4.3

CVSS3.1

CVE-2025-65497 -

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 1, 2025, 4:55 p.m.

4.3

CVSS3.1

CVE-2025-65502 -

Null pointer dereference in add_ca_certs() in Cesanta Mongoose before 7.2 allows remote attackers to cause a denial of service via TLS initialization where SSL_CTX_get_cert_store() returns NULL.

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 12, 2025, 1:32 p.m.

4.6

CVSS3.1

CVE-2025-60917 -

A reflected cross-site scripting (XSS) vulnerability in the /overview/network/ endpoint of Austrian Archaeological Institute Openatlas before v8.12.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the color parameter.

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Nov. 28, 2025, 4:22 p.m.

5.3

CVSS3.1

CVE-2025-56423 -

An issue in Austrian Academy of Sciences (AW) Austrian Archaeological Institute OpenAtlas v.8.12.0 allows a remote attacker to obtain sensitive information via the login error messages

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Nov. 28, 2025, 4:22 p.m.

5.7

CVSS3.1

CVE-2025-63952 -

A Cross-Site Request Forgery (CSRF) in the /mwapi?method=add-user component of Magewell Pro Convert v1.2.213 allows attackers to arbitrarily create accounts via a crafted GET request.

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 30, 2025, 6:13 p.m.

4.3

CVSS3.1

CVE-2025-65499 -

Array index error in tls_verify_call_back() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_ex_data_X509_STORE_CTX_idx() to return -1.

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 1, 2025, 4:29 p.m.

4.3

CVSS3.1

CVE-2025-65498 -

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 1, 2025, 4:31 p.m.

4.3

CVSS3.1

CVE-2025-65496 -

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 1, 2025, 5 p.m.

4.3

CVSS3.1

CVE-2025-65501 -

Null pointer dereference in coap_dtls_info_callback() in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a DTLS handshake where SSL_get_app_data() returns NULL.

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 1, 2025, 4:18 p.m.

4.3

CVSS3.1

CVE-2025-65500 -

NULL pointer dereference in coap_dtls_generate_cookie() in src/coap_openssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted DTLS handshake that triggers SSL_get_SSL_CTX() to return NULL.

๐Ÿ“… Published: Nov. 24, 2025, midnight ๐Ÿ”„ Last Modified: Dec. 1, 2025, 4:28 p.m.
Total resulsts: 349182
Page 2922 of 34,919
ยซ previous page ยป next page
Filters