Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

CVE ID Publicado Severidad CVSS Descripción
CVE-2025-6552 2025-06-24 MEDIUM 4.3 A vulnerability was found in java-aodeng Hope-Boot 1.0.0. It has been classified as problematic. Affected is the function doLogin of…
CVE-2025-52979 2025-06-24 N/A 0.0 Rejected reason: Not used
CVE-2025-52978 2025-06-24 N/A 0.0 Rejected reason: Not used
CVE-2025-52977 2025-06-24 N/A 0.0 Rejected reason: Not used
CVE-2025-52976 2025-06-24 N/A 0.0 Rejected reason: Not used
CVE-2025-52975 2025-06-24 N/A 0.0 Rejected reason: Not used
CVE-2025-52974 2025-06-24 N/A 0.0 Rejected reason: Not used
CVE-2025-52973 2025-06-24 N/A 0.0 Rejected reason: Not used
CVE-2025-52972 2025-06-24 N/A 0.0 Rejected reason: Not used
CVE-2025-52971 2025-06-24 N/A 0.0 Rejected reason: Not used
CVE-2025-52574 2025-06-24 HIGH 7.5 SysmonElixir is a system monitor HTTP service in Elixir. Prior to version 1.0.1, the /read endpoint reads any file from…
CVE-2025-52560 2025-06-24 HIGH 8.1 Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.46, Kanboard allows password reset emails…
CVE-2025-48470 2025-06-24 MEDIUM 4.1 Successful exploitation of the stored cross-site scripting vulnerability could allow an attacker to inject malicious scripts into device fields and…
CVE-2025-48469 2025-06-24 CRITICAL 9.6 Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload firmware through a public update page, potentially leading…
CVE-2025-48468 2025-06-24 MEDIUM 6.4 Successful exploitation of the vulnerability could allow an attacker that has physical access to interface with JTAG to inject or…
CVE-2025-48467 2025-06-24 MEDIUM 6.5 Successful exploitation of the vulnerability could allow an attacker to cause repeated reboots, potentially leading to remote denial-of-service and system…
CVE-2025-48466 2025-06-24 HIGH 8.1 Successful exploitation of the vulnerability could allow an unauthenticated, remote attacker to send Modbus TCP packets to manipulate Digital Outputs,…
CVE-2025-48463 2025-06-24 LOW 3.1 Successful exploitation of the vulnerability could allow an attacker to intercept data and conduct session hijacking on the exposed data…
CVE-2025-48462 2025-06-24 MEDIUM 4.2 Successful exploitation of the vulnerability could allow an attacker to consume all available session slots and block other users from…
CVE-2025-48461 2025-06-24 MEDIUM 5.0 Successful exploitation of the vulnerability could allow an unauthenticated attacker to conduct brute force guessing and account takeover as the…
CVE-2025-34038 2025-06-24 N/A 0.0 A SQL injection vulnerability exists in Fanwei e-cology 8.0 via the getdata.jsp endpoint. The application directly passes unsanitized user input…
CVE-2025-34037 2025-06-24 N/A 0.0 An OS command injection vulnerability exists in various models of E-Series Linksys routers via the /tmUnblock.cgi and /hndUnblock.cgi endpoints over HTTP…
CVE-2025-34034 2025-06-24 N/A 0.0 A hardcoded credential vulnerability exists in the Blue Angel Software Suite deployed on embedded Linux systems. The application contains multiple…
CVE-2025-34033 2025-06-24 N/A 0.0 An OS command injection vulnerability exists in the Blue Angel Software Suite running on embedded Linux devices via the ping_addr…
CVE-2025-34032 2025-06-24 N/A 0.0 A reflected cross-site scripting (XSS) vulnerability exists in the Moodle LMS Jmol plugin version 6.1 and prior via the data…
CVE-2025-34031 2025-06-24 N/A 0.0 A path traversal vulnerability exists in the Moodle LMS Jmol plugin version 6.1 and prior via the query parameter in…
CVE-2025-6536 2025-06-24 LOW 3.3 A vulnerability has been found in Tarantool up to 3.3.1 and classified as problematic. Affected by this vulnerability is the…
