CVEs from 2025
Total
8,865
critical
critical 1,302
high
high 1,901
medium
medium 1,923
low
low 193
% Critical
14.7%
% with KEV
2.0%
% with exploit
2.8%
Top vendors
- fabian 285
- campcodes 232
- phpgurukul 189
- code-projects 121
- microsoft 107
- redhat 106
- portabilis 94
- mayurik 79
Top products
- i-educar 80
- office_long_term_servicing_channel 35
- office 34
- best_salon_management_system 33
- apartment_management_system 30
- gcp 29
- inventory_management_system 28
- online_learning_management_system 21
Top packages
- Go/github.com/mattermost/mattermost/server/v8 258
- Go/github.com/mattermost/mattermost-server 249
- Packagist/magento/community-edition 231
- Packagist/moodle/moodle 162
- Go/github.com/mattermost/mattermost-server/v5 99
- Go/github.com/mattermost/mattermost-server/v6 99
- Maven/com.liferay.portal:release.dxp.bom 61
- Maven/org.apache.tomcat.embed:tomcat-embed-core 53
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-39808 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: HID: hid-ntrig: fix unable to handle page fault in ntrig_report_version() in ntrig_report_version(), hdev parameter passed from h… | |||
| CVE-2025-10475 | medium | 5.5 | 5.5 | 9mo ago | A weakness has been identified in SpyShelter up to 15.4.0.1015. Affected is an unknown function in the library SpyShelter.sys of the component IOCTL Handler. This manipulation causes denial of servic… | |||
| CVE-2025-39801 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: Remove WARN_ON for device endpoint command timeouts This commit addresses a rarely observed endpoint command timeout w… | |||
| CVE-2025-39800 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: abort transaction on unexpected eb generation at btrfs_copy_root() If we find an unexpected generation for the extent buff… | |||
| CVE-2025-38550 | medium | — | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: Delay put pmc->idev in mld_del_delrec() pmc->idev is still used in ip6_mc_clear_src(), so as mld_clear_delrec() does… | |||
| CVE-2025-39798 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: NFS: Fix the setting of capabilities when automounting a new filesystem Capabilities cannot be inherited when we cross into a new… | |||
| CVE-2025-39795 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: block: avoid possible overflow for chunk_sectors check in blk_stack_limits() In blk_stack_limits(), we check that the t->chunk_se… | |||
| CVE-2025-39794 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: ARM: tegra: Use I/O memcpy to write to IRAM Kasan crashes the kernel trying to check boundaries when using the normal memcpy. | |||
| CVE-2025-39787 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: soc: qcom: mdt_loader: Ensure we don't read past the ELF header When the MDT loader is used in remoteproc, the ELF header is sani… | |||
| CVE-2025-39782 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: jbd2: prevent softlockup in jbd2_log_do_checkpoint() Both jbd2_log_do_checkpoint() and jbd2_journal_shrink_checkpoint_list() peri… | |||
| CVE-2025-39773 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix soft lockup in br_multicast_query_expired() When set multicast_query_interval to a large value, the local variab… | |||
| CVE-2025-39772 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: drm/hisilicon/hibmc: fix the hibmc loaded failed bug When hibmc loaded failed, the driver use hibmc_unload to free the resource, … | |||
| CVE-2025-39770 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: net: gso: Forbid IPv6 TSO with extensions on devices with only IPV6_CSUM When performing Generic Segmentation Offload (GSO) on an… | |||
| CVE-2025-39756 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: fs: Prevent file descriptor table allocations exceeding INT_MAX When sysctl_nr_open is set to a very high value (for example, 107… | |||
| CVE-2025-39752 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: ARM: rockchip: fix kernel hang during smp initialization In order to bring up secondary CPUs main CPU write trampoline code to SR… | |||
