Skip to content
Toggle Navigation
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
ISO 27001 – GAP Analysis (Tool)
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Amenazas y tendencias
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Desarrollo seguro (SDLC)
Desarrollo de software seguro
Normativa y Leyes
Leyes de protección de datos
Agencias nacionales de ciberseguridad
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2025-7138
2025-07-07
MEDIUM
6.3
A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been declared as critical. This vulnerability affects…
CVE-2025-53536
2025-07-07
HIGH
8.1
Roo Code is an AI-powered autonomous coding agent. Prior to 3.22.6, if the victim had "Write" auto-approved, an attacker with…
CVE-2025-53535
2025-07-07
N/A
0.0
Better Auth is an authentication and authorization library for TypeScript. An open redirect has been found in the originCheck middleware…
CVE-2025-20325
2025-07-07
LOW
3.1
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7, and 9.1.10, and Splunk Cloud Platform versions below 9.3.2411.103, 9.3.2408.113, and 9.2.2406.119,…
CVE-2025-20324
2025-07-07
MEDIUM
5.4
In Splunk Enterprise versions below 9.4.2, 9.3.5, 9.2.7, and 9.1.10 and Splunk Cloud Platform versions below 9.3.2411.104, 9.3.2408.113, and 9.2.2406.119,…
CVE-2025-20323
2025-07-07
MEDIUM
4.3
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7, and 9.1.10, a low-privileged user that does not hold the "admin" or…
CVE-2025-20322
2025-07-07
MEDIUM
4.3
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7, and 9.1.10, and Splunk Cloud Platform versions below 9.3.2411.104, 9.3.2408.113, and 9.2.2406.119,…
CVE-2025-20321
2025-07-07
MEDIUM
6.5
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7 and 9.1.10, and Splunk Cloud Platform versions below 9.3.2411.104, 9.3.2408.114, and 9.2.2406.119,…
CVE-2025-24508
2025-07-07
MEDIUM
6.4
Extraction of Account Connectivity Credentials (ACCs) from the IT Management Agent secure storage
CVE-2025-20320
2025-07-07
MEDIUM
6.3
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7 and 9.1.10, and Splunk Cloud Platform versions below 9.3.2411.107, 9.3.2408.117, and 9.2.2406.121,…
CVE-2025-20319
2025-07-07
MEDIUM
6.8
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7, and 9.1.10, a user who holds a role that contains the high-privilege…
CVE-2025-20300
2025-07-07
MEDIUM
4.3
In Splunk Enterprise versions below 9.4.2, 9.3.5, 9.2.6, and 9.1.9 and Splunk Cloud Platform versions below 9.3.2411.103, 9.3.2408.112, and 9.2.2406.119,…
CVE-2024-43190
2025-07-07
MEDIUM
5.9
IBM Engineering Requirements Management DOORS 9.7.2.9, under certain configurations, could allow a remote attacker to obtain password reset instructions of…
CVE-2024-37658
2025-07-07
N/A
0.0
An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive information via the bbs/member_confirm.php.
CVE-2024-37657
2025-07-07
N/A
0.0
An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive information via thebbs/login.php component.
CVE-2024-37656
2025-07-07
N/A
0.0
An open redirect vulnerability in gnuboard5 v.5.5.16 allows a remote attacker to obtain sensitive information via the insufficient URL parameter…
CVE-2025-7137
2025-07-07
MEDIUM
6.3
A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been classified as critical. This affects an…
CVE-2025-7136
2025-07-07
HIGH
7.3
A vulnerability, which was classified as critical, was found in Campcodes Online Recruitment Management System 1.0. Affected is an unknown…
CVE-2025-53532
2025-07-07
MEDIUM
5.3
giscus is a commenting system powered by GitHub Discussions. A bug in giscus' discussions creation API allowed an unauthorized user…
CVE-2025-53531
2025-07-07
N/A
0.0
WeGIA is a web manager for charitable institutions. The Wegia server has a vulnerability that allows excessively long HTTP GET…
CVE-2025-53530
2025-07-07
N/A
0.0
WeGIA is a web manager for charitable institutions. The Wegia server has a vulnerability that allows excessively long HTTP GET…
CVE-2025-53529
2025-07-07
CRITICAL
9.8
WeGIA is a web manager for charitable institutions. An SQL Injection vulnerability was identified in the /html/funcionario/profile_funcionario.php endpoint. The id_funcionario…
CVE-2025-53526
2025-07-07
N/A
0.0
WeGIA is a web manager for charitable institutions. An XSS Injection vulnerability was identified in novo_memorando.php. After the memo was…
CVE-2025-53525
2025-07-07
N/A
0.0
WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the profile_familiar.php endpoint…
CVE-2025-36014
2025-07-07
HIGH
8.2
IBM Integration Bus for z/OS 10.1.0.0 through 10.1.0.5 is vulnerable to code injection by a privileged user with access to…
CVE-2025-1351
2025-07-07
MEDIUM
6.7
IBM Storage Virtualize 8.5, 8.6, and 8.7 products could allow a user to escalate their privileges to that of another…
CVE-2024-25178
2025-07-07
N/A
0.0
LuaJIT through 2.1 has an out-of-bounds read in the stack-overflow handler in lj_state.c
CVE-2024-25177
2025-07-07
N/A
0.0
LuaJIT through 2.1 has an unsinking of IR_FSTORE for NULL metatable, which leads to Denial of Service (DoS).
