-11-14 | When processing API requests, the Alteryx server 2022.1.1.42654 and 2024.1 used MongoDB object IDs to uniquely identify the data being requested by the caller. |
Altocms · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-42749 | Medium | 6.1 | — | 2025-11-14 | Cross Site Scripting vulnerability in Alto CMS v.1.1.13 allows a local attacker to execute arbitrary code via a crafted script. |
Aman · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64264 | Medium | 5.9 | — | 2025-11-13 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aman Popup addon for Ninja Forms popup-addon-for-ninja-forms allows Stored XSS.This issue affects Popup addon for Ninja Forms: from n/a t… |
Amtt · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13123 | Medium | 6.3 | — | 2025-11-13 | A flaw has been found in AMTT Hotel Broadband Operation System 1.0. |
Andreaferracani · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12590 | Medium | 6.1 | — | 2025-11-11 | The YSlider plugin for WordPress is vulnerable to Cross-Site Request Forgery to Stored Cross-Site Scripting in all versions up to, and including, 1.1. |
Andrico · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12662 | Medium | 6.4 | — | 2025-11-11 | The Coon Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'height' parameter in the 'map' shortcode in all versions up to, and including, 1.0. |
Angeljudesuarez · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13061 | Medium | 6.3 | — | 2025-11-12 | A vulnerability was detected in itsourcecode Online Voting System 1.0. |
Apollographql · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64530 | High | 7.5 | — | 2025-11-13 | Apollo Federation is an architecture for declaratively composing APIs into a unified graph. |
Arista Networks · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-8870 | Medium | 4.9 | — | 2025-11-14 | On affected platforms running Arista EOS, certain serial console input might result in an unexpected reload of the device.153 |
Aryom Software High Technology Systems Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11960 | Medium | 6.1 | — | 2025-11-11 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Aryom Software High Technology Systems Inc. |
Asecam · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63667 | High | 7.5 | — | 2025-11-12 | Incorrect access control in SIMICAM v1.16.41-20250725, KEVIEW v1.14.92-20241120, ASECAM v1.14.10-20240725 allows attackers to access sensitive API endpoints without authentication. |
Asgaros · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12901 | Medium | 4.3 | — | 2025-11-12 | The Asgaros Forum plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.2.1. |
Astrasecuritysuite · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11521 | High | 8.1 | — | 2025-11-11 | The Astra Security Suite – Firewall & Malware Scan plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient validation of remote URLs for zip downloads and an easily guessable key in all versions up to, and includin… |
Asus · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-59367 | Critical | 9.8 | — | 2025-11-13 | An authentication bypass vulnerability has been identified in certain DSL series routers, may allow remote attackers to gain unauthorized access into the affected system. |
Aumsrini · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11769 | Medium | 6.4 | — | 2025-11-13 | The WordPress Content Flipper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bgcolor' shortcode attribute of the 'flipper_front' shortcode in all versions up to, and including, 0.1. |
Authzed · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64529 | Medium | 6.5 | — | 2025-11-10 | SpiceDB is an open source database system for creating and managing security-critical application permissions. |
Avast · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-10905 | Medium | 4.4 | — | 2025-11-11 | Collision in MiniFilter driver in Avast Software Avast Free Antivirus before 25.9 on Windows allows a local attacker with administrative privileges to disable real-time protection and self-defense mechanisms. |
Aws · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12967 | High | 8.0 | — | 2025-11-10 | An issue in AWS Wrappers for Amazon Aurora PostgreSQL may allow for privilege escalation to rds_superuser role. |
Ays Pro · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64276 | Medium | 6.5 | — | 2025-11-13 | Missing Authorization vulnerability in Ays Pro Survey Maker survey-maker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Survey Maker: from n/a through <= 5.1.9.4. |
Baronen · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12589 | Medium | 6.1 | — | 2025-11-11 | The WP-Walla plugin for WordPress is vulnerable to Cross-Site Request Forgery to Stored Cross-Site Scripting in all versions up to, and including, 0.5.3.5. |
Behzadrohizadeh · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12588 | Medium | 4.3 | — | 2025-11-11 | The USB Qr Code Scanner For Woocommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.0. |
Benmoody · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11260 | Medium | 5.3 | — | 2025-11-13 | The WP Headless CMS Framework plugin for WordPress is vulnerable to protection mechanism bypass in all versions up to, and including, 1.15. |
Bitdefender · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-5317 | Medium | 5.5 | — | 2025-11-11 | An improper access restriction to a folder in Bitdefender Endpoint Security Tools for Mac (BEST) before 7.20.52.200087 allows local users with administrative privileges to bypass the configured uninstall password protection. |
Bitfoundation · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64710 | — | — | — | 2025-11-13 | Bitplatform Boilerplate is a Visual studio and .NET project template. |
Brainstormforce · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12536 | Medium | 5.3 | — | 2025-11-13 | The SureForms plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.13.1 via the '_srfm_email_notification' post meta registration. |
Busybox · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-60876 | Medium | 6.5 | — | 2025-11-10 | BusyBox wget thru 1.3.7 accepted raw CR (0x0D)/LF (0x0A) and other C0 control bytes in the HTTP request-target (path/query), allowing the request line to be split and attacker-controlled headers to be injected. |
Bytecodealliance · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64345 | Low | 1.8 | — | 2025-11-12 | Wasmtime is a runtime for WebAssembly. |
Cameasy · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13121 | High | 7.3 | — | 2025-11-13 | A security vulnerability has been detected in cameasy Liketea 1.0.0. |
Campcodes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13057 | Medium | 6.3 | — | 2025-11-12 | A vulnerability was identified in Campcodes School Fees Payment Management System 1.0. |
