17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 11501-11550 of 17282 CVEs Page 231 of 346
CVE-2025-55116
8.8
Unknown Multiple Products

A buffer overflow in the Control-M/Agent can lead to a local privilege escalation when an attacker has access to the system running the Agent

2025-09-16
CVE-2025-55115
8.8
Unknown Multiple Products

A path traversal in the Control-M/Agent can lead to a local privilege escalation when an attacker has access to the system running the Agent

2025-09-16
CVE-2025-55113
Analyzed
9
Unknown Multiple Products

If the Access Control List is enforced by the Control-M/Agent and the C router is in use (default in Out-of-support Control-M/Agent versions 9.0.18 to...

2025-09-16
CVE-2025-55112
7.4
Agent Multiple Products

Out-of-support Control-M/Agent versions 9

2025-09-16
CVE-2025-55109
Analyzed
9
Unknown Multiple Products

An authentication bypass vulnerability exists in the out-of-support Control-M/Agent versions 9.0.18 to 9.0.20 and potentially earlier unsupported vers...

2025-09-16
CVE-2025-55077
Analyzed
7.4
Microsoft Multiple Products

Tyler Technologies ERP Pro 9 SaaS allows an authenticated user to escape the application and execute limited operating system commands within the remo...

2025-08-07
CVE-2025-55069
8.3
Unknown Multiple Products

A predictable seed in pseudo-random number generator vulnerability has been discovered in firmware version 3

2025-09-23
CVE-2025-55068
8.2
Dover Multiple Products

Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a certain point

2025-09-18
CVE-2025-55067
Analyzed
7.1
Unknown Multiple Products

The TLS4B ATG system is vulnerable to improper handling of Unix time values that exceed the 2038 epoch rollover

2025-10-24
CVE-2025-55065
Analyzed
7.5
Unknown Multiple Products

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

2026-01-02
CVE-2025-55061
8.8
Unknown Multiple Products

CWE-434 Unrestricted Upload of File with Dangerous Type

2025-12-30
CVE-2025-55051
Analyzed
10
Unknown Multiple Products

CWE-1392: Use of Default Credentials

2025-09-09
CVE-2025-55050
Analyzed
9.8
Unknown Multiple Products

CWE-1242: Inclusion of Undocumented Features

2025-09-09
CVE-2025-55049
Analyzed
9.1
Unknown Multiple Products

Use of Default Cryptographic Key (CWE-1394)

2025-09-09
CVE-2025-55048
Analyzed
9.8
Unknown Multiple Products

Multiple CWE-78

2025-09-09
CVE-2025-55047
8.4
Unknown Multiple Products

CWE-798 Use of Hard-coded Credentials

2025-09-09
CVE-2025-55046
8.1
MuraCMS Multiple Products

MuraCMS through 10

2026-03-20
CVE-2025-55044
8.8
MuraCMS through Multiple Products

The Trash Restore CSRF vulnerability in MuraCMS through 10

2026-03-20
CVE-2025-55041
8
MuraCMS Multiple Products

MuraCMS through 10

2026-03-20
CVE-2025-55040
8.8
MuraCMS through Multiple Products

The import form CSRF vulnerability in MuraCMS through 10

2026-03-19
CVE-2025-55037
Analyzed
9.8
Unknown Multiple Products

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in TkEasyGUI versions prior to v1.0.22. If thi...

2025-09-05
CVE-2025-55036
7.5
Unknown Multiple Products

When BIG-IP SSL Orchestrator explicit forward proxy is configured on a virtual server and the proxy connect feature is enabled, undisclosed traffic ma...

2025-10-16
CVE-2025-55034
Analyzed
8.2
General Multiple Products

General Industrial Controls Lynx+ Gateway is vulnerable to a weak password requirement vulnerability, which may allow an attacker to execute a brute-...

2025-11-15
CVE-2025-55031
Analyzed
9.8
Apple Multiple Products

Malicious pages could use Firefox for iOS to pass FIDO: links to the OS and trigger the hybrid passkey transport. An attacker within Bluetooth range c...

