CVE Database

37788+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-0903
8.8 HIGH

PDF-XChange Editor RTF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of …

Feb 11, 2025
CVE-2025-0902
8.8 HIGH

PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. …

Feb 11, 2025
CVE-2025-0901
8.8 HIGH

PDF-XChange Editor Doc Object Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. …

Feb 11, 2025
CVE-2025-0899
8.8 HIGH

PDF-XChange Editor AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction …

Feb 11, 2025
CVE-2024-21966
7.3 HIGH

A DLL hijacking vulnerability in the AMD Ryzen™ Master Utility could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.

Feb 11, 2025
CVE-2024-12551
7.8 HIGH

Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations …

Feb 11, 2025
CVE-2024-12550
7.8 HIGH

Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of …

Feb 11, 2025
CVE-2024-12549
7.8 HIGH

Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations …

Feb 11, 2025
CVE-2024-12547
8.8 HIGH

Tungsten Automation Power PDF JPF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations …

Feb 11, 2025
CVE-2023-31361
7.3 HIGH

A DLL hijacking vulnerability in AMD Integrated Management Technology (AIM-T) Manageability Service could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code …

Feb 11, 2025
CVE-2023-31360
7.3 HIGH

Incorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability Service installation directory could allow an attacker to achieve privilege escalation, potentially resulting in …

Feb 11, 2025
CVE-2025-25522
7.3 HIGH

Buffer overflow vulnerability in Linksys WAP610N v1.0.05.002 due to the lack of length verification, which is related to the time setting operation. The attacker can …

Feb 11, 2025
CVE-2025-26495
7.5 HIGH

Cleartext Storage of Sensitive Information vulnerability in Salesforce Tableau Server can record the Personal Access Token (PAT) into logging repositories.This issue affects Tableau Server: before …

Feb 11, 2025
CVE-2025-26494
7.7 HIGH

Server-Side Request Forgery (SSRF) vulnerability in Salesforce Tableau Server allows Authentication Bypass.This issue affects Tableau Server: from 2023.3 through 2023.3.5.

Feb 11, 2025
CVE-2025-24438
8.7 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a …

Feb 11, 2025
CVE-2025-24418
8.1 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Authorization vulnerability that could result in Privilege escalation. A low-privileged …

Feb 11, 2025
CVE-2025-24417
8.7 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a …

Feb 11, 2025
CVE-2025-24416
8.7 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a …

Feb 11, 2025
CVE-2025-24415
8.7 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a …

Feb 11, 2025
CVE-2025-24414
8.7 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a …

Feb 11, 2025
CVE-2025-24413
8.7 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a …

Feb 11, 2025
CVE-2025-24412
8.7 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a …

Feb 11, 2025
CVE-2025-24411
8.1 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature …

Feb 11, 2025
CVE-2025-24410
8.7 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a …

Feb 11, 2025
CVE-2025-24409
8.2 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. …

Feb 11, 2025
CVE-2025-24407
7.1 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Incorrect Authorization vulnerability that could result in a security feature bypass. …

Feb 11, 2025
CVE-2025-24406
7.5 HIGH

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') …

Feb 11, 2025
CVE-2025-24042
7.3 HIGH

Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability

Feb 11, 2025
CVE-2025-24039
7.3 HIGH

Visual Studio Code Elevation of Privilege Vulnerability

Feb 11, 2025
CVE-2025-24036
7.0 HIGH

Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability

Feb 11, 2025
CVE-2025-21420
7.8 HIGH

Windows Disk Cleanup Tool Elevation of Privilege Vulnerability

Feb 11, 2025
CVE-2025-21419
7.1 HIGH

Windows Setup Files Cleanup Elevation of Privilege Vulnerability

Feb 11, 2025
CVE-2025-21418
7.8 HIGH KEV

Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability

Feb 11, 2025
CVE-2025-21414
7.0 HIGH

Windows Core Messaging Elevation of Privileges Vulnerability

Feb 11, 2025
CVE-2025-21410
8.8 HIGH

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21407
8.8 HIGH

Windows Telephony Service Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21406
8.8 HIGH

Windows Telephony Service Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21400
8.0 HIGH

Microsoft SharePoint Server Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21397
7.8 HIGH

Microsoft Office Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21394
7.8 HIGH

Microsoft Excel Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21392
7.8 HIGH

Microsoft Office Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21391
7.1 HIGH KEV

Windows Storage Elevation of Privilege Vulnerability

Feb 11, 2025
CVE-2025-21390
7.8 HIGH

Microsoft Excel Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21387
7.8 HIGH

Microsoft Excel Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21386
7.8 HIGH

Microsoft Excel Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21383
7.8 HIGH

Microsoft Excel Information Disclosure Vulnerability

Feb 11, 2025
CVE-2025-21381
7.8 HIGH

Microsoft Excel Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21379
7.1 HIGH

DHCP Client Service Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21376
8.1 HIGH

Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability

Feb 11, 2025
CVE-2025-21375
7.8 HIGH

Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

Feb 11, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.