Caselock · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11860 | Medium | 6.4 | — | 2025-11-11 | The Twitter Feed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ottwitter_feed' shortcode in all versions up to, and including, 1.3.1. |
Ceph · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-47866 | High | 7.5 | — | 2025-11-12 | Ceph is a distributed object, block, and file storage platform. |
Changedetection · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-62780 | Low | 3.5 | — | 2025-11-10 | changedetection.io is a free open source web page change detection tool. |
Charm · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64522 | Critical | 9.1 | — | 2025-11-10 | Soft Serve is a self-hostable Git server for the command line. |
Chipsalliance · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63384 | Medium | 6.5 | — | 2025-11-10 | A vulnerability was discovered in RISC-V Rocket-Chip v1.6 and before implementation where the SRET (Supervisor-mode Exception Return) instruction fails to correctly transition the processor's privilege level. |
Chrisbadgett · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11923 | High | 8.8 | — | 2025-11-13 | The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to privilege escalation. |
Chuck24 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63709 | Medium | 5.4 | — | 2025-11-10 | A Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Simple To-Do List System 1.0 in the "Add Tasks" text input. |
Cksource · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63830 | Medium | 6.1 | — | 2025-11-14 | CKFinder 1.4.3 is vulnerable to Cross Site Scripting (XSS) in the File Upload function. |
Cmsmadesimple · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63678 | High | 7.2 | — | 2025-11-10 | An authenticated arbitrary file upload vulnerability in the /uploads/ endpoint of CMS Made Simple Foundation File Manager v2.2.22 allows attackers with Administrator privileges to execute arbitrary code via uploading a crafted PHP file. |
Codeastro · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13172 | Medium | 6.3 | — | 2025-11-14 | A security flaw has been discovered in CodeAstro Gym Management System 1.0. |
Codethislab · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11886 | Medium | 4.3 | — | 2025-11-11 | The CTL Arcade Lite plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. |
Coenjacobs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11859 | Medium | 6.4 | — | 2025-11-11 | The Paypal Donation Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'paypal' shortcode in all versions up to, and including, 0.1. |
Creativethemeshq · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12846 | High | 8.8 | — | 2025-11-11 | The Blocksy Companion plugin for WordPress is vulnerable to authenticated arbitrary file upload in all versions up to, and including, 2.1.19. |
Crushftp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63419 | Medium | 6.1 | — | 2025-11-12 | Cross Site Scripting (XSS) vulnerability in CrushFTP 11.3.6_48. |
Cybertutor · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12868 | Critical | 9.8 | — | 2025-11-10 | New Site Server developed by CyberTutor has a Use of Client-Side Authentication vulnerability, allowing unauthenticated remote attackers to modify the frontend code to gain administrator privileges on the website. |
Cyclonedx · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64518 | High | 7.5 | — | 2025-11-10 | The CycloneDX core module provides a model representation of the SBOM along with utilities to assist in creating, validating, and parsing SBOMs. |
D-link · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13188 | Critical | 9.8 | — | 2025-11-14 | A vulnerability was detected in D-Link DIR-816L 2_06_b09_beta. |
Datadog · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-61667 | — | — | — | 2025-11-12 | The Datadog Agent collects events and metrics from hosts and sends them to Datadog. |
Dbbroadcast · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-7328 | Medium | 5.3 | — | 2025-11-14 | Screen SFT DAB 600/C firmware versions up to and including 1.9.3 contain an improper access control on the user management API allows unauthenticated requests to retrieve structured user data, including account names and connection metadat… |
Dbl Technology (Dbltek) · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2022-4982 | — | — | — | 2025-11-12 | DBLTek GoIP-1 firmware versions up to and including GHSFVT-1.1-67-5 contain a local file inclusion vulnerability. |
Debian · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64512 | High | 8.6 | — | 2025-11-10 | Pdfminer.six is a community maintained fork of the original PDFMiner, a tool for extracting information from PDF documents. |
Dedebiz · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12927 | Medium | 4.7 | — | 2025-11-10 | A security vulnerability has been detected in DedeBIZ up to 6.3.2. |
Denver · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-4469 | — | — | — | 2025-11-14 | Denver SHO-110 IP cameras expose a secondary HTTP service on TCP port 8001 that provides access to a '/snapshot' endpoint without authentication. |
Dinukanavaratna · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13063 | High | 7.3 | — | 2025-11-12 | A flaw has been found in DinukaNavaratna Dee Store 1.0. |
Divvydrive Information Technologies Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11962 | High | 7.3 | — | 2025-11-12 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in DivvyDrive Information Technologies Inc. |
Doytch · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11805 | Medium | 6.4 | — | 2025-11-11 | The Skip to Timestamp plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'skipto' shortcode in all versions up to, and including, 1.4.4. |
Duckdb · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64429 | Medium | 6.5 | — | 2025-11-12 | DuckDB is a SQL database management system. |
Dvsekhvalnov · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63811 | High | 7.5 | — | 2025-11-12 | An issue was discovered in dvsekhvalnov jose2go 1.5.0 thru 1.7.0 allowing an attacker to cause a Denial-of-Service (DoS) via crafted JSON Web Encryption (JWE) token with an exceptionally high compression ratio. |
Easycommerce · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11457 | Critical | 9.8 | — | 2025-11-11 | The EasyCommerce – AI-Powered, Fast & Beautiful WordPress Ecommerce Plugin plugin for WordPress is vulnerable to Privilege Escalation in versions 0.9.0-beta2 to 1.8.2. |
Edgarrojas · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64269 | Medium | 4.3 | — | 2025-11-13 | Missing Authorization vulnerability in EDGARROJAS WooCommerce PDF Invoice Builder woo-pdf-invoice-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce PDF Invoice Builder: from n/a… |
