🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-42999 | Critical | 9.0 |
SAP NetWeaver Deserialization Vulnerability — SAP NetWeaver Visual Composer Metadata Uploader contains a deserialization…
|
⚡ Exploit ✅ Patch | May 15, 2025 |
| CVE-2024-12987 | Critical | 9.0 |
DrayTek Vigor Routers OS Command Injection Vulnerability — DrayTek Vigor2960, Vigor300B, and Vigor3900 routers contain a…
|
⚡ Exploit ✅ Patch | May 15, 2025 |
| CVE-2025-32756 | Critical | 9.0 |
Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability — Fortinet FortiFone, FortiVoice, FortiNDR and Fort…
|
⚡ Exploit ✅ Patch | May 14, 2025 |
| CVE-2025-30400 | Critical | 9.0 |
Microsoft Windows DWM Core Library Use-After-Free Vulnerability — Microsoft Windows DWM Core Library contains a use-afte…
|
⚡ Exploit ✅ Patch | May 13, 2025 |
| CVE-2025-32709 | Critical | 9.0 |
Microsoft Windows Ancillary Function Driver for WinSock Use-After-Free Vulnerability — Microsoft Windows Ancillary Funct…
|
⚡ Exploit ✅ Patch | May 13, 2025 |
| CVE-2025-32701 | Critical | 9.0 |
Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability — Microsoft Windows Common Log File …
|
⚡ Exploit ✅ Patch | May 13, 2025 |
| CVE-2025-32706 | Critical | 9.0 |
Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability — Microsoft Windows Comm…
|
⚡ Exploit ✅ Patch | May 13, 2025 |
| CVE-2025-30397 | Critical | 9.0 |
Microsoft Windows Scripting Engine Type Confusion Vulnerability — Microsoft Windows Scripting Engine contains a type con…
|
⚡ Exploit ✅ Patch | May 13, 2025 |
| CVE-2025-47729 | Critical | 9.0 |
TeleMessage TM SGNL Hidden Functionality Vulnerability — TeleMessage TM SGNL contains a hidden functionality vulnerabili…
|
⚡ Exploit ✅ Patch | May 12, 2025 |
| CVE-2024-6047 | Critical | 9.0 |
GeoVision Devices OS Command Injection Vulnerability — Multiple GeoVision devices contain an OS command injection vulner…
|
⚡ Exploit ✅ Patch | May 7, 2025 |
| CVE-2024-11120 | Critical | 9.0 |
GeoVision Devices OS Command Injection Vulnerability — Multiple GeoVision devices contain an OS command injection vulner…
|
⚡ Exploit ✅ Patch | May 7, 2025 |
| CVE-2025-27363 | Critical | 9.0 |
FreeType Out-of-Bounds Write Vulnerability — FreeType contains an out-of-bounds write vulnerability when attempting to p…
|
⚡ Exploit ✅ Patch | May 6, 2025 |
| CVE-2025-3248 | Critical | 9.0 |
Langflow Missing Authentication Vulnerability — Langflow contains a missing authentication vulnerability in the /api/v1/…
|
⚡ Exploit ✅ Patch | May 5, 2025 |
| CVE-2024-58136 | Critical | 9.0 |
Yiiframework Yii Improper Protection of Alternate Path Vulnerability — Yii Framework contains an improper protection of …
|
⚡ Exploit ✅ Patch | May 2, 2025 |
| CVE-2025-34028 | Critical | 9.0 |
Commvault Command Center Path Traversal Vulnerability — Commvault Command Center contains a path traversal vulnerability…
|
⚡ Exploit ✅ Patch | May 2, 2025 |
| CVE-2024-38475 | Critical | 9.0 |
Apache HTTP Server Improper Escaping of Output Vulnerability — Apache HTTP Server contains an improper escaping of outpu…
|
⚡ Exploit ✅ Patch | May 1, 2025 |
| CVE-2023-44221 | Critical | 9.0 |
SonicWall SMA100 Appliances OS Command Injection Vulnerability — SonicWall SMA100 appliances contain an OS command injec…
|
⚡ Exploit ✅ Patch | May 1, 2025 |
| CVE-2025-31324 | Critical | 9.0 |
SAP NetWeaver Unrestricted File Upload Vulnerability — SAP NetWeaver Visual Composer Metadata Uploader contains an unres…
|
⚡ Exploit ✅ Patch | Apr 29, 2025 |
| CVE-2025-3928 | Critical | 9.0 |
Commvault Web Server Unspecified Vulnerability — Commvault Web Server contains an unspecified vulnerability that allows …
|
⚡ Exploit ✅ Patch | Apr 28, 2025 |
| CVE-2025-42599 | Critical | 9.0 |
Qualitia Active! Mail Stack-Based Buffer Overflow Vulnerability — Qualitia Active! Mail contains a stack-based buffer ov…
|
⚡ Exploit ✅ Patch | Apr 28, 2025 |