7.2

CVSS3.1

CVE-2025-29661 -

Litepubl CMS <= 7.0.9 is vulnerable to RCE in admin/service/run.

πŸ“… Published: April 17, 2025, midnight πŸ”„ Last Modified: April 17, 2025, 8:21 p.m.

9.8

CVSS3.1

CVE-2025-29662 -

A RCE vulnerability in the core application in LandChat 3.25.12.18 allows an unauthenticated attacker to execute system code via remote network access.

πŸ“… Published: April 17, 2025, midnight πŸ”„ Last Modified: April 18, 2025, 4:15 p.m.

7.5

CVSS3.1

CVE-2025-25454 -

Tenda AC10 V4.0si_V16.03.10.20 is vulnerable to Buffer Overflow in AdvSetMacMtuWan via wanSpeed2.

πŸ“… Published: April 17, 2025, midnight πŸ”„ Last Modified: April 18, 2025, 2:02 p.m.

7.2

CVSS3.1

CVE-2025-29181 -

FOXCMS <= V1.25 is vulnerable to SQL Injection via $param['title'] in /admin/util/Field.php.

πŸ“… Published: April 17, 2025, midnight πŸ”„ Last Modified: April 17, 2025, 8:21 p.m.

5.5

CVSS3.1

CVE-2020-36789 - can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ context

In the Linux kernel, the following vulnerability has been resolved: can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ context If a driver calls can_get_echo_skb() during a hardware IRQ (which is often, but not always, the case), the 'WARN_ON(in_irq)' in net/core/skbuff.c#skb_r…

πŸ“… Published: April 17, 2025, midnight πŸ”„ Last Modified: April 17, 2025, 8:21 p.m.

8.8

CVSS3.1

CVE-2025-1568 -

Access Control Vulnerability in Gerrit chromiumos project configuration in Google ChromeOS 131.0.6778.268 allows an attacker with a registered Gerrit account to inject malicious code into ChromeOS projects and potentially achieve Remote Code Execution and Denial of Service via editing trusted pipe…

πŸ“… Published: April 16, 2025, 11:06 p.m. πŸ”„ Last Modified: April 17, 2025, 8:21 p.m.

8.8

CVSS3.1

CVE-2025-2073 -

Out-of-Bounds Read in ip_set_bitmap_ip.c in Google ChromeOS Kernel Versions 6.1, 5.15, 5.10, 5.4, 4.19. on All devices where Termina is used allows an attacker with CAP_NET_ADMIN privileges to cause memory corruption and potentially escalate privileges via crafted ipset commands.

πŸ“… Published: April 16, 2025, 11:06 p.m. πŸ”„ Last Modified: April 17, 2025, 8:21 p.m.

6.5

CVSS3.1

CVE-2025-1704 -

ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 124.0.6367.34 on Chromebooks allows enrolled users with local access to unenroll devices and intercept device management requests via loading components from the unencrypted stateful partition.

πŸ“… Published: April 16, 2025, 11:06 p.m. πŸ”„ Last Modified: April 17, 2025, 8:21 p.m.

7.5

CVSS3.1

CVE-2025-1566 -

DNS Leak in Native System VPN in Google ChromeOS Dev Channel on ChromeOS 129.0.6668.36 allows network observers to expose plaintext DNS queries via failure to properly tunnel DNS traffic during VPN state transitions.

πŸ“… Published: April 16, 2025, 11:06 p.m. πŸ”„ Last Modified: April 17, 2025, 8:21 p.m.

6.8

CVSS3.1

CVE-2025-24907 - Hitachi Vantara Pentaho Data Integration & Analytics – Path Traversal

Overview Β  The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize '.../...//' (doubled triple dot slash) sequences that can resolve to a location that is outside of that directory. (CWE-35) Β  Descriptio…

πŸ“… Published: April 16, 2025, 10:39 p.m. πŸ”„ Last Modified: April 17, 2025, 8:21 p.m.
Total resulsts: 290933
Page 44 of 29,094
Β« previous page Β» next page
Filters