Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 8.7 CVE-2025-54923

CVE-2025-54923_CVE-2025-54923

CWE-502: Deserialization of Untrusted Data vulnerability exists that could cause remote code execution and compromise of system integrity when auth...

Schneider Electric EcoStruxure™ Power Monitoring Expert (PME) Version 2022 CVE
HIGH 7.2 CVE-2025-54926

CVE-2025-54926_CVE-2025-54926

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code execution ...

Schneider Electric EcoStruxure™ Power Monitoring Expert (PME) Version 2022 CVE
HIGH 7.5 CVE-2025-54925

CVE-2025-54925_CVE-2025-54925

CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthorized access to sensitive data when an attacker configures...

Schneider Electric EcoStruxure™ Power Monitoring Expert (PME) Version 2022 CVE
HIGH 8.1 CVE-2025-32010

CVE-2025-32010_CVE-2025-32010

A stack-based buffer overflow vulnerability exists in the Cloud API functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP respons...

Tenda AC6 V5.0 V02.03.01.110 CVE
HIGH 8.6 CVE-2025-30256

CVE-2025-30256_CVE-2025-30256

A denial of service vulnerability exists in the HTTP Header Parsing functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted series of HT...

Tenda AC6 V5.0 V02.03.01.110 CVE
HIGH 7.5 CVE-2025-24496

CVE-2025-24496_CVE-2025-24496

An information disclosure vulnerability exists in the /goform/getproductInfo functionality of Tenda AC6 V5.0 V02.03.01.110. Specially crafted netwo...

Tenda AC6 V5.0 V02.03.01.110 CVE
HIGH 8.1 CVE-2025-24322

CVE-2025-24322_CVE-2025-24322

An unsafe default authentication vulnerability exists in the Initial Setup Authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A speciall...

Tenda AC6 V5.0 V02.03.01.110 CVE
HIGH 7.2 CVE-2025-31355

CVE-2025-31355_CVE-2025-31355

A firmware update vulnerability exists in the Firmware Signature Validation functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted mali...

Tenda AC6 V5.0 V02.03.01.110 CVE
HIGH 8.4 CVE-2025-8453

CVE-2025-8453_CVE-2025-8453

CWE-269: Improper Privilege Management vulnerability exists that could cause privilege escalation and arbitrary code execution when a privileged en...

Schneider Electric Saitel DR RTU Versions 11.06.29 and prior CVE
HIGH 8.7 CVE-2025-57731

CVE-2025-57731_CVE-2025-57731

In JetBrains YouTrack before 2025.2.92387 stored XSS was possible via Mermaid diagram content

JetBrains YouTrack CVE