Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

CVE ID Publicado Severidad CVSS Descripción
CVE-2025-6827 2025-06-28 HIGH 7.3 A vulnerability, which was classified as critical, was found in code-projects Inventory Management System 1.0. This affects an unknown part…
CVE-2025-53391 2025-06-28 CRITICAL 9.3 The Debian zuluPolkit/CMakeLists.txt file for zuluCrypt through the zulucrypt_6.2.0-1 package has insecure PolicyKit allow_any/allow_inactive/allow_active settings that allow a local user…
CVE-2025-6826 2025-06-28 HIGH 7.3 A vulnerability, which was classified as critical, has been found in code-projects Payroll Management System 1.0. Affected by this issue…
CVE-2025-6825 2025-06-28 HIGH 8.8 A vulnerability classified as critical was found in TOTOLINK A702R up to 4.0.0-B20230721.1521. Affected by this vulnerability is an unknown…
CVE-2025-6824 2025-06-28 HIGH 8.8 A vulnerability classified as critical has been found in TOTOLINK X15 up to 1.0.0-B20230714.1105. Affected is an unknown function of…
CVE-2025-6823 2025-06-28 HIGH 7.3 A vulnerability was found in code-projects Inventory Management System 1.0. It has been rated as critical. This issue affects some…
CVE-2025-6822 2025-06-28 HIGH 7.3 A vulnerability was found in code-projects Inventory Management System 1.0. It has been declared as critical. This vulnerability affects unknown…
CVE-2025-32897 2025-06-28 N/A 0.0 Deserialization of Untrusted Data vulnerability in Apache Seata (incubating). This security vulnerability is the same as CVE-2024-47552, but the version…
CVE-2025-6821 2025-06-28 HIGH 7.3 A vulnerability was found in code-projects Inventory Management System 1.0. It has been classified as critical. This affects an unknown…
CVE-2025-6820 2025-06-28 HIGH 7.3 A vulnerability was found in code-projects Inventory Management System 1.0 and classified as critical. Affected by this issue is some…
CVE-2025-6819 2025-06-28 HIGH 7.3 A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. Affected by this vulnerability is…
CVE-2025-6818 2025-06-28 LOW 3.3 A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5O__chunk_protect of the file…
CVE-2023-29113 2025-06-28 MEDIUM 6.3 The MIB3 infotainment unit used in Skoda and Volkswagen vehicles does not incorporate any privilege separation for the proprietary inter-process…
CVE-2023-28912 2025-06-28 MEDIUM 5.7 The MIB3 unit stores the synchronized phone contact book in clear-text, allowing an attacker with either code execution privilege on…
CVE-2023-28911 2025-06-28 MEDIUM 6.5 A specific flaw exists within the Bluetooth stack of the MIB3 infotainment. The issue results from the lack of proper…
CVE-2023-28910 2025-06-28 HIGH 8.0 A specific flaw exists within the Bluetooth stack of the MIB3 infotainment system. The issue results from the disabled abortion…
CVE-2023-28909 2025-06-28 HIGH 8.0 A specific flaw exists within the Bluetooth stack of the MIB3 unit. The issue results from the lack of proper…
CVE-2023-28908 2025-06-28 MEDIUM 5.4 A specific flaw exists within the Bluetooth stack of the MIB3 infotainment. The issue results from the lack of proper…
CVE-2023-28907 2025-06-28 MEDIUM 6.7 There is no memory isolation between CPU cores of the MIB3 infotainment. This fact allows an attacker with access to…
CVE-2023-28906 2025-06-28 HIGH 7.8 A command injection in the networking service of the MIB3 infotainment allows an attacker already presenting in the system to…
CVE-2023-28905 2025-06-28 HIGH 8.0 A heap buffer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker to execute arbitrary…
CVE-2023-28904 2025-06-28 MEDIUM 5.2 A logic flaw leading to a RAM buffer overflow in the bootloader component of the MIB3 infotainment unit allows an…
CVE-2023-28903 2025-06-28 LOW 3.3 An integer overflow in the image processing binary of the MIB3 infotainment unit allows an attacker with local access to…
CVE-2023-28902 2025-06-28 LOW 3.3 An integer underflow in the image processing binary of the MIB3 infotainment unit allows an attacker with local access to…
CVE-2025-1991 2025-06-28 HIGH 7.5 IBM Informix Dynamic Server 12.10,14.10, and15.0 could allow a remote attacker to cause a denial of service due to an…
CVE-2025-6817 2025-06-28 LOW 3.3 A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. This issue affects the function H5C__load_entry of…
CVE-2025-6816 2025-06-28 LOW 3.3 A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5O__fsinfo_encode of the file /src/H5Ofsinfo.c.…
CVE-2025-5937 2025-06-28 MEDIUM 4.3 The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet plugin for WordPress is vulnerable to Cross-Site Request Forgery…
CVE-2025-38086 2025-06-28 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: net: ch9200: fix uninitialised access during mii_nway_restart In mii_nway_restart() the…
CVE-2025-38085 2025-06-28 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race huge_pmd_unshare() drops a reference…
CVE-2025-38084 2025-06-28 N/A 0.0 In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: unshare page tables during VMA split, not before Currently,…
CVE-2025-6755 2025-06-28 HIGH 8.8 The Game Users Share Buttons plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation…
CVE-2025-5304 2025-06-28 CRITICAL 9.8 The PT Project Notebooks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization in the wpnb_pto_new_users_add() function…
CVE-2025-6252 2025-06-28 MEDIUM 6.4 The Qi Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in all versions…
CVE-2025-6381 2025-06-28 HIGH 8.8 The BeeTeam368 Extensions plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via…
CVE-2025-6379 2025-06-28 HIGH 8.8 The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4…
CVE-2025-6350 2025-06-28 MEDIUM 6.4 The WP VR – 360 Panorama and Free Virtual Tour Builder For WordPress plugin for WordPress is vulnerable to Stored…
CVE-2025-53388 2025-06-28 N/A 0.0 Rejected reason: Not used
CVE-2025-53387 2025-06-28 N/A 0.0 Rejected reason: Not used
CVE-2025-53386 2025-06-28 N/A 0.0 Rejected reason: Not used
CVE-2025-53385 2025-06-28 N/A 0.0 Rejected reason: Not used
CVE-2025-53384 2025-06-28 N/A 0.0 Rejected reason: Not used
CVE-2025-53383 2025-06-28 N/A 0.0 Rejected reason: Not used
CVE-2025-53382 2025-06-28 N/A 0.0 Rejected reason: Not used
CVE-2025-53381 2025-06-28 N/A 0.0 Rejected reason: Not used
CVE-2025-53380 2025-06-28 N/A 0.0 Rejected reason: Not used
CVE-2025-36027 2025-06-28 MEDIUM 5.4 IBM Datacap 9.1.7, 9.1.8, and 9.1.9 could allow a remote attacker to hijack the clicking action of the victim. By…
CVE-2025-36026 2025-06-28 MEDIUM 4.3 IBM Datacap 9.1.7, 9.1.8, and 9.1.9 does not set the secure attribute on authorization tokens or session cookies. Attackers may…
CVE-2024-52900 2025-06-28 MEDIUM 6.4 IBM Cognos Analytics 11.2.0 through 12.2.4 Fix Pack 5 and 12.0.0 through 12.0.4 is vulnerable to stored cross-site scripting. This…
CVE-2024-39730 2025-06-28 MEDIUM 5.4 IBM Datacap Navigator 9.1.7, 9.1.8, and 9.1.9 could allow a remote attacker to hijack the clicking action of the victim.…
« Anterior Página 218 de 3492 Siguiente »