17282 Total CVEs
8582 AI Analyzed
264 CISA KEV
3488 Critical
All Vendors
Showing 13851-13900 of 17282 CVEs Page 278 of 346
CVE-2025-24486
7.8
Intel Multiple Products

Improper input validation in the Linux kernel-mode driver for some Intel(R) 700 Series Ethernet before version 2

2025-08-12
CVE-2025-24484
7.8
Intel Multiple Products

Improper input validation in the Linux kernel-mode driver for some Intel(R) 800 Series Ethernet before version 1

2025-08-12
CVE-2025-24404
8.8
Apache Multiple Products

XML Injection RCE by parse http sitemap xml response vulnerability in Apache HertzBeat

2025-09-10
CVE-2025-24325
8.8
Intel Multiple Products

Improper input validation in the Linux kernel-mode driver for some Intel(R) 800 Series Ethernet before version 1

2025-08-12
CVE-2025-24322
8.1
Tenda Multiple Products

An unsafe default authentication vulnerability exists in the Initial Setup Authentication functionality of Tenda AC6 V5

2025-08-20
CVE-2025-24303
7.8
Intel Multiple Products

Improper check for unusual or exceptional conditions in the Linux kernel-mode driver for some Intel(R) 800 Series Ethernet before version 1

2025-08-12
CVE-2025-24299
8.8
Intel Multiple Products

Improper input validation for some Intel(R) CIP software before version WIN_DCA_2

2025-11-13
CVE-2025-24298
8.4
OpenHarmony Multiple Products

in OpenHarmony v5

2025-08-11
CVE-2025-24290
9.9
Unknown Multiple Products

Multiple Authenticated SQL Injection vulnerabilities found in UISP Application (Version 2.4.206 and earlier) could allow a malicious actor with low pr...

2025-07-06
CVE-2025-24289
7.5
Unknown Multiple Products

A Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS) vulnerability in the UCRM Client Signup Plugin (v1

2025-07-06
CVE-2025-24285
Analyzed
9.8
Unknown Multiple Products

Multiple Improper Input Validation vulnerabilities in UniFi Connect EV Station Lite may allow a Command Injection by a malicious actor with network ac...

2025-08-21
CVE-2025-24284
Analyzed
8.8
Apple macOS

This issue was addressed with improved checks to prevent unauthorized actions

2026-06-12
CVE-2025-24224
7.5
Unknown Multiple Products

The issue was addressed with improved checks

2025-07-30
CVE-2025-2417
Analyzed
8.6
Unknown Multiple Products

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft e-Mutabakat allows Authentication Bypass

2025-09-04
CVE-2025-2416
Analyzed
8.6
Akinsoft LimonDesk Multiple Products

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft LimonDesk allows Authentication Bypass

2025-09-03
CVE-2025-2415
Analyzed
8.6
Akinsoft MyRezzta Multiple Products

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft MyRezzta allows Authentication Bypass

2025-09-03
CVE-2025-2414
8.6
Akinsoft OctoCloud Multiple Products

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft OctoCloud allows Authentication Bypass

2025-09-02
CVE-2025-2413
8.6
Akinsoft ProKuafor Multiple Products

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft ProKuafor allows Authentication Bypass

2025-09-02
CVE-2025-2412
Analyzed
8.6
Akinsoft QR Menu Multiple Products

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft QR Menu allows Authentication Bypass

2025-09-02
CVE-2025-24119
7.8
Unknown Multiple Products

This issue was addressed through improved state management

2025-07-30
CVE-2025-2411
Analyzed
8.6
Akinsoft TaskPano Multiple Products

Improper Restriction of Excessive Authentication Attempts vulnerability in Akinsoft TaskPano allows Authentication Bypass

2025-09-04
CVE-2025-24088
7.5
Unknown Multiple Products

The issue was addressed by adding additional logic

2025-09-16
CVE-2025-2406
Analyzed
7.6
Verisay Communication Multiple Products

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Verisay Communication and Information Tec...

2025-12-26
CVE-2025-24052
7.8
Microsoft Multiple Products

Microsoft is aware of vulnerabilities in the third party Agere Modem driver that ships natively with supported Windows operating systems

2025-10-14
CVE-2025-2405
Analyzed
7.6
Verisay Communication Multiple Products

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Verisay Communication and Information Tec...

