NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-36525	When a BIG-IP APM virtual server is configured to use a PingAccess profile, undisclosed requests can cause TMM to terminate. Note: Software version...	2025-05-07	7.5	NETWORK	HIGH	NVD
CVE-2025-36504	When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an increase in memory resource utilization....	2025-05-07	7.5	NETWORK	HIGH	NVD
CVE-2025-35995	When a BIG-IP PEM system is licensed with URL categorization, and the URL categorization policy or an iRule with the urlcat command is enabled on a vi...	2025-05-07	7.5	NETWORK	HIGH	NVD
CVE-2025-31644	When running in Appliance mode, a command injection vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (tmsh) command which ma...	2025-05-07	8.7	NETWORK	HIGH	NVD
CVE-2023-7303	A vulnerability, which was classified as problematic, was found in q2apro q2apro-on-site-notifications up to 1.4.6. This affects the function process_...	2025-05-07	3.5	NETWORK	LOW	NVD
CVE-2025-4043	An admin user can gain unauthorized write access to the /etc/rc.local file on the device, which is executed on a system boot.	2025-05-07	6.8	NETWORK	MEDIUM	NVD
CVE-2025-3925	BrightSign players running BrightSign OS series 4 prior to v8.5.53.1 or series 5 prior to v9.0.166 contain an execution with unnecessary privileges ...	2025-05-07	7.8	LOCAL	HIGH	NVD
CVE-2025-31177	gnuplot is affected by a heap buffer overflow at function utf8_copy_one.	2025-05-07	6.2	LOCAL	MEDIUM	NVD
CVE-2025-45514	Tenda FH451 V1.0.0.9 has a stack overflow vulnerability in the function.frmL7ImForm.	2025-05-07	6.5	NETWORK	MEDIUM	NVD
CVE-2025-45388	Wagtail CMS 6.4.1 is vulnerable to a Stored Cross-Site Scripting (XSS) in the document upload functionality. Attackers can inject malicious code insid...	2025-05-07	6.1	NETWORK	MEDIUM	NVD
CVE-2025-3476	Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allows privilege escalation by authenticated use...	2025-05-07	9.4	NETWORK	CRITICAL	NVD
CVE-2025-3272	Incorrect Authorization vulnerability in OpenText™ Operations Bridge Manager. The vulnerability could allow authenticated users to change their pass...	2025-05-07	6.7	LOCAL	MEDIUM	NVD
CVE-2025-30147	Besu Native contains scripts and tooling that is used to build and package the native libraries used by the Ethereum client Hyperledger Besu. Besu 24....	2025-05-07	8.7	NETWORK	HIGH	NVD
CVE-2025-29746	Cross Site Scripting vulnerability in Koillection v.1.6.10 allows a remote attacker to escalate privileges via the collection, Wishlist and album comp...	2025-05-07	6.1	NETWORK	MEDIUM	NVD
CVE-2025-26169	IXON VPN Client before 1.4.4 on Windows allows Local Privilege Escalation to SYSTEM because there is code execution from a configuration file that can...	2025-05-07	8.1	LOCAL	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.