Skip to content
Toggle Navigation
ISO/IEC 27001
Introducción a ISO 27001
Requisitos Normativos
ISO 27001 – GAP Analysis (Tool)
Concientización
Todos el contenido
Ciberseguridad
Introducción a la ciberseguridad
Defensa de sistemas informáticos
Amenazas y tendencias
Eventos de ciberseguridad
Glosario
Todos los artículos
Vulnerabilidades CVE
Desarrollo seguro (SDLC)
Desarrollo de software seguro
Normativa y Leyes
Leyes de protección de datos
Agencias nacionales de ciberseguridad
Contacto
Vulnerabilidades CVE
Vulnerabilidades CVE
drmunozcl
2025-06-04T18:44:58-04:00
Vulnerabilidades CVE
A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:
Filtrar por severidad:
Todas
NONE
LOW
MEDIUM
HIGH
CRITICAL
UNKNOWN
Filtrar
CVE ID
Publicado
Severidad
CVSS
Descripción
CVE-2025-37960
2025-05-20
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: memblock: Accept allocated memory before use in memblock_double_array() When increasing…
CVE-2025-37957
2025-05-20
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Forcibly leave SMM mode on SHUTDOWN interception Previously,…
CVE-2025-22102
2025-04-16
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Fix kernel panic during FW release This fixes…
CVE-2025-22062
2025-04-16
MEDIUM
5.5
In the Linux kernel, the following vulnerability has been resolved: sctp: add mutual exclusion in proc_sctp_do_udp_port() We must serialize calls…
CVE-2025-21931
2025-04-01
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: hwpoison, memory_hotplug: lock folio before unmap hwpoisoned folio Commit b15c87263a69…
CVE-2024-57945
2025-01-21
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: riscv: mm: Fix the out of bound issue of vmemmap…
CVE-2025-21645
2025-01-19
N/A
0.0
In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd/pmc: Only disable IRQ1 wakeup where i8042 actually enabled it…
CVE-2024-53209
2024-12-27
MEDIUM
5.5
In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix receive ring space parameters when XDP is active…
CVE-2024-50203
2024-11-08
HIGH
7.8
In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix address emission with tag-based KASAN enabled When…
CVE-2024-43840
2024-08-17
MEDIUM
5.5
In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix trampoline for BPF_TRAMP_F_CALL_ORIG When BPF_TRAMP_F_CALL_ORIG is set,…
CVE-2024-36927
2024-05-30
MEDIUM
4.7
In the Linux kernel, the following vulnerability has been resolved: ipv4: Fix uninit-value access in __ip_make_skb() KMSAN reported uninit-value access…
CVE-2024-36903
2024-05-30
MEDIUM
5.5
In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix potential uninit-value access in __ip6_make_skb() As it was…
CVE-2024-26807
2024-04-04
MEDIUM
5.5
In the Linux kernel, the following vulnerability has been resolved: Both cadence-quadspi ->runtime_suspend() and ->runtime_resume() implementations start with: struct cqspi_st…
CVE-2024-26783
2024-04-04
MEDIUM
5.5
In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone…
CVE-2024-26618
2024-03-11
MEDIUM
5.5
In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Always exit sme_alloc() early with existing storage When sme_alloc()…
CVE-2022-49168
2025-02-26
HIGH
7.8
In the Linux kernel, the following vulnerability has been resolved: btrfs: do not clean up repair bio if submit fails…
CVE-2025-5013
2025-05-21
MEDIUM
4.3
A vulnerability, which was classified as problematic, was found in HkCms up to 2.3.2.240702. This affects an unknown part of…
CVE-2025-5011
2025-05-21
LOW
2.4
A vulnerability classified as problematic was found in moonlightL hexo-boot 4.3.0. This vulnerability affects unknown code of the file /admin/home/index.html…
CVE-2025-5010
2025-05-21
LOW
2.4
A vulnerability classified as problematic has been found in moonlightL hexo-boot 4.3.0. This affects an unknown part of the file…
CVE-2025-4094
2025-05-21
CRITICAL
9.8
The DIGITS: WordPress Mobile Number Signup and Login WordPress plugin before 8.4.6.1 does not rate limit OTP validation attempts, making…
CVE-2022-3196
2022-09-26
HIGH
8.8
Use after free in PDF in Google Chrome prior to 105.0.5195.125 allowed a remote attacker to potentially exploit heap corruption…
CVE-2022-21169
2022-09-26
HIGH
7.3
The package express-xss-sanitizer before 1.1.3 are vulnerable to Prototype Pollution via the allowedTags attribute, allowing the attacker to bypass xss…
CVE-2025-4785
2025-05-16
HIGH
7.3
A vulnerability was found in PHPGurukul Daily Expense Tracker System 1.1. It has been rated as critical. Affected by this…
