CVE Database

4411+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2025-3326
3.5 LOW

A vulnerability has been found in iteaj iboot 物联网网关 1.1.3 and classified as problematic. This vulnerability affects unknown code of the file /common/upload of the …

Apr 7, 2025
CVE-2025-3297
3.5 LOW

A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /classes/Master.php?f=save_product. The …

Apr 5, 2025
CVE-2025-3253
3.5 LOW

A vulnerability was found in xujiangfei admintwo 1.0 and classified as problematic. This issue affects some unknown processing of the file /ztree/insertTree. The manipulation of …

Apr 4, 2025
CVE-2025-3252
3.5 LOW

A vulnerability has been found in xujiangfei admintwo 1.0 and classified as problematic. This vulnerability affects unknown code of the file /resource/add. The manipulation of …

Apr 4, 2025
CVE-2025-3251
3.5 LOW

A vulnerability, which was classified as problematic, was found in xujiangfei admintwo 1.0. This affects an unknown part of the file /user/updateSet. The manipulation of …

Apr 4, 2025
CVE-2025-3219
3.5 LOW

A vulnerability was found in CodeCanyon Perfex CRM 3.2.1. It has been classified as problematic. Affected is an unknown function of the file /perfex/clients/project/2 of …

Apr 4, 2025
CVE-2024-42208
3.5 LOW

HCL Connections is vulnerable to an information disclosure vulnerability which could allow a user to obtain sensitive information they are not entitled to, caused by …

Apr 4, 2025
CVE-2025-3198
3.3 LOW

A vulnerability has been found in GNU Binutils 2.43/2.44 and classified as problematic. Affected by this vulnerability is the function display_info of the file binutils/bucomm.c …

Apr 4, 2025
CVE-2025-32054
3.3 LOW

In JetBrains IntelliJ IDEA before 2024.3, 2024.2.4 source code could be logged in the idea.log file

Apr 3, 2025
CVE-2025-3160
3.3 LOW

A vulnerability has been found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This vulnerability affects the function Assimp::SceneCombiner::AddNodeHashes of the file …

Apr 3, 2025
CVE-2025-3157
2.4 LOW

A vulnerability was found in Intelbras WRN 150 1.0.15_pt_ITB01. It has been rated as problematic. This issue affects some unknown processing of the component Wireless …

Apr 3, 2025
CVE-2025-3152
3.5 LOW

A vulnerability classified as problematic has been found in caipeichao ThinkOX 1.0. This affects an unknown part of the file /ThinkOX-master/index.php?s=/Weibo/Index/search.html of the component Search. …

Apr 3, 2025
CVE-2025-3149
2.4 LOW

A vulnerability was found in itning Student Homework Management System up to 1.2.7. It has been classified as problematic. Affected is an unknown function of …

Apr 3, 2025
CVE-2025-3148
3.3 LOW

A vulnerability was found in codeprojects Product Management System 1.0 and classified as problematic. This issue affects some unknown processing of the component Login. The …

Apr 3, 2025
CVE-2025-3145
3.3 LOW

A vulnerability, which was classified as problematic, has been found in MindSpore 2.5.0. Affected by this issue is the function mindspore.numpy.fft.rfft2. The manipulation leads to …

Apr 3, 2025
CVE-2025-3144
3.3 LOW

A vulnerability classified as problematic was found in MindSpore 2.5.0. Affected by this vulnerability is the function mindspore.numpy.fft.hfftn. The manipulation leads to memory corruption. It …

Apr 3, 2025
CVE-2025-3136
3.3 LOW

A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0. This issue affects the function torch.cuda.memory.caching_allocator_delete of the file c10/cuda/CUDACachingAllocator.cpp. The manipulation …

Apr 3, 2025
CVE-2025-29991
2.2 LOW

Yubico YubiKey 5.4.1 through 5.7.3 before 5.7.4 has an incorrect FIDO CTAP PIN/UV Auth Protocol Two implementation. It uses the signature length from CTAP PIN/UV …

Apr 3, 2025
CVE-2025-3122
3.1 LOW

A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this vulnerability is the function BinaryReaderInterp::BeginFunctionBody of the file src/interp/binary-reader-interp.cc. The manipulation …

Apr 2, 2025
CVE-2025-3121
3.3 LOW

A vulnerability classified as problematic has been found in PyTorch 2.6.0. Affected is the function torch.jit.jit_module_from_flatbuffer. The manipulation leads to memory corruption. Local access is …

Apr 2, 2025
CVE-2024-42325
3.5 LOW

Zabbix API user.get returns all users that share common group with the calling user. This includes media and other information, such as login attempts, etc.

Apr 2, 2025
CVE-2024-36469
3.1 LOW

Execution time for an unsuccessful login differs when using a non-existing username compared to using an existing one.

