Filter and search through 198,169 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-6641 | PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose se... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2025-66409 | ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In 5.5.1, 5.4.3, 5.3.4, 5.2.6, 5.1.6, and earlier, when AVRCP is enabled on E... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66405 | ### Summary The gateway determines the destination baseURL by prioritizing the value in the x-portkey-custom-host request header. The proxy route then... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66400 | ### Impact Multiple (unprefixed) classnames could be added in markdown source by using character references. This could make rendered user supplied m... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-6640 | PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrar... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66385 | UsersController::edit in Cerebrate before 1.30 allows an authenticated non-privileged user to escalate their privileges (e.g., obtain a higher role su... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66374 | CyberArk Endpoint Privilege Manager Agent through 25.10.0 allows a local user to achieve privilege escalation through policy elevation of an Administr... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66357 | CHOCO TEI WATCHER mini (IB-MCT001) contains an issue with improper check for unusual or exceptional conditions. When the Video Download feature is in ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-66288 | This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Toolbox. An attacker must first obtain the abi... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66284 | Stored cross-site scripting vulnerabilities exist in GroupSession Free edition prior to ver5.7.1, GroupSession byCloud prior to ver5.7.1, and GroupSes... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66271 | Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file path. A user with the write permission on the root dir... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66269 | The RupsMon and USBMate services in UPSilon 2000 run with SYSTEM privileges and contain unquoted service paths. This allows a local attacker to perfor... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66266 | The RupsMon.exe service executable in UPSilon 2000 has insecure permissions, allowing the 'Everyone' group Full Control. A local attacker can replace ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66265 | CMService.exe creates the C:\\usr directory and subdirectories with insecure permissions, granting write access to all authenticated users. This allow... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66264 | The CMService.exe service runs with SYSTEM privileges and contains an unquoted service path. This allows a local attacker with write privileges to the... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66235 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66234 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66233 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66232 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-66231 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |