Filter and search through 197,931 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-64122 | Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller (MSC) allows Signature Spoofing by Key Theft.This issue a... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-64121 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Nuvation Energy Multi-Stack Controller (MSC) allows Authentication Bypass.Th... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64120 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Nuvation Energy Multi-Stack Controller (MS... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64119 | A vulnerability in Nuvation Battery Management System allows Authentication Bypass.This issue affects Battery Management System: through 2.3.9. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64118 | ### Summary Using `.t` (aka `.list`) with `{ sync: true }` to read tar entry contents returns uninitialized memory contents if tar file was changed o... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64113 | ### Withdrawn Advisory This advisory has been withdrawn because it incorrectly listed [MediaBrowser.Server.Core](https://www.nuget.org/packages/MediaB... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64099 | ### Summary If the "claims_parameter_supported" parameter is activated, it is possible through the "oidc-claims-extension.groovy" script, to inject th... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64098 | Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group ). Prior to versions 3.4.1, 3.3.1... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64097 | NervesHub is a web service that allows users to manage over-the-air (OTA) firmware updates of devices in the field. A vulnerability present starting i... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64096 | CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6398 | A null pointer dereference vulnerability exists in the IOMap64.sys driver of ASUS AI Suite 3. The vulnerability can be triggered by a specially crafte... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-63946 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-63945 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-63943 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-63915 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-6386 | The parisneo/lollms repository is affected by a timing attack vulnerability in the `authenticate_user` function within the `lollms_authentication.py` ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-63821 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-63820 | No description available | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-63700 | An issue was discovered in Clerk-js 5.88.0 allowing attackers to bypass the OAuth authentication flow by manipulating the request at the OTP verificat... | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-63572 | No description available | 0.0 | 0 | Neutral | Yes | No |