NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-40345	In the Linux kernel, the following vulnerability has been resolved: usb: storage: sddr55: Reject out-of-bound new_pba Discovered by Atuin - Automate...	2025-12-12	N/A	None	None	NVD
CVE-2025-67819	An issue was discovered in Weaviate OSS before 1.33.4. Due to a lack of validation of the fileName field in the transfer logic, an attacker who can ca...	2025-12-12	4.9	NETWORK	MEDIUM	NVD
CVE-2025-67818	An issue was discovered in Weaviate OSS before 1.33.4. An attacker with access to insert data into the database can craft an entry name with an absolu...	2025-12-12	7.2	NETWORK	HIGH	NVD
CVE-2025-67342	RuoYi versions 4.8.1 and earlier is affected by a stored XSS vulnerability in the /system/menu/edit endpoint. While the endpoint is protected by an XS...	2025-12-12	4.6	NETWORK	MEDIUM	NVD
CVE-2025-64011	Nextcloud Server 30.0.0 is vulnerable to an Insecure Direct Object Reference (IDOR) in the /core/preview endpoint. Any authenticated user can access p...	2025-12-12	4.3	NETWORK	MEDIUM	NVD
CVE-2023-29144	Malwarebytes 1.0.14 for Linux doesn't properly compute signatures in some scenarios. This allows a bypass of detection.	2025-12-12	3.3	LOCAL	LOW	NVD
CVE-2025-67344	jshERP v3.5 and earlier is affected by a stored Cross Site Scripting (XSS) vulnerability via the /msg/add endpoint.	2025-12-12	4.6	NETWORK	MEDIUM	NVD
CVE-2025-67341	jshERP versions 3.5 and earlier are affected by a stored XSS vulnerability. This vulnerability allows attackers to upload PDF files containing XSS pay...	2025-12-12	4.6	NETWORK	MEDIUM	NVD
CVE-2025-66430	Plesk 18.0 has Incorrect Access Control.	2025-12-12	9.1	NETWORK	CRITICAL	NVD
CVE-2025-65854	Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute arbitrary commands and execute a full account takeov...	2025-12-12	9.8	NETWORK	CRITICAL	NVD
CVE-2025-65530	An eval injection in the malware de-obfuscation routines of CloudLinux ai-bolit before v32.7.4 allows attackers to overwrite arbitrary files as root v...	2025-12-12	8.8	NETWORK	HIGH	NVD
CVE-2025-53960	When encrypting sensitive data, weak encryption keys that are fixed or directly generated based on user passwords are used. Attackers can obtain these...	2025-12-12	5.9	NETWORK	MEDIUM	NVD
CVE-2025-14567	A weakness has been identified in haxxorsid Stock-Management-System up to fbbbf213e9c93b87183a3891f77e3cc7095f22b0. This affects an unknown function o...	2025-12-12	5.3	NETWORK	MEDIUM	NVD
CVE-2025-14566	A security flaw has been discovered in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The impacted element is an unknown...	2025-12-12	7.3	NETWORK	HIGH	NVD
CVE-2025-14565	A vulnerability was identified in kidaze CourseSelectionSystem up to 42cd892b40a18d50bd4ed1905fa89f939173a464. The affected element is an unknown func...	2025-12-12	7.3	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.