CVE-2025-4793
2025-05-16
HIGH
7.3
A vulnerability was found in PHPGurukul Online Course Registration 3.1. It has been classified as critical. Affected is an unknown…
CVE-2025-4794
2025-05-16
HIGH
7.3
A vulnerability was found in PHPGurukul Online Course Registration 3.1. It has been declared as critical. Affected by this vulnerability…
CVE-2025-4808
2025-05-16
MEDIUM
6.3
A vulnerability was found in PHPGurukul Park Ticketing Management System 2.0 and classified as critical. This issue affects some unknown…
CVE-2025-4772
2025-05-16
HIGH
7.3
A vulnerability has been found in PHPGurukul Online Course Registration 3.1 and classified as critical. Affected by this vulnerability is…
CVE-2025-4781
2025-05-16
MEDIUM
6.3
A vulnerability classified as critical has been found in PHPGurukul Park Ticketing Management System 2.0. Affected is an unknown function…
CVE-2025-2473
2025-03-18
HIGH
7.3
A vulnerability was found in PHPGurukul Company Visitor Management System 2.0 and classified as critical. Affected by this issue is…
CVE-2024-7628
2024-08-15
HIGH
8.1
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to authentication…
CVE-2024-6328
2024-07-12
CRITICAL
9.8
The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to authentication…
CVE-2025-1178
2025-02-11
MEDIUM
5.6
A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. Affected by this vulnerability is the…
CVE-2025-1180
2025-02-11
LOW
3.1
A vulnerability classified as problematic has been found in GNU Binutils 2.43. This affects the function _bfd_elf_write_section_eh_frame of the file…
CVE-2025-1181
2025-02-11
MEDIUM
5.0
A vulnerability classified as critical was found in GNU Binutils 2.43. This vulnerability affects the function _bfd_elf_gc_mark_rsec of the file…
CVE-2025-1182
2025-02-11
MEDIUM
5.0
A vulnerability, which was classified as critical, was found in GNU Binutils 2.43. Affected is the function bfd_elf_reloc_symbol_deleted_p of the…
CVE-2024-48710
2024-10-15
MEDIUM
6.5
In TP-Link TL-WDR7660 1.0, the wlanTimerRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack…
CVE-2024-48712
2024-10-15
MEDIUM
6.5
In TP-Link TL-WDR7660 1.0, the rtRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack…
CVE-2024-48713
2024-10-15
MEDIUM
6.5
In TP-Link TL-WDR7660 1.0, the wacWhitelistJsonToBin function handles the parameter string name without checking it, which can lead to stack…
CVE-2024-48714
2024-10-15
MEDIUM
6.5
In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string name without checking it, which can lead to stack…
CVE-2025-31491
2025-04-15
HIGH
8.6
AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows.…
CVE-2025-22678
2025-05-19
HIGH
7.1
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in mythemes my white allows Reflected XSS.This issue affects…
CVE-2024-33939
2025-05-19
MEDIUM
5.3
Authentication Bypass Using an Alternate Path or Channel vulnerability in Masteriyo Masteriyo - LMS. Unauth access to course progress.This issue affects…
CVE-2025-4937
2025-05-19
HIGH
7.3
A vulnerability was found in SourceCodester Apartment Visitor Management System 1.0. It has been declared as critical. Affected by this…
CVE-2025-4936
2025-05-19
HIGH
7.3
A vulnerability was found in projectworlds Online Food Ordering System 1.0. It has been classified as critical. Affected is an…
CVE-2025-48346
2025-05-19
MEDIUM
5.3
Missing Authorization vulnerability in Etsy360 Embed and Integrate Etsy Shop allows Accessing Functionality Not Properly Constrained by ACLs. This issue…
CVE-2025-48344
2025-05-19
MEDIUM
5.4
Cross-Site Request Forgery (CSRF) vulnerability in ed4becky Rootspersona allows Cross Site Request Forgery. This issue affects Rootspersona: from n/a through…
CVE-2025-48342
2025-05-19
MEDIUM
5.4
Cross-Site Request Forgery (CSRF) vulnerability in RedefiningTheWeb Dynamic Pricing & Discounts Lite for WooCommerce allows Cross Site Request Forgery. This…
CVE-2025-48341
2025-05-19
MEDIUM
5.9
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10Web Form Maker by 10Web allows Stored XSS.…
CVE-2025-48288
2025-05-19
MEDIUM
6.5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Element Invader ElementInvader Addons for Elementor allows Stored…
CVE-2025-48285
2025-05-19
MEDIUM
4.3
Cross-Site Request Forgery (CSRF) vulnerability in sbouey Falang multilanguage allows Cross Site Request Forgery. This issue affects Falang multilanguage: from…
« Anterior
Página 388 de 3519
Siguiente »
Page load link
Go to Top
