🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2022-43769	Critical Command Execution via Template Injection in Hitachi Pent… Hitachi Vantara Pentaho BA Server Special Element Injection Vulnerability — Hitachi Vantara Pentaho …	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 3, 2025
CVE-2022-43939	Critical Authorization Bypass in Hitachi Vantara Pentaho BA Serve… Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability — Hitachi Vantara Pentaho BA Se…	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 3, 2025
CVE-2023-20118	Cisco Small Business RV Series Routers Command Injection Vulnerab… Cisco Small Business RV Series Routers Command Injection Vulnerability — Multiple Cisco Small Busine…	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 3, 2025
CVE-2024-4885	Progress WhatsUp Gold Path Traversal Vulnerability — Progress Wha… Progress WhatsUp Gold Path Traversal Vulnerability — Progress WhatsUp Gold contains a path traversal…	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 3, 2025
CVE-2018-8639	Microsoft Windows Win32k Improper Resource Shutdown or Release Vu… Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability — Microsoft Windows Win…	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 3, 2025
CVE-2023-34192	Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XS… Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability — Synacor Zimbra C…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 25, 2025
CVE-2024-49035	Microsoft Partner Center Improper Access Control Vulnerability — … Microsoft Partner Center Improper Access Control Vulnerability — Microsoft Partner Center contains a…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 25, 2025
CVE-2024-20953	Oracle Agile Product Lifecycle Management (PLM) Deserialization V… Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability — Oracle Agile Product…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 24, 2025
CVE-2017-3066	Adobe ColdFusion Deserialization Vulnerability — Adobe ColdFusion… Adobe ColdFusion Deserialization Vulnerability — Adobe ColdFusion contains a deserialization vulnera…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 24, 2025
CVE-2025-24989	Microsoft Power Pages Privilege Escalation via Improper Access Co… Microsoft Power Pages Improper Access Control Vulnerability — Microsoft Power Pages contains an impr…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 21, 2025
CVE-2025-0111	Palo Alto Networks PAN-OS Authenticated File Read Vulnerability (… Palo Alto Networks PAN-OS File Read Vulnerability — Palo Alto Networks PAN-OS contains an external c…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 20, 2025
CVE-2025-23209	Craft CMS Code Injection Vulnerability Enabling Remote Code Execu… Craft CMS Code Injection Vulnerability — Craft CMS contains a code injection vulnerability caused by…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 20, 2025
CVE-2024-53704	SonicWall SonicOS SSLVPN Improper Authentication Vulnerability — … SonicWall SonicOS SSLVPN Improper Authentication Vulnerability — SonicWall SonicOS contains an impro…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 18, 2025
CVE-2025-0108	Palo Alto Networks PAN-OS Authentication Bypass in Management Web… Palo Alto Networks PAN-OS Authentication Bypass Vulnerability — Palo Alto Networks PAN-OS contains a…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 18, 2025
CVE-2024-57727	SimpleHelp Path Traversal Vulnerability — SimpleHelp remote suppo… SimpleHelp Path Traversal Vulnerability — SimpleHelp remote support software contains multiple path …	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 13, 2025
CVE-2024-41710	Mitel SIP Phones Argument Injection Vulnerability — Mitel 6800 Se… Mitel SIP Phones Argument Injection Vulnerability — Mitel 6800 Series, 6900 Series, and 6900w Series…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 12, 2025
CVE-2025-24200	Apple iOS/iPadOS USB Restricted Mode Bypass - Physical Authorizat… Apple iOS and iPadOS Incorrect Authorization Vulnerability — Apple iOS and iPadOS contains an incorr…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 12, 2025
CVE-2024-40890	Zyxel DSL CPE OS Command Injection Vulnerability — Multiple Zyxel… Zyxel DSL CPE OS Command Injection Vulnerability — Multiple Zyxel DSL CPE devices contain a post-aut…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 11, 2025
CVE-2024-40891	Zyxel DSL CPE OS Command Injection Vulnerability — Multiple Zyxel… Zyxel DSL CPE OS Command Injection Vulnerability — Multiple Zyxel DSL CPE devices contain a post-aut…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 11, 2025
CVE-2025-21391	Microsoft Windows Storage Link Following Vulnerability - Privileg… Microsoft Windows Storage Link Following Vulnerability — Microsoft Windows Storage contains a link f…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 11, 2025
CVE-2025-21418	Microsoft Windows Ancillary Function Driver for WinSock Heap-Base… Microsoft Windows Ancillary Function Driver for WinSock Heap-Based Buffer Overflow Vulnerability — M…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 11, 2025
CVE-2025-0994	Trimble Cityworks Deserialization Remote Code Execution Vulnerabi… Trimble Cityworks Deserialization Vulnerability — Trimble Cityworks contains a deserialization vulne…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 7, 2025
CVE-2024-21413	Microsoft Outlook Improper Input Validation Vulnerability — Micro… Microsoft Outlook Improper Input Validation Vulnerability — Microsoft Outlook contains an improper i…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 6, 2025
CVE-2025-0411	7-Zip Mark of the Web Bypass Vulnerability (CVE-2025-0411) 7-Zip Mark of the Web Bypass Vulnerability — 7-Zip contains a protection mechanism failure vulnerabi…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 6, 2025
CVE-2020-15069	Sophos XG Firewall Buffer Overflow Vulnerability — Sophos XG Fire… Sophos XG Firewall Buffer Overflow Vulnerability — Sophos XG Firewall contains a buffer overflow vul…	CRITICAL	9.0	⚡ ✅ KEV AI	Feb 6, 2025

← 1…13 14 15 16 17…66 →

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,792 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8