9.8

CVSS3.1

CVE-2025-29209 -

TOTOLINK X18 v9.1.0cu.2024_B20220329 has an unauthorized arbitrary command execution in the enable parameter' of the sub_41105C function of cstecgi .cgi.

πŸ“… Published: April 18, 2025, midnight πŸ”„ Last Modified: April 29, 2025, 4:23 p.m.

7.8

CVSS3.1

CVE-2025-40114 - iio: light: Add check for array bounds in veml6075_read_int_time_ms

In the Linux kernel, the following vulnerability has been resolved: iio: light: Add check for array bounds in veml6075_read_int_time_ms The array contains only 5 elements, but the index calculated by veml6075_read_int_time_index can range from 0 to 7, which could lead to out-of-bounds access. The…

πŸ“… Published: April 18, 2025, midnight πŸ”„ Last Modified: Oct. 1, 2025, 3:15 p.m.

5.5

CVSS3.1

CVE-2024-57493 -

An issue in redoxOS relibc before commit 98aa4ea5 allows a local attacker to cause a denial of service via the setsockopt function.

πŸ“… Published: April 18, 2025, midnight πŸ”„ Last Modified: June 25, 2025, 6:47 p.m.

9.8

CVSS3.1

CVE-2025-28242 -

Improper session management in the /login_ok.htm endpoint of DAEnetIP4 METO v1.25 allows attackers to execute a session hijacking attack.

πŸ“… Published: April 18, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 2:15 p.m.

5.5

CVSS3.1

CVE-2025-40325 - md/raid10: wait barrier before returning discard request with REQ_NOWAIT

In the Linux kernel, the following vulnerability has been resolved: md/raid10: wait barrier before returning discard request with REQ_NOWAIT raid10_handle_discard should wait barrier before returning a discard bio which has REQ_NOWAIT. And there is no need to print warning calltrace if a discard …

πŸ“… Published: April 18, 2025, midnight πŸ”„ Last Modified: Jan. 8, 2026, 10:15 a.m.

9.8

CVSS3.1

CVE-2025-28238 -

Improper session management in Elber REBLE310 Firmware v5.5.1.R , Equipment Model: REBLE310/RX10/4ASI allows attackers to execute a session hijacking attack.

πŸ“… Published: April 18, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 2:15 p.m.

6.8

CVSS3.1

CVE-2025-25984 -

An issue in Macro-video Technologies Co.,Ltd V380E6_C1 IP camera (Hw_HsAKPIQp_WF_XHR) 1020302 allows a physically proximate attacker to execute arbitrary code via UART component.

πŸ“… Published: April 18, 2025, midnight πŸ”„ Last Modified: June 25, 2025, 6:40 p.m.

9.8

CVSS3.1

CVE-2025-29058 -

An issue in Qimou CMS v.3.34.0 allows a remote attacker to execute arbitrary code via the upgrade.php component.

πŸ“… Published: April 18, 2025, midnight πŸ”„ Last Modified: June 19, 2025, 12:24 a.m.

8.6

CVSS4.0

CVE-2025-3246 - Markdown math block sanitization bypass allows privilege escalation and unauthorized workflow trigg…

An improper neutralization of input vulnerability was identified in GitHub Enterprise Server that allowed cross-site scripting in GitHub Markdown that used `$$..$$` math blocks. Exploitation required access to the target GitHub Enterprise Server instance and privileged user interaction with the ma…

πŸ“… Published: April 17, 2025, 10:50 p.m. πŸ”„ Last Modified: Sept. 5, 2025, 3 p.m.

7.1

CVSS4.0

CVE-2025-3509 - Pre-Receive Hook Remote Code Execution vulnerability was identified in GitHub Enterprise Server tha…

A Remote Code Execution (RCE) vulnerability was identified in GitHub Enterprise Server that allowed attackers to execute arbitrary code by exploiting the pre-receive hook functionality, potentially leading to privilege escalation and system compromise. The vulnerability involves using dynamically a…

πŸ“… Published: April 17, 2025, 10:50 p.m. πŸ”„ Last Modified: Sept. 5, 2025, 2:59 p.m.
Total resulsts: 344154
Page 5224 of 34,416
Β« previous page Β» next page
Filters