CVE Database

37700+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-1290
8.1 HIGH

A race condition Use-After-Free vulnerability exists in the virtio_transport_space_update function within the Kernel 5.4 on ChromeOS. Concurrent allocation and freeing of the virtio_vsock_sock structure during …

Apr 17, 2025
CVE-2025-2073
8.8 HIGH

Out-of-Bounds Read in netfilter/ipset in Linux Kernel ChromeOS [6.1, 5.15, 5.10, 5.4, 4.19] allows a local attacker with low privileges to trigger an out-of-bounds read, …

Apr 16, 2025
CVE-2025-1568
8.8 HIGH

Access Control Vulnerability in Gerrit chromiumos project configuration in Google ChromeOS 16063.87.0 allows an attacker with a registered Gerrit account to inject malicious code into …

Apr 16, 2025
CVE-2025-1566
7.5 HIGH

DNS Leak in Native System VPN in Google ChromeOS Dev Channel on ChromeOS 16002.23.0 allows network observers to expose plaintext DNS queries via failure to …

Apr 16, 2025
CVE-2025-31478
8.2 HIGH

Zulip is an open-source team collaboration tool. Zulip supports a configuration where account creation is limited solely by being able to authenticate with a single-sign …

Apr 16, 2025
CVE-2025-25230
7.8 HIGH

Omnissa Horizon Client for Windows contains an LPE Vulnerability. A malicious actor with local access where Horizon Client for Windows is installed may be able …

Apr 16, 2025
CVE-2025-3729
7.3 HIGH

A vulnerability, which was classified as critical, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. This issue affects some unknown processing of …

Apr 16, 2025
CVE-2025-3727
7.3 HIGH

A vulnerability classified as critical has been found in PCMan FTP Server 2.0.7. This affects an unknown part of the component STATUS Command Handler. The …

Apr 16, 2025
CVE-2025-3620
8.8 HIGH

Use after free in USB in Google Chrome prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. …

Apr 16, 2025
CVE-2025-3619
8.8 HIGH

Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted …

Apr 16, 2025
CVE-2025-28072
7.5 HIGH

PHPGurukul Pre-School Enrollment System is vulnerable to Directory Traversal in manage-teachers.php.

Apr 16, 2025
CVE-2025-3726
7.3 HIGH

A vulnerability was found in PCMan FTP Server 2.0.7. It has been rated as critical. Affected by this issue is some unknown functionality of the …

Apr 16, 2025
CVE-2025-3725
7.3 HIGH

A vulnerability was found in PCMan FTP Server 2.0.7. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the …

Apr 16, 2025
CVE-2025-3724
7.3 HIGH

A vulnerability was found in PCMan FTP Server 2.0.7. It has been classified as critical. Affected is an unknown function of the component DIR Command …

Apr 16, 2025
CVE-2025-3723
7.3 HIGH

A vulnerability was found in PCMan FTP Server 2.0.7 and classified as critical. This issue affects some unknown processing of the component MDTM Command Handler. …

Apr 16, 2025
CVE-2025-32872
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32871
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32870
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32869
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32868
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32867
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32866
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32865
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32864
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32863
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32862
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32861
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32860
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32859
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32858
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32857
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32856
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32855
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32854
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32853
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32852
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32851
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32850
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32849
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32848
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32847
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32846
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32845
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32844
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32843
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32842
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32841
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32840
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32839
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025
CVE-2025-32838
8.8 HIGH

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used …

Apr 16, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.