Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 6.8

    MEDIUM
    CVE-2025-30654

    An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the User Interface (UI) of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged, authenticated attacker with access to the CLI to access sensitive info... Read more

    Affected Products : junos junos_os_evolved
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Information Disclosure

  • 6.5

    MEDIUM
    CVE-2025-30653

    An Expired Pointer Dereference vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause Denial of Service (DoS).On all Junos OS and Junos OS Evolved platforms, w... Read more

    Affected Products : junos junos_os_evolved
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 6.8

    MEDIUM
    CVE-2025-30652

    An Improper Handling of Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker executing a CLI command to cause a Denial of Service (DoS). When asreg... Read more

    Affected Products : junos junos_os_evolved
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 8.7

    HIGH
    CVE-2025-30651

    A Buffer Access with Incorrect Length Value vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). When an attacker sends a... Read more

    Affected Products : junos junos_os_evolved
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 8.7

    HIGH
    CVE-2025-30649

    An Improper Input Validation vulnerability in the syslog stream TCP transport of Juniper Networks Junos OS on MX240, MX480 and MX960 devices with MX-SPC3 Security Services Card allows an unauthenticated, network-based attacker, to send specific spoofed pa... Read more

    Affected Products : junos
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 7.4

    HIGH
    CVE-2025-30648

    An Improper Input Validation vulnerability in the Juniper DHCP Daemon (jdhcpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause the jdhcpd process to crash resulting in a Denial of Service (DoS). Whe... Read more

    Affected Products : junos junos_os_evolved
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 7.1

    HIGH
    CVE-2025-30647

    A Missing Release of Memory after Effective Lifetime vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on MX Series allows an unauthenticated adjacent attacker to cause a Denial-of-Service (DoS). In a subscriber management ... Read more

    Affected Products : junos
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 7.1

    HIGH
    CVE-2025-30646

    A Signed to Unsigned Conversion Error vulnerability in the Layer 2 Control Protocol daemon (l2cpd) of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an unauthenticated adjacent attacker sending a specifically malformed LLDP TLV to ... Read more

    Affected Products : junos junos_os_evolved
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 8.7

    HIGH
    CVE-2025-30645

    A NULL Pointer Dereference vulnerability in the flow daemon (flowd) of Juniper Networks Junos OS on SRX Series allows an attacker causing specific, valid control traffic to be sent out of a Dual-Stack (DS) Lite tunnel to crash the flowd process, resulting... Read more

    Affected Products : junos
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 7.7

    HIGH
    CVE-2025-30644

    A Heap-based Buffer Overflow vulnerability in the flexible PIC concentrator (FPC) of Juniper Networks Junos OS on EX2300, EX3400, EX4100, EX4300, EX4300MP, EX4400, EX4600, EX4650-48Y, and QFX5k Series allows an attacker to send a specific DHCP packet to t... Read more

    Affected Products : junos
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 8.5

    HIGH
    CVE-2025-2632

    Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW reading CPU info from cache that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specia... Read more

    Affected Products : labview
    • Published: Apr. 09, 2025
    • Modified: Aug. 18, 2025
    • Vuln Type: Information Disclosure

  • 8.5

    HIGH
    CVE-2025-2631

    Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW in InitCPUInformation() that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially ... Read more

    Affected Products : labview
    • Published: Apr. 09, 2025
    • Modified: Aug. 18, 2025
    • Vuln Type: Information Disclosure

  • 8.8

    HIGH
    CVE-2025-26902

    Cross-Site Request Forgery (CSRF) vulnerability in Brizy Brizy Pro allows Cross Site Request Forgery.This issue affects Brizy Pro: from n/a through 2.6.1.... Read more

    Affected Products : brizy
    • Published: Apr. 09, 2025
    • Modified: Aug. 07, 2025
    • Vuln Type: Cross-Site Request Forgery

  • 8.8

    HIGH
    CVE-2025-26901

    Missing Authorization vulnerability in Brizy Brizy Pro allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Brizy Pro: from n/a through 2.6.1.... Read more

    Affected Products : brizy
    • Published: Apr. 09, 2025
    • Modified: Aug. 07, 2025
    • Vuln Type: Authorization

  • 5.3

    MEDIUM
    CVE-2025-26888

    Missing Authorization vulnerability in OnTheGoSystems WooCommerce Multilingual & Multicurrency allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Multilingual & Multicurrency: from n/a through 5.3.8.... Read more

    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Authorization

  • 8.7

    HIGH
    CVE-2025-21601

    An Improper Following of Specification by Caller vulnerability in web management (J-Web, Captive Portal, 802.1X, Juniper Secure Connect (JSC) of Juniper Networks Junos OS on SRX Series, EX Series, MX240, MX480, MX960, QFX5120 Series, allows an unauthentic... Read more

    Affected Products : junos
    • Published: Apr. 09, 2025
    • Modified: Aug. 11, 2025
    • Vuln Type: Denial of Service

  • 6.0

    MEDIUM
    CVE-2025-21597

    An Improper Check for Unusual or Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, logically adjacent BGP peer to cause Denial of Service (DoS). On all Junos... Read more

    Affected Products : junos junos_os_evolved
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 7.1

    HIGH
    CVE-2025-21595

    A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker to cause an FPC to crash, leading to Denial of Service ... Read more

    Affected Products : junos junos_os_evolved
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Memory Corruption

  • 8.7

    HIGH
    CVE-2025-21594

    An Improper Check for Unusual or Exceptional Conditions vulnerability in the pfe (packet forwarding engine) of Juniper Networks Junos OS on MX Series causes a port within a pool to be blocked leading to Denial of Service (DoS). In a DS-Lite (Dual-Stack L... Read more

    Affected Products : junos
    • Published: Apr. 09, 2025
    • Modified: Apr. 11, 2025
    • Vuln Type: Denial of Service

  • 7.4

    HIGH
    CVE-2025-21591

    A Buffer Access with Incorrect Length Value vulnerability in the jdhcpd daemon of Juniper Networks Junos OS, when DHCP snooping is enabled, allows an unauthenticated, adjacent, attacker to send a DHCP packet with a malformed DHCP option to cause jdhcp to ... Read more

    Affected Products : junos
    • Published: Apr. 09, 2025
    • Modified: Apr. 28, 2025
    • Vuln Type: Denial of Service
Showing 20 of 293360 Results