7.8 CVE-2025-1658
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds...

7.8 CVE-2025-1659
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds...

7.8 CVE-2025-1660
A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force a Memory Corruption...

7.8 CVE-2025-22231
VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with...

4.3 CVE-2025-31408
Missing Authorization vulnerability in Zoho Flow allows Exploiting Incorrectly Configured Access Control...

6.5 CVE-2025-3028
JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free....

7.3 CVE-2025-3029
A crafted URL containing specific Unicode characters could have hidden the true origin of the page,...

8.1 CVE-2025-3030
Memory safety bugs present in Firefox 136, Thunderbird 136, Firefox ESR 128.8, and Thunderbird 128.8....

6.5 CVE-2025-3031
An attacker could read 32 bits of values spilled onto the stack in a JIT compiled function. This vulnerability...

7.4 CVE-2025-3032
Leaking of file descriptors from the fork server to web content processes could allow for privilege...

7.7 CVE-2025-3033
After selecting a malicious Windows `.url` shortcut from the local filesystem, an unexpected file could...

CVE-2025-3034
Memory safety bugs present in Firefox 136 and Thunderbird 136. Some of these bugs showed evidence of...

CVE-2025-3035
By first using the AI chatbot in one tab and later activating it in another tab, the document title...

CVE-2025-28395
D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_road_asp function via the host_ip...

CVE-2025-28398
D-LINK DI-8100 16.07.26A1 is vulnerable to Buffer Overflow in the ipsec_net_asp function via the remot_ip...

CVE-2025-30210
Bruno is an open source IDE for exploring and testing APIs. Prior to 1.39.1, the custom tool-tip components...

CVE-2025-30224
MyDumper is a MySQL Logical Backup Tool. The MySQL C client library (libmysqlclient) allows authenticated...

CVE-2025-30354
Bruno is an open source IDE for exploring and testing APIs. A bug in the assertion runtime caused assert...

6.1 CVE-2025-30676
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Apache...

CVE-2025-31121
OpenEMR is a free and open source electronic health records and medical practice management application....

8.6 CVE-2025-31131
YesWiki is a wiki system written in PHP. The squelette parameter is vulnerable to path traversal attacks,...