Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-425 Clear
ID Title
CVE-2026-13533 Vulnerability in CVE-2026-13533 (CVE-2026-13533)
vulnerability in CVE-2026-13533 (CVE-2026-13533). Risk of unauthorized operations or information disclosure.
CVE-2026-10521 An high privileged remote attacker can access a hidden configuration method, that should not be...
An high privileged remote attacker can access a hidden configuration method, that should not be...
CVE-2026-9610 Vulnerability in ibm (CVE-2026-9610)
vulnerability in ibm (CVE-2026-9610). Risk of unauthorized operations or information disclosure.
CVE-2026-34028 Vulnerability in CVE-2026-34028 (CVE-2026-34028)
vulnerability in CVE-2026-34028 (CVE-2026-34028). Risk of unauthorized operations or information disclosure.
CVE-2026-11986 Vulnerability in CVE-2026-11986 (CVE-2026-11986)
vulnerability in CVE-2026-11986 (CVE-2026-11986). Data can be tampered with by attackers.
CVE-2026-8205 Vulnerability in concrete5/concrete5 (CVE-2026-8205)
vulnerability in concrete5/concrete5 (CVE-2026-8205). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.5.1` or later.
CVE-2026-42297 Vulnerability in argo-workflows (CVE-2026-42297)
vulnerability in argo-workflows (CVE-2026-42297). Data can be tampered with by attackers. Exploitable via ``auth.CanI``. Mitigation: upgrade to `4.0.5` or later.
CVE-2026-7500 Vulnerability in org.keycloak:keycloak-services (CVE-2026-7500)
vulnerability in org.keycloak:keycloak-services (CVE-2026-7500). Risk of unauthorized operations or information disclosure.
CVE-2026-35029 Authorization Flaw in litellm (CVE-2026-35029)
vulnerability in litellm (CVE-2026-35029). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.83.0` or later.
CVE-2025-15381 Information Disclosure in lfprojects (CVE-2025-15381)
vulnerability in lfprojects (CVE-2025-15381). Data can be tampered with by attackers. Exploitable via ``NO_PERMISSIONS``.
CVE-2026-33217 Authorization Flaw in linuxfoundation (CVE-2026-33217)
vulnerability in linuxfoundation (CVE-2026-33217). Data can be tampered with by attackers.
CVE-2025-15587 Vulnerability in CVE-2025-15587 (CVE-2025-15587)
vulnerability in CVE-2025-15587 (CVE-2025-15587). Risk of unauthorized operations or information disclosure.
CVE-2026-25679 Vulnerability in stdlib (CVE-2026-25679)
vulnerability in stdlib (CVE-2026-25679). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.25.8, 1.26.1` or later.
CVE-2025-52024 Vulnerability in aptsys (CVE-2025-52024)
vulnerability in aptsys (CVE-2025-52024). Confidential information can be exposed externally.
CVE-2024-45195 KEV [KEV] Vulnerability in Apache ofbiz (CVE-2024-45195)
vulnerability in Apache ofbiz (CVE-2024-45195). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2021-26085 KEV [KEV] Vulnerability in Atlassian confluence-server (CVE-2021-26085)
vulnerability in Atlassian confluence-server (CVE-2021-26085). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-15235 Vulnerability in horde (CVE-2017-15235)
vulnerability in horde (CVE-2017-15235). Confidential information can be exposed externally.
CVE-2017-14244 Vulnerability in iball (CVE-2017-14244)
vulnerability in iball (CVE-2017-14244). Successful exploitation can lead to full system takeover.
CVE-2017-10833 Vulnerability in nippon-antenna (CVE-2017-10833)
vulnerability in nippon-antenna (CVE-2017-10833). Confidential information can be exposed externally.
CVE-2017-2161 Vulnerability in toshiba (CVE-2017-2161)
vulnerability in toshiba (CVE-2017-2161). Risk of unauthorized operations or information disclosure.
CVE-2017-2143 Vulnerability in frogman-office-inc (CVE-2017-2143)
vulnerability in frogman-office-inc (CVE-2017-2143). Risk of unauthorized operations or information disclosure.
CVE-2017-2139 Vulnerability in frogman-office-inc (CVE-2017-2139)
vulnerability in frogman-office-inc (CVE-2017-2139). Risk of unauthorized operations or information disclosure.
CVE-2017-2486 Vulnerability in apple (CVE-2017-2486)
vulnerability in apple (CVE-2017-2486). Data can be tampered with by attackers.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →