NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-2806	The tagDiv Composer plugin for WordPress, used by the Newspaper theme, is vulnerable to Reflected Cross-Site Scripting via the ‘data’ parameter in all...	2025-05-08	6.1	NETWORK	MEDIUM	NVD
CVE-2025-41450	Improper Authentication vulnerability in Danfoss AKSM8xxA Series.This issue affects Danfoss AK-SM 8xxA Series prior to version 4.2	2025-05-08	8.2	NETWORK	HIGH	NVD
CVE-2025-3759	Endpoint /cgi-bin-igd/netcore_set.cgi which is used for changing device configuration is accessible without authentication. This poses a significant s...	2025-05-08	8.7	ADJACENT	HIGH	NVD
CVE-2025-3758	WF2220 exposes endpoint /cgi-bin-igd/netcore_get.cgi that returns configuration of the device to unauthorized users. Returned configuration includes c...	2025-05-08	8.7	ADJACENT	HIGH	NVD
CVE-2025-40846	Improper Input Validation, the returnUrl parameter in Account Security Settings lacks proper input validation, allowing attackers to redirect users to...	2025-05-08	7.1	NETWORK	HIGH	NVD
CVE-2025-1254	Out-of-bounds Read, Out-of-bounds Write vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers, Overflow Buffers.This issu...	2025-05-08	7.7	NETWORK	HIGH	NVD
CVE-2025-1253	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Vari...	2025-05-08	6.9	LOCAL	MEDIUM	NVD
CVE-2025-1252	Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags.This issue affects Connext Pr...	2025-05-08	6.9	LOCAL	MEDIUM	NVD
CVE-2025-4127	The WP SEO Structured Data Schema plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘Price Range’ parameter in all versions up...	2025-05-08	6.4	NETWORK	MEDIUM	NVD
CVE-2025-37834	In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: don't try to reclaim hwpoison folio Syzkaller reports a bug as follow...	2025-05-08	N/A	None	None	NVD
CVE-2025-37833	In the Linux kernel, the following vulnerability has been resolved: net/niu: Niu requires MSIX ENTRY_DATA fields touch before entry reads Fix niu_tr...	2025-05-08	N/A	None	None	NVD
CVE-2025-37832	In the Linux kernel, the following vulnerability has been resolved: cpufreq: sun50i: prevent out-of-bounds access A KASAN enabled kernel reports an ...	2025-05-08	N/A	None	None	NVD
CVE-2025-37831	In the Linux kernel, the following vulnerability has been resolved: cpufreq: apple-soc: Fix null-ptr-deref in apple_soc_cpufreq_get_rate() cpufreq_c...	2025-05-08	N/A	None	None	NVD
CVE-2025-37830	In the Linux kernel, the following vulnerability has been resolved: cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate() cpufreq_cpu_get_raw...	2025-05-08	N/A	None	None	NVD
CVE-2025-37829	In the Linux kernel, the following vulnerability has been resolved: cpufreq: scpi: Fix null-ptr-deref in scpi_cpufreq_get_rate() cpufreq_cpu_get_raw...	2025-05-08	N/A	None	None	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.