Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 8.6 CVE-2025-55192

HomeAssistant-Tapo-Control Code Injection Vulnerability in issues.yml Workflow_CVE-2025-55192

HomeAssistant-Tapo-Control offers Control for Tapo cameras as a Home Assistant component. Prior to commit 2a3b80f, there is a code injection vulner...

JurajNyiri HomeAssistant-Tapo-Control < 2a3b80ff128ddf4f410c97dd47a94343792ce43c CVE
HIGH 7 CVE-2025-54867

Youki Symlink Following Vulnerability_CVE-2025-54867

Youki is a container runtime written in Rust. Prior to version 0.5.5, if /proc and /sys in the rootfs are symbolic links, they can potentially be e...

youki-dev youki < 0.5.5 CVE
HIGH 7.5 CVE-2025-54472

Apache bRPC: Redis Parser Remote Denial of Service_CVE-2025-54472

Unlimited memory allocation in redis protocol parser in Apache bRPC (all versions < 1.14.1) on all platforms allows attackers to crash the service ...

Apache Software Foundation Apache bRPC CVE
HIGH 8.7 CVE-2025-9042

Rockwell Automation FLEX 5000 I/O – Module Fault_CVE-2025-9042

A security issue exists due to improper handling of CIP Class 32’s request when a module is inhibited on the 5094-IY8 device. It causes the module ...

Rockwell Automation FLEX 5000 I/O Version 2.011 or below CVE
HIGH 8.4 CVE-2025-7972

Rockwell Automation FactoryTalk® Linx Network Browser Security Bypass Vulnerability_CVE-2025-7972

A security issue exists within the FactoryTalk Linx Network Browser. By modifying the process.env.NODE_ENV to ‘development’, the attacker can disab...

Rockwell Automation FactoryTalk® Linx All prior to 6.50 CVE
HIGH 7.3 CVE-2025-7971

Studio 5000 Logix Designer® – Arbitrary Code Execution Vulnerability_CVE-2025-7971

A security issues exists within Studio 5000 Logix Designer due to unsafe handling of environment variables. If the specified path lacks a valid fil...

Rockwell Automation Studio 5000 Logix Designer® V36.00.02 CVE
HIGH 8.7 CVE-2025-40758

CVE-2025-40758_CVE-2025-40758

A vulnerability has been identified in Mendix SAML (Mendix 10.12 compatible) (All versions < V4.0.3), Mendix SAML (Mendix 10.21 compatible) (All ve...

Siemens Mendix SAML (Mendix 10.12 compatible) CVE
HIGH 7.5 CVE-2025-43988

CVE-2025-43988_CVE-2025-43988

KuWFi 5G01-X55 FL2020_V0.0.12 devices expose an unauthenticated API endpoint (ajax_get.cgi), allowing remote attackers to retrieve sensitive config...

n/a n/a n/a CVE
HIGH 7.2 CVE-2025-6965

Integer Truncation on SQLite_CVE-2025-6965

There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. Thi...

SQLite SQLite CVE
HIGH 7.8 CVE-2025-0831

Out-Of-Bounds Read vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025_CVE-2025-0831

Out-Of-Bounds Read vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025. This vulnerabi...

Dassault Systèmes SOLIDWORKS eDrawings Release SOLIDWORKS Desktop 2025 SP0 CVE