CVEs from 2025
Total
12,202
critical
critical 1,301
high
high 1,894
medium
medium 1,908
low
low 193
% Critical
10.7%
% with KEV
1.5%
% with exploit
1.5%
Top vendors
- fabian 285
- campcodes 232
- phpgurukul 189
- code-projects 121
- microsoft 107
- redhat 106
- portabilis 94
- mayurik 79
Top products
- i-educar 80
- office_long_term_servicing_channel 35
- office 34
- best_salon_management_system 33
- apartment_management_system 30
- inventory_management_system 28
- gcp 23
- online_learning_management_system 21
Top packages
- Go/github.com/mattermost/mattermost/server/v8 258
- Go/github.com/mattermost/mattermost-server 249
- Packagist/magento/community-edition 231
- Packagist/moodle/moodle 162
- Go/github.com/mattermost/mattermost-server/v5 99
- Go/github.com/mattermost/mattermost-server/v6 99
- Maven/com.liferay.portal:release.dxp.bom 61
- Maven/org.apache.tomcat.embed:tomcat-embed-core 53
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2025-6139 | low | 3.9 | 3.9 | 1y ago | A vulnerability, which was classified as problematic, has been found in TOTOLINK T10 4.1.8cu.5207. Affected by this issue is some unknown functionality of the file /etc/shadow.sample. The manipulatio… | |
| CVE-2025-69015 | low | 3.8 | 3.8 | 5mo ago | Missing Authorization vulnerability in Automattic Crowdsignal Forms crowdsignal-forms allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Crowdsignal Forms: fro… | |
| CVE-2025-58009 | low | 3.8 | 3.8 | 8mo ago | Missing Authorization vulnerability in codepeople CP Multi View Event Calendar cp-multi-view-calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CP Mu… | |
| CVE-2025-15603 | low | 3.7 | 3.7 | 3mo ago | A security vulnerability has been detected in open-webui up to 0.6.16. Affected is an unknown function of the file backend/start_windows.bat of the component JWT Key Handler. Such manipulation of the… | |
| CVE-2025-15244 | low | 3.7 | 3.7 | 5mo ago | A vulnerability has been found in PHPEMS up to 11.0. This impacts an unknown function of the component Purchase Request Handler. The manipulation leads to race condition. The attack may be initiated … | |
| CVE-2025-15151 | low | 3.7 | 3.7 | 5mo ago | A vulnerability was determined in TaleLin Lin-CMS up to 0.6.0. This affects an unknown part of the file /tests/config.py of the component Tests Folder. This manipulation of the argument username/pass… | |
| CVE-2025-15108 | low | 3.7 | 3.7 | 5mo ago | A vulnerability was detected in PandaXGO PandaX up to fb8ff40f7ce5dfebdf66306c6d85625061faf7e5. This affects an unknown function of the file config.yml of the component JWT Secret Handler. The manipu… | |
| CVE-2025-15005 | low | 3.7 | 3.7 | 5mo ago | A security flaw has been discovered in CouchCMS up to 2.4. Affected is an unknown function of the file couch/config.example.php of the component reCAPTCHA Handler. The manipulation of the argument K_… | |
| CVE-2025-14955 | low | 3.7 | 3.7 | 5mo ago | A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function ogs_pfcp_handle_create_pdr in the library lib/pfcp/handler.c of the component PFCP. The manipulation r… | |
| CVE-2025-14697 | low | 3.7 | 3.7 | 5mo ago | A security flaw has been discovered in Shenzhen Sixun Software Sixun Shanghui Group Business Management System 4.10.24.3. Affected by this issue is some unknown functionality of the file /ExportFiles… | |
| CVE-2025-14651 | low | 3.7 | 3.7 | 6mo ago | A vulnerability has been found in MartialBE one-hub up to 0.14.27. This vulnerability affects unknown code of the file docker-compose.yml. The manipulation of the argument SESSION_SECRET leads to use… | |
| CVE-2025-14636 | low | 3.7 | 3.7 | 6mo ago | A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the … | |
| CVE-2025-13805 | low | 3.7 | 3.7 | 6mo ago | NutzBoot vulnerable to deserialization | |
