CVE

CVE Alert: CVE-2025-24981

February 7, 2025

Vulnerability Summary: CVE-2025-24981 MDC is a tool to take regular Markdown and write documents interacting deeply with a Vue component....

CVE Alert: CVE-2025-22867

February 7, 2025

Vulnerability Summary: CVE-2025-22867 On Darwin, building a Go module which contains CGO can trigger arbitrary code execution when using the...

CVE Alert: CVE-2025-22992

February 7, 2025

Vulnerability Summary: CVE-2025-22992 A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project >= 11.6.9. The vulnerability...

CVE Alert: CVE-2024-47258

February 7, 2025

Vulnerability Summary: CVE-2024-47258 2N Access Commander version 2.1 and prior is vulnerable in default settings to Man In The Middle...

CVE Alert: CVE-2024-47256

February 7, 2025

Vulnerability Summary: CVE-2024-47256 Successful exploitation of this vulnerability could allow an attacker (who needs to have Admin access privileges) to...

CVE Alert: CVE-2024-52892

February 7, 2025

Vulnerability Summary: CVE-2024-52892 IBM Jazz for Service Management 1.1.3 through 1.1.3.23 is vulnerable to cross-site scripting. This vulnerability allows an...

CVE Alert: CVE-2025-24787

February 7, 2025

Vulnerability Summary: CVE-2025-24787 WhoDB is an open source database management tool. In affected versions the application is vulnerable to parameter...

CVE Alert: CVE-2025-24786

February 7, 2025

Vulnerability Summary: CVE-2025-24786 WhoDB is an open source database management tool. While the application only displays Sqlite3 databases present in...

CVE Alert: CVE-2024-54171

February 7, 2025

Vulnerability Summary: CVE-2024-54171 IBM EntireX 11.1 is vulnerable to an XML external entity injection (XXE) attack when processing XML data....

CVE Alert: CVE-2025-1081

February 7, 2025

Vulnerability Summary: CVE-2025-1081 A vulnerability was found in Bharti Airtel Xstream Fiber up to 20250123. It has been rated as...

CVE Alert: CVE-2024-56467

February 7, 2025

Vulnerability Summary: CVE-2024-56467 IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error...

CVE Alert: CVE-2025-0158

February 7, 2025

Vulnerability Summary: CVE-2025-0158 IBM EntireX 11.1 could allow a local user to cause a denial of service due to an...

CVE Alert: CVE-2024-13417

February 7, 2025

Vulnerability Summary: CVE-2024-13417 Specifically crafted payloads sent to the RFID reader could cause DoS of RFID reader. After the device...

CVE Alert: CVE-2025-21177

February 7, 2025

Vulnerability Summary: CVE-2025-21177 Server-Side Request Forgery (SSRF) in Microsoft Dynamics 365 Sales allows an authorized attacker to elevate privileges over...

CVE Alert: CVE-2025-21267

February 7, 2025

Vulnerability Summary: CVE-2025-21267 Microsoft Edge (Chromium-based) Spoofing Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 2/6/2025, 11:15:08 PM ⚠️...

CVE Alert: CVE-2025-21253

February 7, 2025

Vulnerability Summary: CVE-2025-21253 Microsoft Edge for IOS and Android Spoofing Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 2/6/2025,...

CVE Alert: CVE-2025-1082

February 7, 2025

Vulnerability Summary: CVE-2025-1082 A vulnerability classified as problematic has been found in Mindskip xzs-mysql 学之思开源考试系统 3.9.0. Affected is an unknown...

CVE Alert: CVE-2025-1083

February 7, 2025

Vulnerability Summary: CVE-2025-1083 A vulnerability classified as problematic was found in Mindskip xzs-mysql 学之思开源考试系统 3.9.0. Affected by this vulnerability is...

CVE Alert: CVE-2025-21408

February 7, 2025

Vulnerability Summary: CVE-2025-21408 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 2/6/2025, 11:15:09...

CVE Alert: CVE-2025-21342

February 7, 2025

Vulnerability Summary: CVE-2025-21342 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 2/6/2025, 11:15:09...

CVE Alert: CVE-2025-21279

February 7, 2025

Vulnerability Summary: CVE-2025-21279 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 2/6/2025, 11:15:09...

CVE Alert: CVE-2025-21404

February 7, 2025

Vulnerability Summary: CVE-2025-21404 Microsoft Edge (Chromium-based) Spoofing Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 2/6/2025, 11:15:09 PM ⚠️...

CVE Alert: CVE-2025-21283

February 7, 2025

Vulnerability Summary: CVE-2025-21283 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Affected Endpoints: No affected endpoints listed. Published Date: 2/6/2025, 11:15:09...

CVE Alert: CVE-2024-56132

February 6, 2025

Vulnerability Summary: CVE-2024-56132 Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. This issue...

CVE

CVE Alert: CVE-2025-24981

CVE Alert: CVE-2025-22867

CVE Alert: CVE-2025-22992

CVE Alert: CVE-2024-47258

CVE Alert: CVE-2024-47256

CVE Alert: CVE-2024-52892

CVE Alert: CVE-2025-24787

CVE Alert: CVE-2025-24786

CVE Alert: CVE-2024-54171

CVE Alert: CVE-2025-1081

CVE Alert: CVE-2024-56467

CVE Alert: CVE-2025-0158

CVE Alert: CVE-2024-13417

CVE Alert: CVE-2025-21177

CVE Alert: CVE-2025-21267

CVE Alert: CVE-2025-21253

CVE Alert: CVE-2025-1082

CVE Alert: CVE-2025-1083

CVE Alert: CVE-2025-21408

CVE Alert: CVE-2025-21342

CVE Alert: CVE-2025-21279

CVE Alert: CVE-2025-21404

CVE Alert: CVE-2025-21283

CVE Alert: CVE-2024-56132

US-CERT Vulnerability Summary for the Week of February 3, 2025

CVE Alert: CVE-2024-13440

HackerOne Bug Bounty Disclosure: clickjacking-in-main-domain-hxxps-topechelon-com-genz

HackerOne Bug Bounty Disclosure: improper-cache-handling-allows-access-to-post-logout-pages-victim-of-life

CISA: Ivanti Releases Security Updates for Multiple Products

You may have missed