8.4
CVE-2025-2480 - Santesoft Sante DICOM Viewer Pro Out-of-bounds Write
Santesoft Sante DICOM Viewer Pro is vulnerable to an out-of-bounds write, which requires a user to open a malicious DCM file, resulting in execution of arbitrary code by a local attacker.
5.3
CVE-2025-2550 - D-Link DIR-618/DIR-605L DDNS Service formSetDDNS access control
A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02 and classified as problematic. Affected by this issue is some unknown functionality of the file /goform/formSetDDNS of the component DDNS Service. The manipulation leads to improper access controls. The attack needs to be initiated β¦
5.3
CVE-2025-2549 - D-Link DIR-618/DIR-605L formSetPassword access control
A vulnerability has been found in D-Link DIR-618 and DIR-605L 2.02/3.02 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /goform/formSetPassword. The manipulation leads to improper access controls. The attack needs to be done within the local netβ¦
5.1
CVE-2025-2565 -
The data exposure vulnerability in Liferay Portal 7.4.0 through 7.4.3.126, and Liferay DXP 2024.Q3.0, 2024.Q2.0 through 2024.Q2.12, 2024.Q1.1 through 2024.Q1.12, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92 allows an unauthorized user to obtain entry data froβ¦
5.3
CVE-2025-2548 - D-Link DIR-618/DIR-605L formSetDomainFilter access control
A vulnerability, which was classified as problematic, was found in D-Link DIR-618 and DIR-605L 2.02/3.02. Affected is an unknown function of the file /goform/formSetDomainFilter. The manipulation leads to improper access controls. The attack can only be initiated within the local network. The exploβ¦
5.3
CVE-2025-2547 - D-Link DIR-618/DIR-605L formAdvNetwork access control
A vulnerability, which was classified as problematic, has been found in D-Link DIR-618 and DIR-605L 2.02/3.02. This issue affects some unknown processing of the file /goform/formAdvNetwork. The manipulation leads to improper access controls. The attack can only be done within the local network. Theβ¦
8.8
CVE-2025-23120 -
A vulnerability allowing remote code execution (RCE) for domain users.
5.3
CVE-2025-2546 - D-Link DIR-618/DIR-605L Firewall Service formAdvFirewall access control
A vulnerability classified as problematic was found in D-Link DIR-618 and DIR-605L 2.02/3.02. This vulnerability affects unknown code of the file /goform/formAdvFirewall of the component Firewall Service. The manipulation leads to improper access controls. The attack needs to be approached within tβ¦
5.9
CVE-2025-0254 - HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle (Mitβ¦
HCL Digital Experience components Ring API and dxclient may be vulnerable to man-in-the-middle (MitM) attacks prior to 9.5 CF226. An attacker could intercept and potentially alter communication between two parties.
6.5
CVE-2025-1496 - Improper Authentication in BG-TEK's Coslat Hotspot
Improper Restriction of Excessive Authentication Attempts vulnerability in BG-TEK Coslat Hotspot allows Password Brute Forcing, Authentication Abuse.This issue affects Coslat Hotspot: before 6.26.0.R.20250227.