Skip to content
Toggle Navigation
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
ISO 27001 – GAP Analysis (Tool)
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Amenazas y tendencias
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Desarrollo seguro (SDLC)
Desarrollo de software seguro
Normativa y Leyes
Leyes de protección de datos
Agencias nacionales de ciberseguridad
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2025-40741
2025-07-08
HIGH
7.8
A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affected applications contain a…
CVE-2025-40740
2025-07-08
HIGH
7.8
A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affected applications contain an…
CVE-2025-40739
2025-07-08
HIGH
7.8
A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affected applications contain an…
CVE-2025-40738
2025-07-08
HIGH
8.8
A vulnerability has been identified in SINEC NMS (All versions < V4.0). The affected application does not properly validate file…
CVE-2025-40737
2025-07-08
HIGH
8.8
A vulnerability has been identified in SINEC NMS (All versions < V4.0). The affected application does not properly validate file…
CVE-2025-40736
2025-07-08
CRITICAL
9.8
A vulnerability has been identified in SINEC NMS (All versions < V4.0). The affected application exposes an endpoint that allows…
CVE-2025-40735
2025-07-08
HIGH
8.8
A vulnerability has been identified in SINEC NMS (All versions < V4.0). The affected devices are vulnerable to SQL injection.…
CVE-2025-40593
2025-07-08
MEDIUM
6.5
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0). The affected application allows to control the…
CVE-2025-27127
2025-07-08
MEDIUM
4.3
A vulnerability has been identified in TIA Project-Server (All versions < V2.1.1), TIA Project-Server V17 (All versions), Totally Integrated Automation…
CVE-2025-23365
2025-07-08
HIGH
7.8
A vulnerability has been identified in TIA Administrator (All versions < V3.0.6). The affected application allows low-privileged users to trigger…
CVE-2025-23364
2025-07-08
MEDIUM
6.2
A vulnerability has been identified in TIA Administrator (All versions < V3.0.6). The affected application improperly validates code signing certificates.…
CVE-2025-21009
2025-07-08
MEDIUM
5.5
Out-of-bounds read in decoding malformed frame header in libsavsvc.so prior to Android 15 allows local attackers to cause memory corruption.
CVE-2025-21008
2025-07-08
MEDIUM
5.5
Out-of-bounds read in decoding frame header in libsavsvc.so prior to Android 15 allows local attackers to cause memory corruption.
CVE-2025-21007
2025-07-08
MEDIUM
5.5
Out-of-bounds write in accessing uninitialized memory in libsavsvc.so prior to Android 15 allows local attackers to cause memory corruption.
CVE-2025-21006
2025-07-08
HIGH
7.0
Out-of-bounds write in handling of macro blocks for MPEG4 codec in libsavsvc.so prior to Android 15 allows local attackers to…
CVE-2025-21005
2025-07-08
MEDIUM
5.5
Improper access control in isemtelephony prior to Android 15 allows local attackers to access sensitive information.
CVE-2025-21004
2025-07-08
MEDIUM
6.2
Improper verification of intent by broadcast receiver in System UI for Galaxy Watch prior to SMR Jul-2025 Release 1 allows…
CVE-2025-21003
2025-07-08
MEDIUM
4.0
Insecure storage of sensitive information in Emergency SOS prior to SMR Jul-2025 Release 1 allows local attackers to access sensitive…
CVE-2025-21002
2025-07-08
MEDIUM
6.2
Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to manipulate broadcasting Auracast.
CVE-2025-21001
2025-07-08
MEDIUM
6.2
Improper access control in LeAudioService prior to SMR Jul-2025 Release 1 allows local attackers to stop broadcasting Auracast.
CVE-2025-21000
2025-07-08
MEDIUM
6.2
Improper privilege management in Bluetooth prior to SMR Jul-2025 Release 1 allows local attackers to enable Bluetooth.
