Latest CVE Feed
-
5.5
CVSS31CVE-2025-21319
Windows Kernel Memory Information Disclosure Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21316
Windows Kernel Memory Information Disclosure Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21280
Windows Virtual Trusted Platform Module Denial of Service Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2024-46664
A relative path traversal in Fortinet FortiRecorder [CWE-23] version 7.2.0 through 7.2.1 and before 7.0.4 allows a privileged attacker to read files from the underlying filesystem via crafted HTTP or HTTPs requests.... Read more
Affected Products : fortirecorder- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21317
Windows Kernel Memory Information Disclosure Vulnerability... Read more
Affected Products : windows_server_2022 windows_11_22h2 windows_server_2022_23h2 windows_11_24h2 windows_server_2025- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21321
Windows Kernel Memory Information Disclosure Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21323
Windows Kernel Memory Information Disclosure Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21320
Windows Kernel Memory Information Disclosure Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21318
Windows Kernel Memory Information Disclosure Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21374
Windows CSC Service Information Disclosure Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21274
Windows Event Tracing Denial of Service Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21257
Windows WLAN AutoConfig Service Information Disclosure Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.5
CVSS31CVE-2025-21284
Windows Virtual Trusted Platform Module Denial of Service Vulnerability... Read more
- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.4
CVSS31CVE-2024-35280
A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiDeceptor 3.x all versions, 4.x all versions, 5.0 all versions, 5.1 all versions, version 5.2.0, and version 5.3.0 may allow an attacker to perform a re... Read more
Affected Products : fortideceptor- Published: Jan. 15, 2025
- Modified: Jan. 15, 2025
-
5.4
CVSS31CVE-2024-55922
TYPO3 is a free and open source Content Management Framework. A vulnerability has been identified in the backend user interface functionality involving deep links. Specifically, this functionality is susceptible to Cross-Site Request Forgery (CSRF). Addit... Read more
Affected Products : typo3- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.4
CVSS31CVE-2024-53277
Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. In some cases, form messages can contain HTML markup. This is an intentional feature, allowing links and other relevant HTML markup for the given message. Some form messages incl... Read more
Affected Products : framework- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.4
CVSS31CVE-2025-23019
IPv6-in-IPv4 tunneling (RFC 4213) allows an attacker to spoof and route traffic via an exposed network interface.... Read more
Affected Products :- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.4
CVSS31CVE-2025-23018
IPv4-in-IPv6 and IPv6-in-IPv6 tunneling (RFC 2473) do not require the validation or verification of the source of a network packet, allowing an attacker to spoof and route arbitrary traffic via an exposed network interface. This is a similar issue to CVE-... Read more
Affected Products :- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.4
CVSS31CVE-2024-55000
Sourcecodester House Rental Management system v1.0 is vulnerable to Cross Site Scripting (XSS) in rental/manage_categories.php.... Read more
Affected Products :- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025
-
5.4
CVSS31CVE-2024-47605
silverstripe-asset-admin is a silverstripe assets gallery for asset management. When using the "insert media" functionality, the linked oEmbed JSON includes an HTML attribute which will replace the embed shortcode. The HTML is not sanitized before replaci... Read more
Affected Products : framework- Published: Jan. 14, 2025
- Modified: Jan. 14, 2025