CVE Database

4399+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-24335
2.0 LOW

Nokia Single RAN baseband software versions earlier than 24R1-SR 2.1 MP contain a SOAP message input validation flaw, which in theory could potentially be used …

Jul 2, 2025
CVE-2025-24334
3.3 LOW

The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific …

Jul 2, 2025
CVE-2025-52463
3.1 LOW

Cross-site request forgery vulnerability exists in Active! mail 6 BuildInfo: 6.60.06008562 and earlier. If this vulnerability is exploited, unintended E-mail may be sent when a …

Jul 2, 2025
CVE-2025-4654
3.7 LOW

The Soumettre.fr plugin for WordPress is vulnerable to unauthorized access and modification of data due to a improper authorization checks on the make_signature function in …

Jul 2, 2025
CVE-2025-6952
3.3 LOW

A vulnerability, which was classified as problematic, has been found in Open5GS up to 2.7.5. This issue affects the function amf_state_operational of the file src/amf/amf-sm.c …

Jul 1, 2025
CVE-2025-6932
3.7 LOW

A vulnerability, which was classified as problematic, was found in D-Link DCS-7517 up to 2.02.0. This affects the function g_F_n_GenPassForQlync of the file /bin/httpd of …

Jun 30, 2025
CVE-2025-6931
3.7 LOW

A vulnerability classified as problematic was found in D-Link DCS-6517 and DCS-7517 up to 2.02.0. Affected by this vulnerability is the function generate_pass_from_mac of the …

Jun 30, 2025
CVE-2025-32462
2.8 LOW

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to …

Jun 30, 2025
CVE-2025-52996
3.1 LOW

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In …

Jun 30, 2025
CVE-2015-20112
3.4 LOW

RLPx 5 has two CTR streams based on the same key, IV, and nonce. This can facilitate decryption on a private network.

Jun 29, 2025
CVE-2025-6858
3.3 LOW

A vulnerability was found in HDF5 1.14.6 and classified as problematic. Affected by this issue is the function H5C__flush_single_entry of the file src/H5Centry.c. The manipulation …

Jun 29, 2025
CVE-2025-6857
3.3 LOW

A vulnerability has been found in HDF5 1.14.6 and classified as problematic. Affected by this vulnerability is the function H5G__node_cmp3 of the file src/H5Gnode.c. The …

Jun 29, 2025
CVE-2025-6856
3.3 LOW

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FL__reg_gc_list of the file src/H5FL.c. The manipulation leads to …

Jun 29, 2025
CVE-2025-6849
3.5 LOW

A vulnerability, which was classified as problematic, was found in code-projects Simple Forum 1.0. Affected is an unknown function of the file /forum_edit1.php. The manipulation …

Jun 29, 2025
CVE-2025-6818
3.3 LOW

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5O__chunk_protect of the file /src/H5Ochunk.c. The manipulation leads to …

Jun 28, 2025
CVE-2023-28903
3.3 LOW

An integer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker with local access to the vehicle to cause a …

Jun 28, 2025
CVE-2023-28902
3.3 LOW

An integer underflow in the image processing binary of the MIB3 infotainment unit allows an attacker with local access to the vehicle to cause denial-of-service …

Jun 28, 2025
CVE-2025-6817
3.3 LOW

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5C__load_entry of the file /src/H5Centry.c. The manipulation …

Jun 28, 2025
CVE-2025-6816
3.3 LOW

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5O__fsinfo_encode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based …

Jun 28, 2025
CVE-2025-6778
2.4 LOW

A vulnerability, which was classified as problematic, was found in code-projects Food Distributor Site 1.0. Affected is an unknown function of the file /admin/save_settings.php. The …

Jun 27, 2025
CVE-2025-52992
3.2 LOW

The Nix, Lix, and Guix package managers fail to properly set permissions when a derivation build fails. This may allow arbitrary processes to modify the …

Jun 27, 2025
CVE-2025-52991
3.2 LOW

The Nix, Lix, and Guix package managers default to using temporary build directories in a world-readable and world-writable location. This allows standard users to deceive …

Jun 27, 2025
CVE-2025-46416
2.9 LOW

The Nix, Lix, and Guix package managers allow a bypass of build isolation in which a user can elevate their privileges to the build user …

