7.5

CVSS3.1

CVE-2024-47212 -

An issue was discovered in Iglu Server 0.13.0 and below. It involves sending very large payloads to a particular API endpoint of Iglu Server and can render it completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: April 8, 2025, 8:06 p.m.

9.8

CVSS3.1

CVE-2025-29064 -

An issue in TOTOLINK x18 v.9.1.0cu.2024_B20220329 allows a remote attacker to execute arbitrary code via the sub_410E54 function of the cstecgi.cgi.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: April 29, 2025, 4:22 p.m.

7.8

CVSS3.1

CVE-2025-29504 -

Insecure Permission vulnerability in student-manage 1 allows a local attacker to escalate privileges via the Unsafe permission verification.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Oct. 15, 2025, 4:49 p.m.

5.5

CVSS3.1

CVE-2025-22006 - net: ethernet: ti: am65-cpsw: Fix NAPI registration sequence

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: Fix NAPI registration sequence Registering the interrupts for TX or RX DMA Channels prior to registering their respective NAPI callbacks can result in a NULL pointer dereference. This is seen in prac…

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Oct. 1, 2025, 5:15 p.m.

9.8

CVSS3.1

CVE-2025-29369 -

Code-Projects Matrimonial Site V1.0 is vulnerable to SQL Injection in /view_profile.php?id=1.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 3:20 p.m.

4.7

CVSS3.1

CVE-2025-21998 - firmware: qcom: uefisecapp: fix efivars registration race

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: uefisecapp: fix efivars registration race Since the conversion to using the TZ allocator, the efivars service is registered before the memory pool has been allocated, something which can lead to a NULL-pointer der…

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Oct. 1, 2025, 6:15 p.m.

7.5

CVSS3.1

CVE-2025-22931 -

An insecure direct object reference (IDOR) in the component /assets/stafffiles of OS4ED openSIS v7.0 to v9.1 allows unauthenticated attackers to access files uploaded by staff members.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: July 17, 2025, 6:17 p.m.

7.8

CVSS3.1

CVE-2025-22004 - net: atm: fix use after free in lec_send()

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lec_send() The ->send() operation frees skb so save the length before calling ->send() to avoid a use after free.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Nov. 3, 2025, 8:17 p.m.

9

CVSS3.1

CVE-2025-30406 -

Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the CentreStack portal's hardcoded machineKey use, as exploited in the wild in March 2025. This enables threat actors (who know the machineKey) to serialize a payload for server-side…

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Nov. 5, 2025, 7:27 p.m.

5.9

CVSS3.1

CVE-2025-32050 - Libsoup: integer overflow in append_param_quoted

A flaw was found in libsoup. The libsoup append_param_quoted() function may contain an overflow bug resulting in a buffer under-read.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Nov. 6, 2025, 11:08 p.m.
Total resulsts: 343935
Page 5520 of 34,394
Β« previous page Β» next page
Filters