6.9

CVSS4.0

CVE-2025-55090 - Potential out of bound read issue in _nx_ipv4_packet_receive() in NetX Duo

In NetX Duo before 6.4.4, the networking support module for Eclipse Foundation ThreadX, there was a potential out of bound read issue in _nx_ipv4_packet_receive() function when received an Ethernet frame with less than 4 bytes of IP packet.

πŸ“… Published: Oct. 16, 2025, 6:43 a.m. πŸ”„ Last Modified: Oct. 21, 2025, 5:08 p.m.

9.2

CVSS4.0

CVE-2025-55089 - Eclipse ThreadX FileX RAM disk driver buffer overflow

In FileX before 6.4.2, the file support module for Eclipse Foundation ThreadX, there was a possible buffer overflow in the FileX RAM disk driver. It could cause a remote execurtion after receiving a crafted sequence of packets

πŸ“… Published: Oct. 16, 2025, 6:33 a.m. πŸ”„ Last Modified: Jan. 20, 2026, 9:52 p.m.

6.9

CVSS4.0

CVE-2025-55084 - Out of bound read in _nx_secure_tls_proc_clienthello_supported_versions_extension()

In NetX Duo version before 6.4.4, the component of Eclipse Foundation ThreadX, there was an incorrect bound check in_nx_secure_tls_proc_clienthello_supported_versions_extension() in the extension version field.

πŸ“… Published: Oct. 16, 2025, 6:29 a.m. πŸ”„ Last Modified: Oct. 21, 2025, 5:06 p.m.

8.6

CVSS4.0

CVE-2025-58778 -

Multiple versions of RG-EST300 provided by Ruijie Networks provide SSH server functionality. It is not documented in the manual, and enabled in the initial configuration. Anyone with the knowledge of the related credentials can log in to the affected device, leading to information disclosure, alter…

πŸ“… Published: Oct. 16, 2025, 6:04 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.3

CVSS3.1

CVE-2025-0275 - HCL BigFix Mobile 3.3 and earlier is affected by improper access control

HCL BigFix Mobile 3.3 and earlier is affected by improper access control. Unauthorized users can access a small subset of endpoint actions, potentially allowing access to select internal functions.

πŸ“… Published: Oct. 16, 2025, 5:14 a.m. πŸ”„ Last Modified: Oct. 21, 2025, 6:17 p.m.

5.3

CVSS3.1

CVE-2025-0274 - HCL BigFix Modern Client Management (MCM) 3.3 and earlier is affected by improper access control

HCL BigFix Modern Client Management (MCM) 3.3 and earlier is affected by improper access control. Unauthorized users can access a small subset of endpoint actions, potentially allowing access to select internal functions.

πŸ“… Published: Oct. 16, 2025, 4:56 a.m. πŸ”„ Last Modified: Oct. 21, 2025, 6:21 p.m.

6.4

CVSS3.1

CVE-2025-11814 - Ultimate Addons for WPBakery Page Builder < 3.21.1 - Authenticated (Contributor+) Stored Cross-Site…

The Ultimate Addons for WPBakery plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to 3.21.1 (exclusive) due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that …

πŸ“… Published: Oct. 16, 2025, 4:27 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.3

CVSS3.1

CVE-2025-10700 - Ally - Web Accessibility & Usability <= 3.8.0 - Cross-Site Request Forgery to Plugin Settings Update

The Ally – Web Accessibility & Usability plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.0. This is due to missing or incorrect nonce validation on the enable_unfiltered_files_upload function. This makes it possible for unauthenticated atta…

πŸ“… Published: Oct. 16, 2025, 2:25 a.m. πŸ”„ Last Modified: April 21, 2026, 7 p.m.

7.8

CVSS3.1

CVE-2025-62580 - ASDA-Soft Stack-based Buffer Overflow Vulnerability

ASDA-Soft Stack-based Buffer Overflow Vulnerability

πŸ“… Published: Oct. 16, 2025, 1:33 a.m. πŸ”„ Last Modified: Oct. 28, 2025, 3:23 p.m.

7.8

CVSS3.1

CVE-2025-62579 - ASDA-Soft Stack-based Buffer Overflow Vulnerability

ASDA-Soft Stack-based Buffer Overflow Vulnerability

πŸ“… Published: Oct. 16, 2025, 1:31 a.m. πŸ”„ Last Modified: Oct. 28, 2025, 3:24 p.m.
Total resulsts: 349182
Page 3396 of 34,919
Β« previous page Β» next page
Filters