Eflyjason · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11873 | Medium | 6.4 | — | 2025-11-11 | The WP BBCode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'url' shortcode in all versions up to, and including, 1.8.1 due to insufficient input sanitization and output escaping on user supplied attrib… |
Eggemplo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12651 | Medium | 6.4 | — | 2025-11-11 | The Live Photos on WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'video_src', 'img_src', and 'class' parameters in the livephotos_photo shortcode in all versions up to, and including, 0.1. |
Elastic · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-37734 | Medium | 4.3 | — | 2025-11-12 | Origin Validation Error in Kibana can lead to Server-Side Request Forgery via a forged Origin HTTP header processed by the Observability AI Assistant. |
Elvismdev · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11821 | Medium | 6.4 | — | 2025-11-11 | The Woocommerce – Products By Custom Tax plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'woo_products_custom_tax' shortcode in all versions up to, and including, 2.2. |
Employee Records System · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-4462 | Critical | 9.8 | — | 2025-11-10 | Employee Records System version 1.0 contains an unrestricted file upload vulnerability that allows a remote unauthenticated attacker to upload arbitrary files via the uploadID.php endpoint; uploaded files can be executed because the applic… |
Etaminstudio · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64501 | High | 7.6 | — | 2025-11-10 | ProsemirrorToHtml is a JSON converter which takes ProseMirror-compatible JSON and outputs HTML. |
Ethoseo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11882 | Medium | 6.4 | — | 2025-11-11 | The Simple Donate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's simpledonate shortcode in versions less than, or equal to, 1.0 due to insufficient input sanitization and output escaping on user supplied… |
Eventbee · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11856 | Medium | 6.4 | — | 2025-11-11 | The Eventbee Ticketing Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'eventbeeticketwidget' shortcode in all versions up to, and including, 1.0. |
Evervault · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64186 | High | 8.7 | — | 2025-11-12 | Evervault is a payment security solution. |
Extplorer · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13058 | Low | 3.5 | — | 2025-11-12 | A security flaw has been discovered in soerennb eXtplorer up to 2.1.15. |
Fabian · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13119 | Medium | 4.3 | — | 2025-11-13 | A flaw has been found in Fabian Ros/SourceCodester Simple E-Banking System 1.0. |
Filebrowser · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64523 | High | 8.8 | — | 2025-11-12 | File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. |
Five9 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11829 | Medium | 6.4 | — | 2025-11-11 | The Five9 Live Chat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'toolbar' attribute of the [five9-chat] shortcode in all versions up to, and including, 1.1.2. |
Floragunn · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12149 | — | — | — | 2025-11-14 | In Search Guard FLX versions 3.1.2 and earlier, while Document-Level Security (DLS) is correctly enforced elsewhere, when the search is triggered from a Signals watch, the DLS rule is not enforced, allowing access to all documents in the q… |
Fortinet · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64446 | Critical | 9.8 | KEV | 2025-11-14 | A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.1, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9, FortiWeb 7.2.0 through 7.2.11, FortiWeb 7.0.0 through 7.0.11 may allow an attacker to execute adm… |
Free5gc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63679 | High | 7.5 | — | 2025-11-12 | free5gc v4.1.0 and before is vulnerable to Buffer Overflow. |
Fujitsu · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-65001 | High | 8.2 | — | 2025-11-12 | Fujitsu fbiosdrv.sys before 2.5.0.0 allows an attacker to potentially affect system confidentiality, integrity, and availability. |
Fujitsu / Fsas Technologies · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-65002 | High | 7.5 | — | 2025-11-12 | Fujitsu / Fsas Technologies iRMC S6 on M5 before 1.37S mishandles Redfish/WebUI access if the length of a username is exactly 16 characters. |
Giuse · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11454 | Medium | 6.5 | — | 2025-11-12 | The Specific Content For Mobile – Customize the mobile version without redirections plugin for WordPress is vulnerable to SQL Injection via the eos_scfm_duplicate_post_as_draft() function in all versions up to, and including, 0.5.5 due to… |
Gladinet · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12480 | Critical | 9.1 | KEV | 2025-11-10 | Triofox versions prior to 16.7.10368.56560, are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete. |
Go · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-47913 | High | 7.5 | — | 2025-11-13 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process. |
Golemiq · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64293 | High | 7.6 | — | 2025-11-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Golemiq 0 Day Analytics 0-day-analytics allows SQL Injection.This issue affects 0 Day Analytics: from n/a through <= 4.0.0. |
Group-office · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63406 | High | 8.8 | — | 2025-11-13 | An issue in Intermesh BV GroupOffice vulnerable before v.25.0.47 and 6.8.136 allows a remote attacker to execute arbitrary code via the dbToApi() and eval() in the FunctionField.php |
Hasthemes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64271 | Medium | 4.3 | — | 2025-11-13 | Cross-Site Request Forgery (CSRF) vulnerability in HasThemes WP Plugin Manager wp-plugin-manager allows Cross Site Request Forgery.This issue affects WP Plugin Manager: from n/a through <= 1.4.7. |
Hectavex · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12021 | Medium | 6.1 | — | 2025-11-11 | The WP-OAuth plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'error_description' parameter in all versions up to, and including, 0.4.1 due to insufficient input sanitization and output escaping. |
Intelbras · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13187 | Medium | 5.3 | — | 2025-11-14 | A security vulnerability has been detected in Intelbras ICIP 2.0.20. |
Ipcop Project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-4466 | — | — | — | 2025-11-14 | IPCop versions up to and including 2.1.9 contain an authenticated remote code execution vulnerability within the web-based administration interface. |
Irai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2011-10034 | — | — | — | 2025-11-12 | AUTOMGEN versions up to and including 8.0.0.7 (also referenced as 8.022) contain a vulnerability in that project file handling frees an object and subsequently dereferences the stale pointer when processing certain malformed fields. |
