6.8

CVSS3.1

CVE-2025-8428 - XSS found in the HTTP loader widget

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Centreon Infra Monitoring (HTTP Loader widget modules) allows Stored XSS.This issue affects Infra Monitoring: from 24.10.0 before 24.10.13, from 24.04.0 before 24.04.18, from 23.10.0 before …

πŸ“… Published: Oct. 14, 2025, 2:22 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 2:22 p.m.

7.2

CVSS3.1

CVE-2025-10985 -

OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution.

πŸ“… Published: Oct. 14, 2025, 2:20 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 7:36 p.m.

7.2

CVSS3.1

CVE-2025-10243 -

OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution.

πŸ“… Published: Oct. 14, 2025, 2:17 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 7:36 p.m.

7.2

CVSS3.1

CVE-2025-10242 -

OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to achieve remote code execution.

πŸ“… Published: Oct. 14, 2025, 2:14 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 7:36 p.m.

5.3

CVSS3.1

CVE-2025-27906 - IBM Content Navigator information disclosure

IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Application files and folders are visible in the browser to a user; however, the contents of the files cannot be read obtained or modified.

πŸ“… Published: Oct. 14, 2025, 2:08 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 7:36 p.m.

5.8

CVSS4.0

CVE-2025-33044 - exFat Memory Corruption Issue

APTIOV contains a vulnerability in BIOS where an attacker may cause an Improper Restriction of Operations within the Bounds of a Memory Buffer by local means. Successful exploitation of this vulnerability may lead to memory corruption and impact Integrity and Availability.

πŸ“… Published: Oct. 14, 2025, 2 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 7:36 p.m.

4.6

CVSS4.0

CVE-2025-22833 - FixupArray Pointer Validation in NTFS

APTIOV contains a vulnerability in BIOS where an attacker may cause a Buffer Copy without Checking Size of Input by local accessing. Successful exploitation of this vulnerability may lead to arbitrary code execution.

πŸ“… Published: Oct. 14, 2025, 2 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 7:36 p.m.

5.8

CVSS4.0

CVE-2025-22832 - Buffer Overflow in NTFS when parsing the ATTRIBUTE_LIST

APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by local. Successful exploitation of this vulnerability may lead to data corruption and loss of availability.

πŸ“… Published: Oct. 14, 2025, 2 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 7:36 p.m.

5.8

CVSS4.0

CVE-2025-22831 - Buffer Overflow in NTFS when parsing the VOLUME_NAME

APTIOV contains a vulnerability in BIOS where an attacker may cause an Out-of-bounds Write by local. Successful exploitation of this vulnerability may lead to data corruption and loss of availability.

πŸ“… Published: Oct. 14, 2025, 2 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 7:36 p.m.

7.2

CVSS3.1

CVE-2025-47856 -

Two improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerabilities [CWE-78] in Fortinet FortiVoice version 7.2.0, 7.0.0 through 7.0.6 and before 6.4.10 allows a privileged attacker to execute arbitrary code or commands via crafted HTTP/HTTPS or CLI reques…

πŸ“… Published: Oct. 14, 2025, 1:42 p.m. πŸ”„ Last Modified: Oct. 14, 2025, 7:36 p.m.
Total resulsts: 314406
Page 44 of 31,441
Β« previous page Β» next page
Filters