NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-64497	Tuleap is an Open Source Suite for management of software development and collaboration. Versions below 17.0.99.1762431347 of Tuleap Community Editio...	2025-12-08	6.5	NETWORK	MEDIUM	NVD
CVE-2025-36140	IBM watsonx.data 2.2 through 2.2.1 could allow an authenticated user to cause a denial of service through ingestion pods due to improper allocation of...	2025-12-08	6.5	NETWORK	MEDIUM	NVD
CVE-2025-64650	IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.18 could disclose sensitive user credentials in log files.	2025-12-08	6.5	NETWORK	MEDIUM	NVD
CVE-2025-62408	c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using read_answer() and proc...	2025-12-08	5.9	NETWORK	MEDIUM	NVD
CVE-2025-36102	IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could allow a privileged user to bypass validation, passing u...	2025-12-08	2.7	NETWORK	LOW	NVD
CVE-2025-36017	IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 stores unencrypted sensitive information in environmental var...	2025-12-08	6.5	NETWORK	MEDIUM	NVD
CVE-2025-36015	IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could allow an authenticated user to cause a denial of servic...	2025-12-08	6.5	NETWORK	MEDIUM	NVD
CVE-2025-33111	IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 is vulnerable to creation of temporary files without atomic o...	2025-12-08	4.3	NETWORK	MEDIUM	NVD
CVE-2025-14276	A vulnerability was determined in Ilevia EVE X1 Server up to 4.6.5.0.eden. Impacted is an unknown function of the file /ajax/php/leaf_search.php. This...	2025-12-08	5.6	NETWORK	MEDIUM	NVD
CVE-2025-12832	IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attac...	2025-12-08	4.6	ADJACENT_NETWORK	MEDIUM	NVD
CVE-2025-12635	IBM WebSphere Application Server 8.5, 9.0 and IBM WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.12 are affected by cross-site scripting...	2025-12-08	5.4	NETWORK	MEDIUM	NVD
CVE-2025-65228	A stored cross-site scripting vulnerability exists in the web management interface of the R.V.R. Elettronica TLK302T telemetry controller (firmware 1....	2025-12-08	3.5	NETWORK	LOW	NVD
CVE-2025-65230	Barix Instreamer v04.06 and v04.05 contains a stored cross-site scripting (XSS) vulnerability in the Web UI Configuration Streaming Destination input.	2025-12-08	5.4	NETWORK	MEDIUM	NVD
CVE-2025-65229	A stored cross-site scripting (XSS) vulnerability exists in the web interface of Lyrion Music Server <= 9.0.3. An authenticated user with access to Se...	2025-12-08	4.6	NETWORK	MEDIUM	NVD
CVE-2025-65849	A cryptanalytic break in Altcha Proof-of-Work obfuscation mode version 0.8.0 and later allows for remote visitors to recover the Proof-of-Work nonce i...	2025-12-08	9.1	NETWORK	CRITICAL	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.