Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 9.1

    CRITICAL
    CVE-2024-25614

    There is an arbitrary file deletion vulnerability in the CLI used by ArubaOS. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to denial-of-service conditio... Read more

    Affected Products : arubaos
    • Published: Mar. 05, 2024
    • Modified: Jul. 28, 2025

  • 7.2

    HIGH
    CVE-2024-25613

    Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. ... Read more

    Affected Products : arubaos sd-wan sd-wan
    • Published: Mar. 05, 2024
    • Modified: Jul. 28, 2025

  • 7.2

    HIGH
    CVE-2024-25612

    Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. ... Read more

    Affected Products : arubaos sd-wan sd-wan
    • Published: Mar. 05, 2024
    • Modified: Jul. 28, 2025

  • 7.2

    HIGH
    CVE-2024-25611

    Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. ... Read more

    Affected Products : arubaos sd-wan sd-wan
    • Published: Mar. 05, 2024
    • Modified: Jul. 28, 2025

  • 5.9

    MEDIUM
    CVE-2024-33513

    Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the AP Management service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities results in the ability to interrupt the normal operation of the affected service. ... Read more

    Affected Products : arubaos
    • Published: May. 01, 2024
    • Modified: Jul. 28, 2025

  • 7.5

    HIGH
    CVE-2024-33514

    Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the AP Management service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities results in the ability to interrupt the normal operation of the affected service. ... Read more

    Affected Products : arubaos
    • Published: May. 01, 2024
    • Modified: Jul. 28, 2025

  • 7.5

    HIGH
    CVE-2024-33515

    Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the AP Management service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities results in the ability to interrupt the normal operation of the affected service. ... Read more

    Affected Products : arubaos
    • Published: May. 01, 2024
    • Modified: Jul. 28, 2025

  • 7.5

    HIGH
    CVE-2024-33516

    An unauthenticated Denial of Service (DoS) vulnerability exists in the Auth service accessed via the PAPI protocol provided by ArubaOS. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the controll... Read more

    Affected Products : arubaos
    • Published: May. 01, 2024
    • Modified: Jul. 28, 2025

  • 7.5

    HIGH
    CVE-2024-33517

    An unauthenticated Denial-of-Service (DoS) vulnerability exists in the Radio Frequency Manager service accessed via the PAPI protocol. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected s... Read more

    Affected Products : arubaos
    • Published: May. 01, 2024
    • Modified: Jul. 28, 2025

  • 7.2

    HIGH
    CVE-2024-1356

    Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. ... Read more

    Affected Products : arubaos sd-wan sd-wan
    • Published: Mar. 05, 2024
    • Modified: Jul. 28, 2025

  • 6.1

    MEDIUM
    CVE-2022-25869

    All versions of the package angular; all versions of the package angularjs.core; all versions of the package angularjs are vulnerable to Cross-site Scripting (XSS) due to insecure page caching in the Internet Explorer browser, which allows interpolation o... Read more

    Affected Products : angular angular
    • EPSS Score: %1.86
    • Published: Jul. 15, 2022
    • Modified: Jul. 28, 2025

  • 7.8

    HIGH
    CVE-2025-3931

    A flaw was found in Yggdrasil, which acts as a system broker, allowing the processes to communicate to other children's "worker" processes through the DBus component. Yggdrasil creates a DBus method to dispatch messages to workers. However, it misses auth... Read more

    • Published: May. 14, 2025
    • Modified: Jul. 25, 2025
    • Vuln Type: Authorization

  • 7.1

    HIGH
    CVE-2025-45467

    Unitree Go1 <= Go1_2022_05_11 is vulnerable to Insecure Permissions as the firmware update functionality (via Wi-Fi/Ethernet) implements an insecure verification mechanism that solely relies on MD5 checksums for firmware integrity validation.... Read more

    Affected Products :
    • Published: Jul. 25, 2025
    • Modified: Jul. 25, 2025
    • Vuln Type: Misconfiguration

  • 5.7

    MEDIUM
    CVE-2024-57708

    An issue in OneTrust SDK v.6.33.0 allows a local attacker to cause a denial of service via the Object.setPrototypeOf, __proto__, and Object.assign components. NOTE: this is disputed by the Supplier who does not agree it is a prototype pollution vulnerabil... Read more

    Affected Products :
    • Published: Jun. 25, 2025
    • Modified: Jul. 25, 2025
    • Vuln Type: Denial of Service

  • 5.5

    MEDIUM
    CVE-2024-47102

    IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the AIX perfstat kernel extension to cause a denial of service.... Read more

    Affected Products : aix vios
    • Published: Dec. 25, 2024
    • Modified: Jul. 25, 2025

  • 5.5

    MEDIUM
    CVE-2024-52906

    IBM AIX 7.2, 7.3, VIOS 3.1, and 4.1 could allow a non-privileged local user to exploit a vulnerability in the TCP/IP kernel extension to cause a denial of service.... Read more

    Affected Products : aix vios
    • Published: Dec. 25, 2024
    • Modified: Jul. 25, 2025

  • 3.7

    LOW
    CVE-2023-33855

    Under certain conditions, RSA operations performed by IBM Common Cryptographic Architecture (CCA) 7.0.0 through 7.5.36 may exhibit non-constant-time behavior. This could allow a remote attacker to obtain sensitive information using a timing-based attack.... Read more

    • Published: Mar. 26, 2024
    • Modified: Jul. 25, 2025

  • 6.4

    MEDIUM
    CVE-2024-47107

    IBM QRadar SIEM 7.5 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within ... Read more

    • Published: Dec. 07, 2024
    • Modified: Jul. 25, 2025

  • 7.5

    HIGH
    CVE-2023-47150

    IBM Common Cryptographic Architecture (CCA) 7.0.0 through 7.5.36 could allow a remote user to cause a denial of service due to incorrect data handling for certain types of AES operations. IBM X-Force ID: 270602.... Read more

    • Published: Mar. 26, 2024
    • Modified: Jul. 25, 2025

  • 6.8

    MEDIUM
    CVE-2024-27269

    IBM QRadar SIEM 7.5 could allow a privileged user to configure user management that would disclose unintended sensitive information across tenants. IBM X-Force ID: 284575.... Read more

    • Published: May. 14, 2024
    • Modified: Jul. 25, 2025
Showing 20 of 292318 Results