Jun 27, 2025
CVE-2025-46415
3.2 LOW

A race condition in the Nix, Lix, and Guix package managers allows the removal of content from arbitrary folders. This affects Nix before 2.24.15, 2.26.4, …

Jun 27, 2025
CVE-2025-53018
3.0 LOW

Lychee is a free, open-source photo-management tool. Prior to version 6.6.13, a critical Server-Side Request Forgery (SSRF) vulnerability exists in the `/api/v2/Photo::fromUrl` endpoint. This flaw …

Jun 27, 2025
CVE-2025-6750
3.3 LOW

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. Affected by this issue is the function H5O__mtime_new_encode of the file src/H5Omtime.c. …

Jun 27, 2025
CVE-2025-47824
2.0 LOW

Flock Safety LPR (License Plate Reader) devices with firmware through 2.2 have cleartext storage of code.

Jun 27, 2025
CVE-2025-47823
2.2 LOW

Flock Safety LPR (License Plate Reader) devices with firmware through 2.2 have a hardcoded password for a system.

Jun 27, 2025
CVE-2025-47821
2.2 LOW

Flock Safety Gunshot Detection devices before 1.3 have a hardcoded password for a system.

Jun 27, 2025
CVE-2025-6748
2.1 LOW

A vulnerability classified as problematic has been found in Bharti Airtel Thanks App 4.105.4 on Android. Affected is an unknown function of the file /Android/data/com.myairtelapp/files/. …

Jun 27, 2025
CVE-2025-47820
2.0 LOW

Flock Safety Gunshot Detection devices before 1.3 have cleartext storage of code.

Jun 27, 2025
CVE-2025-47818
2.2 LOW

Flock Safety Gunshot Detection devices before 1.3 have a hard-coded password for a connection.

Jun 27, 2025
CVE-2015-0849
3.9 LOW

pycode-browser before version 1.0 is prone to a predictable temporary file vulnerability.

Jun 26, 2025
CVE-2025-6701
3.5 LOW

A vulnerability, which was classified as problematic, has been found in Xuxueli xxl-sso 1.1.0. This issue affects some unknown processing of the file /xxl-sso-server/doLogin. The …

Jun 26, 2025
CVE-2025-6699
3.5 LOW

A vulnerability classified as problematic has been found in LabRedesCefetRJ WeGIA 3.4.0. This affects an unknown part of the file /html/funcionario/cadastro_funcionario.php of the component Cadastro …

Jun 26, 2025
CVE-2025-6698
3.5 LOW

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file …

Jun 26, 2025
CVE-2025-6697
3.5 LOW

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file …

Jun 26, 2025
CVE-2025-6696
3.5 LOW

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0. It has been classified as problematic. Affected is an unknown function of the file /html/atendido/Cadastro_Atendido.php of the …

Jun 26, 2025
CVE-2025-6695
3.5 LOW

A vulnerability was found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This issue affects some unknown processing of the file /html/matPat/adicionar_categoria.php of the component …

Jun 26, 2025
CVE-2025-6694
3.5 LOW

A vulnerability has been found in LabRedesCefetRJ WeGIA 3.4.0 and classified as problematic. This vulnerability affects unknown code of the file /html/matPat/adicionar_unidade.php of the component …

Jun 26, 2025
CVE-2025-5846
2.7 LOW

An issue has been discovered in GitLab EE affecting all versions from 16.10 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have …

Jun 26, 2025
CVE-2025-2938
3.1 LOW

An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.11.5, 18.0 before 18.0.3, and 18.1 before 18.1.1 that could have …

Jun 26, 2025
CVE-2025-6669
3.7 LOW

A vulnerability was found in gooaclok819 sublinkX up to 1.8. It has been declared as problematic. This vulnerability affects unknown code of the file middlewares/jwt.go. …

Jun 25, 2025
CVE-2025-6662
3.3 LOW

PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. …

Jun 25, 2025
CVE-2025-6658
3.3 LOW

PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. …

Jun 25, 2025
CVE-2025-6657
3.3 LOW

PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. …

Jun 25, 2025
CVE-2025-6656
3.3 LOW

PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. …

Jun 25, 2025
CVE-2025-6655
3.3 LOW

PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. …

Jun 25, 2025
CVE-2025-6653
3.3 LOW

PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. …

Jun 25, 2025
CVE-2025-6652
3.3 LOW

PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. …

Jun 25, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.