17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 11451-11500 of 17282 CVEs Page 230 of 346
CVE-2025-55292
8.2
Meshtastic Multiple Products

Meshtastic is an open source mesh networking solution

2026-01-28
CVE-2025-55291
7.1
Unknown Multiple Products

Shaarli is a minimalist bookmark manager and link sharing service

2025-08-19
CVE-2025-55289
8.8
Chamilo Multiple Products

Chamilo is a learning management system

2026-03-06
CVE-2025-55287
Analyzed
8
HP Multiple Products

Genealogy is a family tree PHP application

2025-08-19
CVE-2025-55283
Analyzed
9.1
Unknown Multiple Products

aiven-db-migrate is an Aiven database migration tool. Prior to 1.0.7, there is a privilege escalation vulnerability that allows elevation to superuser...

2025-08-19
CVE-2025-55282
Analyzed
9.1
Intel Multiple Products

aiven-db-migrate is an Aiven database migration tool. Prior to 1.0.7, there is a privilege escalation vulnerability that allows a user to elevate to s...

2025-08-19
CVE-2025-55278
Analyzed
8.1
Intel Multiple Products

Improper authentication in the API authentication middleware of HCL DevOps Loop allows authentication tokens to be accepted without proper validation...

2025-11-06
CVE-2025-55262
8.3
Infor Multiple Products

HCL Aftermarket DPC is affected by SQL Injection which allows attacker to exploit this vulnerability to retrieve sensitive information from the databa...

2026-03-27
CVE-2025-55261
8.1
Unknown Multiple Products

HCL Aftermarket DPC is affected by Missing Functional Level Access Control which will allow attacker to escalate his privileges and may compromise the...

2026-03-28
CVE-2025-55245
7.8
Unknown Multiple Products

Improper link resolution before file access ('link following') in Xbox allows an authorized attacker to elevate privileges locally

2025-09-09
CVE-2025-55244
Analyzed
9
Microsoft Multiple Products

Azure Bot Service Elevation of Privilege Vulnerability

2025-09-05
CVE-2025-55241
Analyzed
9
Microsoft Multiple Products

Azure Entra Elevation of Privilege Vulnerability

2025-09-05
CVE-2025-55238
7.5
Dynamics Multiple Products

Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability

2025-09-05
CVE-2025-55234
8.8
SMB Multiple Products

SMB Server might be susceptible to relay attacks depending on the configuration

2025-09-09
CVE-2025-55233
7.8
Microsoft Multiple Products

Out-of-bounds read in Windows Projected File System allows an authorized attacker to elevate privileges locally

2025-12-10
CVE-2025-55232
Analyzed
9.8
Microsoft Multiple Products

Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an unauthorized attacker to execute code over a network.

2025-09-09
CVE-2025-55231
Analyzed
7.5
Microsoft Multiple Products

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Storage allows an unauthorized attacker to exec...

2025-08-21
CVE-2025-55230
Analyzed
7.8
Microsoft Multiple Products

Untrusted pointer dereference in Windows MBT Transport driver allows an authorized attacker to elevate privileges locally

2025-08-21
CVE-2025-55228
7.8
Microsoft Multiple Products

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to...

2025-09-09
CVE-2025-55227
8.8
Unknown Multiple Products

Improper neutralization of special elements used in a command ('command injection') in SQL Server allows an authorized attacker to elevate privileges...

2025-09-09
CVE-2025-55224
7.8
Microsoft Multiple Products

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to...

2025-09-09
CVE-2025-55222
8.6
Unknown Multiple Products

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1

2025-12-02
CVE-2025-55221
Analyzed
8.6
Unknown Multiple Products

A denial of service vulnerability exists in the Modbus TCP and Modbus RTU over TCP USB Function functionality of Socomec DIRIS Digiware M-70 1

2025-12-02
CVE-2025-55205
Analyzed
9
Kubernetes Multiple Products

Capsule is a multi-tenancy and policy-based framework for Kubernetes. A namespace label injection vulnerability in Capsule v0.10.3 and earlier allows...