| CVE-2025-12919 | low | 3.7 | 3.7 | 7mo ago | EverShop is vulnerable to Unauthorized Order Information Access (IDOR) | |
| CVE-2025-12854 | low | 3.7 | 3.7 | 7mo ago | A vulnerability was identified in newbee-mall-plus up to 2.4.1. This vulnerability affects the function executeSeckill of the file /seckillExecution/. The manipulation of the argument userid leads to… | |
| CVE-2025-61748 | low | 3.7 | 3.7 | 7mo ago | Moderate: java-21-openjdk security update | |
| CVE-2025-11441 | low | 3.7 | 3.7 | 8mo ago | A vulnerability was identified in JhumanJ OpnForm up to 1.9.3. The affected element is an unknown function of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads… | |
| CVE-2025-11322 | low | 3.7 | 3.7 | 8mo ago | NovoSGA: Manipulation of User Creation Page can lead to weak password requirements | |
| CVE-2025-11280 | low | 3.7 | 3.7 | 8mo ago | A flaw has been found in Frappe LMS 2.35.0. Impacted is an unknown function of the file /files/ of the component Assignment Picture Handler. This manipulation causes direct request. The attack may be… | |
| CVE-2025-10776 | low | 3.7 | 3.7 | 8mo ago | A vulnerability was detected in LionCoders SalePro POS up to 5.5.0. This issue affects some unknown processing of the component Login. Performing manipulation results in cleartext transmission of sen… | |
| CVE-2025-10761 | low | 3.7 | 3.7 | 8mo ago | A vulnerability has been found in Harness 3.3.0. Affected is an unknown function of the file /api/v1/login of the component Login Endpoint. The manipulation leads to improper restriction of excessive… | |
| CVE-2025-10671 | low | 3.7 | 3.7 | 8mo ago | A vulnerability has been found in youth-is-as-pale-as-poetry e-learning 1.0. Impacted is the function encryptSecret of the file e-learning-master\exam-api\src\main\java\com\yf\exam\ability\shiro\jwt\… | |
| CVE-2025-10423 | low | 3.7 | 3.7 | 9mo ago | A vulnerability was found in newbee-mall 1.0. Impacted is the function mallKaptcha of the file /common/mall/kaptcha. The manipulation results in guessable captcha. The attack can be executed remotely… | |
| CVE-2025-9401 | low | 3.7 | 3.7 | 9mo ago | A vulnerability has been found in HuangDou UTCMS 9. This vulnerability affects unknown code of the file app/modules/ut-frame/admin/login.php of the component Login. Such manipulation of the argument … | |
| CVE-2025-9109 | low | 3.7 | 3.7 | 9mo ago | A security flaw has been discovered in Portabilis i-Diario up to 1.5.0. Affected by this vulnerability is an unknown functionality of the file /password/email of the component Password Recovery Endpo… | |
| CVE-2025-9005 | low | 3.7 | 3.7 | 10mo ago | A vulnerability was determined in mtons mblog up to 3.5.0. Affected is an unknown function of the file /register. The manipulation leads to information exposure through error message. It is possible … | |
| CVE-2025-8927 | low | 3.7 | 3.7 | 10mo ago | A vulnerability was determined in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality of the file /email/send_code of the component Verification Code Handler. The manipulati… | |
| CVE-2025-8549 | low | 3.7 | 3.7 | 10mo ago | A vulnerability was found in atjiu pybbs up to 6.0.0. It has been classified as critical. Affected is the function update of the file src/main/java/co/yiiu/pybbs/controller/admin/UserAdminController.… | |
| CVE-2025-8548 | low | 3.7 | 3.7 | 10mo ago | A vulnerability was found in atjiu pybbs up to 6.0.0 and classified as problematic. This issue affects the function sendEmailCode of the file src/main/java/co/yiiu/pybbs/controller/api/SettingsApiCon… | |
| CVE-2025-8515 | low | 3.7 | 3.7 | 10mo ago | A weakness has been identified in Intelbras InControl 2.21.60.9. This vulnerability affects unknown code of the file /v1/operador/ of the component JSON Endpoint. Executing manipulation can lead to i… | |
| CVE-2025-8283 | low | 3.7 | 3.7 | 10mo ago | Netavark Has Possible DNS Resolve Confusion | |
