Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 8.8 CVE-2025-26332

CVE-2025-26332_CVE-2025-26332

TechAdvisor versions 2.6 through 3.37-30 for Dell XtremIO X2, contain(s) an Insertion of Sensitive Information into Log File vulnerability. A low p...

Dell TechAdvisor 2.6 CVE
HIGH 7.8 CVE-2025-50777

CVE-2025-50777_CVE-2025-50777

The firmware of the AZIOT 2MP Full HD Smart Wi-Fi CCTV Home Security Camera (version V1.00.02) contains an Incorrect Access Control vulnerability t...

n/a n/a n/a CVE
HIGH 7 CVE-2025-54584

GitProxy is vulnerable to a packfile parsing exploit_CVE-2025-54584

GitProxy is an application that stands between developers and a Git remote endpoint (e.g., github.com). In versions 1.19.1 and below, an attacker c...

finos git-proxy < 1.19.2 CVE
HIGH 8.3 CVE-2025-54583

GitProxy bypasses approvals when pushing multiple branches_CVE-2025-54583

GitProxy is an application that stands between developers and a Git remote endpoint (e.g., github.com). Versions 1.19.1 and below allow users to pu...

finos git-proxy < 1.19.2 CVE
HIGH 7.5 CVE-2025-54581

vproxy is vulnerable to a divide by zero DoS attack_CVE-2025-54581

vproxy is an HTTP/HTTPS/SOCKS5 proxy server. In versions 2.3.3 and below, untrusted data is extracted from the user-controlled HTTP Proxy-Authoriza...

0x676e67 vproxy < 2.4.0 CVE
HIGH 8.2 CVE-2025-54585

GitProxy is vulnerable to a new branch approval exploit_CVE-2025-54585

GitProxy is an application that stands between developers and a Git remote endpoint. In versions 1.19.1 and below, attackers can exploit the way Gi...

finos git-proxy < 1.19.2 CVE
HIGH 7.1 CVE-2025-54586

GitProxy is susceptible to a hidden commits injection attack_CVE-2025-54586

GitProxy is an application that stands between developers and a Git remote endpoint. In versions 1.19.1 and below, attackers can inject extra com...

finos git-proxy < 1.19.2 CVE
HIGH 7 CVE-2025-49083

Data deserialization vulnerability in the Secure Access administrative console of Absolute Secure Access prior to version 13.56_CVE-2025-49083

CVE-2025-49083 is a vulnerability in the management console of Absolute Secure Access after version 12.00 and prior to version 13.56. Attackers wit...

Absolute Security Secure Access 12.00 CVE
HIGH 8.8 CVE-2025-7847

AI Engine 2.9.3 – 2.9.4 – Authenticated (Subscriber+) Arbitrary File Upload_CVE-2025-7847

The AI Engine plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the rest_simpleFileUpload() funct...

tigroumeow AI Engine 2.9.3 CVE
HIGH 8.7 CVE-2025-53558

CVE-2025-53558_CVE-2025-53558

ZXHN-F660T and ZXHN-F660A provided by ZTE Japan K.K. use a common credential for all installations. With the knowledge of the credential, an attack...

ZTE Japan. K.K. ZXHN-F660T prior to V1.0.10P17N4 CVE