2025-08-19
CVE-2025-55204
8.8
Unknown Multiple Products

muffon is a cross-platform music streaming client for desktop

2026-01-06
CVE-2025-55200
7.1
BigBlueButton Multiple Products

BigBlueButton is an open-source virtual classroom

2025-10-09
CVE-2025-55195
7.3
Unknown Multiple Products

@std/toml is the Deno Standard Library

2025-08-15
CVE-2025-55190
Analyzed
9.9
Kubernetes Multiple Products

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. In versions 2.13.0 through 2.13.8, 2.14.0 through 2.14.15, 3.0.0 through 3.0...

2025-09-05
CVE-2025-55187
Analyzed
9.9
Unknown Multiple Products

In DriveLock 24.1.4 before 24.1.5, 24.2.5 before 24.2.6, and 25.1.2 before 25.1.4, attackers can gain elevated privileges.

2025-09-26
CVE-2025-55184
7.5
React Multiple Products

A pre-authentication denial of service vulnerability exists in React Server Components versions 19

2025-12-12
CVE-2025-55182
KEV Analyzed
10
Unknown Multiple Products

A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the f...

2025-12-03
CVE-2025-55177
KEV Analyzed
8
Apple Multiple Products

Incomplete authorization of linked device synchronization messages in WhatsApp for iOS prior to v2

2025-08-29
CVE-2025-55165
8.2
Autocaliweb Multiple Products

Autocaliweb is a web app that offers an interface for browsing, reading, and downloading eBooks using a valid Calibre database

2025-08-12
CVE-2025-55161
Analyzed
8.6
Unknown Multiple Products

Stirling-PDF is a locally hosted web application that performs various operations on PDF files

2025-08-11
CVE-2025-55158
8.8
Vim Multiple Products

Vim is an open source, command line text editor

2025-08-12
CVE-2025-55157
8.8
Vim Multiple Products

Vim is an open source, command line text editor

2025-08-12
CVE-2025-55154
8.8
ImageMagick Multiple Products

ImageMagick is free and open-source software used for editing and manipulating digital images

2025-08-13
CVE-2025-55151
Analyzed
8.6
Unknown Multiple Products

Stirling-PDF is a locally hosted web application that performs various operations on PDF files

2025-08-11
CVE-2025-55150
Analyzed
8.6
Unknown Multiple Products

Stirling-PDF is a locally hosted web application that performs various operations on PDF files

2025-08-11
CVE-2025-55148
7.6
Secure Multiple Products

Missing authorization in Ivanti Connect Secure before 22

2025-09-09
CVE-2025-55147
8.8
Secure Multiple Products

CSRF in Ivanti Connect Secure before 22

2025-09-09
CVE-2025-55145
8.9
Secure Multiple Products

Missing authorization in Ivanti Connect Secure before 22

2025-09-09
CVE-2025-55142
8.8
Secure Multiple Products

Missing authorization in Ivanti Connect Secure before 22

2025-09-09
CVE-2025-55141
8.8
Secure Multiple Products

Missing authorization in Ivanti Connect Secure before 22

2025-09-09
CVE-2025-55138
7.4
LinkJoin Multiple Products

LinkJoin through 882f196 mishandles token ownership in password reset

2025-08-07
CVE-2025-55137
7.4
LinkJoin Multiple Products

LinkJoin through 882f196 mishandles lacks type checking in password reset

2025-08-07
CVE-2025-55131
7.1
Unknown Multiple Products

A flaw in Node

2026-01-21
CVE-2025-55130
7.1
Unknown Multiple Products

A flaw in Node

2026-01-21
CVE-2025-55125
7.8
Unknown Multiple Products

This vulnerability allows a Backup or Tape Operator to perform remote code execution (RCE) as root by creating a malicious backup configuration file

2026-01-09
CVE-2025-55118
Analyzed
8.9
Unknown Multiple Products

Memory corruptions can be remotely triggered in the Control-M/Agent when SSL/TLS communication is configured

2025-09-16