CVE-2025-20999
2025-07-08
MEDIUM
4.1
Improper authorization in accessing saved Wi-Fi password for Galaxy Tablet prior to SMR Jul-2025 Release 1 allows secondary users to…
CVE-2025-20998
2025-07-08
MEDIUM
5.5
Improper access control in SamsungAccount for Galaxy Watch prior to SMR Jul-2025 Release 1 allows local attackers to access phone…
CVE-2025-20997
2025-07-08
MEDIUM
6.2
Incorrect default permission in Framework for Galaxy Watch prior to SMR Jul-2025 Release 1 allows local attackers to reset some…
CVE-2025-20983
2025-07-08
MEDIUM
6.4
Out-of-bounds write in checking auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to…
CVE-2025-20982
2025-07-08
MEDIUM
6.4
Out-of-bounds write in setting auth secret in KnoxVault trustlet prior to SMR Jul-2025 Release 1 allows local privileged attackers to…
CVE-2024-31854
2025-07-08
HIGH
8.1
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.11). During establishment of a https connection to…
CVE-2024-31853
2025-07-08
HIGH
8.1
A vulnerability has been identified in SICAM TOOLBOX II (All versions < V07.11). During establishment of a https connection to…
CVE-2023-52236
2025-07-08
HIGH
7.0
A vulnerability has been identified in RUGGEDCOM i800 (All versions), RUGGEDCOM i801 (All versions), RUGGEDCOM i802 (All versions), RUGGEDCOM i803…
CVE-2025-7172
2025-07-08
HIGH
7.3
A vulnerability, which was classified as critical, was found in code-projects Crime Reporting System 1.0. This affects an unknown part…
CVE-2025-6744
2025-07-08
HIGH
7.3
The The Woodmart theme for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 8.2.3.…
CVE-2025-7171
2025-07-08
HIGH
7.3
A vulnerability, which was classified as critical, has been found in code-projects Crime Reporting System 1.0. Affected by this issue…
CVE-2025-7170
2025-07-08
HIGH
7.3
A vulnerability classified as critical was found in code-projects Crime Reporting System 1.0. Affected by this vulnerability is an unknown…
CVE-2025-7169
2025-07-08
HIGH
7.3
A vulnerability classified as critical has been found in code-projects Crime Reporting System 1.0. Affected is an unknown function of…
CVE-2025-7168
2025-07-08
HIGH
7.3
A vulnerability was found in code-projects Crime Reporting System 1.0. It has been rated as critical. This issue affects some…
CVE-2025-38237
2025-07-08
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: media: platform: exynos4-is: Add hardware sync wait to fimc_is_hw_change_mode() In…
CVE-2025-38236
2025-07-08
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: af_unix: Don't leave consecutive consumed OOB skbs. Jann Horn reported…
CVE-2025-7346
2025-07-08
N/A
0.0
Any unauthenticated attacker can bypass the localhost restrictions posed by the application and utilize this to create arbitrary packages
CVE-2025-7167
2025-07-08
MEDIUM
6.3
A vulnerability was found in code-projects Responsive Blog Site 1.0. It has been declared as critical. This vulnerability affects unknown…
CVE-2025-7166
2025-07-08
MEDIUM
6.3
A vulnerability was found in code-projects Responsive Blog Site 1.0. It has been classified as critical. This affects an unknown…
CVE-2025-6746
2025-07-08
HIGH
8.8
The WoodMart plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.2.3 via…
CVE-2025-6743
2025-07-08
MEDIUM
6.4
The Woodmart theme for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'multiple_markers' attribute in all versions up…
CVE-2025-42956
2025-07-08
MEDIUM
6.1
SAP NetWeaver Application Server ABAP and ABAP Platform allows an unauthenticated attacker to create a malicious link which they can…
CVE-2025-41668
2025-07-08
HIGH
8.8
A low privileged remote attacker with file access can replace a critical file or folder used by the service security-profile…
CVE-2025-41667
2025-07-08
HIGH
8.8
A low privileged remote attacker with file access can replace a critical file used by the arp-preinit script to get…
CVE-2025-41666
2025-07-08
HIGH
8.8
A low privileged remote attacker with file access can replace a critical file used by the watchdog to get read,…
CVE-2025-41665
2025-07-08
MEDIUM
6.5
An low privileged remote attacker can enforce the watchdog of the affected devices to reboot the PLC due to incorrect…
CVE-2025-25271
2025-07-08
HIGH
8.8
An unauthenticated adjacent attacker is able to configure a new OCPP backend, due to insecure defaults for the configuration interface.
CVE-2025-25270
2025-07-08
CRITICAL
9.8
An unauthenticated remote attacker can alter the device configuration in a way to get remote code execution as root with…
CVE-2025-25269
2025-07-08
HIGH
8.4
An unauthenticated local attacker can inject a command that is subsequently executed as root, leading to a privilege escalation.
« Anterior
Página 185 de 3480
Siguiente »
Page load link
Go to Top
