Search
Search Results (328883 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-61830 | 1 Adobe | 1 Pass | 2025-12-10 | 7.1 High |
| Adobe Pass versions 3.7.3 and earlier are affected by an Incorrect Authorization vulnerability. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized read and write access. Exploitation of this issue requires user interaction in that a victim must install a malicious SDK. | ||||
| CVE-2025-42880 | 1 Sap | 1 Solution Manager | 2025-12-10 | 9.9 Critical |
| Due to missing input sanitation, SAP Solution Manager allows an authenticated attacker to insert malicious code when calling a remote-enabled function module. This could provide the attacker with full control of the system hence leading to high impact on confidentiality, integrity and availability of the system. | ||||
| CVE-2025-42928 | 1 Sap | 1 Jconnect | 2025-12-10 | 9.1 Critical |
| Under certain conditions, a high privileged user could exploit a deserialization vulnerability in SAP jConnect to launch remote code execution. The system may be vulnerable when specially crafted input is used to exploit the vulnerability resulting in high impact on confidentiality, integrity and availability of the system. | ||||
| CVE-2025-67613 | 2025-12-10 | N/A | ||
| Not used | ||||
| CVE-2025-67612 | 2025-12-10 | N/A | ||
| Not used | ||||
| CVE-2025-67611 | 2025-12-10 | N/A | ||
| Not used | ||||
| CVE-2025-67610 | 2025-12-10 | N/A | ||
| Not used | ||||
| CVE-2025-67609 | 2025-12-10 | N/A | ||
| Not used | ||||
| CVE-2025-67608 | 2025-12-10 | N/A | ||
| Not used | ||||
| CVE-2025-67607 | 2025-12-10 | N/A | ||
| Not used | ||||
| CVE-2025-67606 | 2025-12-10 | N/A | ||
| Not used | ||||
| CVE-2025-67605 | 2025-12-10 | N/A | ||
| Not used | ||||
| CVE-2025-67503 | 2025-12-10 | N/A | ||
| This CVE is a duplicate of another CVE. | ||||
| CVE-2024-30098 | 1 Microsoft | 22 Windows 10 1507, Windows 10 1607, Windows 10 1809 and 19 more | 2025-12-09 | 7.5 High |
| Windows Cryptographic Services Security Feature Bypass Vulnerability | ||||
| CVE-2024-30105 | 2 Microsoft, Redhat | 5 .net, Powershell, Visual Studio and 2 more | 2025-12-09 | 7.5 High |
| .NET and Visual Studio Denial of Service Vulnerability | ||||
| CVE-2024-38095 | 2 Microsoft, Redhat | 5 .net, Powershell, Visual Studio and 2 more | 2025-12-09 | 7.5 High |
| .NET and Visual Studio Denial of Service Vulnerability | ||||
| CVE-2024-38156 | 1 Microsoft | 2 Edge, Edge Chromium | 2025-12-09 | 6.1 Medium |
| Microsoft Edge (Chromium-based) Spoofing Vulnerability | ||||
| CVE-2024-38103 | 1 Microsoft | 2 Edge, Edge Chromium | 2025-12-09 | 5.9 Medium |
| Microsoft Edge (Chromium-based) Information Disclosure Vulnerability | ||||
| CVE-2024-38164 | 1 Microsoft | 1 Groupme | 2025-12-09 | 9.6 Critical |
| An improper access control vulnerability in GroupMe allows an a unauthenticated attacker to elevate privileges over a network by convincing a user to click on a malicious link. | ||||
| CVE-2024-38176 | 1 Microsoft | 1 Groupme | 2025-12-09 | 8.1 High |
| An improper restriction of excessive authentication attempts in GroupMe allows a unauthenticated attacker to elevate privileges over a network. | ||||