NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-65363	Authenticated append-style command-injection Ruijie APs (AP_RGOS 11.1.x) allows an authenticated web user to execute appended shell expressions as roo...	2025-12-08	7.2	NETWORK	HIGH	NVD
CVE-2025-63721	HummerRisk thru v1.5.0 is using a vulnerable Snakeyaml component, allowing attackers with normal user privileges to hit the /rule/add API and thereby ...	2025-12-08	8.8	NETWORK	HIGH	NVD
CVE-2025-59391	A memory disclosure vulnerability exists in libcoap's OSCORE configuration parser in libcoap before release-4.3.5-patches. An out-of-bounds read may o...	2025-12-08	6.5	NETWORK	MEDIUM	NVD
CVE-2025-48639	In DefaultTransitionHandler.java, there is a possible way to unknowingly grant permissions to an app due to a tapjacking/overlay attack. This could le...	2025-12-08	7.3	LOCAL	HIGH	NVD
CVE-2025-48638	In __pkvm_load_tracing of trace.c, there is a possible out-of-bounds write due to improper input validation. This could lead to local escalation of pr...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48637	In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of pri...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48633	In hasAccountsOnAnyUser of DevicePolicyManagerService.java, there is a possible way to add a Device Owner after provisioning due to a logic error in t...	2025-12-08	5.5	LOCAL	MEDIUM	NVD
CVE-2025-48632	In setDisplayName of AssociationRequest.java, there is a possible way to cause CDM associations to persist after the user has disassociated them due t...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48631	In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to remote ...	2025-12-08	7.5	NETWORK	HIGH	NVD
CVE-2025-48629	In findAvailRecognizer of VoiceInteractionManagerService.java, there is a possible way to become the default speech recognizer app due to an insecure ...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48628	In validateIconUserBoundary of PrintManagerService.java, there is a possible cross-user image leak due to a confused deputy. This could lead to local ...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48627	In startNextMatchingActivity of ActivityTaskManagerService.java, there is a possible way to launch an activity from the background due to a logic erro...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48626	In multiple locations, there is a possible way to launch an application from the background due to a precondition check failure. This could lead to re...	2025-12-08	9.8	NETWORK	CRITICAL	NVD
CVE-2025-48624	In multiple functions of arm-smmu-v3.c, there is a possible out-of-bounds write due to improper input validation. This could lead to local escalation ...	2025-12-08	7.8	LOCAL	HIGH	NVD
CVE-2025-48623	In init_pkvm_hyp_vcpu of pkvm.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of priv...	2025-12-08	7.8	LOCAL	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.