Filter and search through 198,656 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-69425 | The Ruckus vRIoT IoT Controller firmware versions prior to 3.0.0.0 (GA) expose a command execution service on TCP port 2004 running with root privileg... | 0.0 | 0 | Neutral | No |
| No |
| CVE-2025-69421 | Issue summary: Processing a malformed PKCS#12 file can trigger a NULL pointer dereference in the PKCS12_item_decrypt_d2i_ex() function. Impact summar... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69291 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues duri... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69290 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues duri... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69285 | SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior to 1.5.0 contain a missing authentication vulnerabi... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69261 | WasmEdge is a WebAssembly runtime. Prior to version 0.16.0-alpha.3, a multiplication in `WasmEdge/include/runtime/instance/memory.h` can wrap, causing... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69211 | A NestJS application is vulnerable if it meets all of the following criteria: 1. Platform: Uses `@nestjs/platform-fastify`. 2. Security Mechanism: Re... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69210 | A stored cross-site scripting (XSS) vulnerability exists in the product file upload functionality. Authenticated users can upload crafted XML files c... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69209 | ArduinoCore-avr contains the source code and configuration files of the Arduino AVR Boards platform. A vulnerability in versions prior to 1.8.7 allows... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69201 | Tugtainer is a self-hosted app for automating updates of docker containers. In versions prior to 1.15.1, arbitary arguments can be injected in tugtain... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-69199 | ### Summary Websockets within wings lack proper rate limiting and throttling. As a result a malicious user can open a large number of connections and ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-69198 | ### Summary Pterodactyl implements rate limits that are applied to the total number of resources (e.g. databases, port allocations, or backups) that c... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-68952 | Eigent is a multi-agent Workforce. In version 0.0.60, a 1-click Remote Code Execution (RCE) vulnerability has been identified in Eigent. This vulnerab... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-6894 | An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A flaw in the API author... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-68937 | Forgejo before 13.0.2 allows attackers to write to unintended files, and possibly obtain server shell access, because of mishandling of out-of-reposit... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-6893 | An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A flaw in broken access ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-6892 | An Incorrect Authorization vulnerability has been identified in Moxa’s network security appliances and routers. A flaw in the API authentication mecha... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-68823 | In the Linux kernel, the following vulnerability has been resolved: ublk: fix deadlock when reading partition table When one process(such as udev) o... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-68822 | In the Linux kernel, the following vulnerability has been resolved: Input: alps - fix use-after-free bugs caused by dev3_register_work The dev3_regi... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-68821 | In the Linux kernel, the following vulnerability has been resolved: fuse: fix readahead reclaim deadlock Commit e26ee4efbc79 ("fuse: allocate ff->re... | 0.0 | 0 | Neutral | No | Yes |