Skip to content
Toggle Navigation
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
ISO 27001 – GAP Analysis (Tool)
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Amenazas y tendencias
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Desarrollo seguro (SDLC)
Desarrollo de software seguro
Normativa y Leyes
Leyes de protección de datos
Agencias nacionales de ciberseguridad
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2025-5476
2025-06-21
MEDIUM
6.3
Sony XAV-AX8500 Bluetooth Improper Isolation Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected Sony XAV-AX8500…
CVE-2025-5475
2025-06-21
HIGH
7.5
Sony XAV-AX8500 Bluetooth Packet Handling Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code…
CVE-2025-6373
2025-06-21
HIGH
8.8
A vulnerability has been found in D-Link DIR-619L 2.06B01 and classified as critical. This vulnerability affects the function formSetWizard1 of…
CVE-2025-6372
2025-06-20
HIGH
8.8
A vulnerability, which was classified as critical, was found in D-Link DIR-619L 2.06B01. This affects the function formSetWizard1 of the…
CVE-2025-6371
2025-06-20
HIGH
8.8
A vulnerability, which was classified as critical, has been found in D-Link DIR-619L 2.06B01. Affected by this issue is the…
CVE-2025-6370
2025-06-20
HIGH
8.8
A vulnerability classified as critical was found in D-Link DIR-619L 2.06B01. Affected by this vulnerability is the function formWlanGuestSetup of…
CVE-2025-6369
2025-06-20
HIGH
8.8
A vulnerability classified as critical has been found in D-Link DIR-619L 2.06B01. Affected is the function formdumpeasysetup of the file…
CVE-2025-6368
2025-06-20
HIGH
8.8
A vulnerability was found in D-Link DIR-619L 2.06B01. It has been rated as critical. This issue affects the function formSetEmail…
CVE-2025-6367
2025-06-20
HIGH
8.8
A vulnerability was found in D-Link DIR-619L 2.06B01. It has been declared as critical. This vulnerability affects unknown code of…
CVE-2025-6365
2025-06-20
MEDIUM
5.7
A vulnerability was found in HobbesOSR Kitten up to c4f8b7c3158983d1020af432be1b417b28686736 and classified as critical. Affected by this issue is the…
CVE-2025-6364
2025-06-20
HIGH
7.3
A vulnerability has been found in code-projects Simple Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability…
CVE-2025-6363
2025-06-20
HIGH
7.3
A vulnerability, which was classified as critical, was found in code-projects Simple Pizza Ordering System 1.0. Affected is an unknown…
CVE-2025-6362
2025-06-20
HIGH
7.3
A vulnerability, which was classified as critical, has been found in code-projects Simple Pizza Ordering System 1.0. This issue affects…
CVE-2025-6361
2025-06-20
HIGH
7.3
A vulnerability classified as critical was found in code-projects Simple Pizza Ordering System 1.0. This vulnerability affects unknown code of…
CVE-2025-48945
2025-06-20
N/A
0.0
pycares is a Python module which provides an interface to c-ares. c-ares is a C library that performs DNS requests…
CVE-2023-5600
2025-06-20
LOW
3.1
An issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from…
CVE-2025-6360
2025-06-20
HIGH
7.3
A vulnerability classified as critical has been found in code-projects Simple Pizza Ordering System 1.0. This affects an unknown part…
CVE-2025-6359
2025-06-20
HIGH
7.3
A vulnerability was found in code-projects Simple Pizza Ordering System 1.0. It has been rated as critical. Affected by this…
CVE-2025-34030
2025-06-20
N/A
0.0
An OS command injection vulnerability exists in sar2html version 3.2.2 and prior via the plot parameter in index.php. The application…
CVE-2025-34029
2025-06-20
N/A
0.0
An OS command injection vulnerability exists in the Edimax EW-7438RPn Mini firmware version 1.13 and prior via the syscmd.asp form…
CVE-2025-34024
2025-06-20
N/A
0.0
An OS command injection vulnerability exists in the Edimax EW-7438RPn firmware version 1.13 and prior via the mp.asp form handler.…
CVE-2025-34023
2025-06-20
N/A
0.0
A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly…
CVE-2025-34022
2025-06-20
N/A
0.0
A path traversal vulnerability exists in multiple models of Selea Targa IP OCR-ANPR cameras, including iZero, Targa 512, Targa 504,…
CVE-2025-34021
2025-06-20
N/A
0.0
A server-side request forgery (SSRF) vulnerability exists in multiple Selea Targa IP OCR-ANPR camera models, including iZero, Targa 512, Targa…
CVE-2025-25038
2025-06-20
N/A
0.0
