Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2025-20218 2025-08-14 MEDIUM 4.9 A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to retrieve sensitive information from an affected…
CVE-2025-20217 2025-08-14 HIGH 8.6 A vulnerability in the packet inspection functionality of the Snort 3 Detection Engine of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to…
CVE-2025-20148 2025-08-14 HIGH 8.5 A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an authenticated, remote attacker to inject arbitrary HTML content into a…
CVE-2025-20136 2025-08-14 HIGH 8.6 A vulnerability in the function that performs IPv4 and IPv6 Network Address Translation (NAT) DNS inspection for Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure…
CVE-2025-20135 2025-08-14 MEDIUM 4.3 A vulnerability in the DHCP client functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated,…
CVE-2025-20134 2025-08-14 HIGH 8.6 A vulnerability in the certificate processing of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote…
CVE-2025-20133 2025-08-14 HIGH 8.6 A vulnerability in the management and VPN web servers of the Remote Access SSL VPN feature of Cisco Secure Firewall ASA Software and Secure FTD Software could allow…
CVE-2025-20127 2025-08-14 HIGH 7.7 A vulnerability in the TLS 1.3 implementation for a specific cipher for Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software…
CVE-2023-43692 2025-08-14 N/A 0.0 An issue was discovered in Malwarebytes before 4.6.14.326 and before 5.1.5.116 (and Nebula 2020-10-21 and later). Out-of-bound reads in strings detection utilities lead to system crashes.
CVE-2023-43683 2025-08-14 N/A 0.0 An issue was discovered in Malwarebytes 4.6.14.326 and before 5.1.5.116 (and Nebula 2020-10-21 and later). A Stack buffer out-of-bounds access exists because of an integer underflow when handling…
CVE-2025-8967 2025-08-14 HIGH 7.3 A vulnerability was determined in itsourcecode Online Tour and Travel Management System 1.0. Affected is an unknown function of the file /admin/operations/packages.php. The manipulation of the argument pname…
CVE-2025-8966 2025-08-14 HIGH 7.3 A vulnerability was found in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /admin/operations/tax.php. The manipulation of the argument…
CVE-2025-8965 2025-08-14 MEDIUM 6.3 A vulnerability has been found in linlinjava litemall up to 1.8.0. This vulnerability affects the function create of the file litemall-admin-api/src/main/java/org/linlinjava/litemall/admin/web/AdminStorageController.java of the component Endpoint. The manipulation of…
CVE-2025-54867 2025-08-14 HIGH 7.0 Youki is a container runtime written in Rust. Prior to version 0.5.5, if /proc and /sys in the rootfs are symbolic links, they can potentially be exploited to…
CVE-2025-54409 2025-08-14 MEDIUM 6.2 AIDE is an advanced intrusion detection environment. From versions 0.13 to 0.19.1, there is a null pointer dereference vulnerability in AIDE. An attacker can crash the program during…
CVE-2025-54389 2025-08-14 MEDIUM 6.2 AIDE is an advanced intrusion detection environment. Prior to version 0.19.2, there is an improper output neutralization vulnerability in AIDE. An attacker can craft a malicious filename by…
CVE-2025-53631 2025-08-14 N/A 0.0 flaskBlog is a blog app built with Flask. In versions 2.8.1 and prior, improper sanitization of postContent when submitting POST requests to /createpost leads to arbitrary JavaScript execution…
CVE-2025-36047 2025-08-14 MEDIUM 5.3 IBM WebSphere Application Server Liberty 18.0.0.2 through 25.0.0.8 is vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability…
CVE-2025-33142 2025-08-14 MEDIUM 5.3 IBM WebSphere Application Server 8.5 and 9.0 could provide weaker than expected security for TLS connections.
CVE-2023-43694 2025-08-14 MEDIUM 5.2 An issue was discovered in Malwarebytes 4.6.14.326 and before and 5.1.5.116 and before (and Nebula 2020-10-21 and later). An Out of bounds read in several disassembling utilities causes…
CVE-2023-5342 2025-08-14 MEDIUM 4.1 The Fedora Secure Boot CA certificate shipped with shim in Fedora was expired which could lead to old or invalid signed boot components being loaded.
CVE-2025-55726 2025-08-15 N/A 0.0 Rejected reason: Not used
CVE-2025-55725 2025-08-15 N/A 0.0 Rejected reason: Not used
CVE-2025-55724 2025-08-15 N/A 0.0 Rejected reason: Not used
CVE-2025-55723 2025-08-15 N/A 0.0 Rejected reason: Not used
CVE-2025-55722 2025-08-15 N/A 0.0 Rejected reason: Not used
CVE-2025-55721 2025-08-15 N/A 0.0 Rejected reason: Not used
CVE-2025-55720 2025-08-15 N/A 0.0 Rejected reason: Not used
CVE-2025-55719 2025-08-15 N/A 0.0 Rejected reason: Not used
CVE-2025-55718 2025-08-15 N/A 0.0 Rejected reason: Not used
CVE-2025-8876 2025-08-14 N/A 0.0 Improper Input Validation vulnerability in N-able N-central allows OS Command Injection.This issue affects N-central: before 2025.3.1.