2025-08-20
CVE-2025-55029
7.5
Apple Multiple Products

Malicious scripts could bypass the popup blocker to spam new tabs, potentially resulting in denial of service attacks This vulnerability affects Firef...

2025-08-20
CVE-2025-55013
Analyzed
10
Unknown Multiple Products

The Assemblyline 4 Service Client interfaces with the API to fetch tasks and publish the result for a service in Assemblyline 4. In versions below 4.6...

2025-08-10
CVE-2025-55010
Analyzed
9.1
Intel Multiple Products

Kanboard is project management software that focuses on the Kanban methodology. Prior to version 1.2.47, an unsafe deserialization vulnerability in th...

2025-08-12
CVE-2025-55009
Analyzed
7.1
Unknown Multiple Products

The AuthKit library for Remix provides convenient helpers for authentication and session management using WorkOS & AuthKit with Remix

2025-08-10
CVE-2025-55008
Analyzed
7.1
Unknown Multiple Products

The AuthKit library for React Router 7+ provides helpers for authentication and session management using WorkOS & AuthKit with React Router

2025-08-10
CVE-2025-55004
7.6
ImageMagick Multiple Products

ImageMagick is free and open-source software used for editing and manipulating digital images

2025-08-14
CVE-2025-54997
Analyzed
9.1
Unknown Multiple Products

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. In versions 2...

2025-08-10
CVE-2025-54996
Analyzed
7.2
Unknown Multiple Products

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys

2025-08-10
CVE-2025-54988
Analyzed
9.8
Apache Multiple Products

Critical XXE in Apache Tika (tika-parser-pdf-module) in Apache Tika 1.13 through and including 3.2.1 on all platforms allows an attacker to carry out...

2025-08-21
CVE-2025-54987
Analyzed
9.4
HP Multiple Products

A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious code and e...

2025-08-05
CVE-2025-54982
Analyzed
9.6
Unknown Multiple Products

An improper verification of cryptographic signature in Zscaler's SAML authentication mechanism on the server-side allowed an authentication abuse.

2025-08-05
CVE-2025-54981
Analyzed
7.5
Apache Multiple Products

Weak Encryption Algorithm in StreamPark, The use of an AES cipher in ECB mode and a weak random number generator for encrypting sensitive data, includ...

2025-12-13
CVE-2025-54968
8.8
GXP Multiple Products

An issue was discovered in BAE SOCET GXP before 4

2025-10-28
CVE-2025-54964
8.4
GXP Multiple Products

An issue was discovered in BAE SOCET GXP before 4

2025-10-24
CVE-2025-54963
7.5
GXP Multiple Products

An issue was discovered in BAE SOCET GXP before 4

2025-10-23
CVE-2025-54955
Analyzed
8.1
Unknown Multiple Products

OpenNebula Community Edition (CE) before 7

2025-08-04
CVE-2025-54952
Analyzed
9.8
Unknown Multiple Products

An integer overflow vulnerability in the loading of ExecuTorch models can cause smaller-than-expected memory regions to be allocated, potentially resu...

2025-08-08
CVE-2025-54948
KEV Analyzed
9.4
HP Multiple Products

A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious code and e...

2025-08-05
CVE-2025-54926
7.2
Unknown Multiple Products

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code execution whe...

2025-08-20
CVE-2025-54925
7.5
Unknown Multiple Products

CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthorized access to sensitive data when an attacker configures th...

2025-08-20
CVE-2025-54924
7.5
Unknown Multiple Products

CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthorized access to sensitive data when an attacker sends a speci...

2025-08-20
CVE-2025-54920
8.8
Apache Spark

This issue affects Apache Spark: before 3

2026-03-18
CVE-2025-54918
8.8
Microsoft Multiple Products

Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network

2025-09-09
CVE-2025-54916
7.8
Microsoft Multiple Products

Stack-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally

2025-09-09
CVE-2025-54914
Analyzed
10
Microsoft Multiple Products

Azure Networking Elevation of Privilege Vulnerability

2025-09-05
CVE-2025-54913
7.8
Microsoft Multiple Products

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows UI XAML Maps MapControlSettings allows an autho...

2025-09-09