🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-48703 | Critical | 9.0 |
CWP Control Web Panel OS Command Injection Vulnerability — CWP Control Web Panel (formerly CentOS Web Panel) contains an…
|
⚡ Exploit ✅ Patch | Nov 4, 2025 |
| CVE-2025-11371 | Critical | 9.0 |
Gladinet CentreStack and Triofox Files or Directories Accessible to External Parties Vulnerability — Gladinet CentreStac…
|
⚡ Exploit ✅ Patch | Nov 4, 2025 |
| CVE-2025-24893 | Critical | 9.0 |
XWiki Platform Eval Injection Vulnerability — XWiki Platform contains an eval injection vulnerability that could allow a…
|
⚡ Exploit ✅ Patch | Oct 30, 2025 |
| CVE-2025-41244 | Critical | 9.0 |
Broadcom VMware Aria Operations and VMware Tools Privilege Defined with Unsafe Actions Vulnerability — Broadcom VMware A…
|
⚡ Exploit ✅ Patch | Oct 30, 2025 |
| CVE-2025-6205 | Critical | 9.0 |
Dassault Systèmes DELMIA Apriso Missing Authorization Vulnerability — Dassault Systèmes DELMIA Apriso contains a missing…
|
⚡ Exploit ✅ Patch | Oct 28, 2025 |
| CVE-2025-6204 | Critical | 9.0 |
Dassault Systèmes DELMIA Apriso Code Injection Vulnerability — Dassault Systèmes DELMIA Apriso contains a code injection…
|
⚡ Exploit ✅ Patch | Oct 28, 2025 |
| CVE-2025-54236 | Critical | 9.0 |
Adobe Commerce and Magento Improper Input Validation Vulnerability — Adobe Commerce and Magento Open Source contain an i…
|
⚡ Exploit ✅ Patch | Oct 24, 2025 |
| CVE-2025-59287 | Critical | 9.0 |
Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability — Microsoft Windows Serve…
|
⚡ Exploit ✅ Patch | Oct 24, 2025 |
| CVE-2025-61932 | Critical | 9.0 |
Motex LANSCOPE Endpoint Manager Improper Verification of Source of a Communication Channel Vulnerability — Motex LANSCOP…
|
⚡ Exploit ✅ Patch | Oct 22, 2025 |
| CVE-2025-61884 | Critical | 9.0 |
Oracle E-Business Suite Server-Side Request Forgery (SSRF) Vulnerability — Oracle E-Business Suite contains a server-sid…
|
⚡ Exploit ✅ Patch | Oct 20, 2025 |
| CVE-2022-48503 | Critical | 9.0 |
Apple Multiple Products Unspecified Vulnerability — Apple macOS, iOS, tvOS, Safari, and watchOS contain an unspecified v…
|
⚡ Exploit ✅ Patch | Oct 20, 2025 |
| CVE-2025-33073 | Critical | 9.0 |
Microsoft Windows SMB Client Improper Access Control Vulnerability — Microsoft Windows SMB Client contains an improper a…
|
⚡ Exploit ✅ Patch | Oct 20, 2025 |
| CVE-2025-2747 | Critical | 9.0 |
Kentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel Vulnerability — Kentico Xperience CMS con…
|
⚡ Exploit ✅ Patch | Oct 20, 2025 |
| CVE-2025-2746 | Critical | 9.0 |
Kentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel Vulnerability — Kentico Xperience CMS con…
|
⚡ Exploit ✅ Patch | Oct 20, 2025 |
| CVE-2025-54253 | Critical | 9.0 |
Adobe Experience Manager Forms Code Execution Vulnerability — Adobe Experience Manager Forms in JEE contains an unspecif…
|
⚡ Exploit ✅ Patch | Oct 15, 2025 |
| CVE-2025-59230 | Critical | 9.0 |
Microsoft Windows Improper Access Control Vulnerability — Microsoft Windows contains an improper access control vulnerab…
|
⚡ Exploit ✅ Patch | Oct 14, 2025 |
| CVE-2025-24990 | Critical | 9.0 |
Microsoft Windows Untrusted Pointer Dereference Vulnerability — Microsoft Windows Agere Modem Driver contains an untrust…
|
⚡ Exploit ✅ Patch | Oct 14, 2025 |
| CVE-2016-7836 | Critical | 9.0 |
SKYSEA Client View Improper Authentication Vulnerability — SKYSEA Client View contains an improper authentication vulner…
|
⚡ Exploit ✅ Patch | Oct 14, 2025 |
| CVE-2025-47827 | Critical | 9.0 |
IGEL OS Use of a Key Past its Expiration Date Vulnerability — IGEL OS contains a use of a key past its expiration date v…
|
⚡ Exploit ✅ Patch | Oct 14, 2025 |
| CVE-2021-43798 | Critical | 9.0 |
Grafana Path Traversal Vulnerability — Grafana contains a path traversal vulnerability that could allow access to local …
|
⚡ Exploit ✅ Patch | Oct 9, 2025 |