Filter and search through 887 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-9491 | Microsoft Windows LNK File UI Misrepresentation Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary c... | 7.8 | 626 | Neutral | No |
| Yes |
| CVE-2025-8088 | RARLAB WinRAR contains a path traversal vulnerability affecting the Windows version of WinRAR. This vulnerability could allow an attacker to execute a... | 8.8 | 964 | Viral | Yes | Yes |
| CVE-2025-7775 | Citrix NetScaler ADC and NetScaler Gateway contain a memory overflow vulnerability that could allow for remote code execution and/or denial of service... | 9.8 | 906 | Low | Yes | Yes |
| CVE-2025-6558 | Google Chromium contains an improper input validation vulnerability in ANGLE and GPU. This vulnerability could allow a remote attacker to potentially ... | 8.8 | 927 | Neutral | Yes | Yes |
| CVE-2025-6554 | Google Chromium V8 contains a type confusion vulnerability that could allow a remote attacker to perform arbitrary read/write via a crafted HTML page.... | 8.1 | 773 | Rising | Yes | Yes |
| CVE-2025-6543 | Citrix NetScaler ADC and Gateway contain a buffer overflow vulnerability leading to unintended control flow and Denial of Service. NetScaler must be c... | 9.8 | 906 | Low | Yes | Yes |
| CVE-2025-61884 | Oracle E-Business Suite contains a server-side request forgery (SSRF) vulnerability in the Runtime component of Oracle Configurator. This vulnerabilit... | 7.5 | 811 | Neutral | Yes | Yes |
| CVE-2025-59689 | Libraesva Email Security Gateway (ESG) contains a command injection vulnerability which allows command injection via a compressed e-mail attachment. | 6.1 | 624 | Neutral | Yes | Yes |
| CVE-2025-59374 | ASUS Live Update contains an embedded malicious code vulnerability client were distributed with unauthorized modifications introduced through a supply... | 9.8 | 885 | Neutral | Yes | Yes |
| CVE-2025-59230 | Microsoft Windows contains an improper access control vulnerability in Windows Remote Access Connection Manager which could allow an authorized attack... | 7.8 | 771 | Neutral | Yes | Yes |
| CVE-2025-57819 | Sangoma FreePBX contains an authentication bypass vulnerability due to insufficiently sanitized user-supplied data allows unauthenticated access to Fr... | 9.8 | 999 | Viral | Yes | Yes |
| CVE-2025-55177 | Meta Platforms WhatsApp contains an incorrect authorization vulnerability due to an incomplete authorization of linked device synchronization messages... | 5.4 | 482 | Neutral | Yes | Yes |
| CVE-2025-54948 | Trend Micro Apex One Management Console (on-premise) contains an OS command injection vulnerability that could allow a pre-authenticated remote attack... | 9.8 | 999 | Neutral | Yes | Yes |
| CVE-2025-54313 | Prettier eslint-config-prettier contains an embedded malicious code vulnerability. Installing an affected package executes an install.js file that lau... | 7.5 | 682 | Neutral | Yes | Yes |
| CVE-2025-5419 | Google Chromium V8 contains an out-of-bounds read and write vulnerability that could allow a remote attacker to potentially exploit heap corruption vi... | 8.8 | 970 | Low | Yes | Yes |
| CVE-2025-53770 | Microsoft SharePoint Server on-premises contains a deserialization of untrusted data vulnerability that could allow an unauthorized attacker to execut... | 9.8 | 999 | Viral | Yes | Yes |
| CVE-2025-53690 | Sitecore Experience Manager (XM), Experience Platform (XP), Experience Commerce (XC), and Managed Cloud contain a deserialization of untrusted data vu... | 9.0 | 988 | Low | Yes | Yes |
| CVE-2025-48543 | Android Runtime contains a use-after-free vulnerability potentially allowing a chrome sandbox escape leading to local privilege escalation. | 8.8 | 972 | Neutral | Yes | Yes |
| CVE-2025-47827 | IGEL OS contains a use of a key past its expiration date vulnerability that allows for Secure Boot bypass. The igel-flash-driver module improperly ver... | 4.6 | 405 | Neutral | Yes | Yes |
| CVE-2025-4664 | Insufficient policy enforcement in Loader in Google Chrome prior to 136.0.7103.113 allowed a remote attacker to leak cross-origin data via a crafted H... | 4.3 | 396 | Low | Yes | Yes |