Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.9

    MEDIUM
    CVE-2025-8353

    UI synchronization issue in the Just-in-Time (JIT) access request approval interface in Devolutions Server 2025.2.4.0 and earlier allows a remote authenticated attacker to gain unauthorized access to deleted JIT Groups via stale UI state during standard c... Read more

    Affected Products : devolutions_server
    • Published: Jul. 30, 2025
    • Modified: Aug. 06, 2025
    • Vuln Type: Authorization

  • 4.9

    MEDIUM
    CVE-2025-30477

    Dell PowerScale OneFS, versions prior to 9.11.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.... Read more

    Affected Products : powerscale_onefs
    • Published: Jul. 21, 2025
    • Modified: Aug. 06, 2025
    • Vuln Type: Cryptography

  • 6.6

    MEDIUM
    CVE-2025-32744

    Dell AppSync, version(s) 4.6.0.0, contains an Unrestricted Upload of File with Dangerous Type vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Remote execution.... Read more

    Affected Products : appsync
    • Published: Jul. 21, 2025
    • Modified: Aug. 06, 2025
    • Vuln Type: Misconfiguration

  • 4.8

    MEDIUM
    CVE-2025-36603

    Dell AppSync, version(s) 4.6.0.0, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclosure and Information ... Read more

    Affected Products : appsync
    • Published: Jul. 21, 2025
    • Modified: Aug. 06, 2025
    • Vuln Type: XML External Entity

  • 7.5

    HIGH
    CVE-2024-1765

    Cloudflare Quiche (through version 0.19.1/0.20.0) was affected by an unlimited resource allocation vulnerability causing rapid increase of memory usage of the system running quiche server or client. A remote attacker could take advantage of this vulnerabi... Read more

    Affected Products : quiche
    • Published: Mar. 12, 2024
    • Modified: Aug. 06, 2025

  • 5.3

    MEDIUM
    CVE-2024-1410

    Cloudflare quiche was discovered to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection possesses a set of connection Identifiers (IDs); see RFC 9... Read more

    Affected Products : quiche
    • Published: Mar. 12, 2024
    • Modified: Aug. 06, 2025

  • 6.5

    MEDIUM
    CVE-2025-36608

    Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized... Read more

    Affected Products : smartfabric_os10
    • Published: Jul. 30, 2025
    • Modified: Aug. 06, 2025
    • Vuln Type: XML External Entity

  • 5.5

    MEDIUM
    CVE-2025-30103

    Dell SmartFabric OS10 Software, versions prior to 10.6.0.5 contains a Files or Directories Accessible to External Parties vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Filesystem access... Read more

    Affected Products : smartfabric_os10
    • Published: Jul. 30, 2025
    • Modified: Aug. 06, 2025
    • Vuln Type: Information Disclosure

  • 7.5

    HIGH
    CVE-2024-5243

    TP-Link Omada ER605 Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Omada ER605 routers. Authentication is not required to exploit thi... Read more

    Affected Products : omada_er605_firmware omada_er605
    • Published: May. 23, 2024
    • Modified: Aug. 06, 2025

  • 7.8

    HIGH
    CVE-2025-36609

    Dell SmartFabric OS10 Software, versions prior to 10.6.0.5, contains a Use of Hard-coded Password vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges.... Read more

    Affected Products : smartfabric_os10
    • Published: Jul. 30, 2025
    • Modified: Aug. 06, 2025
    • Vuln Type: Authentication

  • 5.0

    MEDIUM
    CVE-2024-5244

    TP-Link Omada ER605 Reliance on Security Through Obscurity Vulnerability. This vulnerability allows network-adjacent attackers to access or spoof DDNS messages on affected installations of TP-Link Omada ER605 routers. Authentication is not required to exp... Read more

    Affected Products : omada_er605_firmware omada_er605
    • Published: May. 23, 2024
    • Modified: Aug. 06, 2025

  • 8.8

    HIGH
    CVE-2024-5291

    D-Link DIR-2150 GetDeviceSettings Target Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2150 routers. Authentication is not requ... Read more

    Affected Products : dir-2150_firmware dir-2150
    • Published: May. 23, 2024
    • Modified: Aug. 06, 2025

  • 8.8

    HIGH
    CVE-2024-5293

    D-Link DIR-2640 HTTP Referer Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2640-US routers. Authentication is not req... Read more

    Affected Products : dir-2640_firmware dir-2640
    • Published: May. 23, 2024
    • Modified: Aug. 06, 2025

  • 6.5

    MEDIUM
    CVE-2024-5294

    D-Link DIR-3040 prog.cgi websSecurityHandler Memory Leak Denial-of-Service Vulnerability. This vulnerability allows network-adjacent attackers to create a denial-of-service condition on affected installations of D-Link DIR-3040 routers. Authentication is ... Read more

    Affected Products : dir-3040_firmware dir-3040
    • Published: May. 23, 2024
    • Modified: Aug. 06, 2025

  • 9.8

    CRITICAL
    CVE-2024-5296

    D-Link D-View Use of Hard-coded Cryptographic Key Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of D-Link D-View. Authentication is not required to exploit this vulnerabi... Read more

    Affected Products : d-view_8
    • Published: May. 23, 2024
    • Modified: Aug. 06, 2025

  • 8.8

    HIGH
    CVE-2024-5297

    D-Link D-View executeWmicCmd Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link D-View. Although authentication is required to exploit this vulner... Read more

    Affected Products : d-view_8
    • Published: May. 23, 2024
    • Modified: Aug. 06, 2025

  • 8.8

    HIGH
    CVE-2024-5298

    D-Link D-View queryDeviceCustomMonitorResult Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link D-View. Although authentication is required... Read more

    Affected Products : d-view_8
    • Published: May. 23, 2024
    • Modified: Aug. 06, 2025

  • 8.8

    HIGH
    CVE-2024-5299

    D-Link D-View execMonitorScript Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link D-View. Although authentication is required to exploit t... Read more

    Affected Products : d-view_8
    • Published: May. 23, 2024
    • Modified: Aug. 06, 2025

  • 8.8

    HIGH
    CVE-2023-27332

    TP-Link Archer AX21 tdpServer Logging Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer AX21 routers. Authentication ... Read more

    Affected Products : archer_ax21_firmware archer_ax21
    • Published: May. 03, 2024
    • Modified: Aug. 06, 2025

  • 6.8

    MEDIUM
    CVE-2023-27333

    TP-Link Archer AX21 tmpServer Command 0x422 Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer AX21 routers. Authentic... Read more

    Affected Products : archer_ax21_firmware archer_ax21
    • Published: May. 03, 2024
    • Modified: Aug. 06, 2025
Showing 20 of 291573 Results