2025-12-26
CVE-2025-24006
7.8
Unknown Multiple Products

A low privileged local attacker can leverage insecure permissions via SSH on the affected devices to escalate privileges to root

2025-07-10
CVE-2025-24005
7.8
Unknown Multiple Products

A local attacker with a local user account can leverage a vulnerable script via SSH to escalate privileges to root due to improper input validation

2025-07-10
CVE-2025-24003
8.2
Unknown Multiple Products

An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law, r...

2025-07-08
CVE-2025-24000
Analyzed
8.8
Unknown Multiple Products

Authentication Bypass Using an Alternate Path or Channel vulnerability in WPExperts Post SMTP allows Authentication Bypass

2025-08-07
CVE-2025-23993
Analyzed
9.8
Unknown Multiple Products

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RiceTheme Felan Framework felan-framework allows...

2026-01-09
CVE-2025-23970
9.8
Unknown Multiple Products

Incorrect Privilege Assignment vulnerability in aonetheme Service Finder Booking allows Privilege Escalation. This issue affects Service Finder Bookin...

2025-07-06
CVE-2025-23968
9.1
Unknown Multiple Products

Unrestricted Upload of File with Dangerous Type vulnerability in WPCenter AiBud WP allows Upload a Web Shell to a Web Server.This issue affects AiBud...

2025-07-06
CVE-2025-23757
7.1
Proloy Chakroborty ZD Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Proloy Chakroborty ZD Scribd iPaper allows Refle...

2026-01-01
CVE-2025-23719
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in zckevin ZhinaTwitterWidget allows Reflected XSS

2026-01-01
CVE-2025-23707
7.1
Matamko En Masse Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Matamko En Masse allows Reflected XSS

2026-01-01
CVE-2025-23705
7.1
Terry Zielke Zielke Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Terry Zielke Zielke Design Project Gallery allow...

2026-01-01
CVE-2025-23667
7.1
Christopher Churchill Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Christopher Churchill allows Reflected XSS

2026-01-01
CVE-2025-23608
7.1
Omar Mohamed Mohamoud Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Omar Mohamed Mohamoud LIVE TV allows Reflected X...

2026-01-01
CVE-2025-23554
7.1
Jakub Glos Off Page Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jakub Glos Off Page SEO allows Reflected XSS

2025-12-30
CVE-2025-23550
7.1
Kemal YAZICI Product Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kemal YAZICI Product Puller allows Reflected XSS

2025-12-30
CVE-2025-23504
Analyzed
9.8
Unknown Multiple Products

Authentication Bypass Using an Alternate Path or Channel vulnerability in RiceTheme Felan Framework felan-framework allows Authentication Abuse.This i...

2026-01-09
CVE-2025-23469
7.1
Unknown Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sleekplan allows Reflected XSS

2025-12-30
CVE-2025-23458
Analyzed
7.1
Rakessh Multiple Products

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rakessh Ads24 Lite allows Reflected XSS

2025-12-30
CVE-2025-23417
Analyzed
8.6
Unknown Multiple Products

A denial of service vulnerability exists in the Modbus RTU over TCP functionality of Socomec DIRIS Digiware M-70 1

2025-12-02
CVE-2025-23365
7.8
Unknown Multiple Products

A vulnerability has been identified in TIA Administrator (All versions < V3

2025-07-10
CVE-2025-23361
7.8
NVIDIA Multiple Products

NVIDIA NeMo Framework for all platforms contains a vulnerability in a script, where malicious input created by an attacker may cause improper control...

2025-11-13
CVE-2025-23358
Analyzed
8.2
Microsoft Multiple Products

NVIDIA NVApp for Windows contains a vulnerability in the installer, where a local attacker can cause a search path element issue

2025-11-04
CVE-2025-23357
7.8
NVIDIA Multiple Products

NVIDIA Megatron-LM for all platforms contains a vulnerability in a script, where malicious data created by an attacker may cause a code injection issu...

2025-11-13
CVE-2025-23356
8.4
NVIDIA Multiple Products

NVIDIA Isaac Lab contains a vulnerability in SB3 configuration parsing

2025-10-14
CVE-2025-23354
7.8
NVIDIA Multiple Products

NVIDIA Megatron-LM for all platforms contains a vulnerability in the ensemble_classifer script where malicious data created by an attacker may cause a...

2025-09-24