| CVE-2025-8205 | low | 3.7 | 3.7 | 10mo ago | A vulnerability, which was classified as problematic, has been found in Comodo Dragon up to 134.0.6998.179. Affected by this issue is some unknown functionality of the component IP DNS Leakage Detect… | |
| CVE-2025-8204 | low | 3.7 | 3.7 | 10mo ago | A vulnerability classified as problematic was found in Comodo Dragon up to 134.0.6998.179. Affected by this vulnerability is an unknown functionality of the component HSTS Handler. The manipulation l… | |
| CVE-2025-7789 | low | 3.7 | 3.7 | 10mo ago | xxl-job has Inadequate Encryption Strength | |
| CVE-2025-7577 | low | 3.7 | 3.7 | 11mo ago | A vulnerability was found in Teledyne FLIR FB-Series O and FLIR FH-Series ID 1.3.2.16. It has been classified as problematic. This affects an unknown part. The manipulation leads to use of hard-coded… | |
| CVE-2025-7453 | low | 3.7 | 3.7 | 11mo ago | A vulnerability was found in saltbo zpan up to 1.6.5/1.7.0-beta2. It has been rated as problematic. This issue affects the function NewToken of the file zpan/internal/app/service/token.go of the comp… | |
| CVE-2025-7080 | low | 3.7 | 3.7 | 11mo ago | A vulnerability, which was classified as problematic, was found in Done-0 Jank up to 322caebbad10568460364b9667aa62c3080bfc17. Affected is an unknown function of the file internal/utils/jwt_utils.go … | |
| CVE-2025-6932 | low | 3.7 | 3.7 | 11mo ago | A vulnerability, which was classified as problematic, was found in D-Link DCS-7517 up to 2.02.0. This affects the function g_F_n_GenPassForQlync of the file /bin/httpd of the component Qlync Password… | |
| CVE-2025-6669 | low | 3.7 | 3.7 | 11mo ago | A vulnerability was found in gooaclok819 sublinkX up to 1.8. It has been declared as problematic. This vulnerability affects unknown code of the file middlewares/jwt.go. The manipulation with the inp… | |
| CVE-2025-5864 | low | 3.7 | 3.7 | 1y ago | A vulnerability was found in Tenda TDSEE App up to 1.7.12. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /app/ConfirmSmsCode of the compo… | |
| CVE-2025-23384 | low | 3.7 | 3.7 | 1y ago | A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2.1), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2.1), SCALANCE M8… | |
| CVE-2025-4878 | low | 3.6 | 3.6 | 9d ago | Moderate: libssh security update | |
| CVE-2025-31959 | low | 3.5 | 3.5 | 21d ago | HCL BigFix Service Management (SM) application fails to strip EXIF metadata from uploaded images. This could lead to confidentiality and privacy risks if sensitive location information is unintentio… | |
| CVE-2025-15632 | low | 3.5 | 3.5 | 2mo ago | A vulnerability has been found in 1Panel-dev MaxKB up to 2.4.2. Impacted is an unknown function of the file ui/src/chat.ts of the component MdPreview. Such manipulation leads to cross site scripting.… | |
| CVE-2025-15248 | low | 3.5 | 3.5 | 5mo ago | A security flaw has been discovered in sunhailin12315 product-review 商品评价系统 up to 91ead6890b4065bb45b7602d0d73348e75cb4639. This affects an unknown part of the component Write a Review. Performing ma… | |
| CVE-2025-15241 | low | 3.5 | 3.5 | 5mo ago | A security vulnerability has been detected in CloudPanel Community Edition up to 2.5.1. The affected element is an unknown function of the file /admin/users of the component HTTP Header Handler. Such… | |
| CVE-2025-15134 | low | 3.5 | 3.5 | 5mo ago | A security flaw has been discovered in yourmaileyes MOOC up to 1.17. This affects the function subreview of the file mooc/controller/MainController.java of the component Submission Handler. Performin… | |
| CVE-2025-15095 | low | 3.5 | 3.5 | 5mo ago | A security vulnerability has been detected in postmanlabs httpbin up to 0.6.1. This affects an unknown function of the file httpbin-master/httpbin/core.py. The manipulation leads to cross site script… | |