Ivanti · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-10918 | High | 7.1 | — | 2025-11-11 | Insecure default permissions in the agent of Ivanti Endpoint Manager before version 2024 SU4 allows a local authenticated attacker to write arbitrary files anywhere on disk |
Iworks · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12538 | Medium | 4.4 | — | 2025-11-11 | The Fleet Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.5.1 due to insufficient input sanitization and output escaping. |
Jahed · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12663 | Medium | 6.4 | — | 2025-11-11 | The Jeba Cute forkit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'text' parameter in the 'jeba_forkit' shortcode in all versions up to, and including, 1.0. |
Jdsofttech · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11981 | Medium | 4.9 | — | 2025-11-14 | The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'SCodes' parameter in all versions up to, and including, 2.2.23 due to insufficient escaping on the user supplied parameter and lack o… |
Jeroen Schmit · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64259 | Medium | 5.3 | — | 2025-11-13 | Missing Authorization vulnerability in Jeroen Schmit Theater for WordPress theatre allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Theater for WordPress: from n/a through <= 0.18.8. |
Jetmonsters · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64384 | Medium | 5.3 | — | 2025-11-13 | Missing Authorization vulnerability in jetmonsters JetFormBuilder jetformbuilder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JetFormBuilder: from n/a through <= 3.5.3. |
Jitsi · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64754 | — | — | — | 2025-11-13 | Jitsi Meet is an open source video conferencing application. |
Jobayer534 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12880 | Medium | 5.4 | — | 2025-11-11 | The Progress Bar Blocks for Gutenberg plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. |
Jumo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-41731 | High | 7.4 | — | 2025-11-10 | A vulnerability was identified in the password generation algorithm when accessing the debug-interface. |
Jvc (Jvckenwood) · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2016-15055 | — | — | — | 2025-11-12 | JVC VN-T IP-camera models firmware versions up to 2016-08-22 (confirmed on the VN-T216VPRU model) contain a directory traversal vulnerability in the checkcgi endpoint that accepts a user-controlled file parameter. |
Kanwei_doublethedonation · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12020 | Medium | 4.9 | — | 2025-11-11 | The Double the Donation – A workplace giving tool to help your fundraising efforts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.0 due to insufficient input s… |
Kayapati · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-10295 | Medium | 6.4 | — | 2025-11-13 | The Angel – Fashion Model Agency WordPress CMS Theme theme for WordPress is vulnerable to Stored Cross-Site Scripting the profile media uploader in all versions up to, and including, 3.2.3 due to insufficient input sanitization and output… |
Kddiwebcommunications · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11170 | Critical | 9.8 | — | 2025-11-11 | The WP移行専用プラグイン for CPI plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the Cpiwm_Import_Controller::import function in all versions up to, and including, 1.0.2. |
Keruistore · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63296 | Medium | 6.5 | — | 2025-11-10 | KERUI K259 5MP Wi-Fi / Tuya Smart Security Camera firmware v33.53.87 contains a code execution vulnerability in its boot/update logic: during startup /usr/sbin/anyka_service.sh scans mounted TF/SD cards and, if /mnt/update.nor.sh is presen… |
Keycloak · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11538 | Medium | 6.8 | — | 2025-11-13 | A vulnerability exists in Keycloak's server distribution where enabling debug mode (--debug <port>) insecurely defaults to binding the Java Debug Wire Protocol (JDWP) port to all network interfaces (0.0.0.0). |
Koopersmith · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12637 | High | 8.8 | — | 2025-11-11 | The Elastic Theme Editor plugin for WordPress is vulnerable to arbitrary file uploads due to a dynamic code generation feature in the process_theme function in all versions up to, and including, 0.0.3. |
Krishaweb · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11999 | Medium | 5.3 | — | 2025-11-11 | The Add Multiple Marker plugin for WordPress is vulnerable to unauthorized modification of data to due to a missing capability check on the addmultiplemarker_reset_map() and amm_save_map_api() functions in all versions up to, and including… |
Kutangguo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63617 | Medium | 6.5 | — | 2025-11-10 | ktg-mes before commit a484f96 (2025-07-03) has a fastjson deserialization vulnerability. |
Langfuse · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64504 | Medium | 5.0 | — | 2025-11-10 | Langfuse is an open source large language model engineering platform. |
Larsactionhero · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12132 | Medium | 4.3 | — | 2025-11-11 | The WP Custom Admin Login Page Logo plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4.8.4. |
Leopardhost · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12539 | Critical | 10.0 | — | 2025-11-11 | The TNC Toolbox: Web Performance plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.2. |
Lerouxyxchire · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63711 | High | 7.1 | — | 2025-11-10 | A Cross-Site Request Forgery (CSRF) vulnerability in the SourceCodester Client Database Management System 1.0 allows an attacker to cause an authenticated administrative user to perform user deletion actions without their consent. |
Lichess · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-52186 | Medium | 6.5 | — | 2025-11-13 | Lichess lila before commit 11b4c0fb00f0ffd823246f839627005459c8f05c (2025-06-02) contains a Server-Side Request Forgery (SSRF) vulnerability in the game export API. |
Linuxcontainers · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64507 | High | 7.8 | — | 2025-11-10 | Incus is a system container and virtual machine manager. |
Linuxfoundation · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-63396 | Low | 3.3 | — | 2025-11-12 | An issue was discovered in PyTorch v2.5 and v2.7.1. |
Loveless · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12632 | Medium | 5.5 | — | 2025-11-11 | The RandomQuotr plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.4 due to insufficient input sanitization and output escaping. |
