NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-51534	A cross-site scripting (XSS) vulnerability in Austrian Archaeological Institute (AI) OpenAtlas v8.11.0 allows attackers to execute arbitrary web scrip...	2025-08-04	8.1	NETWORK	HIGH	NVD
CVE-2025-50422	An issue was discovered in freedesktop poppler v25.04.0. The heap memory containing PDF stream objects is not cleared upon program exit, allowing atta...	2025-08-04	5.5	LOCAL	MEDIUM	NVD
CVE-2025-50420	An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an infinite recursion via supplying a crafted PDF file. ...	2025-08-04	6.5	NETWORK	MEDIUM	NVD
CVE-2025-44963	RUCKUS Network Director (RND) before 4.5 allows spoofing of an administrator JWT by an attacker who knows the hardcoded value of a certain secret key.	2025-08-04	9.0	NETWORK	CRITICAL	NVD
CVE-2025-44962	RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build allows ../ directory traversal to read files.	2025-08-04	5.0	NETWORK	MEDIUM	NVD
CVE-2025-44961	In RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build, OS command injection can occur via an IP address field provided by an authenticated user.	2025-08-04	9.9	NETWORK	CRITICAL	NVD
CVE-2025-44960	RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build allows OS command injection via a certain parameter in an API route.	2025-08-04	8.5	NETWORK	HIGH	NVD
CVE-2025-44958	RUCKUS Network Director (RND) before 4.5 stores passwords in a recoverable format.	2025-08-04	5.3	LOCAL	MEDIUM	NVD
CVE-2025-44957	Ruckus SmartZone (SZ) before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers.	2025-08-04	8.5	NETWORK	HIGH	NVD
CVE-2025-44954	RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account.	2025-08-04	9.0	NETWORK	CRITICAL	NVD
CVE-2025-8517	A vulnerability was found in givanz Vvveb 1.0.6.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The m...	2025-08-04	6.3	NETWORK	MEDIUM	NVD
CVE-2025-8516	A vulnerability was found in Kingdee Cloud-Starry-Sky Enterprise Edition up to 8.2. It has been classified as problematic. Affected is the function Ba...	2025-08-04	5.3	NETWORK	MEDIUM	NVD
CVE-2025-5988	A flaw was found in the Ansible aap-gateway. Cross-site request forgery (CSRF) origin checking is not done on requests from the gateway to external co...	2025-08-04	5.3	NETWORK	MEDIUM	NVD
CVE-2025-44955	RUCKUS Network Director (RND) before 4.5 allows jailed users to obtain root access vis a weak, hardcoded password.	2025-08-04	8.8	LOCAL	HIGH	NVD
CVE-2025-38739	Dell Digital Delivery, versions prior to 5.6.1.0, contains an Insufficiently Protected Credentials vulnerability. A remote unauthenticated attacker co...	2025-08-04	7.2	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.