| CVE-2025-39742 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: RDMA: hfi1: fix possible divide-by-zero in find_hw_thread_mask() The function divides number of online CPUs by num_core_siblings,… | |||
| CVE-2025-39737 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid soft lockup in __kmemleak_do_cleanup() A soft lockup warning was observed on a relative small system x86-64 sy… | |||
| CVE-2025-39736 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid deadlock by moving pr_warn() outside kmemleak_lock When netpoll is enabled, calling pr_warn_once() while holdi… | |||
| CVE-2025-58364 | medium | — | 5.5 | 9mo ago | RHSA-2025:22063: cups security update (Moderate) | |||
| CVE-2025-38332 | medium | — | 5.5 | 9mo ago | RHSA-2025:15008: kernel security update (Moderate) | |||
| CVE-2025-22097 | medium | — | 5.5 | 9mo ago | RHSA-2025:13961: kernel-rt security update (Moderate) | |||
| CVE-2025-53799 | medium | 5.5 | 5.5 | 9mo ago | Use of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to disclose information locally. | |||
| CVE-2025-39724 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: serial: 8250: fix panic due to PSLVERR When the PSLVERR_RESP_EN parameter is set to 1, the device generates an error response if … | |||
| CVE-2025-39716 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: parisc: Revise __get_user() to probe user read access Because of the way read access support is implemented, read access interrup… | |||
| CVE-2025-39715 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: parisc: Revise gateway LWS calls to probe user read access We use load and stbys,e instructions to trigger memory reference inter… | |||
| CVE-2025-39714 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: media: usbtv: Lock resolution while streaming When an program is streaming (ffplay) and another program (qv4l2) changes the TV st… | |||
| CVE-2025-39709 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: media: venus: protect against spurious interrupts during probe Make sure the interrupt handler is initialized before the interrup… | |||
| CVE-2025-39706 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Destroy KFD debugfs after destroy KFD wq Since KFD proc content was moved to kernel debugfs, we can't destroy KFD deb… | |||
| CVE-2025-39703 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: net, hsr: reject HSR frame if skb can't hold tag Receiving HSR frame with insufficient space to hold HSR tag in the skb can resul… | |||
| CVE-2025-39693 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid a NULL pointer dereference [WHY] Although unlikely drm_atomic_get_new_connector_state() or drm_atomic_get_… | |||
| CVE-2025-39692 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: smb: server: split ksmbd_rdma_stop_listening() out of ksmbd_rdma_destroy() We can't call destroy_workqueue(smb_direct_wq); before… | |||
| CVE-2025-39684 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: comedi: Fix use of uninitialized memory in do_insn_ioctl() and do_insnlist_ioctl() syzbot reports a KMSAN kernel-infoleak in `do_… | |||
| CVE-2025-39681 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: x86/cpu/hygon: Add missing resctrl_cpu_detect() in bsp_init helper Since 923f3a2b48bd ("x86/resctrl: Query LLC monitoring prop… | |||
| CVE-2025-39676 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qla4xxx: Prevent a potential error pointer dereference The qla4xxx_get_ep_fwdb() function is supposed to return NULL on err… | |||
| CVE-2025-39675 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null pointer check in mod_hdcp_hdcp1_create_session() The function mod_hdcp_hdcp1_create_session() calls the… | |||
| CVE-2025-38735 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: gve: prevent ethtool ops after shutdown A crash can occur if an ethtool operation is invoked after shutdown() is called. shutdow… | |||
