Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

8.8

HIGH

CVE-2025-31350

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateBufferingSettings' method. This could allow an authenticated remote attac...

Affected Products : telecontrol_server_basic
Published: Apr. 16, 2025

Modified: Aug. 19, 2025

Vuln Type: Injection
8.8

HIGH

CVE-2025-31351

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'CreateProject' method. This could allow an authenticated remote attacker to byp...

Affected Products : telecontrol_server_basic
Published: Apr. 16, 2025

Modified: Aug. 19, 2025

Vuln Type: Injection
8.8

HIGH

CVE-2025-31352

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'UpdateGateways' method. This could allow an authenticated remote attacker to by...

Affected Products : telecontrol_server_basic
Published: Apr. 16, 2025

Modified: Aug. 19, 2025

Vuln Type: Injection
9.8

CRITICAL

CVE-2025-27495

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'CreateTrace' method. This could allow an unauthenticated remote attacker to byp...

Affected Products : telecontrol_server_basic
Published: Apr. 16, 2025

Modified: Aug. 19, 2025

Vuln Type: Injection
9.8

CRITICAL

CVE-2025-27539

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'VerifyUser' method. This could allow an unauthenticated remote attacker to bypa...

Affected Products : telecontrol_server_basic
Published: Apr. 16, 2025

Modified: Aug. 19, 2025

Vuln Type: Injection
9.8

CRITICAL

CVE-2025-27540

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'Authenticate' method. This could allow an unauthenticated remote attacker to by...

Affected Products : telecontrol_server_basic
Published: Apr. 16, 2025

Modified: Aug. 19, 2025

Vuln Type: Injection
8.8

HIGH

CVE-2025-29905

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injection through the internally used 'RestoreFromBackup' method. This could allow an authenticated remote attacker to...

Affected Products : telecontrol_server_basic
Published: Apr. 16, 2025

Modified: Aug. 19, 2025
6.3

MEDIUM

CVE-2025-29931

A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected product does not properly validate a length field in a serialized message which it uses to determine the amount of memory to be allocated for deseriali...

Affected Products : telecontrol_server_basic
Published: Apr. 17, 2025

Modified: Aug. 19, 2025

Vuln Type: Denial of Service
7.0

HIGH

CVE-2025-49762

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Race Condition
7.8

HIGH

CVE-2025-49761

Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +8 more products
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Memory Corruption
8.8

HIGH

CVE-2025-49757

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server_2022 windows_server_2022_23h2 windows_server_23h2 windows_server_2012_r2 windows_server_2008_r2 windows_server_2008_sp2 +1 more products
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Memory Corruption
7.8

HIGH

CVE-2025-21915

In the Linux kernel, the following vulnerability has been resolved: cdx: Fix possible UAF error in driver_override_show() Fixed a possible UAF problem in driver_override_show() in drivers/cdx/cdx.c This function driver_override_show() is part of DEVICE...

Affected Products : linux_kernel
Published: Apr. 01, 2025

Modified: Aug. 19, 2025

Vuln Type: Memory Corruption
7.8

HIGH

CVE-2025-53133

Use after free in Windows PrintWorkflowUserSvc allows an authorized attacker to elevate privileges locally....

Affected Products : windows_11_24h2 windows_server_2025
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Memory Corruption
8.0

HIGH

CVE-2025-53132

Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Race Condition
8.8

HIGH

CVE-2025-53131

Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network....

Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 windows_11_24h2 +1 more products
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Memory Corruption
8.1

HIGH

CVE-2025-50177

Use after free in Windows Message Queuing allows an unauthorized attacker to execute code over a network....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Memory Corruption
7.8

HIGH

CVE-2025-50176

Access of resource using incompatible type ('type confusion') in Graphics Kernel allows an authorized attacker to execute code locally....

Affected Products : windows_server_2022 windows_11_22h2 windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 windows_11_24h2 windows_server_2025
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Memory Corruption
7.8

HIGH

CVE-2025-50173

Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Authentication
6.5

MEDIUM

CVE-2025-50172

Allocation of resources without limits or throttling in Windows DirectX allows an authorized attacker to deny service over a network....

Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 windows_11_24h2 +1 more products
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Denial of Service
7.8

HIGH

CVE-2025-50170

Improper handling of insufficient permissions or privileges in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally....

Affected Products : windows_server_2019 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_11_23h2 windows_server_2022_23h2 windows_server_23h2 windows_11_24h2 +1 more products
Published: Aug. 12, 2025

Modified: Aug. 19, 2025

Vuln Type: Authorization

Showing 20 of 292228 Results

1
...
190
191
192
193
194
195
196
...
14612

Browse by Apps

Latest CVE Feed

8.8

8.8

8.8

9.8

9.8

9.8

8.8

6.3

7.0

7.8

8.8

7.8

7.8

8.0

8.8

8.1

7.8

7.8

6.5

7.8

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable