Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

CVE ID Publicado Severidad CVSS Descripción
CVE-2025-38253 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: HID: wacom: fix crash in wacom_aes_battery_handler() Commit fd2a9b29dc9c ("HID: wacom:…
CVE-2025-38252 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: cxl/ras: Fix CPER handler device confusion By inspection, cxl_cper_handle_prot_err() is…
CVE-2025-38251 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: atm: clip: prevent NULL deref in clip_push() Blamed commit missed…
CVE-2025-38250 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix use-after-free in vhci_flush() syzbot reported use-after-free in…
CVE-2025-38249 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix out-of-bounds read in snd_usb_get_audioformat_uac3() In snd_usb_get_audioformat_uac3(), the…
CVE-2025-38248 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: bridge: mcast: Fix use-after-free during router port configuration The bridge…
CVE-2025-38247 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: userns and mnt_idmap leak in open_tree_attr(2) Once want_mount_setattr() has returned…
CVE-2025-38246 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: bnxt: properly flush XDP redirect lists We encountered following crash…
CVE-2025-38245 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: atm: Release atm_dev_mutex after removing procfs in atm_dev_deregister(). syzbot reported…
CVE-2025-38244 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when reconnecting channels Fix cifs_signal_cifsd_for_reconnect()…
CVE-2025-38243 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: btrfs: fix invalid inode pointer dereferences during log replay In…
CVE-2025-38242 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: mm: userfaultfd: fix race of userfaultfd_move and swap cache This…
CVE-2025-38241 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: mm/shmem, swap: fix softlockup with mTHP swapin Following softlockup can…
CVE-2025-38239 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: scsi: megaraid_sas: Fix invalid node index On a system with…
CVE-2025-38238 2025-07-09 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: scsi: fnic: Fix crash in fnic_wq_cmpl_handler when FDMI times out…
CVE-2025-27027 2025-07-09 MEDIUM 4.1 A user with vpuser credentials that opens an SSH connection to the device, gets a restricted shell rbash that allows only a…
CVE-2025-7379 2025-07-09 N/A 0.0 A security bypass vulnerability allows exploitation via Reverse Tabnabbing, a type of phishing attack where attackers can manipulate the content…
CVE-2025-3499 2025-07-09 CRITICAL 10.0 The device has two web servers that expose unauthenticated REST APIs on the management network (TCP ports 8084 and 8086).…
CVE-2025-3498 2025-07-09 CRITICAL 9.9 An unauthenticated user with management network access can get and modify the Radiflow iSAP Smart Collector (CentOS 7 - VSAP…
CVE-2025-3497 2025-07-09 HIGH 8.7 The Linux distribution underlying the Radiflow iSAP Smart Collector (CentOS 7 - VSAP 1.20) is obsolete and reached end of…
CVE-2025-7378 2025-07-09 N/A 0.0 An improper Input Validation vulnerability allows injecting arbitrary values of the NAS configuration file in ASUSTOR ADM. This could potentially…
CVE-2025-27028 2025-07-09 MEDIUM 6.8 The Linux deprivileged user vpuser in Radiflow iSAP Smart Collector (CentOS 7 - VSAP 1.20) can read the entire file system…
CVE-2025-7345 2025-07-08 HIGH 7.5 A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG…
CVE-2025-7220 2025-07-09 HIGH 7.3 A vulnerability was found in Campcodes Payroll Management System 1.0. It has been declared as critical. Affected by this vulnerability…
CVE-2025-7219 2025-07-09 HIGH 7.3 A vulnerability was found in Campcodes Payroll Management System 1.0. It has been classified as critical. Affected is an unknown…
CVE-2025-7218 2025-07-09 HIGH 7.3 A vulnerability was found in Campcodes Payroll Management System 1.0 and classified as critical. This issue affects some unknown processing…
CVE-2025-6742 2025-07-09 HIGH 7.5 The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to PHP Object Injection in…
CVE-2025-6691 2025-07-09 HIGH 8.1 The SureForms – Drag and Drop Form Builder for WordPress plugin for WordPress is vulnerable to arbitrary file deletion due…
CVE-2025-7217 2025-07-09 HIGH 7.3 A vulnerability has been found in Campcodes Payroll Management System 1.0 and classified as critical. This vulnerability affects unknown code…
CVE-2025-7216 2025-07-09 HIGH 7.3 A vulnerability, which was classified as critical, was found in lty628 Aidigu up to 1.8.2. This affects the function checkUserCookie…
CVE-2025-7215 2025-07-09 LOW 1.6 A vulnerability, which was classified as problematic, has been found in FNKvision FNK-GU2 up to 40.1.7. Affected by this issue…
CVE-2025-7214 2025-07-09 LOW 1.6 A vulnerability classified as problematic was found in FNKvision FNK-GU2 up to 40.1.7. Affected by this vulnerability is an unknown…
CVE-2025-7059 2025-07-09 MEDIUM 6.4 The Simple Featured Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘slideshow’ parameter in all versions…
CVE-2025-4606 2025-07-09 CRITICAL 9.8 The Sala - Startup & SaaS WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in…
CVE-2025-7213 2025-07-09 MEDIUM 6.4 A vulnerability classified as critical has been found in FNKvision FNK-GU2 up to 40.1.7. Affected is an unknown function of…
CVE-2025-7212 2025-07-09 MEDIUM 6.3 A vulnerability was found in itsourcecode Insurance Management System up to 1.0. It has been rated as critical. This issue…
CVE-2025-7211 2025-07-09 HIGH 7.3 A vulnerability was found in code-projects LifeStyle Store 1.0. It has been declared as critical. This vulnerability affects unknown code…
CVE-2025-53688 2025-07-09 N/A 0.0 Rejected reason: Not used
CVE-2025-53687 2025-07-09 N/A 0.0 Rejected reason: Not used
CVE-2025-53686 2025-07-09 N/A 0.0 Rejected reason: Not used
CVE-2025-53685 2025-07-09 N/A 0.0 Rejected reason: Not used
CVE-2025-53684 2025-07-09 N/A 0.0 Rejected reason: Not used
CVE-2025-53683 2025-07-09 N/A 0.0 Rejected reason: Not used
CVE-2025-53682 2025-07-09 N/A 0.0 Rejected reason: Not used
CVE-2025-7210 2025-07-09 MEDIUM 6.3 A vulnerability was found in code-projects/Fabian Ros Library Management System 2.0 and classified as critical. Affected by this issue is…
CVE-2025-5678 2025-07-09 MEDIUM 6.4 The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site…
CVE-2025-7209 2025-07-09 LOW 3.3 A vulnerability has been found in 9fans plan9port up to 9da5b44 and classified as problematic. Affected by this vulnerability is…
CVE-2025-7208 2025-07-09 MEDIUM 5.5 A vulnerability was found in 9fans plan9port up to 9da5b44. It has been classified as critical. This affects the function…
CVE-2025-34085 2025-07-09 N/A 0.0 An unrestricted file upload vulnerability in the WordPress Simple File List plugin prior to version 4.2.3 allows unauthenticated remote attackers…
CVE-2025-34084 2025-07-09 N/A 0.0 An unauthenticated information disclosure vulnerability exists in the WordPress Total Upkeep plugin (also known as BoldGrid Backup) prior to version…
« Anterior Página 167 de 3469 Siguiente »