Lovelightplugins · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12665 | Medium | 4.3 | — | 2025-11-11 | The Ninja Countdown | Fastest Countdown Builder plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'ninja_countdown_admin_ajax' AJAX endpoint in all versions up to, and including, 1.5.0. |
Magicbug · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64084 | Medium | 5.4 | — | 2025-11-14 | An authenticated SQL injection vulnerability exists in Cloudlog 2.7.5 and earlier. |
Mer.vin · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12019 | Medium | 4.4 | — | 2025-11-11 | The Featured Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via image metadata in all versions up to, and including, 2.1 due to insufficient input sanitization and output escaping. |
Mheob · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11129 | Medium | 6.4 | — | 2025-11-11 | The Include Fussball.de Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'api' and 'type' parameters in all versions up to, and including, 4.0.0 due to insufficient input sanitization and output escaping. |
Michielve · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12526 | Medium | 4.3 | — | 2025-11-11 | The Private Google Calendars plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'pgc_remove' action in all versions up to, and including, 20250811. |
Milvus-io · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64513 | — | — | — | 2025-11-10 | Milvus is an open-source vector database built for generative AI applications. |
Mindstien · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11863 | Medium | 6.4 | — | 2025-11-11 | The My Geo Posts Free plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'mygeo_city' shortcode in all versions up to, and including, 1.2. |
Mintty · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-45301 | Medium | 5.3 | — | 2025-11-12 | Mintty is a terminal emulator for Cygwin, MSYS, and WSL. |
Mitegvg · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11874 | Medium | 5.4 | — | 2025-11-11 | The Slippy Slider – Responsive Touch Navigation Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slippy-slider' shortcode in all versions up to, and including, 2.0 due to insufficient input sanitiz… |
Miunosoft · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11451 | High | 7.5 | — | 2025-11-11 | The Auto Amazon Links – Amazon Associates Affiliate Plugin plugin for WordPress is vulnerable to arbitrary files reads in all versions up to, and including, 5.4.3 via the '/wp-json/wp/v2/aal_ajax_unit_loading' RST API endpoint. |
Mmdeveloper · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12658 | Medium | 6.4 | — | 2025-11-11 | The Preload Current Images plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'complete' parameter in the 'preload_progress_bar' shortcode in all versions up to, and including, 1.3. |
Mruby · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13120 | Medium | 5.3 | — | 2025-11-13 | A vulnerability has been found in mruby up to 3.4.0. |
Mrx3k1 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12671 | Medium | 6.4 | — | 2025-11-11 | The WP-Iconics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters of the 'wp_iconics' shortcode in all versions up to, and including, 0.0.4 due to insufficient input sanitization and output escaping. |
Mvirik · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11168 | High | 8.8 | — | 2025-11-11 | The Mementor Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.2.5. |
N-media · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64265 | Medium | 4.3 | — | 2025-11-13 | Missing Authorization vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Frontend File Manager: from n/a through <= 23.2. |
Netis Systems Co., Ltd. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2018-25125 | — | — | — | 2025-11-14 | Netis ADSL Router DL4322D firmware RTK 2.1.1 contains a buffer overflow vulnerability in the embedded FTP service that allows an authenticated remote user to trigger a denial of service. |
Netscaler · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12101 | — | — | — | 2025-11-11 | Cross-Site Scripting (XSS) in NetScaler ADC and NetScaler Gateway when the appliance is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) OR AAA virtual server |
Ngothoai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11997 | Medium | 5.3 | — | 2025-11-11 | The Document Pro Elementor – Documentation & Knowledge Base plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.0.9. |
Nodeca · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64718 | Medium | 5.3 | — | 2025-11-13 | js-yaml is a JavaScript YAML parser and dumper. |
Nodemailer · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13033 | High | 7.5 | — | 2025-11-14 | A vulnerability was identified in the email parsing library due to improper handling of specially formatted recipient email addresses. |
Nuvuscripts · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12672 | Medium | 6.4 | — | 2025-11-11 | The Flickr Show plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'div_height' parameter of the 'flickrshow' shortcode in all versions up to, and including, 1.5 due to insufficient input sanitization and output esca… |
Oauth2-proxy · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64484 | High | 8.5 | — | 2025-11-10 | OAuth2-Proxy is an open-source tool that can act as either a standalone reverse proxy or a middleware component integrated into existing reverse proxy or load balancer setups. |
Omnissa · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-25236 | Medium | 5.3 | — | 2025-11-12 | Omnissa Workspace ONE UEM contains an observable response discrepancy vulnerability. |
Openidentityplatform · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64099 | — | — | — | 2025-11-12 | Open Access Management (OpenAM) is an access management solution. |
Openobserve · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64744 | Low | 3.5 | — | 2025-11-13 | OpenObserve is a cloud-native observability platform. |
Optimus Software · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-8855 | High | 8.1 | — | 2025-11-14 | Authorization Bypass Through User-Controlled Key, Weak Password Recovery Mechanism for Forgotten Password, Authentication Bypass by Assumed-Immutable Data vulnerability in Optimus Software Brokerage Automation allows Exploiting Trust in Cl… |
Oscaruribe · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12652 | Medium | 6.4 | — | 2025-11-11 | The Ungapped Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'prefillvalues' parameter in the ungapped-form shortcode in all versions up to, and including, 1. |
Otacke · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12904 | High | 7.2 | — | 2025-11-14 | The SNORDIAN's H5PxAPIkatchu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'insert_data' AJAX endpoint in all versions up to, and including, 0.4.17 due to insufficient input sanitization and output escaping. |
