6.1
CVE-2025-30755 -
OpenGrok 1.14.1 has a reflected Cross-Site Scripting (XSS) issue when producing the cross reference page. This happens through improper handling of the revision parameter. The application reflects unsanitized user input into the HTML output.
10
CVE-2025-10035 - Deserialization Vulnerability in GoAnywhere MFT's License Servlet
A deserialization vulnerability in the License Servlet of Fortra's GoAnywhere MFT allows an actor with a validly forged license response signature to deserialize an arbitrary actor-controlled object, possibly leading to command injection.
8.6
CVE-2025-53969 - Cognex In-Sight Explorer and In-Sight Camera Firmware Client-Side Enforcement of Server-Side Securiβ¦
Cognex In-Sight Explorer and In-Sight Camera Firmware expose a service implementing a proprietary protocol on TCP port 1069 to allow the client-side software, such as the In-Sight Explorer tool, to perform management operations such as changing network settings or modifying users' access to theβ¦
7
CVE-2025-59220 - Windows Bluetooth Service Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
7
CVE-2025-59216 - Windows Graphics Component Elevation of Privilege Vulnerability
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
8.6
CVE-2025-54810 - Cognex In-Sight Explorer and In-Sight Camera Firmware Authentication Bypass by Capture-replay
Cognex In-Sight Explorer and In-Sight Camera Firmware expose a proprietary protocol on TCP port 1069 to perform management operations such as modifying system properties. The user management functionality handles sensitive data such as registered usernames and passwords over an unencrypted chaβ¦
7
CVE-2025-59215 - Windows Graphics Component Elevation of Privilege Vulnerability
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
8.6
CVE-2025-54818 - Cognex In-Sight Explorer and In-Sight Camera Firmware Cleartext Transmission of Sensitive Informatiβ¦
Cognex In-Sight Explorer and In-Sight Camera Firmware expose a proprietary protocol on TCP port 1069 to perform management operations such as modifying system properties. The user management functionality handles sensitive data such as registered usernames and passwords over an unencrypted chaβ¦
7.2
CVE-2025-54497 - Cognex In-Sight Explorer and In-Sight Camera Firmware Incorrect Permission Assignment for Critical β¦
Cognex In-Sight Explorer and In-Sight Camera Firmware expose a telnet-based service on port 23 to allow management operations such as firmware upgrades and device reboots, which require authentication. A user with protected privileges can successfully invoke the SetSerialPort functionality to β¦
7.2
CVE-2025-52873 - Cognex In-Sight Explorer and In-Sight Camera Firmware Incorrect Permission Assignment for Critical β¦
Cognex In-Sight Explorer and In-Sight Camera Firmware expose a telnet-based service on port 23 to allow management operations such as firmware upgrades and device reboots, which require authentication. A user with protected privileges can successfully invoke the SetSystemConfig functionality toβ¦