Skip to content
Toggle Navigation
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Amenazas y tendencias
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Desarrollo seguro (SDLC)
Desarrollo de software seguro
Normativa y Leyes
Leyes de protección de datos
Agencias nacionales de ciberseguridad
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2025-53936
2025-07-16
N/A
0.0
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site…
CVE-2025-53935
2025-07-16
N/A
0.0
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site…
CVE-2025-53934
2025-07-16
N/A
0.0
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site…
CVE-2025-53933
2025-07-16
N/A
0.0
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site…
CVE-2025-53932
2025-07-16
N/A
0.0
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site…
CVE-2025-53931
2025-07-16
N/A
0.0
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site…
CVE-2025-53930
2025-07-16
N/A
0.0
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site…
CVE-2025-53929
2025-07-16
N/A
0.0
WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Stored Cross-Site…
CVE-2025-53926
2025-07-16
MEDIUM
6.1
Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including pro-2.5.17…
CVE-2025-50082
2025-07-15
MEDIUM
6.5
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5…
CVE-2025-50069
2025-07-15
HIGH
7.7
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19.3-19.27 and 21.3-21.18. Easily…
CVE-2025-50066
2025-07-15
LOW
2.7
Vulnerability in the Oracle Database Materialized View component of Oracle Database Server. Supported versions that are affected are 19.3-19.27, 21.3-21.18…
CVE-2025-47053
2025-07-16
MEDIUM
5.4
Adobe Experience Manager versions 6.5.22 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. A low privileged attacker…
CVE-2025-46959
2025-07-16
MEDIUM
5.4
Adobe Experience Manager versions 6.5.22 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. A low privileged attacker…
CVE-2025-50065
2025-07-15
LOW
3.7
Vulnerability in the Oracle GraalVM for JDK product of Oracle Java SE (component: Native Image). The supported version that is…
CVE-2025-50064
2025-07-15
MEDIUM
4.8
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0,…
CVE-2025-50062
2025-07-15
HIGH
8.1
Vulnerability in the PeopleSoft Enterprise HCM Global Payroll Core product of Oracle PeopleSoft (component: Global Payroll for Core). Supported versions…
CVE-2025-50061
2025-07-15
MEDIUM
5.4
Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions…
CVE-2025-30754
2025-07-15
MEDIUM
4.8
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component:…
CVE-2025-30753
2025-07-15
MEDIUM
6.5
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0,…
CVE-2025-30752
2025-07-15
LOW
3.7
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK product of Oracle Java SE (component: Compiler). The supported version…
CVE-2025-30748
2025-07-15
MEDIUM
6.1
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: PIA Core Technology). Supported versions that are affected are…
CVE-2025-5994
2025-07-16
N/A
0.0
A multi-vendor cache poisoning vulnerability named 'Rebirthday Attack' has been discovered in caching resolvers that support EDNS Client Subnet (ECS).…
CVE-2025-53924
2025-07-16
MEDIUM
6.9
Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including pro-2.5.17…
CVE-2025-53923
2025-07-16
HIGH
8.2
Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including pro-2.5.17…
CVE-2025-52690
2025-07-16
HIGH
8.1
Successful exploitation of the vulnerability could allow an attacker to execute arbitrary commands as root, potentially leading to the loss…
CVE-2025-52689
2025-07-16
CRITICAL
9.8
Successful exploitation of the vulnerability could allow an unauthenticated attacker to obtain a valid session ID with administrator privileges by…
CVE-2025-52688
2025-07-16
CRITICAL
9.8
Successful exploitation of the vulnerability could allow an attacker to inject commands with root privileges on the access point, potentially…
CVE-2025-50096
2025-07-15
MEDIUM
4.4
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5 and…
CVE-2025-50081
2025-07-15
LOW
3.1
Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5…
CVE-2025-50080
2025-07-15
MEDIUM
4.9
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.0-8.0.42,…
CVE-2025-50079
2025-07-15
MEDIUM
4.9
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5…
CVE-2025-50078
2025-07-15
MEDIUM
6.5
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5…
CVE-2025-50077
2025-07-15
MEDIUM
4.9
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.42, 8.4.0-8.4.5 and…
CVE-2025-50076
2025-07-15
MEDIUM
6.5
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.0-8.0.25. Easily…
CVE-2025-50073
2025-07-15
MEDIUM
6.1
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Container). Supported versions that are affected are…
CVE-2025-50072
2025-07-15
MEDIUM
4.0
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0,…
CVE-2025-50071
2025-07-15
MEDIUM
6.4
Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite (component: Web Utilities). Supported versions that are affected are…
CVE-2025-50070
2025-07-15
MEDIUM
5.3
Vulnerability in the JDBC component of Oracle Database Server. Supported versions that are affected are 23.4-23.8. Difficult to exploit vulnerability…
CVE-2025-50060
2025-07-15
HIGH
8.1
Vulnerability in the Oracle BI Publisher product of Oracle Analytics (component: Web Server). Supported versions that are affected are 7.6.0.0.0,…
CVE-2025-37104
2025-07-16
HIGH
7.1
A security vulnerability has been identified in HPE Telco Service Orchestrator software. The vulnerability could allow authenticated clients to to…
CVE-2025-34300
2025-07-16
N/A
0.0
A template injection vulnerability exists in Sawtooth Software’s Lighthouse Studio versions prior to 9.16.14 via the ciwweb.pl http://ciwweb.pl/ Perl web…
CVE-2025-50059
2025-07-15
HIGH
8.6
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component:…
CVE-2025-30762
2025-07-15
HIGH
7.5
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0,…
CVE-2025-22227
2025-07-16
MEDIUM
6.1
In some specific scenarios with chained redirects, Reactor Netty HTTP client leaks credentials. In order for this to happen, the…
CVE-2025-30760
2025-07-15
MEDIUM
5.4
Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are…
CVE-2025-30759
2025-07-15
MEDIUM
6.1
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: Platform Security). Supported versions that are affected…
CVE-2025-30758
2025-07-15
MEDIUM
5.3
Vulnerability in the Siebel CRM End User product of Oracle Siebel CRM (component: User Interface). Supported versions that are affected…
CVE-2025-30756
2025-07-15
MEDIUM
6.1
Vulnerability in Oracle REST Data Services (component: General). The supported version that is affected is 24.2.0. Easily exploitable vulnerability allows…
CVE-2025-30751
2025-07-15
HIGH
8.8
Vulnerability in the Oracle Database component of Oracle Database Server. Supported versions that are affected are 19.3-19.27 and 23.4-23.8. Easily…
« Anterior
Página 102 de 3423
Siguiente »
Page load link
Go to Top
