Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

CVE ID Publicado Severidad CVSS Descripción
CVE-2025-6656 2025-06-25 LOW 3.3 PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-6655 2025-06-25 LOW 3.3 PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-6654 2025-06-25 HIGH 7.8 PDF-XChange Editor PRC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2025-6653 2025-06-25 LOW 3.3 PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-6652 2025-06-25 LOW 3.3 PDF-XChange Editor PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-6651 2025-06-25 HIGH 7.8 PDF-XChange Editor JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2025-6650 2025-06-25 LOW 3.3 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-6649 2025-06-25 LOW 3.3 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-6648 2025-06-25 LOW 3.3 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-6647 2025-06-25 HIGH 7.8 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2025-6646 2025-06-25 LOW 3.3 PDF-XChange Editor U3D File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected…
CVE-2025-6645 2025-06-25 HIGH 7.8 PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on…
CVE-2025-6644 2025-06-25 HIGH 7.8 PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on…
CVE-2025-6643 2025-06-25 LOW 3.3 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-6642 2025-06-25 HIGH 7.8 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code…
CVE-2025-6641 2025-06-25 LOW 3.3 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on…
CVE-2025-6640 2025-06-25 HIGH 7.8 PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on…
CVE-2025-6443 2025-06-25 HIGH 7.2 Mikrotik RouterOS VXLAN Source IP Improper Access Control Vulnerability. This vulnerability allows remote attackers to bypass access restrictions on affected…
CVE-2025-52934 2025-06-26 N/A 0.0 Rejected reason: Not a vulnerability.
CVE-2024-57708 2025-06-25 MEDIUM 5.7 An issue in OneTrust SDK v.6.33.0 allows a local attacker to cause a denial of service via the Object.setPrototypeOf, __proto__,…
CVE-2025-6665 2025-06-25 HIGH 7.3 A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. Affected by this vulnerability is…
CVE-2025-6664 2025-06-25 MEDIUM 4.3 A vulnerability, which was classified as problematic, was found in CodeAstro Patient Record Management System 1.0. Affected is an unknown…
CVE-2025-36038 2025-06-25 CRITICAL 9.0 IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to execute arbitrary code on the system with…
CVE-2025-45333 2025-06-25 N/A 0.0 berkeley-abc abc 1.1 contains a Null Pointer Dereference (NPD) vulnerability in the Abc_NtkCecFraigPart function of its data processing module, leading…
CVE-2025-6627 2025-06-25 HIGH 8.8 A vulnerability has been found in TOTOLINK A702R 4.0.0-B20230721.1521 and classified as critical. This vulnerability affects unknown code of the…
CVE-2025-45332 2025-06-25 HIGH 7.5 vkoskiv c-ray 1.1 contains a Null Pointer Dereference (NPD) vulnerability in the parse_mtllib function of its data processing module, leading…
CVE-2025-6678 2025-06-25 HIGH 7.5 Autel MaxiCharger AC Wallbox Commercial PIN Missing Authentication Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information…
CVE-2025-6621 2025-06-25 MEDIUM 6.3 A vulnerability classified as critical has been found in TOTOLINK CA300-PoE 6.2c.884. This affects the function QuickSetting of the file…
CVE-2025-6620 2025-06-25 MEDIUM 6.3 A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been rated as critical. Affected by this issue is the…
CVE-2025-6619 2025-06-25 MEDIUM 6.3 A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been declared as critical. Affected by this vulnerability is the…
CVE-2025-6618 2025-06-25 MEDIUM 6.3 A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been classified as critical. Affected is the function SetWLanApcliSettings of…
CVE-2025-6445 2025-06-25 HIGH 8.1 ServiceStack FindType Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations…
CVE-2025-6444 2025-06-25 MEDIUM 5.9 ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability. This vulnerability allows remote attackers to relay NTLM credentials on affected installations…
CVE-2025-5834 2025-06-25 MEDIUM 4.4 Pioneer DMH-WT7600NEX Missing Immutable Root of Trust in Hardware Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to bypass…
CVE-2025-5833 2025-06-25 MEDIUM 4.6 Pioneer DMH-WT7600NEX Root Filesystem Insufficient Verification of Data Authenticity Vulnerability. This vulnerability allows physically present attackers to bypass authentication on…
CVE-2025-5832 2025-06-25 MEDIUM 6.8 Pioneer DMH-WT7600NEX Software Update Signing Insufficient Verification of Data Authenticity Vulnerability. This vulnerability allows physically present attackers to execute arbitrary…
CVE-2025-5830 2025-06-25 HIGH 8.8 Autel MaxiCharger AC Wallbox Commercial DLB_SlaveRegister Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute…
CVE-2025-5829 2025-06-25 MEDIUM 6.8 Autel MaxiCharger AC Wallbox Commercial autocharge Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to…
CVE-2025-5828 2025-06-25 MEDIUM 6.8 Autel MaxiCharger AC Wallbox Commercial wLength Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows physically present attackers to execute…
CVE-2025-5827 2025-06-25 HIGH 8.8 Autel MaxiCharger AC Wallbox Commercial ble_process_esp32_msg Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute…
CVE-2025-5826 2025-06-25 MEDIUM 6.3 Autel MaxiCharger AC Wallbox Commercial ble_process_esp32_msg Misinterpretation of Input Vulnerability. This vulnerability allows network-adjacent attackers to inject arbitrary AT commands…
CVE-2025-5825 2025-06-25 HIGH 7.5 Autel MaxiCharger AC Wallbox Commercial Firmware Downgrade Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code…
CVE-2025-5824 2025-06-25 MEDIUM 5.0 Autel MaxiCharger AC Wallbox Commercial Origin Validation Error Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on…
CVE-2025-5823 2025-06-25 MEDIUM 4.9 Autel MaxiCharger AC Wallbox Commercial Serial Number Exposed Dangerous Method Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose…
CVE-2025-5822 2025-06-25 HIGH 7.1 Autel MaxiCharger AC Wallbox Commercial Technician API Incorrect Authorization Privilege Escalation Vulnerability. This vulnerability allows remote attackers to escalate privileges…
CVE-2025-49550 2025-06-25 MEDIUM 4.3 Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Incorrect Authorization vulnerability that could result…
CVE-2025-49549 2025-06-25 LOW 2.7 Adobe Commerce versions 2.4.8, 2.4.7-p5, 2.4.6-p10, 2.4.5-p12, 2.4.4-p13 and earlier are affected by an Incorrect Authorization vulnerability that could result…
CVE-2025-52890 2025-06-25 HIGH 8.1 Incus is a system container and virtual machine manager. When using an ACL on a device connected to a bridge,…
CVE-2025-52889 2025-06-25 LOW 3.4 Incus is a system container and virtual machine manager. When using an ACL on a device connected to a bridge,…
CVE-2025-52576 2025-06-25 MEDIUM 5.3 Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.46, Kanboard is vulnerable to username…
« Anterior Página 228 de 3494 Siguiente »