8.1

CVSS3.1

CVE-2025-29828 - Windows Schannel Remote Code Execution Vulnerability

Missing release of memory after effective lifetime in Windows Cryptographic Services allows an unauthorized attacker to execute code over a network.

πŸ“… Published: June 10, 2025, 5:02 p.m. πŸ”„ Last Modified: Feb. 26, 2026, 5:50 p.m.

8.4

CVSS3.1

CVE-2025-47957 - Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

πŸ“… Published: June 10, 2025, 5:02 p.m. πŸ”„ Last Modified: Feb. 26, 2026, 5:50 p.m.

4.8

CVSS4.0

CVE-2025-5970 - PHPGurukul Restaurant Table Booking System add-subadmin.php cross site scripting

A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/add-subadmin.php. The manipulation of the argument fullname leads to cross site scripting. The attack may be launched re…

πŸ“… Published: June 10, 2025, 5 p.m. πŸ”„ Last Modified: June 23, 2025, 9:16 a.m.

7.6

CVSS3.1

CVE-2024-43706 - Kibana Improper Authorization

Improper authorization in Kibana can lead to privilege abuse via a direct HTTP request to a Synthetic monitor endpoint.

πŸ“… Published: June 10, 2025, 4:59 p.m. πŸ”„ Last Modified: Oct. 1, 2025, 3:27 p.m.

5.6

CVSS3.1

CVE-2024-50568 -

A channel accessible by non-endpoint vulnerability [CWE-300] in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7 and before 7.0.14 & FortiProxy version 7.4.0 through 7.4.3, 7.2.0 through 7.2.9 and before 7.0.16 allows an unauthenticated attacker with the knowledge of device specifi…

πŸ“… Published: June 10, 2025, 4:36 p.m. πŸ”„ Last Modified: July 25, 2025, 3:25 p.m.

3.9

CVSS3.1

CVE-2025-25250 -

An Exposure of Sensitive Information to an Unauthorized Actor vulnerability [CWE-200] in FortiOS version 7.6.0, version 7.4.7 and below, 7.2 all versions, 7.0 all versions, 6.4 all versions SSL-VPN web-mode may allow an authenticated user to access full SSL-VPN settings via crafted URL.

πŸ“… Published: June 10, 2025, 4:36 p.m. πŸ”„ Last Modified: July 22, 2025, 5:52 p.m.

3.1

CVSS3.1

CVE-2023-29184 -

An incomplete cleanup vulnerability [CWE-459] in FortiOS 7.2 all versions and before & FortiProxy version 7.2.0 through 7.2.2 and before 7.0.8 allows a VDOM privileged attacker to add SSH key files on the system silently via crafted CLI requests.

πŸ“… Published: June 10, 2025, 4:36 p.m. πŸ”„ Last Modified: July 24, 2025, 7:57 p.m.

4.1

CVSS3.1

CVE-2023-48786 -

A server-side request forgery vulnerability [CWE-918] in Fortinet FortiClientEMS version 7.4.0 through 7.4.2 and before 7.2.6 may allow an authenticated attacker to perform internal requests via crafted HTTP or HTTPS requests.

πŸ“… Published: June 10, 2025, 4:36 p.m. πŸ”„ Last Modified: July 16, 2025, 3:17 p.m.

6

CVSS3.1

CVE-2025-24471 -

AnΒ Improper Certificate Validation vulnerability [CWE-295] in FortiOS version 7.6.1 and below, version 7.4.7 and below may allow an EAP verified remote user to connect from FortiClient via revoked certificate.

πŸ“… Published: June 10, 2025, 4:36 p.m. πŸ”„ Last Modified: July 22, 2025, 5:57 p.m.

6.5

CVSS3.1

CVE-2025-22254 -

An Improper Privilege Management vulnerability [CWE-269] vulnerability in Fortinet FortiOS 7.6.0 through 7.6.1, FortiOS 7.4.0 through 7.4.6, FortiOS 7.2.0 through 7.2.10, FortiOS 7.0.0 through 7.0.16, FortiOS 6.4.0 through 6.4.15, FortiProxy 7.6.0 through 7.6.1, FortiProxy 7.4.0 through 7.4.7, Fort…

πŸ“… Published: June 10, 2025, 4:36 p.m. πŸ”„ Last Modified: Feb. 26, 2026, 5:50 p.m.
Total resulsts: 349182
Page 5089 of 34,919
Β« previous page Β» next page
Filters