| CVE-2025-14538 | low | 3.5 | 3.5 | 6mo ago | A security vulnerability has been detected in yangshare warehouseManager 仓库管理系统 1.1.0. This affects the function addCustomer of the file CustomerManageHandler.java. Such manipulation of the argument … | |
| CVE-2025-14228 | low | 3.5 | 3.5 | 6mo ago | A weakness has been identified in Yealink SIP-T21P E2 52.84.0.15. Impacted is an unknown function of the component Local Directory Page. This manipulation causes cross site scripting. It is possible … | |
| CVE-2025-14186 | low | 3.5 | 3.5 | 6mo ago | A security flaw has been discovered in Grandstream GXP1625 1.0.7.4. The impacted element is an unknown function of the file /cgi-bin/api.values.post of the component Network Status Page. Performing m… | |
| CVE-2025-13584 | low | 3.5 | 3.5 | 6mo ago | A security vulnerability has been detected in Eigenfocus up to 1.4.0. This vulnerability affects unknown code of the component Description Handler. The manipulation of the argument entry.description/… | |
| CVE-2025-13232 | low | 3.5 | 3.5 | 6mo ago | A flaw has been found in projectsend up to r1720. Impacted is an unknown function of the component File Editor/Custom Download Aliases. This manipulation causes cross site scripting. The attack is po… | |
| CVE-2025-12251 | low | 3.5 | 3.5 | 7mo ago | A vulnerability has been found in OpenWGA 7.11.12 Build 737. This impacts an unknown function of the component Admin UI. The manipulation leads to cross site scripting. The attack can be initiated re… | |
| CVE-2025-12224 | low | 3.5 | 3.5 | 7mo ago | A flaw has been found in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043c24. This vulnerability affects unknown code of the file admin/contact.php. This manipulation of the… | |
| CVE-2025-11945 | low | 3.5 | 3.5 | 7mo ago | A vulnerability was identified in toeverything AFFiNE up to 0.24.1. This vulnerability affects unknown code of the component Avatar Upload Image Endpoint. Such manipulation leads to cross site script… | |
| CVE-2025-11851 | low | 3.5 | 3.5 | 7mo ago | A vulnerability has been found in Apeman ID71 EN75.8.53.20. The affected element is an unknown function of the file /set_alias.cgi. Such manipulation of the argument alias leads to cross site scripti… | |
| CVE-2025-11308 | low | 3.5 | 3.5 | 8mo ago | A vulnerability was identified in Vanderlande Baggage 360 7.0.0. This issue affects some unknown processing of the file /api-addons/v1/messages. Such manipulation of the argument Message leads to cro… | |
| CVE-2025-11137 | low | 3.5 | 3.5 | 8mo ago | A vulnerability has been found in Gstarsoft GstarCAD up to 9.4.0. This affects an unknown function of the component File Renaming Handler. The manipulation leads to cross site scripting. The attack m… | |
| CVE-2025-10388 | low | 3.5 | 3.5 | 9mo ago | A vulnerability was identified in Selleo Mentingo 2025.08.27. This issue affects some unknown processing of the file /api/course/enroll-course of the component Create New Course Basic Settings. Such … | |
| CVE-2025-10340 | low | 3.5 | 3.5 | 9mo ago | A vulnerability was determined in WhatCD Gazelle up to 63b337026d49b5cf63ce4be20fdabdc880112fa3. The affected element is an unknown function of the file /sections/tools/managers/change_log.php of the… | |
| CVE-2025-10255 | low | 3.5 | 3.5 | 9mo ago | A vulnerability was determined in Ascensio System SIA OnlyOffice up to 12.7.0. Impacted is an unknown function of the file /Products/Projects/Messages.aspx of the component Comment Handler. Executing… | |
| CVE-2025-10254 | low | 3.5 | 3.5 | 9mo ago | A vulnerability was found in Ascensio System SIA OnlyOffice up to 12.7.0. This issue affects some unknown processing of the file /Products/Projects/Messages.aspx of the component SVG Image Handler. P… | |
