NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-64447	A reliance on cookies without validation and integrity checking vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.1, FortiWeb 7.6.0 through 7.6.5, ...	2025-12-09	8.1	NETWORK	HIGH	NVD
CVE-2025-64156	An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiVoice 7.2.0 through 7.2.2, Fort...	2025-12-09	7.2	NETWORK	HIGH	NVD
CVE-2025-64153	A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiExtender 7.6.0 through 7.6.3, FortiExten...	2025-12-09	7.2	NETWORK	HIGH	NVD
CVE-2025-64086	A NULL pointer dereference vulnerability in the util.readFileIntoStream component of PDF-XChange Editor v10.7.3.401 allows attackers to cause a Denial...	2025-12-09	7.5	NETWORK	HIGH	NVD
CVE-2025-64085	A NULL pointer dereference vulnerability in the importDataObject() function of PDF-XChange Editor v10.7.3.401 allows attackers to cause a Denial of Se...	2025-12-09	7.5	NETWORK	HIGH	NVD
CVE-2025-62631	An insufficient session expiration vulnerability [CWE-613] in Fortinet FortiOS 7.4.0, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 ...	2025-12-09	5.6	NETWORK	MEDIUM	NVD
CVE-2025-62573	Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally.	2025-12-09	7.0	LOCAL	HIGH	NVD
CVE-2025-62572	Out-of-bounds read in Application Information Services allows an authorized attacker to elevate privileges locally.	2025-12-09	7.8	LOCAL	HIGH	NVD
CVE-2025-62571	Improper input validation in Windows Installer allows an authorized attacker to elevate privileges locally.	2025-12-09	7.8	LOCAL	HIGH	NVD
CVE-2025-62570	Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally.	2025-12-09	7.1	LOCAL	HIGH	NVD
CVE-2025-62569	Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.	2025-12-09	7.0	LOCAL	HIGH	NVD
CVE-2025-62567	Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny service over a network.	2025-12-09	5.3	NETWORK	MEDIUM	NVD
CVE-2025-62565	Use after free in Windows Shell allows an authorized attacker to elevate privileges locally.	2025-12-09	7.3	LOCAL	HIGH	NVD
CVE-2025-62564	Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.	2025-12-09	7.8	LOCAL	HIGH	NVD
CVE-2025-62563	Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.	2025-12-09	7.8	LOCAL	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.