17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 13401-13450 of 17282 CVEs Page 269 of 346
CVE-2025-35452
Analyzed
9.8
Zoom Multiple Products

PTZOptics and possibly other ValueHD-based pan-tilt-zoom cameras use default, shared credentials for the administrative web interface.

2025-09-05
CVE-2025-35451
Analyzed
9.8
Zoom Multiple Products

PTZOptics and possibly other ValueHD-based pan-tilt-zoom cameras use hard-coded, default administrative credentials. The passwords can readily be crac...

2025-09-05
CVE-2025-35115
8.1
Agiloft Multiple Products

Agiloft Release 28 downloads critical system packages over an insecure HTTP connection

2025-08-26
CVE-2025-35114
Analyzed
7.5
Agiloft Multiple Products

Agiloft Release 28 contains several accounts with default credentials that could allow local privilege escalation

2025-08-26
CVE-2025-35055
Analyzed
8.8
Microsoft Multiple Products

Newforma Info Exchange (NIX) '/UserWeb/Common/UploadBlueimp

2025-10-09
CVE-2025-35051
Analyzed
9.8
Intel Multiple Products

Newforma Project Center Server (NPCS) accepts serialized .NET data via the '/ProjectCenter.rem' endpoint on 9003/tcp, allowing a remote, unauthenticat...

2025-10-09
CVE-2025-35050
Analyzed
9.8
Microsoft Multiple Products

Newforma Info Exchange (NIX) accepts serialized .NET data via the '/remoteweb/remote.rem' endpoint, allowing a remote, unauthenticated attacker to exe...

2025-10-09
CVE-2025-35042
Analyzed
9.8
Unknown Multiple Products

Airship AI Acropolis includes a default administrative account that uses the same credentials on every installation. Instances of Airship AI that do n...

2025-09-22
CVE-2025-35041
7.5
Unknown Multiple Products

Airship AI Acropolis allows unlimited MFA attempts for 15 minutes after a user has logged in with valid credentials

2025-09-22
CVE-2025-35030
Analyzed
8.1
Informatics Multiple Products

Medical Informatics Engineering Enterprise Health has a cross site request forgery vulnerability that allows an unauthenticated attacker to trick admi...

2025-09-29
CVE-2025-35028
Analyzed
9.1
Unknown Multiple Products

By providing a command-line argument starting with a semi-colon ; to an API endpoint created by the EnhancedCommandExecutor class of the HexStrike AI...

2025-12-01
CVE-2025-35027
7.3
Unknown Multiple Products

Multiple robotic products by Unitree sharing a common firmware, including the Go2, G1, H1, and B2 devices, contain a command injection vulnerability

2025-09-26
CVE-2025-3500
Analyzed
9
Microsoft Multiple Products

Integer Overflow or Wraparound vulnerability in Avast Antivirus (25.1.981.6) on Windows allows Privilege Escalation.This issue affects Antivirus: from...

2025-12-02
CVE-2025-3499
Analyzed
10
Unknown Multiple Products

The device has two web servers that expose unauthenticated REST APIs on the management network (TCP ports 8084 and 8086). Exploiting OS command inject...

2025-07-10
CVE-2025-3498
Analyzed
9.9
SAP Multiple Products

An unauthenticated user with management network access can get and modify the Radiflow iSAP Smart Collector (CentOS 7 - VSAP 1.20) configuration. Th...

2025-07-10
CVE-2025-3497
Analyzed
8.7
SAP Multiple Products

The Linux distribution underlying the Radiflow iSAP Smart Collector (CentOS 7 - VSAP 1

2025-07-10
CVE-2025-3465
Analyzed
7.1
Intel Multiple Products

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ABB CoreSenseâ„¢ HM, ABB CoreSenseâ„¢ M10

2025-10-20
CVE-2025-3450
Analyzed
10
Unknown Multiple Products

Improper Resource Locking vulnerability in B&R Industrial Automation Automation Runtime.This issue affects Automation Runtime: from 6.0 before 6.3, be...

2025-10-07
CVE-2025-34438
8.1
Unknown Multiple Products

AVideo versions prior to 20

2025-12-19
CVE-2025-34437
8.8
Unknown Multiple Products

AVideo versions prior to 20

2025-12-19
CVE-2025-34436
8.8
Unknown Multiple Products

AVideo versions prior to 20

2025-12-19
CVE-2025-34291
KEV Analyzed
9.5
Langflow Langflow

Langflow Origin Validation Error Vulnerability - Active in CISA KEV catalog.

2026-05-22
CVE-2025-34026
KEV
9.5
Versa Concerto

Versa Concerto Improper Authentication Vulnerability - Active in CISA KEV catalog.

