Critical vulnerabilities, curated daily for security professionals
đ¯ SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
đ
Archived Security Brief
Friday's brief covers 3 critical-severity CVEs disclosed yesterday, up 200% from Thursday's single critical vulnerability. High-priority disclosures decreased significantly to 45 CVEs, down 53% from the prior day's 95. Five vulnerabilities are confirmed actively exploited in the wild, including CVE-2025-14611 affecting Gladinet CentreStack and Triofox, CVE-2025-43529 targeting Apple products, and CVE-2025-59374 impacting ASUS Live Update. Notable critical vulnerabilities include CVE-2025-14998 (CVSS 9.8) affecting the Branda WordPress plugin with privilege escalation via account takeover, and CVE-2025-66398 (CVSS 9.6) targeting Signal K Server deployments. Patch availability stands at 0%, requiring organizations to implement compensating controls until vendor fixes are released.
45 high-priority CVEs tracked (53% decrease from 95)
5 actively exploited vulnerabilities including Gladinet, Apple, ASUS, Digiever, and MongoDB products
0% patch availability across disclosed vulnerabilities
WordPress Branda plugin and Signal K Server among highest-severity disclosures
Immediate action: Organizations using Gladinet CentreStack/Triofox, Apple products, ASUS Live Update, Digiever DS-2105 Pro, or MongoDB should prioritize review of the actively exploited CVEs and implement network-level mitigations. With no patches currently available, compensating controls such as access restrictions and enhanced monitoring are essential until vendor updates are released.
đĄ Tip: Swipe CVE cards left to â star, right to â remove
Section Navigation
â ī¸
CISA Known Exploited Vulnerabilities
â ī¸ CISA KEVURGENT
CVE-2025-14611
9.5
GladinetCentreStack and Triofox
â° Federal Deadline:January 4, 2026(3 days remaining)
Gladinet CentreStack and Triofox Hard Coded Cryptographic Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2025-43529
9.5đ
AppleMultiple Products
â° Federal Deadline:January 4, 2026(3 days remaining)
Apple Multiple Products Use-After-Free WebKit Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2025-59374
9.5
ASUSLive Update
â° Federal Deadline:January 6, 2026(5 days remaining)
ASUS Live Update Embedded Malicious Code Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2023-52163 (reserved 2023, disclosed 2025)
9.5
DigieverDS-2105 Pro
â° Federal Deadline:January 11, 2026(10 days remaining)
Digiever DS-2105 Pro Missing Authorization Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-14847
9.5
MongoDBMongoDB and MongoDB Server
â° Federal Deadline:January 18, 2026(17 days remaining)
MongoDB and MongoDB Server Improper Handling of Length Parameter Inconsistency Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
đ¨
Critical Vulnerabilities
CVE-2025-14998 (reserved 2025, disclosed 2026)
9.8đ
The Branda plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions upMultiple Products
The Branda plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.4.24. This is due to the plugin not properly validating a user's identity prior to updating their password. This makes it possible for unauthenticated attackers to change arbitrary user's passwords, including administrators, and leverage that to gain access to their account.
CVSS Base9.8
â
CRSSelect profile
CVE-2025-66398 (reserved 2025, disclosed 2026)
9.6đ
Signal K Server is a server application that runs on a central hub in aMultiple Products
Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.19.0, an unauthenticated attacker can pollute the internal state (`restoreFilePath`) of the server via the `/skServer/validateBackup` endpoint. This allows the attacker to hijack the administrator's "Restore" functionality to overwrite critical server configuration files (e.g., `security.json`, `package.json`), leading to account takeover and Remote Code Execution (RCE). Version 2.19.0 patches this vulnerability.
