Filter and search through 197,947 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-6438 | CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could cause manipulation of SOAP API calls and XML external e... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-64346 | ### Impact A malicious user could feed a specially crafted archive to this library causing RCE, modification of files or other bad things in the cont... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64342 | ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. When the ESP32 is in advertising mode, if it receives a connection request co... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64304 | "FOD" App uses hard-coded cryptographic keys, which may allow a local unauthenticated attacker to retrieve the cryptographic keys. | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64185 | Open OnDemand is an open-source HPC portal. Prior to versions 4.0.8 and 3.1.16, Open OnDemand packages create world writable locations in the GEM_PATH... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64178 | ### Impact The `/api/images/cache` which is used to download media posters from the server accepted an `url` parameter, which was directly passed to t... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64171 | ## Summary Cross-namespace Secret access vulnerability in DiscoveryServiceCertificate allows users to bypass RBAC and access Secrets in unauthorized ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-64162 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64161 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64160 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64159 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64158 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64151 | Multiple Roboticsware products provided by Roboticsware PTE. LTD. register Windows services with unquoted file paths. A user with the write permission... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64125 | A vulnerability in Nuvation Energy nCloud VPN Service allowed Network Boundary Bridging.This issue affected the nCloud VPN Service and was fixed on 20... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64124 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Nuvation Energy Multi-Stack Controller (MS... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64123 | A vulnerability in Nuvation Energy nCloud VPN Service allowed Network Boundary Bridging.This issue affected the nCloud VPN Service and was fixed on 20... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64122 | Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller (MSC) allows Signature Spoofing by Key Theft.This issue a... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64121 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Nuvation Energy Multi-Stack Controller (MSC) allows Authentication Bypass.Th... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64120 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Nuvation Energy Multi-Stack Controller (MS... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-64119 | A vulnerability in Nuvation Battery Management System allows Authentication Bypass.This issue affects Battery Management System: through 2.3.9. | 0.0 | 0 | Neutral | No | No |