| CVE-2025-38732 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_reject: don't leak dst refcount for loopback packets recent patches to add a WARN() when replacing skb dst entry fo… | |||
| CVE-2025-38727 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: netlink: avoid infinite retry looping in netlink_unicast() netlink_attachskb() checks for the socket's read memory allocation con… | |||
| CVE-2025-38725 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: net: usb: asix_devices: add phy_mask for ax88772 mdio bus Without setting phy_mask for ax88772 mdio bus, current driver may creat… | |||
| CVE-2025-38723 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Fix jump offset calculation in tailcall The extra pass of bpf_int_jit_compile() skips JIT context initialization … | |||
| CVE-2025-38721 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: fix refcount leak on table dump There is a reference count leak in ctnetlink_dump_table(): if (res < … | |||
| CVE-2025-38712 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: hfsplus: don't use BUG_ON() in hfsplus_create_attributes_file() When the volume header contains erroneous values that do not refl… | |||
| CVE-2025-38711 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: smb/server: avoid deadlock when linking with ReplaceIfExists If smb2_create_link() is called with ReplaceIfExists set and the nam… | |||
| CVE-2025-38706 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: ASoC: core: Check for rtd == NULL in snd_soc_remove_pcm_runtime() snd_soc_remove_pcm_runtime() might be called with rtd == NULL w… | |||
| CVE-2025-38701 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: ext4: do not BUG when INLINE_DATA_FL lacks system.data xattr A syzbot fuzzed image triggered a BUG_ON in ext4_update_inline_data(… | |||
| CVE-2025-38700 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: scsi: libiscsi: Initialize iscsi_conn->dd_data only if memory is allocated In case of an ib_fast_reg_mr allocation failure during… | |||
| CVE-2025-38698 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: jfs: Regular file corruption check The reproducer builds a corrupted file on disk with a negative i_size value. Add a check when … | |||
| CVE-2025-38696 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: MIPS: Don't crash in stack_top() for tasks without ABI or vDSO Not all tasks have an ABI associated or vDSO mapped, for example k… | |||
| CVE-2025-38695 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Check for hdwq null ptr when cleaning up lpfc_vport structure If a call to lpfc_sli4_read_rev() from lpfc_sli4_hba_se… | |||
| CVE-2025-38694 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends: dib7090p: fix null-ptr-deref in dib7090p_rw_on_apb() In dib7090p_rw_on_apb, msg is controlled by user. When… | |||
| CVE-2025-38693 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends: w7090p: fix null-ptr-deref in w7090p_tuner_write_serpar and w7090p_tuner_read_serpar In w7090p_tuner_write_… | |||
| CVE-2025-38691 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function ext_tree… | |||
| CVE-2025-38683 | medium | 5.5 | 5.5 | 9mo ago | In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: Fix panic during namespace deletion with VF The existing code move the VF NIC to new namespace when NETDEV_REGISTER is… | |||
| CVE-2025-38211 | medium | — | 5.5 | 9mo ago | RHSA-2025:15009: kernel-rt security update (Moderate) | |||
| CVE-2025-23048 | medium | — | 5.5 | 9mo ago | RHSA-2025:15123: httpd:2.4 security update (Moderate) | |||
| CVE-2025-38464 | medium | — | 5.5 | 9mo ago | RHSA-2025:15009: kernel-rt security update (Moderate) | |||
| CVE-2025-8194 | medium | — | 5.5 | 9mo ago | RHSA-2025:14900: python39:3.9 security update (Moderate) | |||
| CVE-2025-37823 | medium | — | 5.5 | 9mo ago | RHSA-2025:16919: kernel security update (Moderate) | |||
| CVE-2025-49630 | medium | — | 5.5 | 9mo ago | RHSA-2025:15123: httpd:2.4 security update (Moderate) | |||
