0.0
CVE-2025-3358 -
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
2.3
CVE-2025-3329 - Consumer Comanda Mobile Restaurant Order cleartext transmission
A vulnerability classified as problematic has been found in Consumer Comanda Mobile up to 14.9.3.2/15.0.0.8. This affects an unknown part of the component Restaurant Order Handler. The manipulation of the argument Login/Password leads to cleartext transmission of sensitive information. The attack cβ¦
8.7
CVE-2025-3328 - Tenda AC1206 fast_setting_wifi_set form_fast_setting_wifi_set buffer overflow
A vulnerability was found in Tenda AC1206 15.03.06.23. It has been classified as critical. Affected is the function form_fast_setting_wifi_set of the file /goform/fast_setting_wifi_set. The manipulation of the argument ssid/timeZone leads to buffer overflow. It is possible to launch the attack remoβ¦
5.1
CVE-2025-3327 - iteaj iboot η©θη½η½ε ³ File Upload batch cross site scripting
A vulnerability was found in iteaj iboot η©θη½η½ε ³ 1.1.3 and classified as problematic. This issue affects some unknown processing of the file /common/upload/batch of the component File Upload. The manipulation of the argument File leads to cross site scripting. The attack may be initiated remotely. Thβ¦
5.5
CVE-2025-29478 -
An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the cfl_list_size in cfl_list.h:165.
9.8
CVE-2025-28410 -
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the cancelAuthUserAll method does not properly validate whether the requesting user has administrative privileges
6.2
CVE-2025-2251 - Org.jboss.eap:wildfly-ejb3: improper deserialization in jboss marshalling allows remote code executβ¦
A security flaw exists in WildFly and JBoss Enterprise Application Platform (EAP) within the Enterprise JavaBeans (EJB) remote invocation mechanism. This vulnerability stems from untrusted data deserialization handled by JBoss Marshalling. This flaw allows an attacker to send a specially crafted seβ¦
6.2
CVE-2025-29481 - libbpf: Heap Buffer Overflow in libbpf
Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpf_object__init_prog` function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running underβ¦
6.2
CVE-2025-3359 - Gnuplot: segmentation fault via io_str_init_static_internal function
A flaw was found in GNUPlot. A segmentation fault via IO_str_init_static_internal may jeopardize the environment.
9.8
CVE-2025-28406 -
An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the jobLogId parameter