Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.1 CVE-2025-20317

Cisco UCS Virtual Keyboard Video Monitor (vKVM) Open Redirect Vulnerability_CVE-2025-20317

A vulnerability in the Virtual Keyboard Video Monitor (vKVM) connection handling of Cisco Integrated Management Controller (IMC) could allow an una...

Cisco Cisco Unified Computing System (Managed) 4.0(1a) CVE
HIGH 7.4 CVE-2025-20241

Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol Denial of Service Vulnerability_CVE-2025-20241

A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and ...

Cisco Cisco NX-OS Software 9.2(3) CVE
HIGH 8.8 CVE-2025-7812

Video Share VOD – Turnkey Video Site Builder Script <= 2.7.6 - Cross-Site Request Forgery to Command Injection_CVE-2025-7812

The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and...

videowhisper Video Share VOD – Turnkey Video Site Builder Script * CVE
HIGH 7.5 CVE-2025-36003

IBM Security Verify Governance Identity Manager information disclosure_CVE-2025-36003

IBM Security Verify Governance Identity Manager 10.0.2 could allow a remote attacker to obtain sensitive information when detailed technical error ...

IBM Security Verify Governance Identity Manager 10.0.2 CVE
HIGH 7.5 CVE-2025-29992

CVE-2025-29992_CVE-2025-29992

Mahara before 24.04.9 exposes database connection information if the database becomes unreachable, e.g., due to the database server being temporari...

n/a n/a n/a CVE
HIGH 8.4 CVE-2025-50753

CVE-2025-50753_CVE-2025-50753

Mitrastar GPT-2741GNAC-N2 devices are provided with access through ssh into a restricted default shell.The command "deviceinfo show file" is suppos...

n/a n/a n/a CVE
HIGH 7.5 CVE-2025-52218

CVE-2025-52218_CVE-2025-52218

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to Content Spoofing / Text Injection. Improper sanitization of unspecified par...

n/a n/a n/a CVE
HIGH 7.7 CVE-2025-34520

Arcserve UDP < 10.2 Authentication Bypass_CVE-2025-34520

An authentication bypass vulnerability in Arcserve Unified Data Protection (UDP) allows unauthenticated attackers to gain unauthorized access to pr...

Arcserve Unified Data Protection (UDP) 10.2 CVE
HIGH 7.5 CVE-2025-40779

Kea crash upon interaction between specific client options and subnet selection_CVE-2025-40779

If a DHCPv4 client sends a request with some specific options, and Kea fails to find an appropriate subnet for the client, the `kea-dhcp4` process ...

ISC Kea 2.7.1 CVE
HIGH 7.8 CVE-2025-55582

CVE-2025-55582_CVE-2025-55582

D-Link DCS-825L firmware v1.08.01 contains a vulnerability in the watchdog script `mydlink-watch-dog.sh`, which blindly respawns binaries such as `...

n/a n/a n/a CVE