🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-24054 | Critical | 9.0 |
Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability — Microsoft Windows NTLM contains an external control of f…
|
⚡ Exploit ✅ Patch | Apr 17, 2025 |
| CVE-2021-20035 | Critical | 9.0 |
SonicWall SMA100 Appliances OS Command Injection Vulnerability — SonicWall SMA100 appliances contain an OS command injec…
|
⚡ Exploit ✅ Patch | Apr 16, 2025 |
| CVE-2024-53197 | Critical | 9.0 |
Linux Kernel Out-of-Bounds Access Vulnerability — Linux Kernel contains an out-of-bounds access vulnerability in the USB…
|
⚡ Exploit ✅ Patch | Apr 9, 2025 |
| CVE-2024-53150 | Critical | 9.0 |
Linux Kernel Out-of-Bounds Read Vulnerability — Linux Kernel contains an out-of-bounds read vulnerability in the USB-aud…
|
⚡ Exploit ✅ Patch | Apr 9, 2025 |
| CVE-2025-29824 | Critical | 9.0 |
Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability — Microsoft Windows Common Log File …
|
⚡ Exploit ✅ Patch | Apr 8, 2025 |
| CVE-2025-30406 | Critical | 9.0 |
Gladinet CentreStack and Triofox Use of Hard-coded Cryptographic Key Vulnerability — Gladinet CentreStack and Triofox co…
|
⚡ Exploit ✅ Patch | Apr 8, 2025 |
| CVE-2025-31161 | Critical | 9.0 |
CrushFTP Authentication Bypass Vulnerability — CrushFTP contains an authentication bypass vulnerability in the HTTP auth…
|
⚡ Exploit ✅ Patch | Apr 7, 2025 |
| CVE-2025-22457 | Critical | 9.0 |
Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability — Ivanti Connect Secure…
|
⚡ Exploit ✅ Patch | Apr 4, 2025 |
| CVE-2025-24813 | Critical | 9.0 |
Apache Tomcat Path Equivalence Vulnerability — Apache Tomcat contains a path equivalence vulnerability that allows a rem…
|
⚡ Exploit ✅ Patch | Apr 1, 2025 |
| CVE-2024-20439 | Critical | 9.0 |
Cisco Smart Licensing Utility Static Credential Vulnerability — Cisco Smart Licensing Utility contains a static credenti…
|
⚡ Exploit ✅ Patch | Mar 31, 2025 |
| CVE-2025-2783 | Critical | 9.0 |
Google Chromium Mojo Sandbox Escape Vulnerability — Google Chromium Mojo on Windows contains a sandbox escape vulnerabil…
|
⚡ Exploit ✅ Patch | Mar 27, 2025 |
| CVE-2019-9874 | Critical | 9.0 |
Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability — Sitecore CMS and Experience Platform (XP) cont…
|
⚡ Exploit ✅ Patch | Mar 26, 2025 |
| CVE-2019-9875 | Critical | 9.0 |
Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability — Sitecore CMS and Experience Platform (XP) cont…
|
⚡ Exploit ✅ Patch | Mar 26, 2025 |
| CVE-2025-30154 | Critical | 9.0 |
reviewdog/action-setup GitHub Action Embedded Malicious Code Vulnerability — reviewdog action-setup GitHub Action contai…
|
⚡ Exploit ✅ Patch | Mar 24, 2025 |
| CVE-2017-12637 | Critical | 9.0 |
SAP NetWeaver Directory Traversal Vulnerability — SAP NetWeaver Application Server (AS) Java contains a directory traver…
|
⚡ Exploit ✅ Patch | Mar 19, 2025 |
| CVE-2025-1316 | Critical | 9.0 |
Edimax IC-7100 IP Camera OS Command Injection Vulnerability — Edimax IC-7100 IP camera contains an OS command injection …
|
⚡ Exploit ✅ Patch | Mar 19, 2025 |
| CVE-2024-48248 | Critical | 9.0 |
NAKIVO Backup and Replication Absolute Path Traversal Vulnerability — NAKIVO Backup and Replication contains an absolute…
|
⚡ Exploit ✅ Patch | Mar 19, 2025 |
| CVE-2025-24472 | Critical | 9.0 |
Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability — Fortinet FortiOS and FortiProxy contain an authen…
|
⚡ Exploit ✅ Patch | Mar 18, 2025 |
| CVE-2025-30066 | Critical | 9.0 |
tj-actions/changed-files GitHub Action Embedded Malicious Code Vulnerability — tj-actions/changed-files GitHub Action co…
|
⚡ Exploit ✅ Patch | Mar 18, 2025 |
| CVE-2025-21590 | Critical | 9.0 |
Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability — Juniper Junos OS contains an improper isolat…
|
⚡ Exploit ✅ Patch | Mar 13, 2025 |