NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-47436	Heap-based Buffer Overflow vulnerability in Apache ORC. A vulnerability has been identified in the ORC C++ LZO decompression logic, where specially c...	2025-05-14	6.0	LOCAL	MEDIUM	NVD
CVE-2025-3600	In Progress® Telerik® UI for AJAX, versions 2011.2.712 to 2025.1.218, an unsafe reflection vulnerability exists that may lead to an unhandled exceptio...	2025-05-14	7.5	NETWORK	HIGH	NVD
CVE-2024-57273	Netgate pfSense CE (prior to 2.8.0 beta release) and corresponding Plus builds is vulnerable to Cross-site scripting (XSS) in the Automatic Configurat...	2025-05-14	5.4	NETWORK	MEDIUM	NVD
CVE-2024-54780	Netgate pfSense CE (prior to 2.8.0 beta release) and corresponding Plus builds are vulnerable to command injection in the OpenVPN widget due to improp...	2025-05-14	8.8	NETWORK	HIGH	NVD
CVE-2024-54779	Netgate pfSense CE (prior to 2.8.0 beta release) and corresponding Plus builds is vulnerable to Cross Site Scripting (XSS) in widgets/log.widget.php.	2025-05-14	5.4	NETWORK	MEDIUM	NVD
CVE-2023-53146	In the Linux kernel, the following vulnerability has been resolved: media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer() In dw2102_i2c_transfe...	2025-05-14	N/A	None	None	NVD
CVE-2025-47445	Relative Path Traversal vulnerability in Themewinter Eventin allows Path Traversal.This issue affects Eventin: from n/a through 4.0.26.	2025-05-14	7.5	NETWORK	HIGH	NVD
CVE-2025-3931	A flaw was found in Yggdrasil, which acts as a system broker, allowing the processes to communicate to other children's "worker" processes through the...	2025-05-14	7.8	LOCAL	HIGH	NVD
CVE-2025-3769	The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to Insecure Direct Object Reference in all vers...	2025-05-14	5.3	NETWORK	MEDIUM	NVD
CVE-2025-4430	Unauthorized access to "/api/Token/gettoken" endpoint in EZD RP allows file manipulation.This issue affects EZD RP in versions before 20.19 (published...	2025-05-14	8.6	NETWORK	HIGH	NVD
CVE-2025-47292	Cap Collectif is an online decision making platform that integrates several tools. Before commit 812f2a7d271b76deab1175bdaf2be0b8102dd198, the `Debate...	2025-05-14	9.5	NETWORK	CRITICAL	NVD
CVE-2025-3834	Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the OU History report.	2025-05-14	8.1	NETWORK	HIGH	NVD
CVE-2025-3833	Zohocorp ManageEngine ADSelfService Plus versions 6513 and prior are vulnerable to authenticated SQL injection in the MFA reports.	2025-05-14	8.1	NETWORK	HIGH	NVD
CVE-2025-26864	Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Log File vulnerability in the OpenIdAuthorizer of ...	2025-05-14	7.5	NETWORK	HIGH	NVD
CVE-2025-26795	Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Log File vulnerability in Apache IoTDB JDBC driver...	2025-05-14	7.5	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.