Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2025-38627 Use-After-Free in c (CVE-2025-38627)
vulnerability in c (CVE-2025-38627). Successful exploitation can lead to full system takeover.
CVE-2025-55371 Vulnerability in jishenghua (CVE-2025-55371)
vulnerability in jishenghua (CVE-2025-55371). Risk of unauthorized operations or information disclosure.
CVE-2025-55564 Vulnerability in tenda (CVE-2025-55564)
vulnerability in tenda (CVE-2025-55564). Risk of unauthorized operations or information disclosure.
CVE-2025-55366 Vulnerability in privilege-escalation (CVE-2025-55366)
vulnerability in privilege-escalation (CVE-2025-55366). Risk of unauthorized operations or information disclosure.
CVE-2025-55367 Vulnerability in jishenghua (CVE-2025-55367)
vulnerability in jishenghua (CVE-2025-55367). Risk of unauthorized operations or information disclosure.
CVE-2025-55368 Vulnerability in jishenghua (CVE-2025-55368)
vulnerability in jishenghua (CVE-2025-55368). Successful exploitation can lead to full system takeover.
CVE-2025-55370 Vulnerability in jishenghua (CVE-2025-55370)
vulnerability in jishenghua (CVE-2025-55370). Successful exploitation can lead to full system takeover.
CVE-2025-43300 KEV [KEV] Out-of-Bounds Write in Apple ios (CVE-2025-43300)
out-of-bounds write in Apple ios (CVE-2025-43300). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-38614 Vulnerability in linux (CVE-2025-38614)
vulnerability in linux (CVE-2025-38614). Risk of unauthorized operations or information disclosure.
CVE-2025-38584 Use-After-Free in linux (CVE-2025-38584)
vulnerability in linux (CVE-2025-38584). Successful exploitation can lead to full system takeover.
CVE-2025-38585 Out-of-Bounds Write in linux (CVE-2025-38585)
out-of-bounds write in linux (CVE-2025-38585). Successful exploitation can lead to full system takeover.
CVE-2025-50567 SQL Injection in CVE-2025-50567 (CVE-2025-50567)
SQL injection in CVE-2025-50567 (CVE-2025-50567). Successful exploitation can lead to full system takeover.
CVE-2025-54948 KEV [KEV] OS Command Injection in Trend micro trend-micro (CVE-2025-54948)
OS command injection in Trend micro trend-micro (CVE-2025-54948). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-38552 Vulnerability in linux (CVE-2025-38552)
vulnerability in linux (CVE-2025-38552). Successful exploitation can lead to full system takeover.
CVE-2025-38502 Out-of-Bounds Read in linux (CVE-2025-38502)
vulnerability in linux (CVE-2025-38502). Confidential information can be exposed externally.
CVE-2025-52335 Cross-Site Scripting (XSS) in eyoucms (CVE-2025-52335)
cross-site scripting in eyoucms (CVE-2025-52335). Risk of unauthorized operations or information disclosure.
CVE-2025-45315 Cross-Site Scripting (XSS) in hortusfox (CVE-2025-45315)
cross-site scripting in hortusfox (CVE-2025-45315). Risk of unauthorized operations or information disclosure.
CVE-2025-48989 Vulnerability in org.apache.tomcat:tomcat-coyote (CVE-2025-48989)
vulnerability in org.apache.tomcat:tomcat-coyote (CVE-2025-48989). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.0.108` or later.
CVE-2025-8916 Vulnerability in org.bouncycastle:bcpkix-fips (CVE-2025-8916)
vulnerability in org.bouncycastle:bcpkix-fips (CVE-2025-8916). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.0.8` or later.
CVE-2025-8876 KEV [KEV] Vulnerability in N-able n-central (CVE-2025-8876)
vulnerability in N-able n-central (CVE-2025-8876). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-8875 KEV [KEV] Vulnerability in N-able n-central (CVE-2025-8875)
vulnerability in N-able n-central (CVE-2025-8875). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-53744 Vulnerability in fortinet (CVE-2025-53744)
vulnerability in fortinet (CVE-2025-53744). Successful exploitation can lead to full system takeover.
CVE-2025-25248 Vulnerability in fortinet (CVE-2025-25248)
vulnerability in fortinet (CVE-2025-25248). Risk of unauthorized operations or information disclosure.
CVE-2025-53766 Vulnerability in microsoft (CVE-2025-53766)
vulnerability in microsoft (CVE-2025-53766). Successful exploitation can lead to full system takeover.
CVE-2025-53732 Vulnerability in microsoft (CVE-2025-53732)
vulnerability in microsoft (CVE-2025-53732). Successful exploitation can lead to full system takeover.