Ozeki Ltd. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-7327 | — | — | — | 2025-11-12 | Ozeki SMS Gateway versions up to and including 10.3.208 contain a path traversal vulnerability. |
Pamzey · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13122 | High | 7.3 | — | 2025-11-13 | A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. |
Paoltaia · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12833 | Medium | 4.3 | — | 2025-11-12 | The GeoDirectory – WP Business Directory Plugin and Classified Listings Directory plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.8.139 via the 'post_attachment_upload' functio… |
Parse-community · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64502 | — | — | — | 2025-11-10 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. |
Pascalbajorat · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64292 | Medium | 6.5 | — | 2025-11-13 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PascalBajorat Analytics Germanized for Google Analytics ga-germanized allows DOM-Based XSS.This issue affects Analytics Germanized for Go… |
Paul1999 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12667 | Medium | 6.4 | — | 2025-11-11 | The GitHub Gist Shortcode Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' parameter of the 'gist' shortcode in all versions up to, and including, 0.2 due to insufficient input sanitization and output escaping. |
Paymentplugins · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12903 | High | 7.5 | — | 2025-11-12 | The Payment Plugins Braintree For WooCommerce plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the wc-braintree/v1/3ds/vaulted_nonce REST API endpoint in all versions up to, and including, 3.2… |
Planex Communications Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-4468 | — | — | — | 2025-11-14 | PLANEX CS-QP50F-ING2 smart cameras expose a configuration backup interface over HTTP that does not require authentication. |
Pluginever · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64263 | Medium | 5.4 | — | 2025-11-13 | Missing Authorization vulnerability in PluginEver WP Content Pilot wp-content-pilot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Content Pilot: from n/a through <= 2.1.7. |
Positive Technologies · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-4467 | — | — | — | 2025-11-14 | Positive Technologies MaxPatrol 8 and XSpider contain a remote denial-of-service vulnerability in the client communication service on TCP port 2002. |
Premierturk Information Technologies Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11959 | High | 8.1 | — | 2025-11-11 | Files or Directories Accessible to External Parties, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Premierturk Information Technologies Inc. |
Pritenhshah · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12711 | Medium | 6.4 | — | 2025-11-11 | The Share to Google Classroom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the share_to_google shortcode in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user… |
Projectworlds · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12938 | High | 7.3 | — | 2025-11-10 | A vulnerability was identified in projectworlds Online Admission System 1.0. |
Pubudu-malalasekara · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11828 | Medium | 6.4 | — | 2025-11-11 | The Magazine Companion plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'headerHtmlTag' attribute in the bnm-blocks/featured-posts-1 block in all versions up to, and including, 1.2.3. |
Qdocs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-41107 | Medium | 5.4 | — | 2025-11-10 | Stored Cross Site Scripting (XSS) vulnerability in Smart School 7.0 due to lack of proper validation of user input when sending a POST request to '/online_admission', wich affects the parameters 'firstname', 'lastname', 'guardian_name' and… |
Qingdao Esoft Tianchuang Network Technology Co., Ltd. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2022-4984 | — | — | — | 2025-11-13 | ZenTao Biz < 6.5, ZenTao Max < 3.0, ZenTao Open Source Edition < 16.5, and ZenTao Open Source Edition < 16.5.beta1 contain an SQL injection vulnerability in the login functionality. |
Qnap · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2017-20210 | Critical | 9.8 | — | 2025-11-11 | Photo Station 5.4.1 & 5.2.7 include the security fix for the vulnerability related to the XMR mining programs identified by internal research. |
Qode · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64383 | Medium | 6.5 | — | 2025-11-13 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Qode Qi Blocks qi-blocks allows Stored XSS.This issue affects Qi Blocks: from n/a through <= 1.4.3. |
Qualys Inc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-43079 | Medium | 6.3 | — | 2025-11-10 | The Qualys Cloud Agent included a bundled uninstall script (qagent_uninstall.sh), specific to Mac and Linux supported versions that invoked multiple system commands without using absolute paths and without sanitizing the $PATH environment. |
Quantumcloud · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64277 | Medium | 5.3 | — | 2025-11-13 | Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ChatBot: from n/a through <= 7.3.9. |
Rachelos · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13174 | Medium | 6.3 | — | 2025-11-14 | A weakness has been identified in rachelos WeRSS we-mp-rss up to 1.4.7. |
Rainbowfish Software · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2018-25124 | — | — | — | 2025-11-10 | PacsOne Server version 6.6.2 (prior versions are likely affected) contains a directory traversal vulnerability within the web-based DICOM viewer component. |
Ramon Fincken · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64262 | Medium | 6.5 | — | 2025-11-13 | Cross-Site Request Forgery (CSRF) vulnerability in ramon fincken Auto Prune Posts auto-prune-posts allows Cross Site Request Forgery.This issue affects Auto Prune Posts: from n/a through <= 3.0.0. |
Rampantlogic · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12754 | Medium | 6.4 | — | 2025-11-11 | The Geopost plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'height' parameter of the 'geopost' shortcode in all versions up to, and including, 1.2. |
Request Serious Play Llc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-4465 | — | — | — | 2025-11-14 | ReQuest Serious Play F3 Media Server versions 7.0.3.4968 (Pro), 7.0.2.4954, 6.5.2.4954, 6.4.2.4681, 6.3.2.4203, and 2.0.1.823 contain a remote denial-of-service vulnerability. |
Restpack · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-8397 | Medium | 6.4 | — | 2025-11-13 | The Save as PDF Button plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's restpackpdfbutton shortcode in all versions up to, and including, 1.9.2 due to insufficient input sanitization and output escaping on… |