CVE-2025-8875 2025-08-14 N/A 0.0 Deserialization of Untrusted Data vulnerability in N-able N-central allows Local Execution of Code.This issue affects N-central: before 2025.3.1.
CVE-2025-8964 2025-08-14 MEDIUM 5.3 A vulnerability was identified in code-projects Hostel Management System 1.0. This affects an unknown part of the file hostel_manage.exe of the component Login. The manipulation leads to improper…
CVE-2024-53945 2025-08-14 HIGH 8.8 The KuWFi 4G AC900 LTE router 1.0.13 is vulnerable to command injection on the HTTP API endpoints /goform/formMultiApnSetting and /goform/atCmd. An authenticated attacker can execute arbitrary OS commands…
CVE-2025-8922 2025-08-13 HIGH 7.3 A vulnerability was found in code-projects Job Diary 1.0. This affects an unknown part of the file /admin-inbox.php. The manipulation of the argument ID leads to sql injection.…
CVE-2025-8923 2025-08-13 HIGH 7.3 A vulnerability was determined in code-projects Job Diary 1.0. This vulnerability affects unknown code of the file /edit-details.php. The manipulation of the argument ID leads to sql injection.…
CVE-2025-8924 2025-08-13 HIGH 7.3 A vulnerability was identified in Campcodes Online Water Billing System 1.0. This issue affects some unknown processing of the file /viewbill.php. The manipulation of the argument ID leads…
CVE-2025-8925 2025-08-13 HIGH 7.3 A vulnerability has been found in itsourcecode Sports Management System 1.0. Affected is an unknown function of the file /Admin/match.php. The manipulation of the argument code leads to…
CVE-2011-10018 2025-08-13 CRITICAL 9.8 myBB version 1.6.4 was distributed with an unauthorized backdoor embedded in the source code. The backdoor allowed remote attackers to execute arbitrary PHP code by injecting payloads into…
CVE-2025-8928 2025-08-13 MEDIUM 6.3 A vulnerability was identified in code-projects Medical Store Management System 1.0. This affects an unknown part of the file UpdateMedicines.java of the component Update Medicines Page. The manipulation…
CVE-2025-8929 2025-08-13 MEDIUM 6.3 A vulnerability has been found in code-projects Medical Store Management System 1.0. This vulnerability affects unknown code of the file MainPanel.java. The manipulation of the argument searchTxt leads…
CVE-2025-8930 2025-08-14 MEDIUM 6.3 A vulnerability was found in code-projects Medical Store Management System 1.0. This issue affects some unknown processing of the file UpdateCompany.java of the component Update Company Page. The…
CVE-2025-8931 2025-08-14 MEDIUM 6.3 A vulnerability was determined in code-projects Medical Store Management System 1.0. Affected is an unknown function of the file ChangePassword.java. The manipulation of the argument newPassTxt leads to…
CVE-2025-8946 2025-08-14 HIGH 7.3 A vulnerability has been found in projectworlds Online Notes Sharing Platform 1.0. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument User leads…
CVE-2025-8947 2025-08-14 HIGH 7.3 A vulnerability was found in projectworlds Visitor Management System 1.0. This issue affects some unknown processing of the file /query_data.php. The manipulation of the argument dateF/dateP leads to…
CVE-2025-8948 2025-08-14 HIGH 7.3 A vulnerability was determined in projectworlds Visitor Management System 1.0. Affected is an unknown function of the file /front.php. The manipulation of the argument rid leads to sql…
CVE-2025-8950 2025-08-14 HIGH 7.3 A vulnerability was identified in Campcodes Online Recruitment Management System 1.0. This issue affects some unknown processing of the file /Recruitment/index.php?page=view_vacancy. The manipulation of the argument ID leads…
CVE-2025-8951 2025-08-14 HIGH 7.3 A vulnerability has been found in PHPGurukul Teachers Record Management System 2.1. Affected is an unknown function of the file /admin/search.php. The manipulation of the argument searchdata leads…
CVE-2025-8952 2025-08-14 HIGH 7.3 A vulnerability was found in Campcodes Online Flight Booking Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ajax.php?action=login of the component Login.…
CVE-2025-8954 2025-08-14 HIGH 7.3 A vulnerability was identified in PHPGurukul Hospital Management System 4.0. This affects an unknown part of the file /admin/doctor-specilization.php. The manipulation of the argument doctorspecilization leads to sql…
« Anterior Página 915 de 4305 Siguiente »