CVE-2025-34041 2025-06-24 N/A 0.0 An OS command injection vulnerability exists in the Chinese versions of Sangfor Endpoint Detection and Response (EDR) management platform versions…
CVE-2025-34040 2025-06-24 N/A 0.0 An arbitrary file upload vulnerability exists in the Zhiyuan OA platform 5.0, 5.1 - 5.6sp1, 6.0 - 6.1sp2, 7.0, 7.0sp1…
CVE-2025-34039 2025-06-24 N/A 0.0 A code injection vulnerability exists in Yonyou UFIDA NC v6.5 and prior due to the exposure of the BeanShell testing…
CVE-2025-6534 2025-06-24 MEDIUM 4.2 A vulnerability, which was classified as problematic, was found in xxyopen/201206030 novel-plus up to 5.1.3. This affects the function remove…
CVE-2025-6533 2025-06-24 MEDIUM 5.6 A vulnerability, which was classified as critical, has been found in xxyopen/201206030 novel-plus up to 5.1.3. Affected by this issue…
CVE-2025-6532 2025-06-24 MEDIUM 4.3 A vulnerability classified as problematic was found in NOYAFA/Xiami LF9 Pro up to 20250611. Affected by this vulnerability is an…
CVE-2025-6531 2025-06-24 MEDIUM 4.3 A vulnerability was found in SIFUSM/MZZYG BD S1 up to 20250611. It has been declared as problematic. This vulnerability affects…
CVE-2025-6530 2025-06-23 MEDIUM 4.8 A vulnerability was found in 70mai M300 up to 20250611. It has been classified as problematic. This affects an unknown…
CVE-2025-6529 2025-06-23 HIGH 8.8 A vulnerability was found in 70mai M300 up to 20250611 and classified as critical. Affected by this issue is some…
CVE-2025-6528 2025-06-23 MEDIUM 4.3 A vulnerability has been found in 70mai M300 up to 20250611 and classified as problematic. Affected by this vulnerability is…
CVE-2025-6527 2025-06-23 LOW 3.1 A vulnerability, which was classified as problematic, was found in 70mai M300 up to 20250611. Affected is an unknown function…
CVE-2025-6526 2025-06-23 LOW 3.1 A vulnerability, which was classified as problematic, has been found in 70mai M300 up to 20250611. This issue affects some…
CVE-2025-6525 2025-06-23 MEDIUM 4.3 A vulnerability classified as problematic was found in 70mai 1S up to 20250611. This vulnerability affects unknown code of the…
CVE-2025-6524 2025-06-23 LOW 3.1 A vulnerability classified as problematic has been found in 70mai 1S up to 20250611. This affects an unknown part of…
CVE-2025-52562 2025-06-23 CRITICAL 10.0 Convoy is a KVM server management panel for hosting businesses. In versions 3.9.0-rc3 to before 4.4.1, there is a directory…
CVE-2025-52561 2025-06-23 N/A 0.0 HTMLSanitizer.jl is a Whitelist-based HTML sanitizer. Prior to version 0.2.1, when adding the style tag to the whitelist, content inside…
CVE-2025-52558 2025-06-23 N/A 0.0 changedetection.io is a free open source web page change detection, website watcher, restock monitor and notification service. Prior to version…
CVE-2025-23092 2025-06-23 N/A 0.0 Mitel OpenScape Accounting Management through V5 R1.1.0 could allow an authenticated attacker with administrative privileges to conduct a path traversal…
CVE-2025-49574 2025-06-23 MEDIUM 6.4 Quarkus is a Cloud Native, (Linux) Container First framework for writing Java applications. In versions prior to 3.24.0, there is…
CVE-2025-48026 2025-06-23 N/A 0.0 A vulnerability in the WebApl component of Mitel OpenScape Xpressions through V7R1 FR5 HF43 P913 could allow an unauthenticated attacker…
CVE-2025-44528 2025-06-23 N/A 0.0 An issue in Texas Instruments LP-CC2652RB SimpleLink CC13XX CC26XX SDK 7.41.00.17 allows attackers to cause a Denial of Service (DoS)…
CVE-2023-47030 2025-06-23 N/A 0.0 An issue in NCR Terminal Handler v.1.5.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via…
CVE-2021-47688 2025-06-23 MEDIUM 5.7 In WhiteBeam 0.2.0 through 0.2.1 before 0.2.2, a user with local access to a server can bypass the allow-list functionality…
« Anterior Página 233 de 3495 Siguiente »