NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2024-57096	An issue in wps office before v.19302 allows a local attacker to obtain sensitive information via a crafted file.	2025-05-14	5.5	LOCAL	MEDIUM	NVD
CVE-2024-45516	An issue was discovered in Zimbra Collaboration (ZCS) 9.0.0 before Patch 43, 10.0.x before 10.0.12, 10.1.x before 10.1.4, and 8.8.15 before Patch 47. ...	2025-05-14	6.1	NETWORK	MEDIUM	NVD
CVE-2025-4641	Improper Restriction of XML External Entity Reference vulnerability in bonigarcia webdrivermanager WebDriverManager on Windows, MacOS, Linux (XML pars...	2025-05-14	9.3	NETWORK	CRITICAL	NVD
CVE-2025-4640	Out-of-bounds Write vulnerability in PointCloudLibrary pcl allows Overflow Buffers. Since version 1.14.0, PCL by default uses a zlib installation from...	2025-05-14	8.3	NETWORK	HIGH	NVD
CVE-2025-33104	IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code...	2025-05-14	4.4	NETWORK	MEDIUM	NVD
CVE-2025-2900	IBM Semeru Runtime 8.0.302.0 through 8.0.442.0, 11.0.12.0 through 11.0.26.0, 17.0.0.0 through 17.0.14.0, and 21.0.0.0 through 12.0.6.0 is vulnerable t...	2025-05-14	7.5	NETWORK	HIGH	NVD
CVE-2025-0138	Web sessions in the web interface of Palo Alto Networks Prisma® Cloud Compute Edition do not expire when users are deleted, which makes Prisma Cloud C...	2025-05-14	2.0	NETWORK	LOW	NVD
CVE-2025-0137	An improper input neutralization vulnerability in the management web interface of the Palo Alto Networks PAN-OS® software enables a malicious authenti...	2025-05-14	4.8	NETWORK	MEDIUM	NVD
CVE-2025-0136	Using the AES-128-CCM algorithm for IPSec on certain Palo Alto Networks PAN-OS® firewalls (PA-7500, PA-5400, PA-5400f, PA-3400, PA-1600, PA-1400, and ...	2025-05-14	5.3	NETWORK	MEDIUM	NVD
CVE-2025-0135	An incorrect privilege assignment vulnerability in the Palo Alto Networks GlobalProtect™ App on macOS devices enables a locally authenticated non admi...	2025-05-14	5.2	LOCAL	MEDIUM	NVD
CVE-2025-0134	A code injection vulnerability in the Palo Alto Networks Cortex XDR® Broker VM allows an authenticated user to execute arbitrary code with root privil...	2025-05-14	6.5	NETWORK	MEDIUM	NVD
CVE-2025-0133	A reflected cross-site scripting (XSS) vulnerability in the GlobalProtect™ gateway and portal features of Palo Alto Networks PAN-OS® software enables ...	2025-05-14	6.9	NETWORK	MEDIUM	NVD
CVE-2025-0132	A missing authentication vulnerability in Palo Alto Networks Cortex XDR® Broker VM allows an unauthenticated user to disable certain internal services...	2025-05-14	6.9	NETWORK	MEDIUM	NVD
CVE-2025-0131	An incorrect privilege management vulnerability in the OPSWAT MetaDefender Endpoint Security SDK used by the Palo Alto Networks GlobalProtect™ app on ...	2025-05-14	7.1	LOCAL	HIGH	NVD
CVE-2025-4664	Insufficient policy enforcement in Loader in Google Chrome prior to 136.0.7103.113 allowed a remote attacker to leak cross-origin data via a crafted H...	2025-05-14	4.3	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.