CVE ID : CVE-2025-26646
Published : May 13, 2025, 10:15 p.m. | 59 minutes ago
Description : External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.
Severity: 8.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-47905
Published : May 13, 2025, 10:15 p.m. | 2 hours, 8 minutes ago
Description : Varnish Cache before 7.6.3 and 7.7 before 7.7.1, and Varnish Enterprise before 6.0.13r14, allow client-side desync via HTTP/1 requests, because the product incorrectly permits CRLF to be skipped to delimit chunk boundaries.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-4574
Published : May 13, 2025, 10:15 p.m. | 2 hours, 8 minutes ago
Description : In crossbeam-channel rust crate, the internal `Channel` type’s `Drop` method has a race condition which could, in some circumstances, lead to a double-free that could result in memory corruption.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-3744
Published : May 13, 2025, 7:15 p.m. | 1 hour, 32 minutes ago
Description : Nomad Enterprise (“Nomad”) jobs using the policy override option are bypassing the mandatory sentinel policies. This vulnerability, identified as CVE-2025-3744, is fixed in Nomad Enterprise 1.10.1, 1.9.9, and 1.8.13.
Severity: 7.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-45746
Published : May 13, 2025, 7:15 p.m. | 1 hour, 32 minutes ago
Description : In ZKT ZKBio CVSecurity 6.4.1_R an unauthenticated attacker can craft JWT token using the hardcoded secret to authenticate to the service console.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-45861
Published : May 13, 2025, 7:15 p.m. | 1 hour, 32 minutes ago
Description : TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the routername parameter in the formDnsv6 interface.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-45865
Published : May 13, 2025, 7:15 p.m. | 1 hour, 32 minutes ago
Description : TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the dnsaddr parameter in the formDhcpv6s interface.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-45863
Published : May 13, 2025, 8:15 p.m. | 32 minutes ago
Description : TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the macstr parameter in the formMapDelDevice interface.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-45858
Published : May 13, 2025, 4:15 p.m. | 3 hours, 44 minutes ago
Description : TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a command injection vulnerability via the FUN_00459fdc function.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-29840
Published : May 13, 2025, 5:15 p.m. | 2 hours, 44 minutes ago
Description : Stack-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-29962
Published : May 13, 2025, 5:15 p.m. | 2 hours, 44 minutes ago
Description : Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-29963
Published : May 13, 2025, 5:15 p.m. | 2 hours, 44 minutes ago
Description : Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-29964
Published : May 13, 2025, 5:15 p.m. | 2 hours, 44 minutes ago
Description : Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-29966
Published : May 13, 2025, 5:15 p.m. | 2 hours, 44 minutes ago
Description : Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-29967
Published : May 13, 2025, 5:15 p.m. | 2 hours, 44 minutes ago
Description : Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-30377
Published : May 13, 2025, 5:16 p.m. | 2 hours, 44 minutes ago
Description : Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-30387
Published : May 13, 2025, 5:16 p.m. | 2 hours, 43 minutes ago
Description : Improper limitation of a pathname to a restricted directory (‘path traversal’) in Azure allows an unauthorized attacker to elevate privileges over a network.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-32704
Published : May 13, 2025, 5:16 p.m. | 2 hours, 43 minutes ago
Description : Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-30386
Published : May 13, 2025, 5:16 p.m. | 2 hours, 43 minutes ago
Description : Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-32705
Published : May 13, 2025, 5:16 p.m. | 1 hour, 48 minutes ago
Description : Out-of-bounds read in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…