| CVE-2025-10253 | low | 3.5 | 3.5 | 9mo ago | A vulnerability has been found in openDCIM 23.04. This vulnerability affects unknown code of the file /scripts/uploadifive.php of the component SVG File Handler. Such manipulation of the argument Fil… | |
| CVE-2025-10246 | low | 3.5 | 3.5 | 9mo ago | A weakness has been identified in lokibhardwaj PHP-Code-For-Unlimited-File-Upload up to 124fe96324915490c81eaf7db3234b0b4e4bab3c. This affects an unknown part of the file /f.php. This manipulation of… | |
| CVE-2025-9590 | low | 3.5 | 3.5 | 9mo ago | A vulnerability was identified in Weaver E-Mobile Mobile Management Platform up to 20250813. Affected by this vulnerability is an unknown functionality. The manipulation of the argument gohome leads … | |
| CVE-2025-9193 | low | 3.5 | 3.5 | 9mo ago | A flaw has been found in TOTVS Portal Meu RH up to 12.1.17. Impacted is an unknown function of the component Password Reset Handler. Executing manipulation of the argument redirectUrl can lead to ope… | |
| CVE-2025-9096 | low | 3.5 | 3.5 | 9mo ago | ExpressGateway Cross-Site Scripting Vulnerability in lib/rest/routes/apps.js | |
| CVE-2025-9095 | low | 3.5 | 3.5 | 9mo ago | ExpressGateway Cross-Site Scripting Vulnerability in lib/rest/routes/users.js | |
| CVE-2025-8765 | low | 3.5 | 3.5 | 10mo ago | A vulnerability classified as problematic was found in Datacom DM955 5GT 1200 825.8010.00. Affected by this vulnerability is an unknown functionality of the component Wireless Basic Settings. The man… | |
| CVE-2025-8737 | low | 3.5 | 3.5 | 10mo ago | A vulnerability, which was classified as problematic, was found in zlt2000 microservices-platform up to 6.0.0. This affects the function onLogoutSuccess of the file src/main/java/com/central/oauth/ha… | |
| CVE-2025-8506 | low | 3.5 | 3.5 | 10mo ago | A vulnerability was found in 495300897 wx-shop up to de1b66331368695779cfc6e4d11a64caddf8716e and classified as problematic. This issue affects some unknown processing of the file /user/editUI. The m… | |
| CVE-2025-7748 | low | 3.5 | 3.5 | 10mo ago | A vulnerability classified as problematic was found in ZCMS 3.6.0. This vulnerability affects unknown code of the component Create Article Page. The manipulation of the argument Title leads to cross … | |
| CVE-2025-7569 | low | 3.5 | 3.5 | 11mo ago | A vulnerability was found in Bigotry OneBase up to 1.3.6. It has been declared as problematic. Affected by this vulnerability is the function parse_args of the file /tpl/think_exception.tpl. The mani… | |
| CVE-2025-7435 | low | 3.5 | 3.5 | 11mo ago | A vulnerability was found in LiveHelperChat lhc-php-resque Extension up to ee1270b35625f552425e32a6a3061cd54b5085c4. It has been classified as problematic. This affects an unknown part of the file /s… | |
| CVE-2025-6509 | low | 3.5 | 3.5 | 11mo ago | A vulnerability was found in seaswalker spring-analysis up to 4379cce848af96997a9d7ef91d594aa129be8d71. It has been declared as problematic. Affected by this vulnerability is the function echo of the… | |
| CVE-2025-6401 | low | 3.5 | 3.5 | 11mo ago | A vulnerability was found in TOTOLINK N300RH 6.1c.1390_B20191101. It has been classified as problematic. This affects an unknown part of the file /boafrm/formFilter of the component HTTP POST Message… | |
| CVE-2025-5138 | low | 3.5 | 3.5 | 1y ago | A vulnerability was found in Bitwarden up to 2.25.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component PDF File Handler. The manipulatio… | |
| CVE-2025-9615 | low | 3.3 | 3.3 | 9d ago | Low: NetworkManager security update | |
| CVE-2025-15535 | low | 3.3 | 3.3 | 4mo ago | A security flaw has been discovered in nicbarker clay up to 0.14. This affects the function Clay__MeasureTextCached in the library clay.h. The manipulation results in null pointer dereference. The at… | |
| CVE-2025-15506 | low | 3.3 | 3.3 | 5mo ago | AcademySoftwareFoundation OpenColorIO has an out-of-bounds vulnerability | |