Apr 2, 2025
CVE-2025-3082
3.1 LOW

A user authorized to access a view may be able to alter the intended collation, allowing them to access to a different or unintended view …

Apr 1, 2025
CVE-2025-30469
2.4 LOW

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4. A person with physical access to an …

Mar 31, 2025
CVE-2025-24193
2.4 LOW

This issue was addressed with improved authentication. This issue is fixed in iOS 18.4 and iPadOS 18.4. An attacker with a USB-C connection to an …

Mar 31, 2025
CVE-2024-40864
2.7 LOW

The issue was addressed with improved handling of protocols. This issue is fixed in iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2, macOS Sonoma 14.7.5, …

Mar 31, 2025
CVE-2025-3036
2.4 LOW

A vulnerability, which was classified as problematic, was found in yzk2356911358 StudentServlet-JSP cc0cdce25fbe43b6c58b60a77a2c85f52d2102f5/d4d7a0643f1dae908a4831206f2714b21820f991. This affects an unknown part of the component Student Management Handler. The …

Mar 31, 2025
CVE-2025-3010
3.3 LOW

A vulnerability, which was classified as problematic, has been found in Khronos Group glslang 15.1.0. Affected by this issue is the function glslang::TIntermediate::isConversionAllowed of the …

Mar 31, 2025
CVE-2025-3005
3.5 LOW

A vulnerability was found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this issue is some unknown functionality of the component …

Mar 31, 2025
CVE-2025-3004
3.5 LOW

A vulnerability has been found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this vulnerability is an unknown functionality of the …

Mar 31, 2025
CVE-2025-30369
2.7 LOW

Zulip is an open-source team collaboration tool. The API for deleting an organization custom profile field is supposed to be restricted to organization administrators, but …

Mar 31, 2025
CVE-2025-30368
2.7 LOW

Zulip is an open-source team collaboration tool. The API for deleting an organization export is supposed to be restricted to organization administrators, but its handler …

Mar 31, 2025
CVE-2025-27149
2.7 LOW

Zulip server provides an open-source team chat that helps teams stay productive and focused. Prior to 10.0, the data export to organization administrators feature in …

Mar 31, 2025
CVE-2025-2981
3.5 LOW

A vulnerability, which was classified as problematic, has been found in Legrand SMS PowerView 1.x. This issue affects some unknown processing. The manipulation of the …

Mar 31, 2025
CVE-2025-2980
3.5 LOW

A vulnerability classified as problematic was found in Legrand SMS PowerView 1.x. This vulnerability affects unknown code. The manipulation of the argument redirect leads to …

Mar 31, 2025
CVE-2025-2979
2.4 LOW

A vulnerability classified as problematic has been found in WCMS 11. This affects an unknown part of the file /index.php?anonymous/setregister of the component Registration. The …

Mar 31, 2025
CVE-2025-2977
3.5 LOW

A vulnerability was found in GFI KerioConnect 10.0.6. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component …

Mar 31, 2025
CVE-2025-2976
3.5 LOW

A vulnerability was found in GFI KerioConnect 10.0.6. It has been classified as problematic. Affected is an unknown function of the component File Upload. The …

Mar 31, 2025
CVE-2025-2975
3.5 LOW

A vulnerability was found in GFI KerioConnect 10.0.6 and classified as problematic. This issue affects some unknown processing of the file Settings/Email/Signature/EditHtmlSource of the component …

Mar 31, 2025
CVE-2025-2974
3.5 LOW

A vulnerability has been found in CodeCanyon Perfex CRM up to 3.2.1 and classified as problematic. This vulnerability affects unknown code of the file /contract …

Mar 31, 2025
CVE-2025-2954
3.3 LOW

A vulnerability, which was classified as problematic, was found in mannaandpoem OpenManus up to 2025.3.13. This affects the function execute of the file app/tool/file_saver.py of …

Mar 30, 2025
CVE-2025-2953
3.3 LOW

A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0+cu124. Affected by this issue is the function torch.mkldnn_max_pool2d. The manipulation leads to …

Mar 30, 2025
CVE-2024-55895
2.7 LOW

IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. …

Mar 29, 2025
CVE-2025-1217
3.1 LOW

In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when http request module parses HTTP response …

Mar 29, 2025
CVE-2025-2926
3.3 LOW

A vulnerability was found in HDF5 up to 1.14.6 and classified as problematic. This issue affects the function H5O__cache_chk_serialize of the file src/H5Ocache.c. The manipulation …

Mar 28, 2025
CVE-2025-2925
3.3 LOW

A vulnerability has been found in HDF5 up to 1.14.6 and classified as problematic. This vulnerability affects the function H5MM_realloc of the file src/H5MM.c. The …

Mar 28, 2025
CVE-2025-2924
3.3 LOW

A vulnerability, which was classified as problematic, was found in HDF5 up to 1.14.6. This affects the function H5HL__fl_deserialize of the file src/H5HLcache.c. The manipulation …

Mar 28, 2025
CVE-2025-2923
3.3 LOW

A vulnerability, which was classified as problematic, has been found in HDF5 up to 1.14.6. Affected by this issue is the function H5F_addr_encode_len of the …

Mar 28, 2025
CVE-2025-2922
2.0 LOW

A vulnerability classified as problematic was found in Netis WF-2404 1.1.124EN. Affected by this vulnerability is an unknown functionality of the component BusyBox Shell. The …

Mar 28, 2025
CVE-2025-2920
2.0 LOW

A vulnerability was found in Netis WF-2404 1.1.124EN. It has been rated as problematic. This issue affects some unknown processing of the file /еtc/passwd. The …

Mar 28, 2025

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.