Ronalfy · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12681 | Medium | 5.3 | — | 2025-11-13 | The Comment Edit Core – Simple Comment Editing plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.0 via the 'ajax_get_comment' function. |
Ryanmoyer · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12126 | Medium | 5.4 | — | 2025-11-11 | The The Total Book Project plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.0 via several functions due to missing validation on a user controlled key. |
Sagortouch · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12753 | Medium | 6.4 | — | 2025-11-11 | The Chart Expert plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pmzez_chart' shortcode in all versions up to, and including, 1.0. |
Sanderkah · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12015 | Medium | 4.3 | — | 2025-11-13 | The Convert WebP & AVIF | Quicq | Best image optimizer and compression plugin | Improve your Google Pagespeed plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wp_ajax_wpqai_d… |
Seiko Epson · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-7326 | — | — | — | 2025-11-12 | The Epson Stylus SX510W embedded web management service fails to properly handle consecutive ampersand characters in query parameters when accessing /PRESENTATION/HTML/TOP/INDEX.HTML. |
Sensiolabs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64500 | High | 7.3 | — | 2025-11-12 | Symfony is a PHP framework for web and console applications and a set of reusable PHP components. |
Shenzhen Longjing Technology Co. Ltd. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-4463 | — | — | — | 2025-11-12 | Longjing Technology BEMS API versions up to and including 1.21 contains an unauthenticated arbitrary file download vulnerability in the 'downloads' endpoint. |
Silentmatt · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13204 | High | 7.3 | — | 2025-11-14 | npm package `expr-eval` is vulnerable to Prototype Pollution. |
Simonpedge · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11869 | Medium | 6.4 | — | 2025-11-11 | The Precise Columns plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `wrap_id` shortcode attribute in all versions up to, and including, 1.0. |
Sitedin · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12668 | Medium | 6.4 | — | 2025-11-11 | The WP Count Down Timer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters of the 'wp_countdown_timer' shortcode in all versions up to, and including, 1.0.1 due to insufficient input sanitization and… |
Smackcoders · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12732 | Medium | 4.3 | — | 2025-11-12 | The WP Import – Ultimate CSV XML Importer for WordPress plugin for WordPress is vulnerable to unauthorized access of sensitive information due to a missing authorization check on the showsetting() function in all versions up to, and includ… |
Smci · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-7704 | Medium | 5.4 | — | 2025-11-13 | Supermicro BMC Insyde SMASH shell program has a stacked-based overflow vulnerability |
Smub · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12377 | Medium | 4.3 | — | 2025-11-13 | The Gallery Plugin for WordPress – Envira Photo Gallery plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to, and including, 1.12.0. |
Socketdev · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64726 | — | — | — | 2025-11-13 | Socket Firewall is an HTTP/HTTPS proxy server that intercepts package manager requests and enforces security policies by blocking dangerous packages. |
Softaculous · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12366 | Medium | 4.3 | — | 2025-11-13 | The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.0.5 via the pagelayer_replace_page function due to missing validatio… |
Softivus · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11532 | Medium | 5.3 | — | 2025-11-11 | The Wisly plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.0.0 due to missing validation on the 'wishlist_id' user controlled key. |
Sony Network Communications Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64444 | High | 7.2 | — | 2025-11-14 | Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in NCP-HG100 1.4.48.16 and earlier. |
Soplanning · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-41001 | Medium | 5.4 | — | 2025-11-10 | Cross Site Scripting (XSS) vulnerability stored in SOPlanning v1.53.02, which consist of a stored XSS due to a lack of proper validation of user input by sending a POST request using the 'LOGOUT_REDIRECT' parameter in '/soplanning/www/proc… |
Sourcefound · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12018 | Medium | 4.4 | — | 2025-11-12 | The MembershipWorks – Membership, Events & Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 6.14 due to insufficient input sanitization and output escaping… |
Spokanetony · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12631 | Medium | 4.4 | — | 2025-11-11 | The Squirrels Auto Inventory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.3 due to insufficient input sanitization and output escaping. |
Stellarwp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12633 | High | 7.5 | — | 2025-11-12 | The Booking Calendar | Appointment Booking | Bookit plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the '/wp-json/bookit/v1/commerce/stripe/return' REST API Endpoint in all vers… |
Strix-bubol5 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12813 | Critical | 9.8 | — | 2025-11-11 | The Holiday class post calendar plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 7.1 via the 'contents' parameter. |
Supsysticcom · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12089 | Medium | 6.5 | — | 2025-11-13 | The Data Tables Generator by Supsystic plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the cleanCache() function in all versions up to, and including, 1.10.45. |
Suse · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-62876 | — | — | — | 2025-11-12 | A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greeter allows escalation from the service user to root.This issue affects lightdm-kde-greeter. before 6.0.4. |
T-innova Deporsite · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-41069 | — | — | — | 2025-11-13 | Insecure Direct Object Reference (IDOR) vulnerability in DeporSite of T-INNOVA. |
Tec-it Datenverarbeitung Gmbh, Austria · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2022-4983 | — | — | — | 2025-11-12 | TEC-IT TBarCode version 11.15 contains a vulnerability in the TBarCode11.ocx ActiveX/OCX control's licensing handling (INI-file based) that can be abused to cause remote creation of files on the host filesystem. |
Techarohq · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64716 | — | — | — | 2025-11-13 | Anubis is a Web AI Firewall Utility that challenges users' connections in order to protect upstream resources from scraper bots. |
