5.4

CVSS3.1

CVE-2025-36592 -

Dell Secure Connect Gateway (SCG) Policy Manager, version(s) 5.20. 5.22, 5.24, 5.26, 5.28, contain(s) an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, l…

πŸ“… Published: Oct. 30, 2025, 3:26 p.m. πŸ”„ Last Modified: Nov. 10, 2025, 4:30 p.m.

4.3

CVSS3.1

CVE-2025-46363 -

Dell Secure Connect Gateway (SCG) 5.0 Application and Appliance version(s) 5.26.00.00 - 5.30.00.00, contain a Relative Path Traversal vulnerability in the SCG exposed for an internal collection download REST API (if this REST API is enabled by Admin user from UI). A low privileged attacker with rem…

πŸ“… Published: Oct. 30, 2025, 3:22 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 3:41 p.m.

6.3

CVSS3.1

CVE-2025-5347 - Stored XSS

Zohocorp ManageEngine Exchange Reporter Plus versions before 5723 are vulnerable to Stored Cross Site Scripting in the reports module.

πŸ“… Published: Oct. 30, 2025, 2:31 p.m. πŸ”„ Last Modified: Nov. 7, 2025, 1:46 a.m.

6.3

CVSS3.1

CVE-2025-5343 - Stored XSS

Zohocorp ManageEngine Exchange Reporter Plus versions through 5721 are vulnerable to Stored Cross Site Scripting in the Instant Search option.

πŸ“… Published: Oct. 30, 2025, 2:28 p.m. πŸ”„ Last Modified: Nov. 7, 2025, 1:43 a.m.

7.8

CVSS3.1

CVE-2025-43942 -

Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution and Elevation of privi…

πŸ“… Published: Oct. 30, 2025, 2:23 p.m. πŸ”„ Last Modified: Nov. 7, 2025, 1:14 a.m.

4.3

CVSS3.1

CVE-2025-5342 - Denial of Service (DoS)

Zohocorp ManageEngine Exchange Reporter Plus through 5721 are vulnerable to ReDOS vulnerability in the search module.

πŸ“… Published: Oct. 30, 2025, 2:20 p.m. πŸ”„ Last Modified: Nov. 7, 2025, 1:43 a.m.

7.8

CVSS3.1

CVE-2025-46422 -

Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability to execute arbitrary commands with root privileges.

πŸ“… Published: Oct. 30, 2025, 2:19 p.m. πŸ”„ Last Modified: Nov. 7, 2025, 1:16 a.m.

7.8

CVSS3.1

CVE-2025-46423 -

Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability to execute arbitrary commands with root privileges.

πŸ“… Published: Oct. 30, 2025, 2:14 p.m. πŸ”„ Last Modified: Nov. 7, 2025, 1:12 a.m.

9.8

CVSS3.1

CVE-2025-43027 -

A critical severity vulnerability has been identified in the ALPR Manager role of Security Center that could allow attackers to gain administrative access to the Genetec Security Center system. The Genetec engineering team discovered this issue internally. There is currently no evidence that this v…

πŸ“… Published: Oct. 30, 2025, 2:12 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 3:41 p.m.

7.8

CVSS3.1

CVE-2025-43939 -

Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution and Elevation of privi…

πŸ“… Published: Oct. 30, 2025, 2:10 p.m. πŸ”„ Last Modified: Nov. 3, 2025, 7:57 p.m.
Total resulsts: 318415
Page 210 of 31,842
Β« previous page Β» next page
Filters