NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-39413	Missing Authorization vulnerability in David Gwyer Simple Sitemap – Create a Responsive HTML Sitemap.This issue affects Simple Sitemap – Create a Resp...	2025-04-30	4.3	NETWORK	MEDIUM	NVD
CVE-2025-33074	Improper verification of cryptographic signature in Microsoft Azure Functions allows an authorized attacker to execute code over a network.	2025-04-30	7.5	NETWORK	HIGH	NVD
CVE-2025-30392	Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.	2025-04-30	9.8	NETWORK	CRITICAL	NVD
CVE-2025-30391	Improper input validation in Microsoft Dynamics allows an unauthorized attacker to disclose information over a network.	2025-04-30	8.1	NETWORK	HIGH	NVD
CVE-2025-30390	Improper authorization in Azure allows an authorized attacker to elevate privileges over a network.	2025-04-30	9.9	NETWORK	CRITICAL	NVD
CVE-2025-30389	Improper authorization in Azure Bot Framework SDK allows an unauthorized attacker to elevate privileges over a network.	2025-04-30	8.7	NETWORK	HIGH	NVD
CVE-2025-24091	An app could impersonate system notifications. Sensitive notifications now require restricted entitlements. This issue is fixed in iOS 18.3 and iPadOS...	2025-04-30	5.5	LOCAL	MEDIUM	NVD
CVE-2025-21416	Missing authorization in Azure Virtual Desktop allows an authorized attacker to elevate privileges over a network.	2025-04-30	8.5	NETWORK	HIGH	NVD
CVE-2025-3859	Websites directing users to long URLs that caused eliding to occur in the location view could leverage the truncating behavior to potentially trick us...	2025-04-30	N/A	None	None	NVD
CVE-2025-3599	Symantec Endpoint Protection Windows Agent, running an ERASER Engine prior to 119.1.7.8, may be susceptible to an Elevation of Privilege vulnerability...	2025-04-30	6.5	NETWORK	MEDIUM	NVD
CVE-2025-4122	A vulnerability was found in Netgear JWNR2000v2 1.0.0.11. It has been rated as critical. Affected by this issue is the function sub_435E04. The manipu...	2025-04-30	6.3	NETWORK	MEDIUM	NVD
CVE-2025-46342	Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to versions 1.13.5 and 1.14.0, it may happen that policy rules ...	2025-04-30	8.5	NETWORK	HIGH	NVD
CVE-2025-32974	XWiki is a generic wiki platform. In versions starting from 15.9-rc-1 to before 15.10.8 and from 16.0.0-rc-1 to before 16.2.0, the required rights ana...	2025-04-30	9.0	NETWORK	CRITICAL	NVD
CVE-2025-32973	XWiki is a generic wiki platform. In versions starting from 15.9-rc-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-1 to b...	2025-04-30	9.0	NETWORK	CRITICAL	NVD
CVE-2025-32972	XWiki is a generic wiki platform. In versions starting from 6.1-milestone-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-...	2025-04-30	2.7	NETWORK	LOW	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.