| CVE-2025-38461 | medium | — | 5.5 | 9mo ago | RHSA-2025:16373: kernel-rt security update (Moderate) | |||
| CVE-2025-38684 | medium | 5.5 | 5.5 | 9mo ago | RHSA-2025:15785: kernel security update (Important) | |||
| CVE-2025-38200 | medium | — | 5.5 | 9mo ago | RHSA-2025:14438: kernel security update (Moderate) | |||
| CVE-2025-49812 | medium | — | 5.5 | 9mo ago | RHSA-2025:15123: httpd:2.4 security update (Moderate) | |||
| CVE-2025-9695 | medium | 5.5 | 5.5 | 9mo ago | A vulnerability was identified in GalleryVault Gallery Vault App up to 4.5.2 on Android. Affected by this issue is some unknown functionality of the file AndroidManifest.xml of the component com.thin… | |||
| CVE-2025-9677 | medium | 5.5 | 5.5 | 9mo ago | A security flaw has been discovered in Modo Legend of the Phoenix up to 1.0.5. The affected element is an unknown function of the file AndroidManifest.xml of the component com.duige.hzw.multilingual.… | |||
| CVE-2025-9676 | medium | 5.5 | 5.5 | 9mo ago | A vulnerability was identified in NCSOFT Universe App up to 1.3.0. Impacted is an unknown function of the file AndroidManifest.xml of the component com.ncsoft.universeapp. The manipulation leads to i… | |||
| CVE-2025-9675 | medium | 5.5 | 5.5 | 9mo ago | A vulnerability was determined in Voice Changer App up to 1.1.0. This issue affects some unknown processing of the file AndroidManifest.xml of the component com.tuyangkeji.changevoice. Executing mani… | |||
| CVE-2025-9674 | medium | 5.5 | 5.5 | 9mo ago | A flaw has been found in Transbyte Scooper News App up to 1.2 on Android. Affected by this issue is some unknown functionality of the file AndroidManifest.xml of the component com.hatsune.eagleee. Th… | |||
| CVE-2025-9649 | medium | 5.5 | 5.5 | 9mo ago | A security vulnerability has been detected in appneta tcpreplay 4.5.1. Impacted is the function calc_sleep_time of the file send_packets.c. Such manipulation leads to divide by zero. An attack has to… | |||
| CVE-2025-54467 | medium | — | 5.5 | 9mo ago | NeuVector process with sensitive arguments lead to leakage | |||
| CVE-2025-53884 | medium | — | 5.5 | 9mo ago | NeuVector has an insecure password storage vulnerable to rainbow attack | |||
| CVE-2025-9403 | medium | 5.5 | 5.5 | 9mo ago | A vulnerability was determined in jqlang jq up to 1.6. Impacted is the function run_jq_tests of the file jq_test.c of the component JSON Parser. Executing manipulation can lead to reachable assertion… | |||
| CVE-2025-37914 | medium | — | 5.5 | 9mo ago | RHSA-2025:13961: kernel-rt security update (Moderate) | |||
| CVE-2025-22058 | medium | — | 5.5 | 9mo ago | RHSA-2025:14439: kernel-rt security update (Moderate) | |||
| CVE-2025-9396 | medium | 5.5 | 5.5 | 9mo ago | A security flaw has been discovered in ckolivas lrzip up to 0.651. This impacts the function __GI_____strtol_l_internal of the file strtol_l.c. Performing manipulation results in null pointer derefer… | |||
| CVE-2025-9394 | medium | 5.5 | 5.5 | 9mo ago | A flaw has been found in PoDoFo 1.1.0-dev. This issue affects the function PdfTokenizer::DetermineDataType of the file src/podofo/main/PdfTokenizer.cpp of the component PDF Dictionary Parser. Executi… | |||
| CVE-2025-9390 | medium | 5.5 | 5.5 | 9mo ago | A security flaw has been discovered in vim up to 9.1.1615. Affected by this vulnerability is the function main of the file src/xxd/xxd.c of the component xxd. The manipulation results in buffer overf… | |||
| CVE-2025-9389 | medium | 5.5 | 5.5 | 9mo ago | A vulnerability was identified in vim 9.1.0000. Affected is the function __memmove_avx_unaligned_erms of the file memmove-vec-unaligned-erms.S. The manipulation leads to memory corruption. The attack… | |||
| CVE-2025-9386 | medium | 5.5 | 5.5 | 9mo ago | A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function get_l2len_protocol of the file get.c of the component tcprewrite. Such manipulation leads to use … | |||
| CVE-2025-9385 | medium | 5.5 | 5.5 | 9mo ago | A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fix_ipv6_checksums of the file edit_packet.c of the component tcprewrite. This manipulation causes use aft… | |||