CVE-2025-33051 Information Disclosure in microsoft (CVE-2025-33051)
vulnerability in microsoft (CVE-2025-33051). Confidential information can be exposed externally.
CVE-2025-25005 Vulnerability in microsoft (CVE-2025-25005)
vulnerability in microsoft (CVE-2025-25005). Confidential information can be exposed externally.
CVE-2025-25006 Vulnerability in microsoft (CVE-2025-25006)
vulnerability in microsoft (CVE-2025-25006). Risk of unauthorized operations or information disclosure.
CVE-2025-25007 Vulnerability in microsoft (CVE-2025-25007)
vulnerability in microsoft (CVE-2025-25007). Risk of unauthorized operations or information disclosure.
CVE-2025-38500 Use-After-Free in c (CVE-2025-38500)
vulnerability in c (CVE-2025-38500). Successful exploitation can lead to full system takeover.
CVE-2007-0671 KEV [KEV] Vulnerability in Microsoft office (CVE-2007-0671)
vulnerability in Microsoft office (CVE-2007-0671). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-3893 KEV [KEV] Vulnerability in Microsoft internet-explorer (CVE-2013-3893)
vulnerability in Microsoft internet-explorer (CVE-2013-3893). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-8088 KEV [KEV] Vulnerability in Rarlab winrar (CVE-2025-8088)
vulnerability in Rarlab winrar (CVE-2025-8088). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-38499 Vulnerability in linux (CVE-2025-38499)
vulnerability in linux (CVE-2025-38499). Risk of unauthorized operations or information disclosure.
CVE-2012-10047 SQL Injection in sqli (CVE-2012-10047)
SQL injection in sqli (CVE-2012-10047). Risk of unauthorized operations or information disclosure.
CVE-2025-8732 Vulnerability in xmlsoft (CVE-2025-8732)
vulnerability in xmlsoft (CVE-2025-8732). Risk of unauthorized operations or information disclosure.
CVE-2024-52680 Cross-Site Scripting (XSS) in c (CVE-2024-52680)
cross-site scripting in c (CVE-2024-52680). Risk of unauthorized operations or information disclosure.
CVE-2025-53786 Authentication Bypass in microsoft (CVE-2025-53786)
authentication bypass in microsoft (CVE-2025-53786). Successful exploitation can lead to full system takeover.
CVE-2012-10027 Unrestricted File Upload in wordpress (CVE-2012-10027)
vulnerability in wordpress (CVE-2012-10027). Risk of unauthorized operations or information disclosure. Exploitable via ``uploadify.php``.
CVE-2020-25078 KEV [KEV] Vulnerability in D-link dcs-2530l-and-dcs-2670l-devices (CVE-2020-25078)
vulnerability in D-link dcs-2530l-and-dcs-2670l-devices (CVE-2020-25078). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-25079 KEV [KEV] Command Injection in D-link dcs-2530l-and-dcs-2670l-devices (CVE-2020-25079)
command injection in D-link dcs-2530l-and-dcs-2670l-devices (CVE-2020-25079). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-40799 KEV [KEV] Vulnerability in D-link dnr-322l (CVE-2022-40799)
vulnerability in D-link dnr-322l (CVE-2022-40799). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2025-46206 Vulnerability in dos (CVE-2025-46206)
vulnerability in dos (CVE-2025-46206). Risk of unauthorized operations or information disclosure.
CVE-2025-44139 Unrestricted File Upload in emlog (CVE-2025-44139)
vulnerability in emlog (CVE-2025-44139). Successful exploitation can lead to full system takeover.
CVE-2025-52327 SQL Injection in sqli (CVE-2025-52327)
SQL injection in sqli (CVE-2025-52327). Successful exploitation can lead to full system takeover.
CVE-2025-38498 Vulnerability in linux (CVE-2025-38498)
vulnerability in linux (CVE-2025-38498). Risk of unauthorized operations or information disclosure.
CVE-2025-43213 Buffer Overflow in c (CVE-2025-43213)
vulnerability in c (CVE-2025-43213). Risk of unauthorized operations or information disclosure.
CVE-2025-43214 Buffer Overflow in c (CVE-2025-43214)
vulnerability in c (CVE-2025-43214). Risk of unauthorized operations or information disclosure.
CVE-2025-28170 Vulnerability in grandstream (CVE-2025-28170)
vulnerability in grandstream (CVE-2025-28170). Confidential information can be exposed externally.
CVE-2025-28171 Vulnerability in grandstream (CVE-2025-28171)
vulnerability in grandstream (CVE-2025-28171). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →