8.6
CVE-2025-68459 -
RG - AP180, Indoor Wall Plate Wireless AP AP180 series provided by Ruijie Networks Co., Ltd. contain an OS command injection vulnerability. An arbitrary OS command may be executed on the product by an attacker who logs in to the CLI service.
4.9
CVE-2025-68463 - python-biopython: python-biopython: Information disclosure via XML External Entity (XXE) vulnerabilβ¦
Bio.Entrez in Biopython through 186 allows doctype XXE.
7.8
CVE-2025-47387 - Untrusted Pointer Dereference in Camera
Memory Corruption when processing IOCTLs for JPEG data without verification.
7.8
CVE-2025-47382 - Incorrect Authorization in Boot
Memory corruption while loading an invalid firmware in boot loader.
9
CVE-2025-47372 - Buffer Copy Without Checking Size of Input in Boot
Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication.
7.8
CVE-2025-47350 - Use After Free in DSP Service
Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application.
6.5
CVE-2025-47325 - Untrusted Pointer Dereference in TZ Firmware
Information disclosure while processing system calls with invalid parameters.
7.8
CVE-2025-47323 - Integer Overflow or Wraparound in Audio
Memory corruption while routing GPR packets between user and root when handling large data packet.
7.8
CVE-2025-47322 - Use After Free in Automotive Linux OS
Memory corruption while handling IOCTL calls to set mode.
7.8
CVE-2025-47321 - Buffer Copy Without Checking Size of Input in Core Services
Memory corruption while copying packets received from unix clients.