| CVE-2025-9384 | medium | 5.5 | 5.5 | 9mo ago | A vulnerability was detected in appneta tcpreplay up to 4.5.1. Impacted is the function tcpedit_post_args of the file /src/tcpedit/parse_args.c. The manipulation results in null pointer dereference. … | |||
| CVE-2025-9135 | medium | 5.5 | 5.5 | 10mo ago | A vulnerability was detected in Verkehrsauskunft Österreich SmartRide, cleVVVer, BusBahnBim and Salzburg Verkehr up to 12.1.1(258) on Android. The impacted element is an unknown function of the file … | |||
| CVE-2025-9134 | medium | 5.5 | 5.5 | 10mo ago | A security vulnerability has been detected in AfterShip Package Tracker App up to 5.24.1 on Android. The affected element is an unknown function of the file AndroidManifest.xml of the component com.a… | |||
| CVE-2025-9102 | medium | 5.5 | 5.5 | 10mo ago | A security vulnerability has been detected in 1&1 Mail & Media mail.com App 8.8.0 on Android. Affected is an unknown function of the file AndroidManifest.xml of the component com.mail.mobile.android.… | |||
| CVE-2025-38124 | medium | 5.5 | 5.5 | 10mo ago | In the Linux kernel, the following vulnerability has been resolved: net: fix udp gso skb_segment after pull from frag_list Commit a1e40ac5b5e9 ("net: gso: fix udp gso fraglist segmentation after pu… | |||
| CVE-2025-38085 | medium | — | 5.5 | 10mo ago | RHSA-2025:13590: kernel-rt security update (Moderate) | |||
| CVE-2025-38159 | medium | — | 5.5 | 10mo ago | RHSA-2025:13590: kernel-rt security update (Moderate) | |||
| CVE-2025-47906 | medium | — | 5.5 | 10mo ago | RHSA-2025:22668: go-toolset:rhel8 security update (Moderate) | |||
| CVE-2025-38250 | medium | — | 5.5 | 10mo ago | RHSA-2025:13961: kernel-rt security update (Moderate) | |||
| CVE-2025-9093 | medium | 5.5 | 5.5 | 10mo ago | A security vulnerability has been detected in BuzzFeed App 2024.9 on Android. This affects an unknown part of the file AndroidManifest.xml of the component com.buzzfeed.android. The manipulation lead… | |||
| CVE-2025-8916 | medium | — | 5.5 | 10mo ago | Bouncy Castle for Java bcpkix, bcprov, bcpkix-fips on All (API modules) allows Excessive Allocation | |||
| CVE-2025-8844 | medium | 5.5 | 5.5 | 10mo ago | A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parse_smacro_template of the file preproc.c. The manipulation leads to null pointer dereferenc… | |||
| CVE-2025-8835 | medium | 5.5 | 5.5 | 10mo ago | A vulnerability was found in JasPer up to 4.2.5. Affected by this vulnerability is the function jas_image_chclrspc of the file src/libjasper/base/jas_image.c of the component Image Color Space Conver… | |||
| CVE-2025-38292 | medium | — | 5.5 | 10mo ago | In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix invalid access to memory In ath12k_dp_rx_msdu_coalesce(), rxcb is fetched from skb and boolean is_continuation … | |||
| CVE-2025-8746 | medium | 5.5 | 5.5 | 10mo ago | A vulnerability, which was classified as problematic, was found in GNU libopts up to 27.6. Affected is the function __strstr_sse2. The manipulation leads to memory corruption. Local access is require… | |||
| CVE-2025-8745 | medium | 5.5 | 5.5 | 10mo ago | A vulnerability, which was classified as problematic, has been found in Weee RICEPO App 6.17.77 on Android. This issue affects some unknown processing of the file AndroidManifest.xml of the component… | |||
| CVE-2025-8707 | medium | 5.5 | 5.5 | 10mo ago | A vulnerability was found in Huuge Box App 1.0.3 on Android. It has been classified as problematic. This affects an unknown part of the file AndroidManifest.xml of the component com.huuge.game.zjbox.… | |||
| CVE-2025-32415 | medium | — | 5.5 | 10mo ago | RHSA-2025:13203: libxml2 security update (Moderate) | |||
| CVE-2025-32414 | medium | — | 5.5 | 10mo ago | RHSA-2025:8958: libxml2 security update (Moderate) | |||
| CVE-2025-7345 | medium | — | 5.5 | 10mo ago | RHSA-2025:13315: gdk-pixbuf2 security update (Moderate) |