NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-67490	The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0,...	2025-12-10	5.4	NETWORK	MEDIUM	NVD
CVE-2025-66628	ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM (PSX TIM) image parser cont...	2025-12-10	7.5	NETWORK	HIGH	NVD
CVE-2025-66474	XWiki Rendering is a generic rendering system that converts textual input in a given syntax (wiki syntax, HTML, etc) into another syntax (XHTML, etc)....	2025-12-10	8.7	NETWORK	HIGH	NVD
CVE-2025-66473	XWiki is an open-source wiki software platform. Versions 16.10.10 and below, 17.0.0-rc-1 through 17.4.3 and 17.5.0-rc-1 through 17.6.0 contain a REST ...	2025-12-10	8.7	NETWORK	HIGH	NVD
CVE-2025-66472	XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Versions 6.2-milestone-1 through 16.10.9 and ...	2025-12-10	6.5	NETWORK	MEDIUM	NVD
CVE-2025-66033	Okta Java Management SDK facilitates interactions with the Okta management API. In versions 21.0.0 through 24.0.0, specific multithreaded implementati...	2025-12-10	5.3	NETWORK	MEDIUM	NVD
CVE-2025-65297	Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 automatically collect and upload unencrypted sensitive ...	2025-12-10	7.5	NETWORK	HIGH	NVD
CVE-2025-65296	NULL-pointer dereference vulnerabilities in Aqara Hub M2 4.3.6_0027, Hub M3 4.3.6_0025, and Camera Hub G3 4.1.9_0027 in the JSON processing enable den...	2025-12-10	6.5	ADJACENT_NETWORK	MEDIUM	NVD
CVE-2025-65295	Multiple vulnerabilities in Aqara Hub firmware update process in the Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 devices, allow...	2025-12-10	8.1	NETWORK	HIGH	NVD
CVE-2025-65294	Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 contain an undocumented remote access mechanism enablin...	2025-12-10	9.8	NETWORK	CRITICAL	NVD
CVE-2025-65293	Command injection vulnerabilities in Aqara Camera Hub G3 4.1.9_0027 allow attackers to execute arbitrary commands with root privileges through malicio...	2025-12-10	6.6	PHYSICAL	MEDIUM	NVD
CVE-2025-65292	Command injection vulnerability in Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 allows attackers to ...	2025-12-10	7.3	LOCAL	HIGH	NVD
CVE-2025-65291	Aqara Hub devices including Hub M2 4.3.6_0027, Hub M3 4.3.6_0025, Camera Hub G3 4.1.9_0027 fail to validate server certificates in TLS connections for...	2025-12-10	N/A	None	None	NVD
CVE-2025-65290	Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 fail to validate server certificates during HTTPS firmw...	2025-12-10	7.4	NETWORK	HIGH	NVD
CVE-2024-58285	Chyrp 2.5.2 contains a stored cross-site scripting vulnerability that allows authenticated users to inject malicious scripts into post titles. Attacke...	2025-12-10	5.3	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.