Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2023-21125 2025-08-26 HIGH 8.0 In btif_hh_hsdata_rpt_copy_cb of bta_hh.cc, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege over Bluetooth…
CVE-2025-9529 2025-08-27 HIGH 7.3 A weakness has been identified in Campcodes Payroll Management System 1.0. The affected element is the function include of the file /index.php. This manipulation of the argument page…
CVE-2025-9528 2025-08-27 MEDIUM 4.7 A vulnerability was determined in Linksys E1700 1.0.0.4.003. This vulnerability affects the function systemCommand of the file /goform/systemCommand. Executing manipulation of the argument command can lead to os…
CVE-2025-9527 2025-08-27 HIGH 8.8 A vulnerability was found in Linksys E1700 1.0.0.4.003. This affects the function QoSSetup of the file /goform/QoSSetup. Performing manipulation of the argument ack_policy results in stack-based buffer overflow.…
CVE-2025-9510 2025-08-27 HIGH 7.3 A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. The affected element is an unknown function of the file /branch/addbranch.php. The manipulation of the argument…
CVE-2025-9509 2025-08-27 HIGH 7.3 A security flaw has been discovered in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /report/fair_info_all.php. Performing manipulation of the argument fid…
CVE-2025-9508 2025-08-27 HIGH 7.3 A vulnerability was detected in itsourcecode Apartment Management System 1.0. The impacted element is an unknown function of the file /report/rented_info.php. The manipulation of the argument rsid results…
CVE-2025-9503 2025-08-27 HIGH 7.3 A security vulnerability has been detected in Campcodes Online Loan Management System 1.0. Affected is an unknown function of the file /ajax.php?action=save_borrower. The manipulation of the argument lastname…
CVE-2025-9502 2025-08-27 HIGH 7.3 A weakness has been identified in Campcodes Online Loan Management System 1.0. This impacts an unknown function of the file /ajax.php?action=save_payment. Executing manipulation of the argument loan_id can…
CVE-2025-55443 2025-08-26 CRITICAL 9.1 Telpo MDM 1.4.6 thru 1.4.9 for Android contains sensitive administrator credentials and MQTT server connection details (IP/port) that are stored in plaintext within log files on the device's…
CVE-2025-52353 2025-08-26 CRITICAL 9.8 An arbitrary code execution vulnerability in Badaso CMS 2.9.11. The Media Manager allows authenticated users to upload files containing embedded PHP code via the file-upload endpoint, bypassing content-type…
CVE-2025-43882 2025-08-27 HIGH 7.8 Dell ThinOS 10, versions prior to 2508_10.0127, contains an Unverified Ownership vulnerability. A local low-privileged attacker could potentially exploit this vulnerability leading to Unauthorized Access.
CVE-2025-43730 2025-08-27 HIGH 8.4 Dell ThinOS 10, versions prior to 2508_10.0127, contains an Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability. A local unauthenticated user could potentially exploit this…
CVE-2025-43729 2025-08-27 HIGH 7.8 Dell ThinOS 10, versions prior to 2508_10.0127, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A local low-privileged attacker could potentially exploit this vulnerability leading to Elevation…
CVE-2025-43728 2025-08-27 CRITICAL 9.6 Dell ThinOS 10, versions prior to 2508_10.0127, contain a Protection Mechanism Failure vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Protection mechanism…
CVE-2025-22411 2025-08-26 HIGH 8.8 In process_service_attr_rsp of sdp_discovery.cc, there is a possible use after free due to a logic error in the code. This could lead to remote (proximal/adjacent) code execution with…
CVE-2025-22410 2025-08-26 HIGH 8.4 In multiple locations, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no…
CVE-2025-22409 2025-08-26 HIGH 8.4 In rfc_send_buf_uih of rfc_ts_frames.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with…
CVE-2025-22408 2025-08-26 CRITICAL 9.8 In rfc_check_send_cmd of rfc_utils.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to remote code execution with no…
CVE-2025-22407 2025-08-26 MEDIUM 5.5 In hidd_check_config_done of hidd_conn.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to local information disclosure with no…
CVE-2025-22406 2025-08-26 HIGH 8.4 In bnepu_check_send_packet of bnep_utils.cc, there is a possible way to achieve code execution due to a use after free. This could lead to local escalation of privilege with…
CVE-2025-22405 2025-08-26 HIGH 8.4 In multiple locations, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with no…
CVE-2025-22404 2025-08-26 HIGH 8.4 In avct_lcb_msg_ind of avct_lcb_act.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to local escalation of privilege with…
CVE-2025-22403 2025-08-26 CRITICAL 9.8 In sdp_snd_service_search_req of sdp_discovery.cc, there is a possible way to execute arbitrary code due to a use after free. This could lead to remote code execution with no…
