7.5

CVSS3.1

CVE-2025-41738 - CODESYS Control - Invalid type usage in visualization

An unauthenticated remote attacker may cause the visualisation server of the CODESYS Control runtime system to access a resource with a pointer of wrong type, potentially leading to a denial-of-service (DoS) condition.

πŸ“… Published: Dec. 1, 2025, 10:02 a.m. πŸ”„ Last Modified: Feb. 23, 2026, 3:42 p.m.

5.9

CVSS3.1

CVE-2025-41739 - CODESYS Control - Linux/QNX SysSocket flaw

An unauthenticated remote attacker, who beats a race condition, can exploit a flaw in the communication servers of the CODESYS Control runtime system on Linux and QNX to trigger an out-of-bounds read via crafted socket communication, potentially causing a denial of service.

πŸ“… Published: Dec. 1, 2025, 10 a.m. πŸ”„ Last Modified: Jan. 7, 2026, 5:09 p.m.

6.1

CVSS3.1

CVE-2025-13819 - Open redirect in web server of MiR robots and MiR fleet

Open redirect in the web server component of MiR Robot and Fleet software allows a remote attacker to redirect users to arbitrary external websites via a crafted parameter, facilitating phishing or social engineering attacks.

πŸ“… Published: Dec. 1, 2025, 9:41 a.m. πŸ”„ Last Modified: Dec. 1, 2025, 3:39 p.m.

5.3

CVSS4.0

CVE-2025-13816 - moxi159753 Mogu Blog v2 ZIP File unzipFile FileOperation.unzip path traversal

A security vulnerability has been detected in moxi159753 Mogu Blog v2 up to 5.2. The impacted element is the function FileOperation.unzip of the file /networkDisk/unzipFile of the component ZIP File Handler. Such manipulation of the argument fileUrl leads to path traversal. The attack may be launch…

πŸ“… Published: Dec. 1, 2025, 8:32 a.m. πŸ”„ Last Modified: Dec. 3, 2025, 10:02 p.m.

5.3

CVSS4.0

CVE-2025-13815 - moxi159753 Mogu Blog v2 pictures unrestricted upload

A weakness has been identified in moxi159753 Mogu Blog v2 up to 5.2. The affected element is an unknown function of the file /file/pictures. This manipulation of the argument filedatas causes unrestricted upload. The attack may be initiated remotely. The exploit has been made available to the publi…

πŸ“… Published: Dec. 1, 2025, 8:02 a.m. πŸ”„ Last Modified: Dec. 3, 2025, 10:02 p.m.

7.5

CVSS3.1

CVE-2025-61610 -

In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

πŸ“… Published: Dec. 1, 2025, 7:36 a.m. πŸ”„ Last Modified: Dec. 2, 2025, 3:53 p.m.

7.5

CVSS3.1

CVE-2025-61609 -

In modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

πŸ“… Published: Dec. 1, 2025, 7:36 a.m. πŸ”„ Last Modified: Dec. 2, 2025, 3:53 p.m.

7.5

CVSS3.1

CVE-2025-61608 -

In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

πŸ“… Published: Dec. 1, 2025, 7:36 a.m. πŸ”„ Last Modified: Dec. 2, 2025, 3:53 p.m.

7.5

CVSS3.1

CVE-2025-61607 -

In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

πŸ“… Published: Dec. 1, 2025, 7:35 a.m. πŸ”„ Last Modified: Dec. 2, 2025, 3:53 p.m.

7.5

CVSS3.1

CVE-2025-61619 -

In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed

πŸ“… Published: Dec. 1, 2025, 7:35 a.m. πŸ”„ Last Modified: Dec. 2, 2025, 3:54 p.m.
Total resulsts: 343919
Page 2345 of 34,392
Β« previous page Β» next page
Filters