Techlabpro1 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12953 | Medium | 4.3 | — | 2025-11-11 | The Classified Listing – AI-Powered Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the "rtcl_ajax_add_listing_type", "rtcl_ajax_update… |
Tigroumeow · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12844 | High | 7.1 | — | 2025-11-13 | The AI Engine plugin for WordPress is vulnerable to PHP Object Injection via PHAR Deserialization in all versions up to, and including, 3.1.8 via deserialization of untrusted input in the 'rest_simpleTranscribeAudio' and 'rest_simpleVision… |
Tinycontrol · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2023-7329 | — | — | — | 2025-11-12 | Tinycontrol LAN Controller v3 (LK3) firmware versions up to 1.58a (hardware v3.8) contain a missing authentication vulnerability in the stm.cgi endpoint. |
Toastwebsites · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11996 | Medium | 5.3 | — | 2025-11-11 | The Find Unused Images plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the fui_delete_image() and fui_delete_all_images() functiosn in all versions up to, and including, 1.0.7. |
Torrentpier · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64519 | High | 8.8 | — | 2025-11-10 | TorrentPier is an open source BitTorrent Public/Private tracker engine, written in php. |
Turkguven Software Technologies Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-10161 | High | 7.3 | — | 2025-11-11 | Improper Restriction of Excessive Authentication Attempts, Client-Side Enforcement of Server-Side Security, Reliance on Untrusted Inputs in a Security Decision vulnerability in Turkguven Software Technologies Inc. |
Typo3 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12998 | — | — | — | 2025-11-12 | Improper Authentication vulnerability in TYPO3 Extension "Modules" codingms/modules.This issue affects Extension "Modules": before 4.3.11, from 5.0.0 before 5.7.4, from 6.0.0 before 6.4.2, from 7.0.0 before 7.5.5. |
Ubee Interactive · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2016-15056 | — | — | — | 2025-11-14 | Ubee EVW3226 cable modem/routers firmware versions up to and including 1.0.20 store configuration backup files in the web root after they are generated for download. |
Ucancode.net Software · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2017-20211 | — | — | — | 2025-11-12 | UCanCode E-XD++ Visualization Enterprise Suite contains an untrusted pointer dereference vulnerability via the TKDRAWCAD.TKDrawCADCtrl.1 ActiveX control. |
Unisoc (Shanghai) Technologies Co., Ltd. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-31719 | Medium | 5.1 | — | 2025-11-11 | In TEE EcDSA algorithm, there is a possible memory consistency issue. |
Ury · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-13168 | Medium | 6.3 | — | 2025-11-14 | A weakness has been identified in ury-erp ury up to 0.2.0. |
Uscnanbu · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12979 | Medium | 5.3 | — | 2025-11-13 | The Welcart e-Commerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'usces_export' action in all versions up to, and including, 2.11.24. |
Usememos · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-21635 | High | 7.5 | — | 2025-11-14 | Memos is a privacy-first, lightweight note-taking service that uses Access Tokens to authenticate application access. |
Vega · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-59840 | High | 8.1 | — | 2025-11-13 | Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. |
Virtus-designs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11822 | Medium | 6.4 | — | 2025-11-11 | The WP Bootstrap Tabs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bootstrap_tab' shortcode in all versions up to, and including, 1.0.4. |
Vodacom · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2022-4985 | — | — | — | 2025-11-14 | Vodafone H500s devices running firmware v3.5.10 (hardware model Sercomm VFH500) expose the WiFi access point password via an unauthenticated HTTP endpoint. |
Wpallimport · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12733 | High | 8.8 | — | 2025-11-13 | The Import any XML, CSV or Excel File to WordPress (WP All Import) plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 3.9.6. |
Wpcox · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12644 | Medium | 6.4 | — | 2025-11-11 | The Nonaki – Drag and Drop Email Template builder and Newsletter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'nonaki' shortcode in all versions up to, and including, 1.0.11. |
Wpkoithemes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64274 | Medium | 4.3 | — | 2025-11-13 | Missing Authorization vulnerability in wpkoithemes WPKoi Templates for Elementor wpkoi-templates-for-elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPKoi Templates for Elementor: from n… |
Wpkube · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12010 | Medium | 6.5 | — | 2025-11-11 | The Authors List plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.0.6.1 via the via arbitrary method call from Authors_List_Shortcode class. |
Wpswings · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64267 | Medium | 4.3 | — | 2025-11-13 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPSwings WooCommerce Ultimate Points And Rewards woocommerce-ultimate-points-and-rewards allows Retrieve Embedded Sensitive Data.This issue affects… |
Xcally · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-40681 | — | — | — | 2025-11-13 | Cross-site Scripting (XSS) vulnerability reflected in xCally's Omnichannel v3.30.1. |
Yop · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64370 | Medium | 5.3 | — | 2025-11-13 | Missing Authorization vulnerability in YOP YOP Poll yop-poll allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects YOP Poll: from n/a through <= 6.5.38. |
Yudiz · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11994 | High | 7.2 | — | 2025-11-12 | The Easy Email Subscription plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'name' parameter in all versions up to, and including, 1.3 due to insufficient input sanitization and output escaping. |
Zephyrproject-rtos · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-9408 | High | 8.1 | — | 2025-11-11 | System call entry on Cortex M (and possibly R and A, but I think not) has a race which allows very practical privilege escalation for malicious userspace processes. |
Zitadel · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-64717 | Critical | 9.8 | — | 2025-11-13 | ZITADEL is an open source identity management platform. |
Zscaler · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-54983 | Medium | 5.2 | — | 2025-11-12 | A health check port on Zscaler Client Connector on Windows, versions 4.6 < 4.6.0.216 and 4.7 < 4.7.0.47, which under specific circumstances was not released after use, allowed traffic to potentially bypass ZCC forwarding controls. |