CVSS Base9.6
â
CRSSelect profile
CVE-2025-68620 (reserved 2025, disclosed 2026)
9.1đ
Signal K Server is a server application that runs on a central hub in aMultiple Products
Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.19.0 expose two features that can be chained together to steal JWT authentication tokens without any prior authentication. The attack combines WebSocket-based request enumeration with unauthenticated polling of access request status. The first is Unauthenticated WebSocket Request Enumeration: When a WebSocket client connects to the SignalK stream endpoint with the `serverevents=all` query parameter, the server sends all cached server events including `ACCESS_REQUEST` events that contain details about pending access requests. The `startServerEvents` function iterates over `app.lastServerEvents` and writes each cached event to any connected client without verifying authorization level. Since WebSocket connections are allowed for readonly users (which includes unauthenticated users when `allow_readonly` is true), attackers receive these events containing request IDs, client identifiers, descriptions, requested permissions, and IP addresses. The second is Unauthenticated Token Polling: The access request status endpoint at `/signalk/v1/access/requests/:id` returns the full state of an access request without requiring authentication. When an administrator approves a request, the response includes the issued JWT token in plaintext. The `queryRequest` function returns the complete request object including the token field, and the REST endpoint uses readonly authentication, allowing unauthenticated access. An attacker has two paths to exploit these vulnerabilities. Either the attacker creates their own access request (using the IP spoofing vulnerability to craft a convincing spoofed request), then polls their own request ID until an administrator approves it, receiving the JWT token; or the attacker passively monitors the WebSocket stream to discover request IDs from legitimate devices, then polls those IDs and steals the JWT tokens when administrators approve them, hijacking legitimate device credentials. Both paths require zero authentication and enable complete authentication bypass. Version 2.19.0 fixes the underlying issues.
CVSS Base9.1
â
CRSSelect profile
â ī¸
High Priority Updates
CVE-2025-28949 (reserved 2025, disclosed 2026)
8.5đ
WordPressMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Codedraft Mediabay - WordPress Media Library Folders allows Blind SQL Injection
CVSS Base8.5
â
CRSSelect profile
CVE-2025-50053 (reserved 2025, disclosed 2026)
7.1đ
nebelhorn BlappstaMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in nebelhorn Blappsta Mobile App Plugin & Your native, mobile iPhone App and Android App allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-11157 (reserved 2025, disclosed 2026)
7.8đ
feastMultiple Products
A high-severity remote code execution vulnerability exists in feast-dev/feast version 0
CVSS Base7.8
â
CRSSelect profile
CVE-2021-47741 (reserved 2021, disclosed 2026)
7.5đ
ZBLMultiple Products
ZBL EPON ONU Broadband Router V100R001 contains a privilege escalation vulnerability that allows limited administrative users to elevate access by sending requests to configuration endpoints
CVSS Base7.5
â
CRSSelect profile
CVE-2025-15389 (reserved 2025, disclosed 2026)
8.8đ
theMultiple Products
VPN Firewall developed by QNO Technology has an OS Command Injection vulnerability, allowing authenticated remote attackers to inject arbitrary OS commands and execute them on the server
CVSS Base8.8
â
CRSSelect profile
CVE-2025-30628 (reserved 2025, disclosed 2026)
8.5đ
ImproperMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AA-Team Amazon Affiliates Addon for WPBakery Page Builder (formerly Visual Composer) allows SQL Injection
CVSS Base8.5
â
CRSSelect profile
CVE-2021-47726 (reserved 2021, disclosed 2026)
7.5đ
NuComMultiple Products
NuCom 11N Wireless Router 5
CVSS Base7.5
â
CRSSelect profile
CVE-2025-15427 (reserved 2025, disclosed 2026)
7.3đ
securityMultiple Products
A security flaw has been discovered in Seeyon Zhiyuan OA Web Application System up to 20251222
CVSS Base7.3
â
CRSSelect profile
CVE-2025-55065 (reserved 2025, disclosed 2026)
7.5đ
UnknownMultiple Products
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVSS Base7.5
â
CRSSelect profile
CVE-2021-47742 (reserved 2021, disclosed 2026)
8.8đ
EpicMultiple Products
Epic Games Psyonix Rocket League <=1
CVSS Base8.8
â
CRSSelect profile
CVE-2021-47745 (reserved 2021, disclosed 2026)
8.8đ
CypressMultiple Products
Cypress Solutions CTM-200 2
CVSS Base8.8
â
CRSSelect profile
CVE-2021-47747 (reserved 2021, disclosed 2026)
8.8đ
meterNMultiple Products
meterN 1
CVSS Base8.8
â
CRSSelect profile
CVE-2025-15428 (reserved 2025, disclosed 2026)
8.8đ
weaknessMultiple Products
