7.5

CVSS3.1

CVE-2025-0612 -

Out of bounds memory access in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

๐Ÿ“… Published: Jan. 22, 2025, 7:22 p.m. ๐Ÿ”„ Last Modified: April 18, 2025, 2:26 a.m.

8.2

CVSS3.1

CVE-2025-0611 -

Object corruption in V8 in Google Chrome prior to 132.0.6834.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

๐Ÿ“… Published: Jan. 22, 2025, 7:22 p.m. ๐Ÿ”„ Last Modified: April 18, 2025, 2:26 a.m.

6

CVSS4.0

CVE-2024-9310 - Traffic Alert and Collision Avoidance System (TCAS) II has a Reliance on Untrusted Inputs in a Secuโ€ฆ

By utilizing software-defined radios and a custom low-latency processing pipeline, RF signals with spoofed location data can be transmitted to aircraft targets. This can lead to the appearance of fake aircraft on displays and potentially trigger undesired Resolution Advisories (RAs).

๐Ÿ“… Published: Jan. 22, 2025, 6:41 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.1

CVSS4.0

CVE-2024-11166 - Traffic Alert and Collision Avoidance System (TCAS) II has an External Control of System or Configuโ€ฆ

For TCAS II systems using transponders compliant with MOPS earlier than RTCA DO-181F, an attacker can impersonate a ground station and issue a Comm-A Identity Request. This action can set the Sensitivity Level Control (SLC) to the lowest setting and disable the Resolution Advisory (RA), leading to โ€ฆ

๐Ÿ“… Published: Jan. 22, 2025, 6:40 p.m. ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2025-0654 -

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

๐Ÿ“… Published: Jan. 22, 2025, 6:02 p.m. ๐Ÿ”„ Last Modified: July 5, 2025, 11:15 p.m.

6.1

CVSS4.0

CVE-2025-0651 - File symlink abuse might lead to deleting files belonging to SYSTEM user

Improper Privilege Management vulnerability in Cloudflare WARP on Windows allows File Manipulation. User with a low system privilegesย  can create a set of symlinks inside theย C:\ProgramData\Cloudflare\warp-diag-partials folder. After triggering the 'Reset all settings" option the WARP service willโ€ฆ

๐Ÿ“… Published: Jan. 22, 2025, 5:34 p.m. ๐Ÿ”„ Last Modified: July 31, 2025, 7:47 p.m.

6.5

CVSS3.1

CVE-2025-23047 - Cilium vulnerable to information leakage via insecure default Hubble UI CORS header

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. An insecure default `Access-Control-Allow-Origin` header value could lead to sensitive data exposure for users of Cilium versions 1.14.0 through 1.14.7, 1.15.0 through 1.15.11, and 1.16.0 through 1.16.4 who dโ€ฆ

๐Ÿ“… Published: Jan. 22, 2025, 5:20 p.m. ๐Ÿ”„ Last Modified: Sept. 3, 2025, 5:17 p.m.

4.3

CVSS3.1

CVE-2025-24403 -

A missing permission check in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of Azure credentials stored in Jenkins.

๐Ÿ“… Published: Jan. 22, 2025, 5:02 p.m. ๐Ÿ”„ Last Modified: Oct. 3, 2025, 12:13 a.m.

4.3

CVSS3.1

CVE-2025-24402 -

A cross-site request forgery (CSRF) vulnerability in Jenkins Azure Service Fabric Plugin 1.6 and earlier allows attackers to connect to a Service Fabric URL using attacker-specified credentials IDs obtained through another method.

๐Ÿ“… Published: Jan. 22, 2025, 5:02 p.m. ๐Ÿ”„ Last Modified: Oct. 3, 2025, 12:13 a.m.

6.8

CVSS3.1

CVE-2025-24401 -

Jenkins Folder-based Authorization Strategy Plugin 217.vd5b_18537403e and earlier does not verify that permissions configured to be granted are enabled, potentially allowing users formerly granted (typically optional permissions, like Overall/Manage) to access functionality they're no longer entitlโ€ฆ

๐Ÿ“… Published: Jan. 22, 2025, 5:02 p.m. ๐Ÿ”„ Last Modified: Oct. 3, 2025, 12:15 a.m.
Total resulsts: 349182
Page 6995 of 34,919
ยซ previous page ยป next page
Filters