0.0
CVE-2025-54358 -
Not used
0.0
CVE-2025-54360 -
Not used
0.0
CVE-2025-54359 -
Not used
0.0
CVE-2025-54355 -
Not used
0.0
CVE-2025-54356 -
Not used
0.0
CVE-2025-54354 -
Not used
8.8
CVE-2025-50151 - Apache Jena: Configuration files uploaded by administrative users are not check properly
File access paths in configuration files uploaded by users with administrator access are not validated. This issue affects Apache Jena version up to 5.4.0. Users are recommended to upgrade to version 5.5.0, which does not allow arbitrary configuration upload.
4.8
CVE-2025-41681 - Persistent Cross-Site Scripting via POST Requests Due to Improper Neutralization of Input
A high privileged remote attacker can gain persistent XSS via POST requests due to improper neutralization of special elements used to create dynamic content.
5.3
CVE-2025-41679 - Unauthenticated Buffer Overflow in Conftool Service Leading to Denial of Service
An unauthenticated remote attacker could exploit a buffer overflow vulnerability in the device causing a denial of service that affects only the network initializing wizard (Conftool) service.
6.5
CVE-2025-41678 - SQL Injection via POST Requests Allowing Configuration Database Manipulation
A high privileged remote attacker can alter the configuration database via POST requests due to improper neutralization of special elements used in a SQL statement.