A weakness has been identified in UTT čŋå 512W 1
CVSS Base8.8
â
CRSSelect profile
CVE-2025-15429 (reserved 2025, disclosed 2026)
8.8đ
securityMultiple Products
A security vulnerability has been detected in UTT čŋå 512W 1
CVSS Base8.8
â
CRSSelect profile
CVE-2025-15430 (reserved 2025, disclosed 2026)
8.8đ
wasMultiple Products
A vulnerability was detected in UTT čŋå 512W 1
CVSS Base8.8
â
CRSSelect profile
CVE-2025-15431 (reserved 2025, disclosed 2026)
8.8
flawMultiple Products
A flaw has been found in UTT čŋå 512W 1
CVSS Base8.8
â
CRSSelect profile
CVE-2020-36903 (reserved 2020, disclosed 2026)
8.4
SeleaMultiple Products
Selea CarPlateServer 4
CVSS Base8.4
â
CRSSelect profile
CVE-2020-36904 (reserved 2020, disclosed 2026)
7.5
SeleaMultiple Products
Selea CarPlateServer 4
CVSS Base7.5
â
CRSSelect profile
CVE-2021-47740 (reserved 2021, disclosed 2026)
7.5
LTEMultiple Products
KZTech JT3500V 4G LTE CPE 2
CVSS Base7.5
â
CRSSelect profile
CVE-2021-47744 (reserved 2021, disclosed 2026)
7.5
CypressMultiple Products
Cypress Solutions CTM-200/CTM-ONE 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-68272 (reserved 2025, disclosed 2026)
7.5
SignalMultiple Products
Signal K Server is a server application that runs on a central hub in a boat
CVSS Base7.5
â
CRSSelect profile
CVE-2026-0544
7.3
ManagementMultiple Products
A security flaw has been discovered in itsourcecode School Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15407 (reserved 2025, disclosed 2026)
7.3
GuitarMultiple Products
A vulnerability has been found in code-projects Online Guitar Store 1
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15408 (reserved 2025, disclosed 2026)
7.3
GuitarMultiple Products
A vulnerability was found in code-projects Online Guitar Store 1
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15409 (reserved 2025, disclosed 2026)
7.3
GuitarMultiple Products
A vulnerability was determined in code-projects Online Guitar Store 1
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15410 (reserved 2025, disclosed 2026)
7.3
GuitarMultiple Products
A vulnerability was identified in code-projects Online Guitar Store 1
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15420 (reserved 2025, disclosed 2026)
7.3
YonyouMultiple Products
A security vulnerability has been detected in Yonyou KSOA 9
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15421 (reserved 2025, disclosed 2026)
7.3
YonyouMultiple Products
A vulnerability was detected in Yonyou KSOA 9
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15424 (reserved 2025, disclosed 2026)
7.3
YonyouMultiple Products
A vulnerability was found in Yonyou KSOA 9
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15425 (reserved 2025, disclosed 2026)
7.3
YonyouMultiple Products
A vulnerability was determined in Yonyou KSOA 9
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15426 (reserved 2025, disclosed 2026)
7.3
wasMultiple Products
A vulnerability was identified in jackying H-ui
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15434 (reserved 2025, disclosed 2026)
7.3
YonyouMultiple Products
A vulnerability was detected in Yonyou KSOA 9
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15435 (reserved 2025, disclosed 2026)
7.3
YonyouMultiple Products
A flaw has been found in Yonyou KSOA 9
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15436 (reserved 2025, disclosed 2026)
7.3
YonyouMultiple Products
A vulnerability has been found in Yonyou KSOA 9
CVSS Base7.3
â
CRSSelect profile
CVE-2026-0546
7.3
ManagementMultiple Products
A vulnerability was determined in code-projects Content Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2025-23608 (reserved 2025, disclosed 2026)
7.1
Omar Mohamed MohamoudMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Omar Mohamed Mohamoud LIVE TV allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-23667 (reserved 2025, disclosed 2026)
7.1
Christopher ChurchillMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Christopher Churchill allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-23705 (reserved 2025, disclosed 2026)
7.1
Terry Zielke ZielkeMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Terry Zielke Zielke Design Project Gallery allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-23707 (reserved 2025, disclosed 2026)
7.1
Matamko En MasseMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Matamko En Masse allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-23719 (reserved 2025, disclosed 2026)
7.1
zckevinMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in zckevin ZhinaTwitterWidget allows Reflected XSS
CVSS Base7.1
â
CRSSelect profile
CVE-2025-23757 (reserved 2025, disclosed 2026)
7.1
Proloy Chakroborty ZDMultiple Products
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Proloy Chakroborty ZD Scribd iPaper allows Reflected XSS