17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 11851-11900 of 17282 CVEs Page 238 of 346
CVE-2025-53843
Analyzed
7.5
Apple Multiple Products

A stack-based buffer overflow in Fortinet FortiOS 7

2025-11-19
CVE-2025-53841
Analyzed
7.8
Linux Multiple Products

Akamai Guardicore Platform Agent before 52

2025-12-03
CVE-2025-53836
Analyzed
9.9
Unknown Multiple Products

XWiki Rendering is a generic rendering system that converts textual input in a given syntax (wiki syntax, HTML, etc) into another syntax (XHTML, etc)....

2025-07-15
CVE-2025-53835
Analyzed
9
Unknown Multiple Products

XWiki Rendering is a generic rendering system that converts textual input in a given syntax (wiki syntax, HTML, etc) into another syntax (XHTML, etc)....

2025-07-14
CVE-2025-53833
Analyzed
10
Apache Multiple Products

LaRecipe is an application that allows users to create documentation with Markdown inside a Laravel app. Versions prior to 2.8.1 are vulnerable to Ser...

2025-07-14
CVE-2025-53825
Analyzed
9.4
Unknown Multiple Products

Dokploy is a free, self-hostable Platform as a Service (PaaS). Prior to version 0.24.3, an unauthenticated preview deployment vulnerability in Dokploy...

2025-07-14
CVE-2025-53823
8.8
Unknown Multiple Products

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions

2025-07-15
CVE-2025-53819
7.9
Linux Multiple Products

Nix is a package manager for Linux and other Unix systems

2025-07-14
CVE-2025-53814
7.8
Unknown Multiple Products

A use-after-free vulnerability exists in the XML parser functionality of GCC Productions Inc

2025-10-28
CVE-2025-53801
7.8
Microsoft Multiple Products

Untrusted pointer dereference in Windows DWM allows an authorized attacker to elevate privileges locally

2025-09-09
CVE-2025-53800
7.8
Microsoft Multiple Products

No cwe for this issue in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally

2025-09-09
CVE-2025-53795
Analyzed
9.1
Microsoft Multiple Products

Improper authorization in Microsoft PC Manager allows an unauthorized attacker to elevate privileges over a network.

2025-08-21
CVE-2025-53792
Analyzed
9.1
Microsoft Multiple Products

Azure Portal Elevation of Privilege Vulnerability

2025-08-07
CVE-2025-53789
7.8
Microsoft Multiple Products

Missing authentication for critical function in Windows StateRepository API allows an authorized attacker to elevate privileges locally

2025-08-13
CVE-2025-53787
Analyzed
8.2
Microsoft Multiple Products

Microsoft 365 Copilot BizChat Information Disclosure Vulnerability

2025-08-07
CVE-2025-53786
Analyzed
8
Microsoft Multiple Products

On April 18th 2025, Microsoft announced Exchange Server Security Changes for Hybrid Deployments and accompanying non-security Hot Fix

2025-08-07
CVE-2025-53784
Analyzed
8.4
Microsoft Multiple Products

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally

2025-08-12
CVE-2025-53782
Analyzed
8.4
Microsoft Multiple Products

Incorrect implementation of authentication algorithm in Microsoft Exchange Server allows an unauthorized attacker to elevate privileges locally

2025-10-14
CVE-2025-53778
8.8
Microsoft Multiple Products

Improper authentication in Windows NTLM allows an authorized attacker to elevate privileges over a network

2025-08-12
CVE-2025-53773
7.8
GitHub Multiple Products

Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio allows an unauthorized attacke...

2025-08-13
CVE-2025-53772
8.8
Deserialization Multiple Products

Deserialization of untrusted data in Web Deploy allows an authorized attacker to execute code over a network

2025-08-12
CVE-2025-53770
KEV
9.8
Microsoft SharePoint Server

Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code over a network. Microsoft...

2025-07-21
CVE-2025-53768
7.8
Unknown Multiple Products

Use after free in Xbox allows an authorized attacker to elevate privileges locally

2025-10-14
CVE-2025-53767
Analyzed
10
Microsoft Multiple Products

Azure OpenAI Elevation of Privilege Vulnerability

2025-08-07
CVE-2025-53766
Analyzed
9.8
Microsoft Multiple Products

Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network.

2025-08-12
CVE-2025-53763
Analyzed
9.8
Microsoft Multiple Products

Improper access control in Azure Databricks allows an unauthorized attacker to elevate privileges over a network.

2025-08-21
CVE-2025-53761
7.8
Microsoft Multiple Products

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally

2025-08-13
CVE-2025-53759
7.8
Microsoft Multiple Products

Use of uninitialized resource in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-08-13
CVE-2025-53741
7.8
Microsoft Multiple Products

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-08-13
CVE-2025-53740
Analyzed
8.4
Microsoft Multiple Products

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally

2025-08-12
CVE-2025-53739
7.8
Microsoft Multiple Products

Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-08-13
CVE-2025-53738
7.8
Microsoft Multiple Products

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally

2025-08-13
CVE-2025-53737
7.8
Microsoft Multiple Products

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-08-12
CVE-2025-53735
7.8
Microsoft Multiple Products

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally

2025-08-12
CVE-2025-53734
7.8
Microsoft Multiple Products

Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally

2025-08-12
CVE-2025-53733
8.4
Microsoft Multiple Products

Incorrect conversion between numeric types in Microsoft Office Word allows an unauthorized attacker to execute code locally

2025-08-12
CVE-2025-53732
7.8
Microsoft Multiple Products

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally

2025-08-12
CVE-2025-53731
Analyzed
8.4
Microsoft Multiple Products

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally

2025-08-12
CVE-2025-53730
7.8
Microsoft Multiple Products

Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally

2025-08-12
CVE-2025-53729
7.8
Microsoft Multiple Products

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally

2025-08-12
CVE-2025-53727
8.8
Unknown Multiple Products

Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges...

2025-08-12
CVE-2025-53726
7.8
Microsoft Multiple Products

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locall...

2025-08-12
CVE-2025-53725
7.8
Microsoft Multiple Products

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locall...

2025-08-12
CVE-2025-53724
7.8
Microsoft Multiple Products

Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locall...

2025-08-12
CVE-2025-53723
7.8
Microsoft Multiple Products

Numeric truncation error in Windows Hyper-V allows an authorized attacker to elevate privileges locally

2025-08-12
CVE-2025-53720
Analyzed
8
Microsoft Multiple Products

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network

2025-08-12
CVE-2025-53710
7.5
Unknown Multiple Products

Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each othe...

2025-12-20
CVE-2025-53705
Analyzed
7.8
Intel Multiple Products

In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12

2025-08-19
CVE-2025-53704
7.5
Unknown Multiple Products

The password reset mechanism for the Pivot client application is weak, and it may allow an attacker to take over the account

2025-12-05
CVE-2025-53703
7.5
DuraComm Multiple Products

DuraComm SPM-500 DP-10iN-100-MU transmits sensitive data without encryption over a channel that could be intercepted by attackers

2025-07-23