CVE-2025-0093 2025-08-26 HIGH 7.5 In handleBondStateChanged of AdapterService.java, there is a possible unapproved data access due to a missing permission check. This could lead to remote information disclosure with no additional execution…
CVE-2025-0092 2025-08-26 MEDIUM 6.5 In handleBondStateChanged of AdapterService.java, there is a possible permission bypass due to misleading or insufficient UI. This could lead to remote (proximal/adjacent) information disclosure with no additional execution…
CVE-2025-0086 2025-08-26 MEDIUM 6.2 In onResult of AccountManagerService.java, there is a possible way to overwrite auth token due to a missing permission check. This could lead to local information disclosure with no…
CVE-2025-0083 2025-08-26 MEDIUM 4.0 In multiple locations, there is a possible way to access content across user profiles due to URI double encoding. This could lead to local information disclosure with no…
CVE-2025-0080 2025-08-26 HIGH 7.8 In multiple locations, there is a possible way to overlay the installation confirmation dialog due to a tapjacking/overlay attack. This could lead to local escalation of privilege with…
CVE-2025-0079 2025-08-26 HIGH 7.8 In multiple locations, there is a possible way that avdtp and avctp channels could be unencrypted due to a logic error in the code. This could lead to…
CVE-2025-0078 2025-08-26 HIGH 8.8 In main of main.cpp, there is a possible way to bypass SELinux due to a logic error in the code. This could lead to local escalation of privilege…
CVE-2024-49740 2025-08-26 MEDIUM 5.5 In multiple locations, there is a possible crash loop due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User…
CVE-2024-35203 2025-08-26 MEDIUM 6.1 Mahara before 22.10.6, 23.04.6, and 24.04.1 allows cross-site scripting (XSS) via a file, with JavaScript code as part of its name, that is uploaded via the Mahara filebrowser…
CVE-2025-9526 2025-08-27 HIGH 8.8 A vulnerability has been found in Linksys E1700 1.0.0.4.003. Affected by this issue is the function setSysAdm of the file /goform/setSysAdm. Such manipulation of the argument rm_port leads…
CVE-2025-9525 2025-08-27 HIGH 8.8 A flaw has been found in Linksys E1700 1.0.0.4.003. Affected by this vulnerability is the function setWan of the file /goform/setWan. This manipulation of the argument DeviceName/lanIp causes…
CVE-2025-9523 2025-08-27 CRITICAL 9.8 A vulnerability was detected in Tenda AC1206 15.03.06.23. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in stack-based buffer overflow.…
CVE-2025-30064 2025-08-27 N/A 0.0 An insufficiently secured internal function allows session generation for arbitrary users. The decodeParam function checks the JWT but does not verify which signing algorithm was used. As a…
CVE-2025-30063 2025-08-27 N/A 0.0 The configuration file containing database logins and passwords is readable by any local user.
CVE-2025-30061 2025-08-27 N/A 0.0 In the "utils/Reporter/OpenReportWindow.pl" service, there is an SQL injection vulnerability through the "UserID" parameter.
CVE-2025-30060 2025-08-27 N/A 0.0 In the ReturnUserUnitsXML.pl service, the "getUserInfo" function is vulnerable to SQL injection through the "UserID" parameter.
CVE-2025-30059 2025-08-27 N/A 0.0 In the PrepareCDExportJSON.pl service, the "getPerfServiceIds" function is vulnerable to SQL injection.
CVE-2025-30058 2025-08-27 N/A 0.0 In the PatientService.pl service, the "getPatientIdentifier" function is vulnerable to SQL injection through the "pesel" parameter.
CVE-2025-30057 2025-08-27 N/A 0.0 In UHCRTFDoc, the filename parameter can be exploited to execute arbitrary code via command injection into the system() call in the ConvertToPDF function.
CVE-2025-30056 2025-08-27 N/A 0.0 The RunCommand function accepts any parameter, which is then passed for execution in the shell. This allows an attacker to execute arbitrary code on the system.
CVE-2025-30055 2025-08-27 N/A 0.0 The "system" function receives untrusted input from the user. If the "EnableJSCaching" option is enabled, it is possible to execute arbitrary code provided as the "Module" parameter.
CVE-2025-30048 2025-08-27 N/A 0.0 The "serverConfig" endpoint, which returns the module configuration including credentials, is accessible without authentication.
CVE-2025-30041 2025-08-27 N/A 0.0 The paths "/cgi-bin/CliniNET.prd/utils/userlogstat.pl", "/cgi-bin/CliniNET.prd/utils/usrlogstat.pl", and "/cgi-bin/CliniNET.prd/utils/dblogstat.pl" expose data containing session IDs.
CVE-2025-30040 2025-08-27 N/A 0.0 The vulnerability allows unauthenticated users to download a file containing session ID data by directly accessing the "/cgi-bin/CliniNET.prd/utils/userlogxls.pl" endpoint.
CVE-2025-30039 2025-08-27 N/A 0.0 Unauthenticated access to the "/cgi-bin/CliniNET.prd/GetActiveSessions.pl" endpoint allows takeover of any user session logged into the system, including users with admin privileges.
CVE-2025-30038 2025-08-27 N/A 0.0 The vulnerability consists of a session ID leak when saving a file downloaded from CGM CLININET. The identifier is exposed through a built-in Windows security feature that stores…
« Anterior Página 885 de 4304 Siguiente »