NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-12504	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TalentSoft Software UNIS allows SQL Injection.Th...	2025-12-09	9.8	NETWORK	CRITICAL	NVD
CVE-2025-12381	Improper Privilege Management vulnerability in AlgoSec Firewall Analyzer on Linux, 64 bit allows Privilege Escalation, Parameter Injection. A local u...	2025-12-09	6.1	LOCAL	MEDIUM	NVD
CVE-2025-11022	Cross-Site Request Forgery (CSRF) vulnerability in Personal Project Panilux allows Cross Site Request Forgery. This CSRF vulnerability resulting i...	2025-12-09	9.6	NETWORK	CRITICAL	NVD
CVE-2025-10876	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in TalentSoft Software e-BAP Automation allo...	2025-12-09	5.3	NETWORK	MEDIUM	NVD
CVE-2025-10655	SQL Injection in Frappe HelpDesk in the dashboard get_dashboard_data due to unsafe concatenation of user-controlled parameters into dynamic SQL statem...	2025-12-09	8.6	NETWORK	HIGH	NVD
CVE-2025-10573	Stored XSS in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote unauthenticated attacker to execute arbitrary JavaScript in the co...	2025-12-09	9.6	NETWORK	CRITICAL	NVD
CVE-2024-56840	A vulnerability has been identified in RUGGEDCOM ROX II family (All versions < V2.17.0). Under certain conditions, IPsec may allow code injection in t...	2025-12-09	7.2	NETWORK	HIGH	NVD
CVE-2024-56839	A vulnerability has been identified in RUGGEDCOM ROX II family (All versions < V2.17.0). Code injection can be achieved when the affected device is us...	2025-12-09	7.2	NETWORK	HIGH	NVD
CVE-2024-56838	A vulnerability has been identified in RUGGEDCOM ROX II family (All versions < V2.17.0). The SCEP client available in the affected device for secure c...	2025-12-09	7.2	NETWORK	HIGH	NVD
CVE-2024-56837	A vulnerability has been identified in RUGGEDCOM ROX II family (All versions < V2.17.0). Due to the insufficient validation during the installation an...	2025-12-09	7.2	NETWORK	HIGH	NVD
CVE-2024-56836	A vulnerability has been identified in RUGGEDCOM ROX II family (All versions < V2.17.0). During the Dynamic DNS configuration of the affected product ...	2025-12-09	7.5	NETWORK	HIGH	NVD
CVE-2024-56835	A vulnerability has been identified in RUGGEDCOM ROX II family (All versions < V2.17.0). The DHCP Server configuration file of the affected products i...	2025-12-09	8.8	NETWORK	HIGH	NVD
CVE-2024-56464	IBM QRadar SIEM 7.5 - 7.5.0 UP14 IF01 is affected by an information disclosure vulnerability involving exposure of directory information. IBM has addr...	2025-12-09	2.7	NETWORK	LOW	NVD
CVE-2024-38798	EDK2 contains a vulnerability in BIOS where an attacker may cause “Exposure of Sensitive Information to an Unauthorized Actor” by local access. Succes...	2025-12-09	5.8	LOCAL	MEDIUM	NVD
CVE-2023-53866	In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcm_mutex If panic_on_warn is set and com...	2025-12-09	N/A	None	None	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.