NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-34150	The PPPoE configuration interface of the Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02) is vulnerable to command injection via the 'user' p...	2025-08-07	9.4	ADJACENT	CRITICAL	NVD
CVE-2025-34149	A command injection vulnerability affects the Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02) during WPA2 configuration. The 'key' parameter...	2025-08-07	9.4	ADJACENT	CRITICAL	NVD
CVE-2025-34148	An unauthenticated OS command injection vulnerability exists in the Shenzhen Aitemi M300 Wi-Fi Repeater (hardware model MT02). When configuring the de...	2025-08-07	9.4	ADJACENT	CRITICAL	NVD
CVE-2025-24000	Authentication Bypass Using an Alternate Path or Channel vulnerability in WPExperts Post SMTP allows Authentication Bypass.This issue affects Post SMT...	2025-08-07	8.8	NETWORK	HIGH	NVD
CVE-2024-42048	OpenOrange Business Framework 1.15.5 provides unprivileged users with write access to the installation directory.	2025-08-07	6.5	NETWORK	MEDIUM	NVD
CVE-2025-7054	Cloudflare quiche was discovered to be vulnerable to an infinite loop when sending packets containing RETIRE_CONNECTION_ID frames. QUIC connections p...	2025-08-07	8.7	NETWORK	HIGH	NVD
CVE-2025-55136	ERC (aka Emotion Recognition in Conversation) through 0.3 has insecure deserialization via a serialized object because jsonpickle is used.	2025-08-07	5.7	LOCAL	MEDIUM	NVD
CVE-2025-55135	In Agora Foundation Agora fall23-Alpha1 before 690ce56, there is XSS via a profile picture to server/controller/userController.js. Formats other than ...	2025-08-07	6.4	NETWORK	MEDIUM	NVD
CVE-2025-55134	In Agora Foundation Agora fall23-Alpha1 before b087490, there is XSS via tag in client/agora/public/js/editorManager.js.	2025-08-07	6.4	NETWORK	MEDIUM	NVD
CVE-2025-55133	In Agora Foundation Agora fall23-Alpha1 before b087490, there is XSS via topicName in client/agora/public/js/editorManager.js.	2025-08-07	6.4	NETWORK	MEDIUM	NVD
CVE-2025-47907	Cancelling a query (e.g. by cancelling the context passed to one of the query methods) during a call to the Scan method of the returned Rows can resul...	2025-08-07	7.0	NETWORK	HIGH	NVD
CVE-2025-44779	An issue in Ollama v0.1.33 allows attackers to delete arbitrary files via sending a crafted packet to the endpoint /api/pull.	2025-08-07	6.6	LOCAL	MEDIUM	NVD
CVE-2024-56339	IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 could allow a remote attacker to bypass securi...	2025-08-07	3.7	NETWORK	LOW	NVD
CVE-2025-50952	openjpeg v 2.5.0 was discovered to contain a NULL pointer dereference via the component /openjp2/dwt.c.	2025-08-07	6.5	NETWORK	MEDIUM	NVD
CVE-2025-47188	A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit through 6.4 SP4, could allow an...	2025-08-07	6.5	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.