CVE-2024-25176
2025-07-07
N/A
0.0
LuaJIT through 2.1 has a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.
CVE-2025-7259
2025-07-07
MEDIUM
6.5
An authorized user can issue queries with duplicate _id fields, that leads to unexpected behavior in MongoDB Server, which may…
CVE-2025-7134
2025-07-07
HIGH
7.3
A vulnerability classified as critical was found in Campcodes Online Recruitment Management System 1.0. This vulnerability affects unknown code of…
CVE-2025-7107
2025-07-07
MEDIUM
5.3
A vulnerability classified as critical has been found in SimStudioAI sim up to 0.1.17. Affected is the function handleLocalFile of…
CVE-2025-7103
2025-07-07
MEDIUM
6.3
A vulnerability was found in BoyunCMS up to 1.4.20. It has been rated as critical. This issue affects some unknown…
CVE-2025-7102
2025-07-07
MEDIUM
6.3
A vulnerability was found in BoyunCMS up to 1.4.20. It has been declared as critical. This vulnerability affects unknown code…
CVE-2025-7101
2025-07-07
MEDIUM
6.3
A vulnerability was found in BoyunCMS up to 1.4.20. It has been classified as critical. This affects an unknown part…
CVE-2025-7100
2025-07-07
MEDIUM
6.3
A vulnerability was found in BoyunCMS up to 1.4.20 and classified as critical. Affected by this issue is some unknown…
CVE-2025-7099
2025-07-07
MEDIUM
5.6
A vulnerability has been found in BoyunCMS up to 1.21 on PHP7 and classified as critical. Affected by this vulnerability…
CVE-2025-7098
2025-07-06
MEDIUM
5.6
A vulnerability, which was classified as critical, was found in Comodo Internet Security Premium 12.3.4.8162. Affected is an unknown function…
CVE-2025-7097
2025-07-06
HIGH
8.1
A vulnerability, which was classified as critical, has been found in Comodo Internet Security Premium 12.3.4.8162. This issue affects some…
CVE-2025-7096
2025-07-06
HIGH
8.1
A vulnerability classified as critical was found in Comodo Internet Security Premium 12.3.4.8162. This vulnerability affects unknown code of the…
CVE-2025-7095
2025-07-06
LOW
3.7
A vulnerability classified as critical has been found in Comodo Internet Security Premium 12.3.4.8162. This affects an unknown part of…
CVE-2025-7094
2025-07-06
HIGH
8.8
A vulnerability was found in Belkin F9K1122 1.00.33. It has been rated as critical. Affected by this issue is the…
CVE-2025-7093
2025-07-06
HIGH
8.8
A vulnerability was found in Belkin F9K1122 1.00.33. It has been declared as critical. Affected by this vulnerability is the…
CVE-2025-7092
2025-07-06
HIGH
8.8
A vulnerability has been found in Belkin F9K1122 1.00.33 and classified as critical. This vulnerability affects the function formWlanSetupWPS of…
CVE-2025-7091
2025-07-06
HIGH
8.8
A vulnerability was found in Belkin F9K1122 1.00.33. It has been classified as critical. Affected is the function formWlanMP of…
CVE-2025-7090
2025-07-06
HIGH
8.8
A vulnerability, which was classified as critical, has been found in Belkin F9K1122 1.00.33. Affected by this issue is the…
CVE-2025-7089
2025-07-06
HIGH
8.8
A vulnerability was found in Belkin F9K1122 1.00.33 and classified as critical. This issue affects the function formWanTcpipSetup of the…
CVE-2025-53376
2025-07-07
N/A
0.0
Dokploy is a self-hostable Platform as a Service (PaaS) that simplifies the deployment and management of applications and databases. An…
CVE-2025-53375
2025-07-07
N/A
0.0
Dokploy is a self-hostable Platform as a Service (PaaS) that simplifies the deployment and management of applications and databases. An…
CVE-2025-53374
2025-07-07
N/A
0.0
Dokploy is a self-hostable Platform as a Service (PaaS) that simplifies the deployment and management of applications and databases. An…
« Anterior
Página 192 de 3484
Siguiente »
Page load link
Go to Top
