4.3
CVSS3.1
CVE-2025-10457 - Bluetooth: Out-Of-Context le_conn_rsp Handling
The function responsible for handling BLE connection responses does not verify whether a response is expectedβthat is, whether the device has initiated a connection request. Instead, it relies solely on identifier matching.
π
Published: Sept. 19, 2025, 5:17 a.m.
π Last Modified: Oct. 29, 2025, 6:52 p.m.
0.0
CVE-2025-59727 -
Not used
π
Published: Sept. 19, 2025, 4:30 a.m.
π Last Modified: Sept. 20, 2025, 2:55 a.m.
0.0
CVE-2025-59725 -
Not used
π
Published: Sept. 19, 2025, 4:30 a.m.
π Last Modified: Sept. 20, 2025, 2:55 a.m.
0.0
CVE-2025-59726 -
Not used
π
Published: Sept. 19, 2025, 4:30 a.m.
π Last Modified: Sept. 20, 2025, 2:55 a.m.
0.0
CVE-2025-59723 -
Not used
π
Published: Sept. 19, 2025, 4:30 a.m.
π Last Modified: Sept. 20, 2025, 2:55 a.m.
0.0
CVE-2025-59724 -
Not used
π
Published: Sept. 19, 2025, 4:30 a.m.
π Last Modified: Sept. 20, 2025, 2:55 a.m.
0.0
CVE-2025-59721 -
Not used
π
Published: Sept. 19, 2025, 4:30 a.m.
π Last Modified: Sept. 20, 2025, 2:55 a.m.
0.0
CVE-2025-59720 -
Not used
π
Published: Sept. 19, 2025, 4:30 a.m.
π Last Modified: Sept. 20, 2025, 2:55 a.m.
0.0
CVE-2025-59722 -
Not used
π
Published: Sept. 19, 2025, 4:30 a.m.
π Last Modified: Sept. 20, 2025, 2:55 a.m.
8.1
CVSS3.1
CVE-2025-5955 - Service Finder SMS System <= 2.0.0 - Authentication Bypass
The Service Finder SMS System plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 2.0.0. This is due to the plugin not verifying a user's phone number before logging them in. This makes it possible for unauthenticated attackers to login as arbitrary useβ¦
π
Published: Sept. 19, 2025, 4:27 a.m.
π Last Modified: April 20, 2026, 7:45 p.m.
Filters