17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 12701-12750 of 17282 CVEs Page 255 of 346
CVE-2025-47954
8.8
Unknown Multiple Products

Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges...

2025-08-12
CVE-2025-47932
Analyzed
8.8
Combodo Multiple Products

Combodo iTop is a web based IT service management tool

2025-11-11
CVE-2025-47917
Analyzed
8.9
TLS Multiple Products

Mbed TLS before 3

2025-07-21
CVE-2025-47913
7.5
SSH Multiple Products

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process

2025-11-14
CVE-2025-47909
Analyzed
7.3
Hosts Multiple Products

Hosts listed in TrustedOrigins implicitly allow requests from the corresponding HTTP origins, allowing network MitMs to perform CSRF attacks

2025-08-29
CVE-2025-47908
7.5
Middleware Multiple Products

Middleware causes a prohibitive amount of heap allocations when processing malicious preflight requests that include a Access-Control-Request-Headers...

2025-08-07
CVE-2025-47907
7
Cancelling Multiple Products

Cancelling a query (e

2025-08-07
CVE-2025-47855
Analyzed
9.8
Fortinet Multiple Products

An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in Fortinet FortiFone 7.0.0 through 7.0.1, FortiFone 3.0.13 thro...

2026-01-14
CVE-2025-4784
Analyzed
9.8
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Moderec Tourtella allows SQL Injection.This issu...

2025-07-25
CVE-2025-47827
KEV
9.5
IGEL IGEL OS

IGEL OS Use of a Key Past its Expiration Date Vulnerability - Active in CISA KEV catalog.

2025-10-14
CVE-2025-47813
KEV
9.5
Unknown Wing FTP Server

Wing FTP Server Information Disclosure Vulnerability - Active in CISA KEV catalog.

2026-03-17
CVE-2025-47812
KEV Analyzed
10
Unknown Multiple Products

In Wing FTP Server before 7.4.4. the user and admin web interfaces mishandle '\0' bytes, ultimately allowing injection of arbitrary Lua code into user...

2025-07-11
CVE-2025-4779
Analyzed
9.1
Unknown Multiple Products

lunary-ai/lunary versions prior to 1.9.24 are vulnerable to stored cross-site scripting (XSS). An unauthenticated attacker can inject malicious JavaSc...

2025-07-07
CVE-2025-47773
Analyzed
8.8
Combodo Multiple Products

Combodo iTop is a web based IT service management tool

2025-11-11
CVE-2025-47761
Analyzed
7.8
Microsoft Multiple Products

An Exposed IOCTL with Insufficient Access Control vulnerability [CWE-782] in Fortinet FortiClientWindows 7

2025-11-19
CVE-2025-47699
Analyzed
9.9
Unknown Multiple Products

Exposure of Sensitive System Information to an Unauthorized Control Sphere (CWE-497) in the Gallagher Morpho integration could allow an authenticated...

2025-10-23
CVE-2025-47698
8
Unknown Multiple Products

An adjacent attacker without authentication can exploit this vulnerability to retrieve a set of user-privileged credentials

2025-09-18
CVE-2025-47652
7.1
Infility Infility Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Infility Infility Global allows Reflected XSS

2025-07-16
CVE-2025-47645
8.5
ELEXtensions ELEX Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ELEXtensions ELEX WooCommerce Advanced Bulk Edit...

2025-07-16
CVE-2025-4764
8
Aida Computer Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aida Computer Information Technology Inc

2026-01-23
CVE-2025-47627
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in LCweb PrivateContent - Mail A...

2025-07-06
CVE-2025-47579
Analyzed
9
Unknown Multiple Products

Deserialization of Untrusted Data vulnerability in ThemeGoods Photography. This issue affects Photography: from n/a through 7.5.2.

2025-09-09
CVE-2025-47571
Analyzed
7.5
HP Multiple Products

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in highwarden Super Store Finder

2025-09-09
CVE-2025-47569
Analyzed
9.3
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPSwings WooCommerce Ultimate Gift Card - Create...

2025-09-09
CVE-2025-47566
7.1
Zoom Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ZoomSounds allows Reflected XSS

2026-01-01
CVE-2025-47554
Analyzed
7.1
WordPress Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QuanticaLabs CSS3 Compare Pricing Tables for Wor...

2025-07-16
CVE-2025-47553
Analyzed
8.8
Zoom Multiple Products

Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection

2026-01-07
CVE-2025-47552
Analyzed
9.8
Zoom Multiple Products

Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection.This issue affects DZS Video Gallery:...

2026-01-08
CVE-2025-47408
7.8
Unknown Multiple Products

Memory corruption when another driver calls an IOCTL with invalid input/output buffer

2026-05-05
CVE-2025-47407
7.8
Signal processor due

Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level

2026-05-05
CVE-2025-47405
7.8
Unknown Multiple Products

Memory corruption when processing camera sensor input/output control codes with invalid output buffers

2026-05-05
CVE-2025-47399
Analyzed
7.8
Unknown Multiple Products

Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters

2026-02-03
CVE-2025-47398
Analyzed
7.8
Unknown Multiple Products

Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers

2026-02-03
CVE-2025-47397
Analyzed
7.8
Unknown Multiple Products

Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors

2026-02-03
CVE-2025-47396
7.8
Unknown Multiple Products

Memory corruption occurs when a secure application is launched on a device with insufficient memory

2026-01-08
CVE-2025-47394
7.8
Unknown Multiple Products

Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations

2026-01-08
CVE-2025-47393
7.8
Unknown Multiple Products

Memory corruption when accessing resources in kernel driver

2026-01-08
CVE-2025-47392
8.8
Unknown Multiple Products

Memory corruption when decoding corrupted satellite data files with invalid signature offsets

2026-04-07
CVE-2025-47391
7.8
Unknown Multiple Products

Memory corruption while processing a frame request from user

2026-04-07
CVE-2025-47390
7.8
Unknown Multiple Products

Memory corruption while preprocessing IOCTL request in JPEG driver

2026-04-07
CVE-2025-47389
7.8
Unknown Multiple Products

Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation

2026-04-07
CVE-2025-47388
7.8
Unknown Multiple Products

Memory corruption while passing pages to DSP with an unaligned starting address

2026-01-08
CVE-2025-47387
Analyzed
7.8
Unknown Multiple Products

Memory Corruption when processing IOCTLs for JPEG data without verification

2025-12-18
CVE-2025-47386
7.8
Unknown Multiple Products

Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs

2026-03-03
CVE-2025-47385
7.8
Unknown Multiple Products

Memory Corruption when accessing trusted execution environment without proper privilege check

2026-03-03
CVE-2025-47383
7.2
Weak Multiple Products

Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE

2026-03-03
CVE-2025-47382
7.8
Unknown Multiple Products

Memory corruption while loading an invalid firmware in boot loader

2025-12-18
CVE-2025-47381
7.8
Unknown Multiple Products

Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs

2026-03-03
CVE-2025-47380
7.8
Unknown Multiple Products

Memory corruption while preprocessing IOCTLs in sensors

2026-01-08
CVE-2025-47379
7.8
Unknown Multiple Products

Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of buffer resourc...

2026-03-03