8

CVSS3.1

CVE-2025-14322 - Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component

Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.

πŸ“… Published: Dec. 9, 2025, 1:37 p.m. πŸ”„ Last Modified: April 20, 2026, 5:45 p.m.

9.8

CVSS3.1

CVE-2025-14321 - Use-after-free in the WebRTC: Signaling component

Use-after-free in the WebRTC: Signaling component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6.

πŸ“… Published: Dec. 9, 2025, 1:37 p.m. πŸ”„ Last Modified: April 20, 2026, 9:45 p.m.

2.7

CVSS3.1

CVE-2024-56464 - IBM QRadar SIEM is affected by an information disclosure vulnerability

IBM QRadar SIEMΒ 7.5 - 7.5.0 UP14 IF01 is affected by an information disclosure vulnerability involving exposure of directory information. IBM has addressed this vulnerability in the latest update.

πŸ“… Published: Dec. 9, 2025, 1:26 p.m. πŸ”„ Last Modified: Dec. 15, 2025, 6:29 p.m.

9.6

CVSS3.1

CVE-2025-11022 - CSRF in Panilux

Cross-Site Request Forgery (CSRF) vulnerability in Personal Project Panilux allows Cross Site Request Forgery.Β  This CSRF vulnerability resulting in Command Injection has been identified. This issue affects Panilux: before v.0.10.0.Β NOTE: The vendor was contacted and responded that they deny …

πŸ“… Published: Dec. 9, 2025, 12:36 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2025-14319 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: Dec. 9, 2025, 11:33 a.m. πŸ”„ Last Modified: Dec. 17, 2025, 10:19 p.m.

5.3

CVSS4.0

CVE-2025-40941 -

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected devices exposes server information in its responses. This could allow an attacker with network access to gain useful information, increasing the likelihood of targeted attacks.

πŸ“… Published: Dec. 9, 2025, 10:44 a.m. πŸ”„ Last Modified: Dec. 10, 2025, 9:32 p.m.

6.9

CVSS4.0

CVE-2025-40940 -

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected application exhibits inconsistent SNMP behavior, such as unexpected service availability and unreliable configuration handling across protocol versions. This could allow an attacker to access sensitive data…

πŸ“… Published: Dec. 9, 2025, 10:44 a.m. πŸ”„ Last Modified: Dec. 10, 2025, 9:34 p.m.

5.1

CVSS4.0

CVE-2025-40939 -

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected device contains a USB port which allows unauthenticated connections. This could allow an attacker with physical access to the device to trigger reboot that could cause denial of service condition.

πŸ“… Published: Dec. 9, 2025, 10:44 a.m. πŸ”„ Last Modified: Dec. 16, 2025, 5:30 p.m.

9.2

CVSS4.0

CVE-2025-40938 -

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected device stores sensitive information in the firmware. This could allow an attacker to access and misuse this information, potentially impacting the device’s confidentiality, integrity, and availability.

πŸ“… Published: Dec. 9, 2025, 10:44 a.m. πŸ”„ Last Modified: Dec. 10, 2025, 9:36 p.m.

8.7

CVSS4.0

CVE-2025-40937 -

A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected application do not properly validate input parameters in its REST API, resulting in improper handling of unexpected arguments. This could allow an authenticated attacker to execute arbitrary code with limi…

πŸ“… Published: Dec. 9, 2025, 10:44 a.m. πŸ”„ Last Modified: Dec. 10, 2025, 9:37 p.m.
Total resulsts: 349182
Page 2740 of 34,919
Β« previous page Β» next page
Filters