An OS command injection vulnerability exists in MiniDVBLinux version 5.4 and earlier. The system’s web-based management interface fails to properly…
CVE-2025-25037
2025-06-20
N/A
0.0
An information disclosure vulnerability exists in Aquatronica Controller System firmware versions
CVE-2025-25034
2025-06-20
N/A
0.0
A PHP object injection vulnerability exists in SugarCRM versions prior to 6.5.24, 6.7.13, 7.5.2.5, 7.6.2.2, and 7.7.1.0 due to improper…
CVE-2024-4994
2025-06-20
HIGH
8.1
An issue has been discovered in GitLab CE/EE affecting all versions from 16.1.0 before 16.11.5, all versions starting from 17.0…
CVE-2024-4025
2025-06-20
MEDIUM
6.5
A Denial of Service (DoS) condition has been discovered in GitLab CE/EE affecting all versions from 7.10 prior before 16.11.5,…
CVE-2025-6358
2025-06-20
HIGH
7.3
A vulnerability was found in code-projects Simple Pizza Ordering System 1.0. It has been declared as critical. Affected by this…
CVE-2025-6357
2025-06-20
HIGH
7.3
A vulnerability was found in code-projects Simple Pizza Ordering System 1.0. It has been classified as critical. Affected is an…
CVE-2025-6356
2025-06-20
HIGH
7.3
A vulnerability was found in code-projects Simple Pizza Ordering System 1.0 and classified as critical. This issue affects some unknown…
CVE-2025-5121
2025-06-20
HIGH
8.5
An issue has been discovered in GitLab CE/EE affecting all versions from 17.11 before 17.11.4 and 18.0 before 18.0.2. A…
CVE-2025-52484
2025-06-20
N/A
0.0
RISC Zero is a general computing platform based on zk-STARKs and the RISC-V microarchitecture. Due to a missing constraint in…
CVE-2025-46158
2025-06-20
N/A
0.0
An issue in redoxOS kernel before commit 5d41cd7c allows a local attacker to cause a denial of service via the…
CVE-2025-2443
2025-06-20
HIGH
8.7
An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy bypass in a…
CVE-2025-6355
2025-06-20
HIGH
7.3
A vulnerability has been found in SourceCodester Online Hotel Reservation System 1.0 and classified as critical. This vulnerability affects unknown…
CVE-2025-6354
2025-06-20
HIGH
7.3
A vulnerability, which was classified as critical, has been found in code-projects Online Shoe Store 1.0. Affected by this issue…
CVE-2025-6353
2025-06-20
LOW
3.5
A vulnerability classified as problematic was found in code-projects Responsive Blog 1.0. Affected by this vulnerability is an unknown functionality…
CVE-2025-49132
2025-06-20
CRITICAL
10.0
Pterodactyl is a free, open-source game server management panel. Prior to version 1.11.11, using the /locales/locale.json with the locale and…
CVE-2025-48059
2025-06-20
N/A
0.0
PowSyBl (Power System Blocks) is a framework to build power system oriented software. In com.powsybl:powsybl-iidm-criteria versions 6.3.0 to before 6.7.2…
CVE-2025-44635
2025-06-20
N/A
0.0
There are multiple unauthorized remote command execution vulnerabilities in the H3C ER2200G2, ERG2-450W, ERG2-1200W, ERG2-1350W, NR1200W series routers before ERG2AW-MNW100-R1117;…
CVE-2025-6352
2025-06-20
MEDIUM
5.3
A vulnerability classified as problematic has been found in code-projects Automated Voting System 1.0. Affected is an unknown function of…
CVE-2025-6351
2025-06-20
MEDIUM
6.3
A vulnerability was found in itsourcecode Employee Record Management System 1.0. It has been rated as critical. This issue affects…
CVE-2025-6347
2025-06-20
LOW
2.4
A vulnerability was found in code-projects Responsive Blog 1.0/1.12.4/3.3.4. It has been declared as problematic. This vulnerability affects unknown code…
CVE-2025-6193
2025-06-20
MEDIUM
5.9
A command injection vulnerability was discovered in the TrustyAI Explainability toolkit. Arbitrary commands placed in certain fields of a LMEValJob…
CVE-2025-5416
2025-06-20
LOW
2.7
A vulnerability has been identified in Keycloak that could lead to unauthorized information disclosure. While it requires an already authenticated…
CVE-2025-45890
2025-06-20
N/A
0.0
Directory Traversal vulnerability in novel plus before v.5.1.0 allows a remote attacker to execute arbitrary code via the filePath parameter
CVE-2025-45331
2025-06-20
N/A
0.0
brplot v420.69.1 contains a Null Pointer Dereference (NPD) vulnerability in the br_dagens_handle_once function of its data processing module, leading to…
CVE-2025-44203
2025-06-20
N/A
0.0
In HotelDruid 3.0.7, an unauthenticated attacker can exploit verbose SQL error messages on creadb.php before the 'create database' button is…
« Anterior
Página 237 de 3495
Siguiente »
Page load link
Go to Top