2026-01-23
CVE-2025-3356
8.6
IBM Multiple Products

IBM Tivoli Monitoring 6

2025-10-30
CVE-2025-3355
7.5
IBM Multiple Products

IBM Tivoli Monitoring 6

2025-10-30
CVE-2025-3354
8.1
IBM Multiple Products

IBM Tivoli Monitoring 6

2025-08-07
CVE-2025-33255
Analyzed
7.5
NVIDIA TRT

NVIDIA TRT-LLM for any platform contains a vulnerability in MPI server, where an attacker could cause an unsafe deserialization

2026-05-20
CVE-2025-33253
7.8
NVIDIA NeMo Framework

NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution by convincing a user to load a maliciously crafted...

2026-02-19
CVE-2025-33252
7.8
NVIDIA NeMo Framework

NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution

2026-02-19
CVE-2025-33251
7.8
NVIDIA NeMo Framework

NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution

2026-02-19
CVE-2025-33250
7.8
NVIDIA NeMo Framework

NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution

2026-02-19
CVE-2025-33249
7.8
NVIDIA NeMo Framework

NVIDIA NeMo Framework for all platforms contains a vulnerability in a voice-preprocessing script, where malicious input created by an attacker could c...

2026-02-19
CVE-2025-33248
7.8
NVIDIA Megatron

NVIDIA Megatron-LM contains a vulnerability in the hybrid conversion script where an Attacker may cause an RCE by convincing a user to load a maliciou...

2026-03-25
CVE-2025-33247
7.8
NVIDIA Megatron LM

NVIDIA Megatron LM contains a vulnerability in quantization configuration loading, which could allow remote code execution

2026-03-25
CVE-2025-33246
7.8
NVIDIA NeMo Framework

NVIDIA NeMo Framework for all platforms contains a vulnerability in the ASR Evaluator utility, where a user could cause a command injection by supplyi...

2026-02-19
CVE-2025-33245
8
NVIDIA NeMo Framework

NVIDIA NeMo Framework contains a vulnerability where malicious data could cause remote code execution

2026-02-19
CVE-2025-33244
Analyzed
9
NVIDIA contains

NVIDIA APEX for Linux contains a vulnerability where an unauthorized attacker could cause a deserialization of untrusted data. This vulnerability affe...

2026-03-25
CVE-2025-33243
7.8
NVIDIA NeMo Framework

NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution in distributed environments

2026-02-19
CVE-2025-33241
7.8
NVIDIA NeMo Framework

NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution by loading a maliciously crafted file

2026-02-19
CVE-2025-33240
7.8
NVIDIA Megatron Bridge

NVIDIA Megatron Bridge contains a vulnerability in a data shuffling tutorial, where malicious input could cause a code injection

2026-02-19
CVE-2025-33239
7.8
NVIDIA Megatron Bridge

NVIDIA Megatron Bridge contains a vulnerability in a data merging tutorial, where malicious input could cause a code injection

2026-02-19
CVE-2025-33236
7.8
NVIDIA NeMo Framework

NVIDIA NeMo Framework contains a vulnerability where malicious data created by an attacker could cause code injection

2026-02-19
CVE-2025-33235
Analyzed
7.8
NVIDIA Multiple Products

NVIDIA Resiliency Extension for Linux contains a vulnerability in the checkpointing core, where an attacker may cause a race condition

2025-12-17
CVE-2025-33234
7.8
NVIDIA Multiple Products

NVIDIA runx contains a vulnerability where an attacker could cause a code injection

2026-01-28
CVE-2025-33233
7.8
NVIDIA Multiple Products

NVIDIA Merlin Transformers4Rec for all platforms contains a vulnerability where an attacker could cause code injection

2026-01-21
CVE-2025-33230
7.3
NVIDIA Multiple Products

NVIDIA Nsight Systems for Linux contains a vulnerability in the

2026-01-21
CVE-2025-33229
7.3
Microsoft Multiple Products

NVIDIA Nsight Visual Studio for Windows contains a vulnerability in Nsight Monitor where an attacker can execute arbitrary code with the same privileg...

2026-01-21
CVE-2025-33228
7.3
NVIDIA Multiple Products

NVIDIA Nsight Systems contains a vulnerability in the gfx_hotspot recipe, where an attacker could cause an OS command injection by supplying a malicio...

2026-01-21
CVE-2025-33226
7.8
NVIDIA Multiple Products

NVIDIA NeMo Framework for all platforms contains a vulnerability where malicious data created by an attacker may cause a code injection

2025-12-17
CVE-2025-33225
8.4
NVIDIA Multiple Products

NVIDIA Resiliency Extension for Linux contains a vulnerability in log aggregation, where an attacker could cause predictable log-file names

2025-12-17