| CVE-2025-15245 | low | 3.3 | 3.3 | 5mo ago | A vulnerability was found in D-Link DCS-850L 1.02.09. Affected is the function uploadfirmware of the component Firmware Update Service. The manipulation of the argument DownloadFile results in path t… | |
| CVE-2025-14841 | low | 3.3 | 3.3 | 5mo ago | A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in t… | |
| CVE-2025-64787 | low | 3.3 | 3.3 | 6mo ago | Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could r… | |
| CVE-2025-64786 | low | 3.3 | 3.3 | 6mo ago | Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could r… | |
| CVE-2025-10823 | low | 3.3 | 3.3 | 8mo ago | A vulnerability was found in axboe fio up to 3.41. This affects the function str_buffer_pattern_cb of the file options.c. Performing manipulation results in null pointer dereference. The attack must … | |
| CVE-2025-43357 | low | 3.3 | 3.3 | 8mo ago | This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 26, macOS Sequoia 15.7, macOS Sonoma 14.8, macOS Tahoe 26… | |
| CVE-2025-9301 | low | 3.3 | 3.3 | 9mo ago | A vulnerability was determined in cmake 4.1.20250725-gb5cce23. This affects the function cmForEachFunctionBlocker::ReplayItems of the file cmForEachCommand.cxx. This manipulation causes reachable ass… | |
| CVE-2025-8961 | low | 3.3 | 3.3 | 10mo ago | A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can … | |
| CVE-2025-8836 | low | 3.3 | 3.3 | 10mo ago | A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpc_floorlog2 of the file src/libjasper/jpc/jpc_enc.c of the component JPEG2000 Encoder. The manipulation … | |
| CVE-2025-8735 | low | 3.3 | 3.3 | 10mo ago | A vulnerability classified as problematic was found in GNU cflow up to 1.8. Affected by this vulnerability is the function yylex of the file c.c of the component Lexer. The manipulation leads to null… | |
| CVE-2025-8732 | low | 3.3 | 3.3 | 10mo ago | A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads… | |
| CVE-2025-8698 | low | 3.3 | 3.3 | 10mo ago | A vulnerability was found in Open5GS up to 2.7.5. It has been classified as problematic. Affected is the function amf_nsmf_pdusession_handle_release_sm_context of the file src/amf/nsmf-handler.c of t… | |
| CVE-2025-8586 | low | 3.3 | 3.3 | 10mo ago | A vulnerability, which was classified as problematic, was found in libav up to 12.3. This affects the function ff_seek_frame_binary of the file /libavformat/utils.c of the component MPEG File Parser.… | |
| CVE-2025-8584 | low | 3.3 | 3.3 | 10mo ago | A vulnerability classified as problematic was found in libav up to 12.3. Affected by this vulnerability is the function av_buffer_unref of the file libavutil/buffer.c of the component AVI File Parser… | |
| CVE-2025-8225 | low | 3.3 | 3.3 | 10mo ago | A vulnerability was found in GNU Binutils 2.44 and classified as problematic. This issue affects the function process_debug_info of the file binutils/dwarf.c of the component DWARF Section Handler. T… | |
| CVE-2025-6817 | low | 3.3 | 3.3 | 11mo ago | A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5C__load_entry of the file /src/H5Centry.c. The manipulation leads to resource co… | |
| CVE-2025-6816 | low | 3.3 | 3.3 | 11mo ago | A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5O__fsinfo_encode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based buffe… | |
| CVE-2025-6750 | low | 3.3 | 3.3 | 11mo ago | A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. Affected by this issue is the function H5O__mtime_new_encode of the file src/H5Omtime.c. The manipulation leads to… | |
| CVE-2025-6536 | low | 3.3 | 3.3 | 11mo ago | A vulnerability has been found in Tarantool up to 3.3.1 and classified as problematic. Affected by this vulnerability is the function tm_to_datetime in the library src/lib/core/datetime.c. The manipu… |